Actually I believe host networking would be the one case where this isn’t an issue. Docker isn’t adding iptables rules to do NAT masquerading because there is no IP forwarding being done.

When you tell docker to expose a port you can tell it to bind to loopback and this isn’t an issue.

I always see this argument but I really don’t want anything plugged into anything as important as the USB-C port while the phone is in my pocket.

3.5 plugs are rather short outside of the phone (at least for headphones with 90deg plugs) to minimize leverage that you put on the port. Being able to rotate also means less stress on the port as well.

The USB-C adapters are pretty short, but lack the rotation. I have replaced USB-C ports in dozens of Nintendo Switches and other devices, it is pretty clear they aren’t designed to take much stress.

Long story short if anything happens I would much rather have the 3.5mm pin stuck in a headphone jack than breaking the USB-C port and making it so my phone is a brick.

Do the VPN companies want to make money (credit card payments)?

Then they have to comply with local laws or risk being cut off from payment processors.

There are certainly ways around that (crypto), but a mich smaller percentage of their users will be willing to deal with that.

I don’t use the WebOS app but generally default subtitles/audio languages are set on your profile and the apps pick up those settings.

Try logging in to the web interface and going to your user profile. There is a “Playback” section where you can set your preferred languages. If this isn’t set it likely is taking the default language from your media files instead.

Well the title and most of the article seems to be more about stopping prostitution instead of preventing murder… The article talks a lot about these women being vulnerable but doesn’t really give those women any solutions other than taking away their source of income (which I would think makes them even more vulnerable). It seems like they are using the murder to push a different agenda.

The article even talks about a good number of non-transactional relationships which aren’t against the rules and still sometimes results in women getting assaulted.

Maybe instead of making it against the rules they should make sure it happens somewhere where the soldiers are better monitored. Hopefully then they less likely to assault the women, and it would at the very least be easier to get justice than when a tragedy like that happens. Proving who did it is much more difficult when the victim/perpetrator have to hide their activity in the first place.

Yeah it happened to me yesterday once. Hadn’t opened the app in some time and as soon as I opened it, it was complaining about a 429. It seemed fine the other times I was on the app though.

We are both lenny.world though so it could just be an issue with the instance. Maybe they were fighting off a DDoS and had marked some traffic incorrectly as bots.

+1 to this.

First check that you can get to Jellyfin on your Jellyfin server itself (start with the IP address). This makes sure that the service is running, and that you are trying to access the right port/protocol.

If that works, try the web browser on your phone or any other device on your network next. If that fails it tells you there are firewall or DNS issues.

Infinite scroll occasionally has issues for me on lemmy.world. Seems to always clear up after an hour or two so I have always assumed it is maintenance/issues on the instance side.

Restart the app, logout+login again, and if it still persists after a few hours it is likely a configuration issue with your instance. Maybe make an account on another instance to rule that out.

Laws can easily have exceptions for these things. In China for instance “non approved” VPNs are illegal, but there are plenty of legal VPNs as well.

For instance businesses can get approval for their own VPNs, and regular people can use some free/paid VPNs within the country, but presumably the government can see all of the traffic within those.

My prediction is that this is more about banning VPNs than about age verification. Start with this, then when everyone is “using VPNs to break the law” they have an excuse to ban VPNs.

Governments world wide likely see VPNs as incredibly dangerous. Plenty of examples of countries like Iran cutting off the internet entirely to prevent protests from organizing.

I think they want their own great firewall.

Presumably the cert would be a smart card (similar to credit card chips) protected with a pin. And they can use revocation lists to remove cards that are reported stolen.

There would have to be a serial number at the least but that would change every time your card expired, and the government would certainly know who is issued what serial.

Another downside is users would need smart card or NFS readers to use them. Smart cards have been around for digital identification for decades now, it’s really surprising that more government haven’t pushed their use. From a user perspective though it would be pretty quick that every online service would start requiring them and any online anonymity would erode pretty quickly.

Even with https if you aren’t on TLS 1.3 the SNI (server name indicator) is not encrypted so the hostname you are trying to access would be visible to your ISP.

Forcing your browser to only use TLS1.3 would fix that but who knows how many sites it would break.

Unauthorized VPNs (non government approved) are illegal in China. If a business needs their own they can get approval but they have to apply for those exceptions.

It isn’t really enforced, probably especially so for non citizens, but if you do something they don’t like it is something they could use against you.

You would probably be less breaking the law to just directly open up SSH and access that instead of tunneling through a VPN. Even though SSH can do tunneling of its own.

Connection refused is generally a network level issue meaning that a firewall is rejecting the tcp handshake, or more likely samba is not listening on that IP.

So you are attempting to connect to your samba server and the OS (not Samba) is saying there is no service running on that port so I am refusing your connection request.

So you have one of these problems

• Samba isn’t running in the first place
• Samba is crashing, systemd might be restarting it so if this problem is intermittent this is most likely
• you have firewall issues (you said firewall was off, but are they on the same subnet? Might be other firewalls in your network rejecting the connection?)
• Samba is listening on a different interface. I see you have lo/eth0 in your config most distros don’t use eth0 anymore are you sure that is correct?

Even if those interface names are correct sometimes network managers rename interfaces. So when Samba starts that might be the wrong interface name, but by the time you login it is correct. I would just remove that line and the bind interfaces only line as well unless you specifically need to bind to specific interfaces.

Try connecting to samba from the server itself on 127.0.0.1, which will probably work just fine because lo is probably a correct interface.

You can also look at what interfaces/IP samba is listening on by running one of these commands as root

ss -tlp | grep 445

netstat -nlp | grep 445

A lot of the Qanon stuff was about draining the swamp by arresting all of the pedo Dems.

They were basically told everything they see in the media is a cover for the real plan to catch these people and that there are already all sorts of sealed indictments that they are just waiting to execute at once, etc.

So some of his most rabbid supporters are realizing something is up about denying this even exists.

Yeah it is fairly trivial to check. I called it a SPF record but technically in DNS it is a TXT record. TXT records are just a generic record type used for many different uses.

Here are a few common DNS commands to lookup TXT records:

host -t TXT domainname

nslookup -type=TXT domainname

dig -t TXT domainname

For your barracudanetworks example here we get a few TXT records back but we can see spf.protection.outlook.com is in their list and therefore allowed to send of behalf of the barracudanetworks.com domain. All of the other entries are allowed to send of their behalf too so your email isn’t guaranteed to go through Microsoft.

Judging by the Salesforce/Zendesk stuff they probably have ticketing/customer management systems, which means it might be possible to contact them without going through Microsoft’s email servers. Notifications from those systems would probably be sending email directly to you instead of routing it through Office365.

I suppose that is a concern, but I think those are cloud IPs they move around occasionally and wouldn’t want to make every user update their TXT records.

So for this use case I am pretty sure they would always be DNS names if the admins are following Microsoft’s instructions.

It looks like they have you set your txt record to spf.protection.outlook.com which resolves to a txt record with a bunch of their IPs. So if you really wanted to make sure there weren’t installs with IPs in their list you can use that txt record to get Microsoft’s IP ranges and search for those as well.

You should check for SPF records as well. If they have SPF records (and Microsoft walks them through setting up those records), they would need one for every mail server sending on their behalf.

So it appears that in your case here their MX records pointed at their own MTA that then routes at least some of that email to Microsoft. If they are using SPF records to prevent others from spoofing their email addresses, and if they are allowing Microsoft to send on their behalf there would have to be SPF records with Microsoft’s domains in them.

Still no sure thing but a little more checking that you can do.

Your $1 has absolutely changed in value by 10pm. What do you think inflation is? It might not be enough change for the store to bother changing prices but the value changes constantly.

Watch the foreign exchange markets, your $1 is changing in value compared to every other currency constantly.

The only difference between fiat and crypto is that changing the prices in the store is difficult, and the volume of trade is high enough to reduce volatility in the value of your $. There are plenty of cases of hyperinflation in history where stores have to change prices on a daily basis, meaning that fiat is not immune to volatility.

To prevent that volatility we just have things like the federal reserve, debt limits, federal regulations, etc that are designed to keep you the investor (money holders) happy with keeping that money in dollars instead of assets. The value is somewhat stable as long as the government is solvent.

Crypto doesn’t have those external controls, instead it has internal controls, i.e. mining difficulty. Which from a user perspective is better because it can’t be printed at will by the government.

Long story short fiat is no different than crypto, there is no real tangible value, so value is what people think it is. Unfortunately crypto’s value is driven more by speculative “investors” than by actual trade demand which means it is more volatile. If enough of the world changed to crypto it would just as stable as your $.

Not saying crypto is a good thing just saying that it isn’t any better or worse. It needs daily usage for real trade by a large portion of the population to reduce the volatility, instead of just being used to gamble against the dollar.

Our governments would likely never let that happen though, they can’t give up their ability to print money. It’s far easier to keep getting elected when you print the cash to operate the government, than it is to raise taxes to pay for the things they need.

The absolutely worthless meme coin scams/forks/etc are just scammers and gamblers trying to rip each other off. They just make any sort of useful critical mass of trade less and less plausible because it gives all crypto a bad name. Not that Bitcoin/Ethereum started out any different but now that enough people are using them splitting your user base is just self defeating

When you saw that 20v on the board I assume that was right next to the charge port? There are often fuses that should be very close to that connector that you can check for continuity on. Usually marked with zeros because they act like a zero ohm resistor.

Even if the fuse is blown that might just be a sign that something further down the line failed but it would be an easy thing to check at least.