I am not in the tech field anymore and I use exclusively free models and clis. They are mostly of Chinese origin. I call them my little software sweatshop.
Trust and do what with it though. I trust Chomsky but I can mark his interviews "Don't show" because I'm sick of them. Or like Facebook lets your follow 'friend' but ignore them. So trust and do what with that trust? A network of people who'll let each other move on short notice ? Something like that?
I was using opencode the other day. It took me a while to realize the that the agent couldn't read/write the .env file but didn't realize it. When I pushed it first it was able to create a temp file and copy it over .env AND write and opencode.json file that disables the .env protection and go wild.
Reminds me of the old collect call trick. Rather than state your name when prompted you transmit a short, perhaps even coded, message. Then the receiving party declines the call.
I recall using this occasionally in the 90s even.
There was also a period where I would regularly "one ring" my parents as code to call me back. IIRC that was because my cell plan had unlimited (or at least more) incoming minutes.
Collect calls would have been a thing until cell phones got very common because you had to use pay phones when you were outside and you somehow never had quarters.
Put wireguard on that thing and don't expose anything on your public IP. Better yet don't have a public IP. Just port forward the wireguard IP from your router. That's it. No firewall no nothing. Not even accidental exposure.
> Put wireguard on that thing and don't expose anything on your public IP. Better yet don't have a public IP.
This is nonsense. You can't self-host services meant to interact with the public (such as email, websites, Matrix servers, etc.) without a public IP, preferably one that is fixed.
Of course it is. You get to maintain all the server architecture yourself.
I don't have a need to give people public access but if I did I would set up Authentik and proxy everything through it and hand out usernames to people I want for the whole thing (or per app). You would open only :443 and not worry about a thing.
As a bonus use caddy as forward auth, create a wildcard subdomain (cloudflare dns supports it), configure caddy for wildcard domains for sub-sub domains and dns cert verification via cloudflare token. This way nobody even knows your real domain names. Nothing they can see in DNS or certificate transparency logs. (This is my working theory. I haven't actually researched it too deep but I am doing it.) You add a new app/site in caddy's config and everything else is completely automatic. You can even use dynamic dns with a client or a script that uses the same cloudflare token to update your IP.
As I said above. Don't even need to have a public IP on this machine. Better if you don't in case something like docker or an AI agent accidentally opens a port. (Your router already protects you but I am talking about if this was on a cloud host or an ISP that gives you real IPs for each of your machines)
I tries oh my zsh whil switching to it from fish ("the we don't believe in configuration" shell). I thought it would be great with all the popularity it has but 90 percent of the plug-ins are alias definitions which I certainly won't memorize somebody else's. Just found a few plugins I like for the fish functionality I liked. Spent some time configuring it asking for help on the irc channel for zsh when needed. Great people. Zsh is awesome. No plugin manager for me though. Thanks.
I bought my first real wheel drive car in 2014. Still have it. It's not a race car. About 170hp. It struggles at the smallest curves. Good thing it has traction control and esp. Except all the front wheel cars I had before, one even slightly more powerful and smaller, never needed any of that. Never ever buying a rwd again. (Enthusiast forums of the brand tell me I don't know how to drive RWD. Skill issue. :D)
Rwd is definitely sketchier in certain circumstances, especially going uphill in low traction. Also pretty bad in the snow generally. but I’ve only had issues going around corners when it was very wet and I was driving faster that the speed limit. If you are running into traction issues driving normally (ie not flooring it) I would recommend having your tires and alignment checked, even with RWD that should not be happening in my experience.
Don't mess with Vietnam please. My phone's CSC is set to Vietnam to enable call recording. I love that feature but I don't want to lose my banking apps.
reply