This website is licensed under the - Creative Commons Attribution 4.0 International License - by Aminda Suomalainen. + I am a Highly Sensitive Autistic Pirate with Linux experience since 2008. I am + familiar with git and looking for employment. ⚧︎
This website is licensed under the Creative Commons + Attribution 4.0 International License by Aminda Suomalainen. baseurl: "" # the subpath of your site, e.g. /blog/ # I would like to use www subdomain to not have all cookies passed to top # level, but there seems to be a redirect issue otherwise. diff --git a/blog/_posts/2015-01-10-channels-hostmask-groups-a-basic-howto.md b/blog/_posts/2015-01-10-channels-hostmask-groups-a-basic-howto.md index 202b297..5412994 100644 --- a/blog/_posts/2015-01-10-channels-hostmask-groups-a-basic-howto.md +++ b/blog/_posts/2015-01-10-channels-hostmask-groups-a-basic-howto.md @@ -9,24 +9,24 @@ sitemap: true robots: noai --- -`@Annwenn` got me opering at her network after long pause with my opering. -She also named this blogpost and requested me to write this and I don't -have any better place where to put this, but I am starting with other talk -before getting to the subject. +`@Annwenn` got me opering at her network after long pause with my opering. She +also named this blogpost and requested me to write this and I don't have any +better place where to put this, but I am starting with other talk before getting +to the subject. -It appears that I am not as bad oper as I thought as I was able to identify -and find solutions to multiple issues including server-side aliases not -working, SASL being loaded with services, but not with IRCd, CertFP loaded -with services, but not IRCd, missing oper-only channels (and allowing -everyone to join #services) etc. +It appears that I am not as bad oper as I thought as I was able to identify and +find solutions to multiple issues including server-side aliases not working, +SASL being loaded with services, but not with IRCd, CertFP loaded with services, +but not IRCd, missing oper-only channels (and allowing everyone to join +#services) etc. -The services package is Atheme and IRCd InspIRCd which are the same I would -have picked if I had started running IRC server which I was avoiding -before. The forks of Atheme don't have any stable releases yet and Atheme -is still getting security fixes. +The services package is Atheme and IRCd InspIRCd which are the same I would have +picked if I had started running IRC server which I was avoiding before. The +forks of Atheme don't have any stable releases yet and Atheme is still getting +security fixes. -I am not linking to the network or complete issue list here as I don't want -too much traffic there. +I am not linking to the network or complete issue list here as I don't want too +much traffic there. And now to the subject. @@ -59,12 +59,11 @@ First, register a channel, for example #test. ``` Here $oper adds people who are opered to access list (if EXTTARGET $oper is -enabled) and allows people who have +c in group !test to see the access -list (even with PRIVATE on), invite themselves or see the channel key using -ChanServ and have autovoice on the channel. +enabled) and allows people who have +c in group !test to see the access list +(even with PRIVATE on), invite themselves or see the channel key using ChanServ +and have autovoice on the channel. -4. Set the options and flags of !test.4. Set the options and flags of - !test. +4. Set the options and flags of !test.4. Set the options and flags of !test. ``` /msg groupserv set !test channel #test @@ -72,10 +71,9 @@ ChanServ and have autovoice on the channel. /msg groupserv set !test open on ``` -joinflags +cvi means that when people join the group, they automatically -have +cvi which allows them to have access in channels where !test has -flags, take vhosts which are offered to the group and invite other people -to the group. +joinflags +cvi means that when people join the group, they automatically have ++cvi which allows them to have access in channels where !test has flags, take +vhosts which are offered to the group and invite other people to the group. 5. Offer vhosts to the group (requires you to be oper). @@ -92,5 +90,5 @@ to the group. /hs on ``` -`/hs offerlist` shows which vhosts are offered to you or groups where you -have `+v`. +`/hs offerlist` shows which vhosts are offered to you or groups where you have +`+v`. diff --git a/blog/_posts/2015-01-24-getting_help_with_channel_issues.md b/blog/_posts/2015-01-24-getting_help_with_channel_issues.md index a8f4985..57d8936 100644 --- a/blog/_posts/2015-01-24-getting_help_with_channel_issues.md +++ b/blog/_posts/2015-01-24-getting_help_with_channel_issues.md @@ -1,7 +1,8 @@ --- layout: post comments: true -title: "Getting help from network operators with channel issues when ops are away" +title: + "Getting help from network operators with channel issues when ops are away" category: [english] tags: [irc, english] redirect_from: /english/2015/01/24/getting_help_with_channel_issues.html @@ -9,19 +10,18 @@ sitemap: true robots: noai --- -In case you wish network operators to help you when your channel operators -are away, please authorize them to do so. You can do this simply by -command `/msg ChanServ flags #channel $oper +vhoirtAe`. _Note that this -assumes that your network uses Atheme with exttarget $oper loaded._ +In case you wish network operators to help you when your channel operators are +away, please authorize them to do so. You can do this simply by command +`/msg ChanServ flags #channel $oper +vhoirtAe`. _Note that this assumes that +your network uses Atheme with exttarget $oper loaded._ -If you don't do this and there is trouble on your channel, it can be -assumed that you don't want network operators to intervene and they most -likely take no action. Taking action would also require using operator -privileges such as `/samode` which might not be so nice unless the flags -are set. +If you don't do this and there is trouble on your channel, it can be assumed +that you don't want network operators to intervene and they most likely take no +action. Taking action would also require using operator privileges such as +`/samode` which might not be so nice unless the flags are set. -I repeat that the commnd is `/msg ChanServ flags #channel $oper +vhoirtAe`. -The only thing that must be changed is `#channel`. +I repeat that the commnd is `/msg ChanServ flags #channel $oper +vhoirtAe`. The +only thing that must be changed is `#channel`. ## Explanation of these flags @@ -32,9 +32,8 @@ The only thing that must be changed is `#channel`. - r - allows using kick/kickban/ban/unban commands - t - allows using topic/topicappend commands - A - allows seeing channel access lists and (MemoServ) sendops command - - most of our alerts seem to be coming from opers who are accidentally - using their priviledges and seeing access list of channel they have - no access to. + - most of our alerts seem to be coming from opers who are accidentally using + their priviledges and seeing access list of channel they have no access to. - `
-_Note: templates including F (founder) are not automatically updated even -with the !._ +exactly" so when you do this everyone who you have made xOP with `/msg chanserv +someone xOP" gets opped or voiced automatically.
_Note: templates including +F (founder) are not automatically updated even with the !._ Alternatively if you have been setting flags manually use -`/msg chanserv flags #channel someone +O` to automatically op them. You -must also do this to yourself if you are channel founder, for auto-voicing -use +V. _Note: +o allows you to manually op/deop anyone, +v is the same, -but for voice, so don't confuse the casing._ +`/msg chanserv flags #channel someone +O` to automatically op them. You must +also do this to yourself if you are channel founder, for auto-voicing use +V. +_Note: +o allows you to manually op/deop anyone, +v is the same, but for voice, +so don't confuse the casing._ Changelog: -- Part 1: https://github.com/Mikaela/mikaela.github.io/commits/master/_posts/2015-04-01-keep-the-ops-opped.md -- Part 2: https://github.com/Mikaela/mikaela.github.io/commits/master/blog/_posts/2015-04-01-keep-the-ops-opped.md +- Part 1: + https://github.com/Mikaela/mikaela.github.io/commits/master/_posts/2015-04-01-keep-the-ops-opped.md +- Part 2: + https://github.com/Mikaela/mikaela.github.io/commits/master/blog/_posts/2015-04-01-keep-the-ops-opped.md diff --git a/blog/_posts/2015-04-01-saasta.md b/blog/_posts/2015-04-01-saasta.md index 1b26c5a..599cf81 100644 --- a/blog/_posts/2015-04-01-saasta.md +++ b/blog/_posts/2015-04-01-saasta.md @@ -12,39 +12,37 @@ redirect_from: /finnish/2015/04/01/saasta.html > Minun pitäisi kai myös antaa jonkinlainen mielipide. > -> En pidä kenenkään nimittelystä ja minusta parasta olisi vain puhua -> asioita, mutta aina ovat nämä, jotka eivät kuuntele tai halua ymmärtää ja -> kai tälle sanalle on oma käyttötarkoituksensa, ei ole kovin usein tullut -> käytettyä, mutta luulen että joskus loukkaantuneena olen käyttänyt, -> en muista enempää ja minulla ei muisti ole toiminut viimeaikoina. +> En pidä kenenkään nimittelystä ja minusta parasta olisi vain puhua asioita, +> mutta aina ovat nämä, jotka eivät kuuntele tai halua ymmärtää ja kai tälle +> sanalle on oma käyttötarkoituksensa, ei ole kovin usein tullut käytettyä, +> mutta luulen että joskus loukkaantuneena olen käyttänyt, en muista enempää ja +> minulla ei muisti ole toiminut viimeaikoina. > -> Tietysti voi kai ajatella niinkin, että jos olisin hyökkäävämpi, olisin -> yhä koulussa toisin kuin ihmiset siellä, joita tämä sana mahdollisesti -> kuvaa... Lyhyesti siellä on siis ensimmäisellä kerralla sanottu "moi -> Nimi, olet kaunis", seuraavalla kerralla "moi" ja pilkattu -> maskuliinista ääntäni ja kolmannella kerralla en ole saanut käydä -> vessassa rauhassa vaan nimeäni huudettiin ja kun en kiinnittänyt niihin -> minkäänlaista huomiota ne huusivat perääni onko minulla munat. -> No kouluhan ei luonnollisesti voi tehdä yhtikäs mitään, koska en ole cis, -> enkä neurotyypillinen eli minä olen vain kotona ollut kuukauden ja -> varmaan päivittäin puhunut itsemurhasta. +> Tietysti voi kai ajatella niinkin, että jos olisin hyökkäävämpi, olisin yhä +> koulussa toisin kuin ihmiset siellä, joita tämä sana mahdollisesti kuvaa... +> Lyhyesti siellä on siis ensimmäisellä kerralla sanottu "moi Nimi, olet +> kaunis", seuraavalla kerralla "moi" ja pilkattu maskuliinista ääntäni ja +> kolmannella kerralla en ole saanut käydä vessassa rauhassa vaan nimeäni +> huudettiin ja kun en kiinnittänyt niihin minkäänlaista huomiota ne huusivat +> perääni onko minulla munat. No kouluhan ei luonnollisesti voi tehdä yhtikäs +> mitään, koska en ole cis, enkä neurotyypillinen eli minä olen vain kotona +> ollut kuukauden ja varmaan päivittäin puhunut itsemurhasta. > > Olenhan minä kai myös huono ihminen, koska olen riidoissa kaikkien kanssa -> kaikkialla ja en myöskään ole hyvä transsukupuolinen, koska minä vain -> toivon, että olisin cistyttö ja neurotyypillinen ja, että joku voisi -> joskus rakastaa minua. En tiedä onko ulkona oleminen minulle paras -> vaihtoehto, mutta en voi muutakaan ja ehkä se auttaa jotakuta edes vähän, -> vaikka en koskaan kuulisi koko henkilöstä mitään ja minä yritän tehdä -> minkä voin, vaikka mikään ei onnistukaan ja teen ja sanon kaiken aina -> väärin. +> kaikkialla ja en myöskään ole hyvä transsukupuolinen, koska minä vain toivon, +> että olisin cistyttö ja neurotyypillinen ja, että joku voisi joskus rakastaa +> minua. En tiedä onko ulkona oleminen minulle paras vaihtoehto, mutta en voi +> muutakaan ja ehkä se auttaa jotakuta edes vähän, vaikka en koskaan kuulisi +> koko henkilöstä mitään ja minä yritän tehdä minkä voin, vaikka mikään ei +> onnistukaan ja teen ja sanon kaiken aina väärin. > -> En jaksa tätä sotaa mikä näissä kommenteissa aina on ja jatkuvasti -> jossakin tapetaan trans-henkilö, etenkin trans woman of colour -> (en uskalla kääntää tätä suomeksi) ja joka puolella säädetään erilaisia -> LGBTIQ+ vastaisia lakeja ja nyt on ollut noista vessoista paljon puhetta. -> Tästä asiasta vain ei ole mahdollista saada lepoa. +> En jaksa tätä sotaa mikä näissä kommenteissa aina on ja jatkuvasti jossakin +> tapetaan trans-henkilö, etenkin trans woman of colour (en uskalla kääntää tätä +> suomeksi) ja joka puolella säädetään erilaisia LGBTIQ+ vastaisia lakeja ja nyt +> on ollut noista vessoista paljon puhetta. Tästä asiasta vain ei ole +> mahdollista saada lepoa. > -> (ja onnistuin puhumaan suurimman osan aivan aiheen vierestä, mutta kun -> minä kerran kirjoitin tämän niin kai minun pitää myös lähettää tämä) +> (ja onnistuin puhumaan suurimman osan aivan aiheen vierestä, mutta kun minä +> kerran kirjoitin tämän niin kai minun pitää myös lähettää tämä) -- Facebook-kommentti diff --git a/blog/_posts/2015-04-03-scum.md b/blog/_posts/2015-04-03-scum.md index 582248e..2725122 100644 --- a/blog/_posts/2015-04-03-scum.md +++ b/blog/_posts/2015-04-03-scum.md @@ -12,41 +12,39 @@ redirect_from: /english/2015/04/03/scum.html > I should probably also say some kind of opinion. -> I don't like calling anyone names and I think it would be best to just -> talk about things, but there are always people who don't listen or -> want to understand and maybe this word has it's usage, I haven't used it -> much, but I think that I might have used it sometime when upset, but -> I don't remember more and my memory hasn't worked lately. +> I don't like calling anyone names and I think it would be best to just talk +> about things, but there are always people who don't listen or want to +> understand and maybe this word has it's usage, I haven't used it much, but I +> think that I might have used it sometime when upset, but I don't remember more +> and my memory hasn't worked lately. > -> Of course it can probably be thought that if I was more attacking, -> I might still be at school unlike the people there whom this word -> possibly describes... Shortly, first time they said "hi Name, you are -> beautiful", next time "hi" and mocked my masculine voice and the third -> time I couldn't even use bathroom in peace, my name was shouted and -> when I ignored them and didn't look them at all, they shouted after me -> if I have \
Then there were two people sitting in front of me at the bus, small -child and one adult. The child kept making loud noice for most of the trip -and at some point dropped whatever the thing is on bus seats behind your -head to me and only stared.
-I was too anxious even without them, so I didn't tell the adult anything -and there wouldn't have been any use in that as they didn't care about -their behaviour anyway and it would have been my fault anyway for sitting -there or annoying them just for existing. +And back to today, I had possibly my worst bus trip between Kotka and Helsinki. +First there was bully from previous school and even if they didn't do anything, +just seeing is enough to trigger heavy anxiety to me.
Then there were two +people sitting in front of me at the bus, small child and one adult. The child +kept making loud noice for most of the trip and at some point dropped whatever +the thing is on bus seats behind your head to me and only stared.
I was too +anxious even without them, so I didn't tell the adult anything and there +wouldn't have been any use in that as they didn't care about their behaviour +anyway and it would have been my fault anyway for sitting there or annoying them +just for existing. diff --git a/blog/_posts/2015-05-29-graduation.md b/blog/_posts/2015-05-29-graduation.md index 1e0fdc7..c52cf8e 100644 --- a/blog/_posts/2015-05-29-graduation.md +++ b/blog/_posts/2015-05-29-graduation.md @@ -9,25 +9,23 @@ sitemap: true robots: noai --- -As my blog is so full of suicidality and depression and how I won't -graduate, I probably must inform here that I have graduated according to -YLE News. +As my blog is so full of suicidality and depression and how I won't graduate, I +probably must inform here that I have graduated according to YLE News. - [web.archive.org: Etelä-Kymenlaakson ammattiopisto 2015-05-29](https://web.archive.org/web/20150602001658/http://yle.fi/uutiset/etela-kymenlaakson_ammattiopisto/8023952) - - YLE had apparently changed their URL breaking the old link and when - I was informed of this, I tried to search the current live version, - but was only able to find it from Waybackmachine. + - YLE had apparently changed their URL breaking the old link and when I was + informed of this, I tried to search the current live version, but was only + able to find it from Waybackmachine. - [Google Translated link](https://translate.google.fi/translate?sl=fi&tl=en&js=y&prev=_t&hl=en&ie=UTF-8&u=https%3A%2F%2Fweb.archive.org%2Fweb%2F20150602001658%2Fhttp%3A%2F%2Fyle.fi%2Fuutiset%2Fetela-kymenlaakson_ammattiopisto%2F8023952&edit-text=) - Note that Google Translate changes my name to "Finnish Mikaela" as Suomalainen means a Finn or Finnish or similar. What happens next? Nothing until I am legally recognized as a woman which -currently seems to happen in winter at soonest. As I have told everyone, -I won't be applying anywhere with my current person identification number -as all databases mark me as a man and I don't want to have weird situations -like I currently have e.g. student information system separates by gender -and puts Mikaela Suomalainen in the middle of men which raises questions… +currently seems to happen in winter at soonest. As I have told everyone, I won't +be applying anywhere with my current person identification number as all +databases mark me as a man and I don't want to have weird situations like I +currently have e.g. student information system separates by gender and puts +Mikaela Suomalainen in the middle of men which raises questions… -What is said in previous posts still applies, I am not moving outdoors -unless I have to which means visit to Helsinki where I am able to move more -freely. +What is said in previous posts still applies, I am not moving outdoors unless I +have to which means visit to Helsinki where I am able to move more freely. diff --git a/blog/_posts/2015-05-31-weechat-filter.md b/blog/_posts/2015-05-31-weechat-filter.md index a5b6dcb..8c6b8a1 100644 --- a/blog/_posts/2015-05-31-weechat-filter.md +++ b/blog/_posts/2015-05-31-weechat-filter.md @@ -11,43 +11,41 @@ redirect_from: robots: noai --- -_Everyone knows the `/ignore` command, but there is also `/filter` which -I feel is superiour._ +_Everyone knows the `/ignore` command, but there is also `/filter` which I feel +is superiour._ First, how do they differ? -- Ignore removes all lines from the person you are ignoring permanently and - they aren't logged or anything. -- Filter only hides the messages from the person and is very customizable, - but I am only describing my ignoring here. They are still logged and - by toggling filters they become visible. +- Ignore removes all lines from the person you are ignoring permanently and they + aren't logged or anything. +- Filter only hides the messages from the person and is very customizable, but I + am only describing my ignoring here. They are still logged and by toggling + filters they become visible. And how do you use it? - `/filter add FILTERNAME * nick_*NICKHERE* *` - - FILTERNAME is the name how you recognize the filter, I usually put - the nick there. - - The first `*` is buffer where the filter is used in and means simply - "all buffers". - - `nick_*NICKHERE*` means that you want to filter lines from - `*NICKHERE*`, the asterisks are important as it makes sure that the - user doesn't change their nick to `NICKHERE_` who again wouldn't be - filtered. - - And the last `*`, what do you want to filter from that nick? - Everything. + - FILTERNAME is the name how you recognize the filter, I usually put the nick + there. + - The first `*` is buffer where the filter is used in and means simply "all + buffers". + - `nick_*NICKHERE*` means that you want to filter lines from `*NICKHERE*`, the + asterisks are important as it makes sure that the user doesn't change their + nick to `NICKHERE_` who again wouldn't be filtered. + - And the last `*`, what do you want to filter from that nick? Everything. -But doesn't this defeat the whole point of ignoring? That depends on you -and do you think you will ever need the ignored content. +But doesn't this defeat the whole point of ignoring? That depends on you and do +you think you will ever need the ignored content. One good example where you might want to have the content is when you are -channel op and someone on your ignore list joins the channel and someone -else alerts ops. +channel op and someone on your ignore list joins the channel and someone else +alerts ops. -With ignore you see nothing, with filter you just toggle your filters and -see that someone who you had filtered joined on the channel and did -something against the channel rules and you can easily take action. +With ignore you see nothing, with filter you just toggle your filters and see +that someone who you had filtered joined on the channel and did something +against the channel rules and you can easily take action. -Further reading, check `/help filter`, you will enjoy at least -the smart filter, `/filter add irc_smart * irc_smart_filter *` (hides -joins/quits/parts/etc. unless the person has talked in X minutes configured -in `/help irc.look.smart_filter_delay`). +Further reading, check `/help filter`, you will enjoy at least the smart filter, +`/filter add irc_smart * irc_smart_filter *` (hides joins/quits/parts/etc. +unless the person has talked in X minutes configured in +`/help irc.look.smart_filter_delay`). diff --git a/blog/_posts/2015-06-03-setting-umodes.md b/blog/_posts/2015-06-03-setting-umodes.md index 39831ce..a885e7c 100644 --- a/blog/_posts/2015-06-03-setting-umodes.md +++ b/blog/_posts/2015-06-03-setting-umodes.md @@ -9,20 +9,18 @@ sitemap: true robots: noai --- -_As I have written more about umodes than I thought, I am breaking the -posts setting/unsetting is documented here and I will link here from other -posts._ +_As I have written more about umodes than I thought, I am breaking the posts +setting/unsetting is documented here and I will link here from other posts._ -Simply use `/umode +mo-des` or if that is unknown command (as it's alias -in most of clients), use `/mode YOURNICK +mo-des` and you set umodes "mo" -and unset "des". _These might not be real umodes and they are here just as -an example._ +Simply use `/umode +mo-des` or if that is unknown command (as it's alias in most +of clients), use `/mode YOURNICK +mo-des` and you set umodes "mo" and unset +"des". _These might not be real umodes and they are here just as an example._ ## Automatic umodes -Umodes aren't remembered across connections so you must configure your -client to (un)set them automatically. **Your umodes won't be change this -way until you reconnect!** +Umodes aren't remembered across connections so you must configure your client to +(un)set them automatically. **Your umodes won't be change this way until you +reconnect!** _These examples use the umodes that I am using at the time of writing._ @@ -31,36 +29,37 @@ _These examples use the umodes that I am using at the time of writing._ - WeeChat - Old way: `/set irc.server_default.command /mode $nick -iI+wRQxg` - Modern way (1.7+): `/set irc.server_default.usermode -iI+wRQxg` - - _For setting umodes only for one network instead of them all - replace server_default with server.name, e.g._ + - _For setting umodes only for one network instead of them all replace + server_default with server.name, e.g._ - `/set irc.server.liberachat.usermode -iI+wRQxg` - ZNC: - Traditional way: `/msg *status loadmod perform` and `/msg *perform add mode %nick% -iI+wRQxg` - - The same can also be done in webadmin and if you load perform for - user level, adding the command `mode %nick% -iI+wRQxg` will set - umode -iI+wrqXG on all networks. - - The modes will apply to all networks if you load it on user - level or only the invidual network on network level. + - The same can also be done in webadmin and if you load perform for user + level, adding the command `mode %nick% -iI+wRQxg` will set umode -iI+wrqXG + on all networks. + - The modes will apply to all networks if you load it on user level or only + the invidual network on network level. - Modern way: [ZNC issue #1221](https://github.com/znc/znc/issues/1221) ### And what these umodes mean -This list is what I want the umodes to mean when I set them automatically. -For what the actual umodes are on your network, try `/quote help umode` or +This list is what I want the umodes to mean when I set them automatically. For +what the actual umodes are on your network, try `/quote help umode` or `/quote help umodes`. -- i — invisible, hides your channel list from whois with ircd-seven and - possibly some other ircds. Also hides you from /who of people who don't - share channels with you. [See also why I unset it here.]({% post_url blog/2015-03-26-umode--i %}) -- I — On InspIRCd with [hidechans] module hides your channel list from - whois. -- w — receive wallops, less-important announcements from network operators - that are only received by those who are curious and have umode +w. More - important announcements are usually global notices. -- R — block PMs from unidentified users (who tend to be spambots and if - they aren't, they can identify to services). +- i — invisible, hides your channel list from whois with ircd-seven and possibly + some other ircds. Also hides you from /who of people who don't share channels + with you. [See also why I unset + it here.]({% post_url blog/2015-03-26-umode--i %}) +- I — On InspIRCd with [hidechans] module hides your channel list from whois. +- w — receive wallops, less-important announcements from network operators that + are only received by those who are curious and have umode +w. More important + announcements are usually global notices. +- R — block PMs from unidentified users (who tend to be spambots and if they + aren't, they can identify to services). - Q — block channel redirects on Charybdis (mode +f or banforward). -- x — activates IRCd based uncloaking even if it's [not that reliable.](https://gist.github.com/maxteufel/1e2cf7ada079c271bd3c) +- x — activates IRCd based uncloaking even if it's + [not that reliable.](https://gist.github.com/maxteufel/1e2cf7ada079c271bd3c) - g — caller-id, people must be `/accepted` or PMed before they can PM you. - t — only users using SSL can PM. diff --git a/blog/_posts/2015-06-08-private_secret_channels.md b/blog/_posts/2015-06-08-private_secret_channels.md index 614eeb8..8d17aba 100644 --- a/blog/_posts/2015-06-08-private_secret_channels.md +++ b/blog/_posts/2015-06-08-private_secret_channels.md @@ -9,27 +9,27 @@ sitemap: true robots: noai --- -_People often wonder about this and I thought that I could probably write -about this, how do you make IRC channel secret/private, either hiding it -from other people or not letting others in._ +_People often wonder about this and I thought that I could probably write about +this, how do you make IRC channel secret/private, either hiding it from other +people or not letting others in._ _Modes spbiI are standard and should be the same on all IRCds. I am also assuming that your network uses Atheme IRC Services or fork of it._ -To make channel secret, there are two useful modes. You might also want to -mlock them with `/msg chanserv help set mlock`. +To make channel secret, there are two useful modes. You might also want to mlock +them with `/msg chanserv help set mlock`. -- +s — hides the channel from all channel lists (for non-opers) - -i). Keep in mind that you always see channels that you are on or share - with other people in whois. +p also prevents `/knock` (which is command - to request invite to the channel) on some IRCds. +- +s — hides the channel from all channel lists (for non-opers) -i). Keep in + mind that you always see channels that you are on or share with other people + in whois. +p also prevents `/knock` (which is command to request invite to the + channel) on some IRCds. Other nice modes that you may be interested in are: - +b — (ban) depnding on does your network support extbans, try `/quote help extban`. -- +r — on Charybdis prevents unidentified users from joining the channel, - you will want this with RESTRICTED. +- +r — on Charybdis prevents unidentified users from joining the channel, you + will want this with RESTRICTED. - InspIRCd uses +R - - S — on Charybdis prevents users not using SSL/TLS from joining. - InspIRCd uses +z @@ -37,43 +37,43 @@ Other nice modes that you may be interested in are: And to make channel private, there are two ways, mode +i/+I and ChanServ RESTRICTED (auto-kban unauthorized users). -With RESTRICTED you will want to prevent unidentified users from joining -or you will get people attempting to join while unidentified and then -banned immediately and unable to join after identifying. +With RESTRICTED you will want to prevent unidentified users from joining or you +will get people attempting to join while unidentified and then banned +immediately and unable to join after identifying. To use it, -1. Give people who are supposed to be on the channel flags, I use +ViA - which means auto-**Voice**, **i**nvite oneself and can see **A**ccess - lists, you don't have to use these, but these are probably the most - safe flags and the users must have at least one account to not be - kbanned. `/msg ChanServ flags #channel account +ViA` +1. Give people who are supposed to be on the channel flags, I use +ViA which + means auto-**Voice**, **i**nvite oneself and can see **A**ccess lists, you + don't have to use these, but these are probably the most safe flags and the + users must have at least one account to not be kbanned. + `/msg ChanServ flags #channel account +ViA` 2. `/msg ChanServ set #channel restricted on` 3. You are ready, but you might also want to `/msg ChanServ set #channel private on`, so people cannot use - `/msg chanserv access #channel list` to see who are the secret people - you let in (and who aren't on the channel between auto-kban). + `/msg chanserv access #channel list` to see who are the secret people you let + in (and who aren't on the channel between auto-kban). -And last, mode +i and +I which are the oldest way to do this, but also the -most difficult. +And last, mode +i and +I which are the oldest way to do this, but also the most +difficult. -First you set the mode +i and now everyone must be `/invite`d to the -channel or they cannot join. Then you set +I like you would set a ban -(read the `/quote help extban), here I assume you use Charybdis. +First you set the mode +i and now everyone must be `/invite`d to the channel or +they cannot join. Then you set +I like you would set a ban (read the `/quote +help extban), here I assume you use Charybdis. -To allow user with account `friend` you would `/mode +I $a:friend` and -they are able to join freely without needing to be `/invite`d every time. +To allow user with account `friend` you would `/mode +I $a:friend` and they are +able to join freely without needing to be `/invite`d every time. -You might also find the modes `+g` (Charybdis) and `+A` (InspIRCd) helpful -as they allow everyone to use the `/invite` command. +You might also find the modes `+g` (Charybdis) and `+A` (InspIRCd) helpful as +they allow everyone to use the `/invite` command. I said that +iI is difficult and I must probably explain why it's so. -- It doesn't use services and the lists get emptied always when the channel - gets empty. -- It's tied to whatever you give it, if you give it hostmask and that - changes, the person cannot get in anymore. Also if you gave it extban - matching to accountname and the person changes accountname, they are - again unable to join until the +I is updated. -- _These were the reasons that came to mind at first, if you have others, - feel free to suggest them._ +- It doesn't use services and the lists get emptied always when the channel gets + empty. +- It's tied to whatever you give it, if you give it hostmask and that changes, + the person cannot get in anymore. Also if you gave it extban matching to + accountname and the person changes accountname, they are again unable to join + until the +I is updated. +- _These were the reasons that came to mind at first, if you have others, feel + free to suggest them._ diff --git a/blog/_posts/2015-06-12-ufw.md b/blog/_posts/2015-06-12-ufw.md index 424fbc1..860d26b 100644 --- a/blog/_posts/2015-06-12-ufw.md +++ b/blog/_posts/2015-06-12-ufw.md @@ -10,28 +10,26 @@ redirect_from: robots: noai --- -_This post describes my UFW config and is here so I find it from somewhere -and with hope that I am told if someone notices something terriby insecure -here and is able to offer suggestions. This probably will never be -perfect._ +_This post describes my UFW config and is here so I find it from somewhere and +with hope that I am told if someone notices something terriby insecure here and +is able to offer suggestions. This probably will never be perfect._ -Having firewall is important as you aren't always in your trusted home -network (that can also be broken into especially if you have WLAN) and -with IPv6 your devices have public IPv6 addresses. Theoretically your -router should include a firewall, but at least the Huawei mobile broadband -routers or MiFis don't include one (and I might be annoyed by it enough -to disable it anyway and configure everything on host level if it was -my network). +Having firewall is important as you aren't always in your trusted home network +(that can also be broken into especially if you have WLAN) and with IPv6 your +devices have public IPv6 addresses. Theoretically your router should include a +firewall, but at least the Huawei mobile broadband routers or MiFis don't +include one (and I might be annoyed by it enough to disable it anyway and +configure everything on host level if it was my network). -_Threat model: service I am not aware of or that I accidentally make -listen wider than intended, with UFW I am aware of what ports are -allowed. I assume any mobile host is going to move randomly and while -some whitelists (especially link-local and IPv4 LANs) will overlap and -possibly allow access, it's still better than being open to the internet -and overlay networks that I have interacted with recently._ +_Threat model: service I am not aware of or that I accidentally make listen +wider than intended, with UFW I am aware of what ports are allowed. I assume any +mobile host is going to move randomly and while some whitelists (especially +link-local and IPv4 LANs) will overlap and possibly allow access, it's still +better than being open to the internet and overlay networks that I have +interacted with recently._ -This post first has list of commands, then explanations that won't be -repeated with IPvX ranges. +This post first has list of commands, then explanations that won't be repeated +with IPvX ranges. Fedora/firewalld? [n/firewalld](/n/firewalld) @@ -55,19 +53,20 @@ ufw allow 60000:61000/udp ``` - 22 TCP/ssh — Allow acces to SSHd you don't want to lock yourself out. - - previously I used `ufw limit` but it seems to be too oversensitive, - just use SSHGuard. + - previously I used `ufw limit` but it seems to be too oversensitive, just use + SSHGuard. - Deny incoming connections unless the port has been whitelisted. -- Allow all outgoing connections, keeping list of authorized ports would - be too much for me. -- Start ufw on boot and now (I am not sure if this step is required, but - better safe than sorry). +- Allow all outgoing connections, keeping list of authorized ports would be too + much for me. +- Start ufw on boot and now (I am not sure if this step is required, but better + safe than sorry). - Put the firewall in force. -- 113 TCP/ident — Tell "Connection refused" to whoever tries to reach port 113. This makes ident checking IRC servers connect faster as they don't - have to timeout. If you run shell server (for IRC purpouses) you should - allow this instead. And if you don't use IRC or don't care about having - to wait for the check to timeout, don't do this as you may leave - yourself visible to random port scanners. +- 113 TCP/ident — Tell "Connection refused" to whoever tries to reach port 113. + This makes ident checking IRC servers connect faster as they don't have to + timeout. If you run shell server (for IRC purpouses) you should allow this + instead. And if you don't use IRC or don't care about having to wait for the + check to timeout, don't do this as you may leave yourself visible to random + port scanners. - 123 UDP/NTP - syncing time between local hosts - 631 both/cups — Allow access to cups for printer sharing from 192.168.8.xxx - fe80:://10 is link-local address existing _everywhere_ IPv6 is enabled, @@ -75,18 +74,19 @@ ufw allow 60000:61000/udp - 5353 UDP/mdns/Avahi — used for `.local` addresses. - 5900 — VNC port at least for `krfb kdrc` (KDE Remote Desktop server & client). I tend to only allow it from specific Yggdrasil address(es). -- 6771/udp — [Bittorrent Local Peer Discovery](http://bittorrent.org/beps/bep_0014.html) -- 9001/udp — [Yggdrasil](https://yggdrasil-network.github.io/) automatic - peering port only on link-local. -- 60000:61000 UDP/mosh — I feel this is the most insecure part of this - setup and there should be something bettter instead of this. As - something evil could run and listen on these ports. +- 6771/udp — + [Bittorrent Local Peer Discovery](http://bittorrent.org/beps/bep_0014.html) +- 9001/udp — [Yggdrasil](https://yggdrasil-network.github.io/) automatic peering + port only on link-local. +- 60000:61000 UDP/mosh — I feel this is the most insecure part of this setup and + there should be something bettter instead of this. As something evil could run + and listen on these ports. -_If some host doesn't run some of the mentioned service, it's not open in -the firewall._ +_If some host doesn't run some of the mentioned service, it's not open in the +firewall._ -KDE Connect which seems painful enough to list separately and doesn't seem -to work IPv6-only or I am too impatient. +KDE Connect which seems painful enough to list separately and doesn't seem to +work IPv6-only or I am too impatient. ```bash #ufw allow from 192.168.8.0/24 to any port 1714:1764 proto tcp @@ -104,11 +104,13 @@ ufw route allow in on enp3s0 out on wlp2s0 ufw route allow in on wlp2s0 out on enp3s0 ``` -I am not sure if both rules are required, enp3s0 is the ethernet interface -and wlp2s0 the wireless one. I think it would make sense for only the first -to be required. +I am not sure if both rules are required, enp3s0 is the ethernet interface and +wlp2s0 the wireless one. I think it would make sense for only the first to be +required. --- -Last updated: 2020-10-26 | [GitHub changelog](https://github.com/Mikaela/mikaela.github.io/commits/master/_posts/2015-06-12-ufw.md) | +Last updated: 2020-10-26 | +[GitHub changelog](https://github.com/Mikaela/mikaela.github.io/commits/master/_posts/2015-06-12-ufw.md) +| [Blesmrt Gitea changelog](https://gitea.blesmrt.net/mikaela/mikaela-info/commits/branch/master/_posts/2015-06-12-ufw.md) diff --git a/blog/_posts/2015-06-16-feelings.md b/blog/_posts/2015-06-16-feelings.md index ea73c90..7e3d36d 100644 --- a/blog/_posts/2015-06-16-feelings.md +++ b/blog/_posts/2015-06-16-feelings.md @@ -9,88 +9,82 @@ sitemap: true robots: noai --- -_If you wanted to know about my current life situation, read something else -as I have no life and this posts talks only about the haunting past._ +_If you wanted to know about my current life situation, read something else as I +have no life and this posts talks only about the haunting past._ -Everyone probably knows that I haven't had very positive experience with -any school, but now I try to bring some events to light from maybe -seven years ago. +Everyone probably knows that I haven't had very positive experience with any +school, but now I try to bring some events to light from maybe seven years ago. There are three event that haunt me the most: -- _I am just being at break like I am always, alone and without friends - and I hear one of the bullies talking about me, "that jack pisses me off - so much, always walking around in kuoma boots and his face is like ass - of prey bird." After that I remember being in physics or chemitry lesson - and crying and trying to get attention of teacher by writing everything - very slowly, but failing and the only thing that happened was my - handwriting looking better._ -- _I don't remember the situation, I think it was a break, but someone from - the same class said "I know why … is so weird, his grandfathers have had - sex with monkeys._ -- _I don't remember where it began, but one group of bullies took the habit - of calling me as "ubitch". I don't know where they took that word as - even I didn't know about being trans (Asperger's diagnose would also - come later), but they had issue when I smiled, so I learned to not smile - and that is still causing me issues to this day includin difficulties in - voice training and potential [AvPD](https://en.m.wikipedia.org/wiki/Avoidant_personality_disorder). - The same group also did worse things that I don't want to talk about._ +- _I am just being at break like I am always, alone and without friends and I + hear one of the bullies talking about me, "that jack pisses me off so much, + always walking around in kuoma boots and his face is like ass of prey bird." + After that I remember being in physics or chemitry lesson and crying and + trying to get attention of teacher by writing everything very slowly, but + failing and the only thing that happened was my handwriting looking better._ +- _I don't remember the situation, I think it was a break, but someone from the + same class said "I know why … is so weird, his grandfathers have had sex with + monkeys._ +- _I don't remember where it began, but one group of bullies took the habit of + calling me as "ubitch". I don't know where they took that word as even I + didn't know about being trans (Asperger's diagnose would also come later), but + they had issue when I smiled, so I learned to not smile and that is still + causing me issues to this day includin difficulties in voice training and + potential + [AvPD](https://en.m.wikipedia.org/wiki/Avoidant_personality_disorder). The + same group also did worse things that I don't want to talk about._ -What was done? Different appointments with different people, including -school social worker who quite directly said "there is no bullying in our -school, you are scizhophrenic" (don't mind that school social workers -aren't able to write dignosis) and psychologist who surprised me and my -mother by knowing everything about my childhood and "just had to start from -something (Asperger's syndrome). +What was done? Different appointments with different people, including school +social worker who quite directly said "there is no bullying in our school, you +are scizhophrenic" (don't mind that school social workers aren't able to write +dignosis) and psychologist who surprised me and my mother by knowing everything +about my childhood and "just had to start from something (Asperger's syndrome). -I ended up ending that school half year before it would have been over and -at some point starting my long visits to psychiatrical hospital (which is -horrible if you happen to be neuroatypial and part of -Gender/Romantic/Sexual Minority or multiple of those, but that is for -another post). +I ended up ending that school half year before it would have been over and at +some point starting my long visits to psychiatrical hospital (which is horrible +if you happen to be neuroatypial and part of Gender/Romantic/Sexual Minority or +multiple of those, but that is for another post). -There were also other issues that I remember, but I don't feel the same -level of pain. +There were also other issues that I remember, but I don't feel the same level of +pain. -- _One person never talked to me and had some issue with me and always got - what they wanted ("I don't want to work with that"). Not that I wanted - to work with them, but it would have been nice if anyone thought about - asking my opinion._ -- _On home economics lesson, I don't remember what was talked about, but - I said for some reason that I like tuna over rye crisps and got response - that it's "so poor" and it's unclear to this day what does price of food - have to do with how does it taste._ +- _One person never talked to me and had some issue with me and always got what + they wanted ("I don't want to work with that"). Not that I wanted to work with + them, but it would have been nice if anyone thought about asking my opinion._ +- _On home economics lesson, I don't remember what was talked about, but I said + for some reason that I like tuna over rye crisps and got response that it's + "so poor" and it's unclear to this day what does price of food have to do with + how does it taste._ - _There was … Suomalainen fanclub at Facebook and it was also reported to - police, but no action was took as there was nothing offensive there. In - the end offensive content got there, but it was removed in agreement - when anti-bullying FB page with name "bully name bunny club" was - removed._ - - _I was also friends at some point with the person depending on how - much friendship it is to perform Windows repair install and as - reward get told that we couldn't be friends at school as their - reputation would suffer. More bullying came..._ -- There was also a lot more that happened there, but I would probably write - this forever if I wrote about everything and the things that are always - on surface are already written. + police, but no action was took as there was nothing offensive there. In the + end offensive content got there, but it was removed in agreement when + anti-bullying FB page with name "bully name bunny club" was removed._ + - _I was also friends at some point with the person depending on how much + friendship it is to perform Windows repair install and as reward get told + that we couldn't be friends at school as their reputation would suffer. More + bullying came..._ +- There was also a lot more that happened there, but I would probably write this + forever if I wrote about everything and the things that are always on surface + are already written. -and as this is titled feelings, I should probably write about those too, -not that there was anything new. +and as this is titled feelings, I should probably write about those too, not +that there was anything new. - I seem to be always anxious, especially if anyone wants me to go outdoors - alone and I am afraid of seeing someone from any school even if they - didn't recognize me or did nothing, I have already seen people from there - twice with both times mentally locking me down. -- I am just horrible person, everyone hates me and no one is honest in any - good thing they say to/about me. -- I am just bothering everyone by being present in same space whether - physical or online. -- Most of time I feel I have no friends anywhere even if there are - otherwise some IRC or IRL, it's just difficult for me to make/maintain - friendships, but me being horrible person is nothing new anyway. -- I wish that I had a partner, but it's impossible as I am just horrible - person and autist (in bad way) and asexual (while most of rest of the - world wants only sex) and trans (which is probably the worse as that - translates to "has or has had a penis" and makes everyone misinterpred me - as being male or being unable to think me as a girl). I don't sleep - propery at nights thinking these things and I just cannot get out and - as said Kymenlaakso is unable to help. + alone and I am afraid of seeing someone from any school even if they didn't + recognize me or did nothing, I have already seen people from there twice with + both times mentally locking me down. +- I am just horrible person, everyone hates me and no one is honest in any good + thing they say to/about me. +- I am just bothering everyone by being present in same space whether physical + or online. +- Most of time I feel I have no friends anywhere even if there are otherwise + some IRC or IRL, it's just difficult for me to make/maintain friendships, but + me being horrible person is nothing new anyway. +- I wish that I had a partner, but it's impossible as I am just horrible person + and autist (in bad way) and asexual (while most of rest of the world wants + only sex) and trans (which is probably the worse as that translates to "has or + has had a penis" and makes everyone misinterpred me as being male or being + unable to think me as a girl). I don't sleep propery at nights thinking these + things and I just cannot get out and as said Kymenlaakso is unable to help. diff --git a/blog/_posts/2015-06-22-ipv6.md b/blog/_posts/2015-06-22-ipv6.md index a701555..0bf6ae6 100644 --- a/blog/_posts/2015-06-22-ipv6.md +++ b/blog/_posts/2015-06-22-ipv6.md @@ -12,10 +12,11 @@ lang: en robots: noai --- -_There appears to be a lot of confusion on IPv6 and in this post I try to -clear it a little._ +_There appears to be a lot of confusion on IPv6 and in this post I try to clear +it a little._ -I am writing this post, because [TorrentFreak wrote about buggy µTorrent and suggests disabling IPv6 because of it.](https://torrentfreak.com/popular-torrents-being-sabotaged-by-ipv6-peer-flood-150619/) +I am writing this post, because +[TorrentFreak wrote about buggy µTorrent and suggests disabling IPv6 because of it.](https://torrentfreak.com/popular-torrents-being-sabotaged-by-ipv6-peer-flood-150619/) The comments of that post are also totally lost. @@ -41,17 +42,16 @@ The comments of that post are also totally lost. ## IPv4 It's probably best to start with what is wrong with IPv4 and note that all -modern operating systems (including Windows Vista and newer) are designed -to work with IPv6 and disabling it may break some features. +modern operating systems (including Windows Vista and newer) are designed to +work with IPv6 and disabling it may break some features. -There are no IPv4 addresses for everyone and that is why we have NATs in -routers so we only have one IPv4 address facing the internet. That isn't -enough either so ISPs started having their own NATs too known as CGN -(Carrier Grade NAT) putting _a lot_ of customers behind single IPv4 -address. +There are no IPv4 addresses for everyone and that is why we have NATs in routers +so we only have one IPv4 address facing the internet. That isn't enough either +so ISPs started having their own NATs too known as CGN (Carrier Grade NAT) +putting _a lot_ of customers behind single IPv4 address. -This means that if someone on the same ISP abused your favourite service -X\*, all users behind that IPv4 address get banned. +This means that if someone on the same ISP abused your favourite service X\*, +all users behind that IPv4 address get banned. \*X = Wikipedia, your favourite forum or IRC network or whatever. @@ -60,59 +60,57 @@ connecting from single address and it can also increase latencies). ## IPv6 -IPv6, again, is next version of the Internet Protocol and has enough -addresses for all your devices and you don't need NAT anymore so you don't -have to do port forwards (which didn't help you behind CGN anyway) anymore. +IPv6, again, is next version of the Internet Protocol and has enough addresses +for all your devices and you don't need NAT anymore so you don't have to do port +forwards (which didn't help you behind CGN anyway) anymore. People have weird worries with it and many misunderstandings on privacy concerns. ### EUI-64-addresses -EUI-64-addresses are based on your MAC-address and a lot of people seem to -be worried about how they can be used for spying on you as you go through -different networks (phone, laptop). +EUI-64-addresses are based on your MAC-address and a lot of people seem to be +worried about how they can be used for spying on you as you go through different +networks (phone, laptop). -This is an unrequired concern though as IPv6 privacy extensions should -exist with all IPv6 capable systems (again including Windows which seems -to be what people worry about the most). The privacy extensions generate -a random IPv6 address which has no MAC-address and is changed over time. +This is an unrequired concern though as IPv6 privacy extensions should exist +with all IPv6 capable systems (again including Windows which seems to be what +people worry about the most). The privacy extensions generate a random IPv6 +address which has no MAC-address and is changed over time. -Arch Linux and Ubuntu MATE (and other Linux distributions?) seem to change -it every 24 hours (controlled by `net.ipv6.conf.default.temp_prefered_lft`) -and I believe it also gets changed by reconnecting to network or rebooting -the system. +Arch Linux and Ubuntu MATE (and other Linux distributions?) seem to change it +every 24 hours (controlled by `net.ipv6.conf.default.temp_prefered_lft`) and I +believe it also gets changed by reconnecting to network or rebooting the system. On your IPv6-enabled system you should see three addresses: - EUI-64-address where you see your MAC-address clearly, it just exists and - isn't used in outgoing connections so no one knows it unless you decide - to tell them. + isn't used in outgoing connections so no one knows it unless you decide to + tell them. - Privacy (extensions) address which is random and used for all outgoing - connections and it changes every few hours. You might see multiple of - these as the old privacy addresses are still kept for some time, but no - outgoing connections is made with them. + connections and it changes every few hours. You might see multiple of these as + the old privacy addresses are still kept for some time, but no outgoing + connections is made with them. - Link-local address you see even without global IPv6 connectivity as every - IPv6-supporting system generates them automatically. They start with - `fe80` and only work in your LAN. It also has your MAC-address visible. + IPv6-supporting system generates them automatically. They start with `fe80` + and only work in your LAN. It also has your MAC-address visible. -If you are still worried about the MAC-address being visible, you can -easily confirm that no one sees it by going to -[ipv6-test.com](https://ipv6-test.com), looking at "IPv6 connectivity" and -check the test that says "SLAAC". If it says "No" your EUI-64-address -is not used, if it says "Yes" they are used and it should never say "Yes". -You will probably understand that it's not supposed to say "Yes" as getting -"Yes" in that test decreases your score. +If you are still worried about the MAC-address being visible, you can easily +confirm that no one sees it by going to [ipv6-test.com](https://ipv6-test.com), +looking at "IPv6 connectivity" and check the test that says "SLAAC". If it says +"No" your EUI-64-address is not used, if it says "Yes" they are used and it +should never say "Yes". You will probably understand that it's not supposed to +say "Yes" as getting "Yes" in that test decreases your score. #### Windows IPv6 address randomization Windows which you shouldn't worry about makes you worry even less by being -annoying and randomizing all addresses (even if there is no need because -you have IPv6 privacy extensions) and this probably causes you a headache -if you are running Windows Server or dual-booting with some other OS. +annoying and randomizing all addresses (even if there is no need because you +have IPv6 privacy extensions) and this probably causes you a headache if you are +running Windows Server or dual-booting with some other OS. -When you dual-boot, you might wonder why even the EUI-64-address is -different on Windows and Linux/OS X/whatever. +When you dual-boot, you might wonder why even the EUI-64-address is different on +Windows and Linux/OS X/whatever. This is easy to fix though, open cmd.exe or PowerShell as admin and run: @@ -123,14 +121,13 @@ netsh interface ipv6 set global randomizeidentifiers=disabled store=persistent ##### Disabling privacy extensions -**YOU DON'T WANT TO DO THIS UNLESS YOUR PC IS A SERVER AND WON'T EVER BE -MOVED ANYWHERE. BY DOING THIS THE EUI-64-ADDRESS GETS USED AND EVERYONE -DOES SEE YOUR MAC-ADDRESS.** +**YOU DON'T WANT TO DO THIS UNLESS YOUR PC IS A SERVER AND WON'T EVER BE MOVED +ANYWHERE. BY DOING THIS THE EUI-64-ADDRESS GETS USED AND EVERYONE DOES SEE YOUR +MAC-ADDRESS.** -As I am talking so much about privacy extensions, I must probably tell -that you can disable them if you want. I have no idea if that is possible -with OS X so I don't say anything about it, I only know that it uses them -by default. +As I am talking so much about privacy extensions, I must probably tell that you +can disable them if you want. I have no idea if that is possible with OS X so I +don't say anything about it, I only know that it uses them by default. Windows: start by disabling the randomization and then @@ -139,18 +136,16 @@ netsh interface ipv6 set privacy state=disabled store=active netsh interface ipv6 set privacy state=disabled store=persistent ``` -Linux: check NetworkManager connection editor (or config files of whatever -you use) or use the kernel option directly in `/etc/sysctl.conf` or -preferably `/etc/sysctl.d/
- Posts in English here & - suomeksi täällä. + Posts + in English here + & + suomeksi täällä.
diff --git a/index.html b/index.html
index e6d71e7..d2a2127 100644
--- a/index.html
+++ b/index.html
@@ -1,16 +1,26 @@
---
layout: index
title: Index
-excerpt: "I am a Highly Sensitive Autistic Pirate with Linux experience since 2008. I am familiar with git and looking for employment."
+excerpt:
+ "I am a Highly Sensitive Autistic Pirate with Linux experience since 2008. I
+ am familiar with git and looking for employment."
robots: noai, nofollow
---
SOME:
gitea.blesmrt.net
- bsky
GitHub.com
- GitLab.com
- git.com.de (GitLab.com
+ git.com.de (🧅︎Keyoxide
- LiberaPay.com
- LiberaPay.com
+ LinkedIn.com
- git.piraattipuolue.fi
sauna.social
-
+
SSH:
`Co-authored-by: NAME `
diff --git a/n/copyrightyear.md b/n/copyrightyear.md
index 4038c24..f9646a6 100644
--- a/n/copyrightyear.md
+++ b/n/copyrightyear.md
@@ -9,7 +9,8 @@ lang: en
# Do copyright years need yearly updates?
-Apparently it depends on whether you care about when the project enters public domain.
+Apparently it depends on whether you care about when the project enters public
+domain.
@@ -35,7 +36,8 @@ Apparently it depends on whether you care about when the project enters public d
## Yes
- [Information for maintainers of GNU software, 6.5: copyright notices](https://www.gnu.org/prep/maintain/maintain.html#Copyright-Notices)
- - At the time of writing they practically say to update every file that has more than 10 lines.
+ - At the time of writing they practically say to update every file that has
+ more than 10 lines.
## Other links
diff --git a/n/dns.md b/n/dns.md
index 9eb869e..df2c370 100644
--- a/n/dns.md
+++ b/n/dns.md
@@ -1,6 +1,8 @@
---
title: Philosophical pondering on DNS and its features and usage
-excerpt: What DNS server is used, does it support ECS, is that threat or possibility, and everything that doesn't have a better place?
+excerpt:
+ What DNS server is used, does it support ECS, is that threat or possibility,
+ and everything that doesn't have a better place?
layout: mini
permalink: /n/dns.html
redirect_from:
@@ -49,7 +51,8 @@ _{{ page.excerpt }} For DNS resolvers, refer to [r/resolv.tsv](/r/resolv.tsv)_
## Identifying DNS resolver
-- [DNS-OARC's Check My DNS](https://cmdns.dev.dns-oarc.net) - popup under "Network".
+- [DNS-OARC's Check My DNS](https://cmdns.dev.dns-oarc.net) - popup under
+ "Network".
- [dnsleaktest](https://dnsleaktest.com)
- [whatsmydnsserver](https://www.whatsmydnsserver.com)
- [ipleak.net](https://ipleak.net)
@@ -57,7 +60,8 @@ _{{ page.excerpt }} For DNS resolvers, refer to [r/resolv.tsv](/r/resolv.tsv)_
- [browserleaks.net/dns](https://browserleaks.net/dns)
- [dnscheck.tools](https://www.dnscheck.tools)
-The above list is based on [redirect2me/which-dns README alternatives section](https://github.com/redirect2me/which-dns/blob/main/README.md)
+The above list is based on
+[redirect2me/which-dns README alternatives section](https://github.com/redirect2me/which-dns/blob/main/README.md)
---
@@ -65,8 +69,8 @@ The above list is based on [redirect2me/which-dns README alternatives section](h
At it's current state of implementation, Encrypted Client-Hello requires
DNS-over-HTTPS in the browser level or it won't be used. If downgrade from
-application level DoH to OS resolver is allowed, ECH will get disabled at
-least temporary. Thus I think this list belongs here close enough.
+application level DoH to OS resolver is allowed, ECH will get disabled at least
+temporary. Thus I think this list belongs here close enough.
- [Cloudflare Browser Check](https://www.cloudflare.com/ssl/encrypted-sni/)
which still speaks of ESNI, while ECH replaced Encrypted Server Name
@@ -80,32 +84,37 @@ least temporary. Thus I think this list belongs here close enough.
## What is ECS?
-[EDNS](https://en.m.wikipedia.org/wiki/Extension_Mechanisms_for_DNS) [Client-Subnet](https://en.wikipedia.org/wiki/EDNS_Client_Subnet) is a DNS extension letting the authoritative nameserver
-know your subnet, generally a `/24` (IPv4) or a `/56` (IPv6), but the revealed
-subnet size is up to your DNS resolver configuration.
+[EDNS](https://en.m.wikipedia.org/wiki/Extension_Mechanisms_for_DNS)
+[Client-Subnet](https://en.wikipedia.org/wiki/EDNS_Client_Subnet) is a DNS
+extension letting the authoritative nameserver know your subnet, generally a
+`/24` (IPv4) or a `/56` (IPv6), but the revealed subnet size is up to your DNS
+resolver configuration.
-_See also simpler explanation at [PrivacyGuides.org DNS Overview](https://www.privacyguides.org/en/advanced/dns-overview/#what-is-edns-client-subnet-ecs)._
+_See also simpler explanation at
+[PrivacyGuides.org DNS Overview](https://www.privacyguides.org/en/advanced/dns-overview/#what-is-edns-client-subnet-ecs)._
-- /24 is the first three parts of your IPv4 address e.g. 192.0.2.xxx.
- The last part of your IP address (the xxx) again is a number between 1
- to 254 (since 0 is reserved for the network itself and 255 is the
- broadcast address).
-- `/56` includes 256 `/64`s and if your ISP (Internet Service Provider)
- follows [RFC 6177](https://datatracker.ietf.org/doc/html/rfc6177),
- it's assigned solely to you meaning the authoritative nameserver will know
- the request originated from your network.
- - However many ISPs, especially wireless ones,
- will just assign you a `64` which is required for
+- /24 is the first three parts of your IPv4 address e.g. 192.0.2.xxx. The last
+ part of your IP address (the xxx) again is a number between 1 to 254 (since 0
+ is reserved for the network itself and 255 is the broadcast address).
+- `/56` includes 256 `/64`s and if your ISP (Internet Service Provider) follows
+ [RFC 6177](https://datatracker.ietf.org/doc/html/rfc6177), it's assigned
+ solely to you meaning the authoritative nameserver will know the request
+ originated from your network.
+ - However many ISPs, especially wireless ones, will just assign you a `64`
+ which is required for
[stateless address autoconfiguration]()
which is the most common way of getting IPv6 address in your local area
network as opposed to IPv4 where you would have
[Dynamic Host Configuration Protocol (DHCP)](https://en.m.wikipedia.org/wiki/Dynamic_Host_Configuration_Protocol).
- - Your router does get the IPv6 subnet assignment for LAN distribution by means of [DHCPv6 Prefix Delegation](https://en.m.wikipedia.org/wiki/Prefix_delegation) which is also common on mobile networks.
+ - Your router does get the IPv6 subnet assignment for LAN distribution by
+ means of
+ [DHCPv6 Prefix Delegation](https://en.m.wikipedia.org/wiki/Prefix_delegation)
+ which is also common on mobile networks.
-If you are reading my personal notes (that being useful for you would bring me
-a bit of happiness), please note that **_I am somewhat indecisive and change
-the DNS resolver a lot (at least daily judging by my feelings), but do check
-the git log._**
+If you are reading my personal notes (that being useful for you would bring me a
+bit of happiness), please note that **_I am somewhat indecisive and change the
+DNS resolver a lot (at least daily judging by my feelings), but do check the git
+log._**
- [History of this page at GitHub](https://github.com/Mikaela/mikaela.github.io/commits/master/n/dns.md)
@@ -113,78 +122,120 @@ the git log._**
_Android DoH3 option:_ `dns.google`
-> [...] The longer the distance the data must travel from the data centre to
-> the end-user device, the more energy the transmission consumes –
-> regardless of the transmission path used. Intercontinental transmission
-> networks are fundamentally very efficient. Transferring data from the
-> United States to Europe may consume a fraction of the energy compared to
-> the last kilometre from the base station to the mobile phone.
+> [...] The longer the distance the data must travel from the data centre to the
+> end-user device, the more energy the transmission consumes – regardless of the
+> transmission path used. Intercontinental transmission networks are
+> fundamentally very efficient. Transferring data from the United States to
+> Europe may consume a fraction of the energy compared to the last kilometre
+> from the base station to the mobile phone.
-- [Green Code](https://www.exove.com/green-code/) ([pdf](https://www.exove.com/app/uploads/2023/09/Green-Code-v2.pdf) [txt](https://www.exove.com/app/uploads/2023/09/greencode-v2.txt))
+- [Green Code](https://www.exove.com/green-code/)
+ ([pdf](https://www.exove.com/app/uploads/2023/09/Green-Code-v2.pdf)
+ [txt](https://www.exove.com/app/uploads/2023/09/greencode-v2.txt))
-If you utilize services of internet giants or content delivery networks, ECS will likely give you [the shortest distance, the lowest latency, the highest speed](https://en.m.wikipedia.org/wiki/Edge_computing) and may help with decreasing your _digital carbon footprint_.
+If you utilize services of internet giants or content delivery networks, ECS
+will likely give you
+[the shortest distance, the lowest latency, the highest speed](https://en.m.wikipedia.org/wiki/Edge_computing)
+and may help with decreasing your _digital carbon footprint_.
_The above means GAFAM, if you don't use them in any form, there may not be a
need for ECS._
-If those matter to you, you may also like to consider [increasing your minimum TTL to around an hour in a local server](https://blog.apnic.net/2019/11/12/stop-using-ridiculously-low-dns-ttls/).
+If those matter to you, you may also like to consider
+[increasing your minimum TTL to around an hour in a local server](https://blog.apnic.net/2019/11/12/stop-using-ridiculously-low-dns-ttls/).
### Why to not use ECS?
_Android DoH3 option:_ `cloudflare-dns.com`
-> [...] we [Cloudflare] don’t pass along the EDNS subnet information. This information leaks information about a requester’s IP and, in turn, sacrifices the privacy of users. This is especially problematic as we work to encrypt more DNS traffic since the request from Resolver to Authoritative DNS is typically unencrypted. **_We’re aware of real world examples where nationstate actors have monitored EDNS subnet information to track individuals,_** which was part of the motivation for the privacy and security policies of 1.1.1.1.
+> [...] we [Cloudflare] don’t pass along the EDNS subnet information. This
+> information leaks information about a requester’s IP and, in turn, sacrifices
+> the privacy of users. This is especially problematic as we work to encrypt
+> more DNS traffic since the request from Resolver to Authoritative DNS is
+> typically unencrypted. **_We’re aware of real world examples where nationstate
+> actors have monitored EDNS subnet information to track individuals,_** which
+> was part of the motivation for the privacy and security policies of 1.1.1.1.
>
> [...]
>
-> We are working with the small number of networks with a higher network/ISP density than Cloudflare (e.g., Netflix, Facebook, Google/YouTube) to come up with an EDNS IP Subnet alternative that gets them the information they need for geolocation targeting without risking user privacy and security. Those conversations have been productive and are ongoing. [...]
+> We are working with the small number of networks with a higher network/ISP
+> density than Cloudflare (e.g., Netflix, Facebook, Google/YouTube) to come up
+> with an EDNS IP Subnet alternative that gets them the information they need
+> for geolocation targeting without risking user privacy and security. Those
+> conversations have been productive and are ongoing. [...]
-- [Cloudflare co-founder](https://news.ycombinator.com/item?id=19828702), emphasis mine.
+- [Cloudflare co-founder](https://news.ycombinator.com/item?id=19828702),
+ emphasis mine.
-ECS will decrease the cost of mass surveillance as instead of having to surveill everything happening on the network, anyone between your DNS server and the authoritative nameserver can see which IP addresses access the site with a reasonable accuracy.
+ECS will decrease the cost of mass surveillance as instead of having to surveill
+everything happening on the network, anyone between your DNS server and the
+authoritative nameserver can see which IP addresses access the site with a
+reasonable accuracy.
-Then there are those with commercial interests, particularly outside of
-Europe, advertisers may be interested in making money out of the additional
-metadata. There may also be adblockers which don't block the DNS request,
-causing the advertising company to receive your IP address (or close enough to
-it) even if you didn't see the advertisement itself.
+Then there are those with commercial interests, particularly outside of Europe,
+advertisers may be interested in making money out of the additional metadata.
+There may also be adblockers which don't block the DNS request, causing the
+advertising company to receive your IP address (or close enough to it) even if
+you didn't see the advertisement itself.
Some say _the less metadata is produced, the smaller incentive there is for
starting collecting and monetizing it._
This isn't even mentioning that the internet isn't a nice place or foreign
advanced persistent threats or threat actors, who may not need a reason to
-attack you. [_CISA: Mitigating Cyber Threats with Limited Resources: Guidance for Civil Society_](https://www.cisa.gov/resources-tools/resources/mitigating-cyber-threats-limited-resources-guidance-civil-society)
+attack you.
+[_CISA: Mitigating Cyber Threats with Limited Resources: Guidance for Civil Society_](https://www.cisa.gov/resources-tools/resources/mitigating-cyber-threats-limited-resources-guidance-civil-society)
-Additionally researchers (below) have used it to perform cache poisoning against an individual target directing them to a wrong location and with low TTL making it near impossible to audit later.
+Additionally researchers (below) have used it to perform cache poisoning against
+an individual target directing them to a wrong location and with low TTL making
+it near impossible to audit later.
-What domains do you use? What if someone far above you knew regardless of Encrypted Client-Hello?
+What domains do you use? What if someone far above you knew regardless of
+Encrypted Client-Hello?
-Are the domains you use DNSSEC-signed? Do you verify DNSSEC locally? Do you use HTTPS everywhere? Do you know to not accept warnings about certificate issues? Do the other (less technical) users of your network? Would you or them be a delicious target? Do you even use GAFAM services?
+Are the domains you use DNSSEC-signed? Do you verify DNSSEC locally? Do you use
+HTTPS everywhere? Do you know to not accept warnings about certificate issues?
+Do the other (less technical) users of your network? Would you or them be a
+delicious target? Do you even use GAFAM services?
See also:
- [_Understanding the Privacy Implications of ECS_](https://yacin.nadji.us/docs/pubs/dimva16_ecs.pdf)
_Later I have been torn on whether the quote above is correct and helps
-decrease my digital climate footprint more or less than adblocking on DNS
-level, but what really put the scales towards ECS for me was late night GApple
-update that was keeping me from sleeping. So ECS is for busy people who want
-to sleep?_ _The CISA link above makes me question this the very next day
+decrease my digital climate footprint more or less than adblocking on DNS level,
+but what really put the scales towards ECS for me was late night GApple update
+that was keeping me from sleeping. So ECS is for busy people who want to
+sleep?_ _The CISA link above makes me question this the very next day
considering I belong to gender and sexual minorities, Pirate Party of Finland,
and everything..._
### Why to use private ECS?
-_Android DoH3 option:_ [?](https://cs.android.com/android/platform/superproject/main/+/main:packages/modules/DnsResolver/PrivateDnsConfiguration.h)
+_Android DoH3 option:_
+[?](https://cs.android.com/android/platform/superproject/main/+/main:packages/modules/DnsResolver/PrivateDnsConfiguration.h)
-Do you want the benefits of ECS with the privacy and security of not having ECS? Private ECS is a compromise solution in the middle, although not without its own issues.
+Do you want the benefits of ECS with the privacy and security of not having ECS?
+Private ECS is a compromise solution in the middle, although not without its own
+issues.
-Your private DNS provider will lie for you and say that your IP address is somewhere else where it will also place many others from your ISP. However what if it says you are a customer of another ISP, possibly even located in another country? It tends to have greater accuracy with IPv4 than IPv6, [see AdGuard Google Domains issue](https://adguard-dns.io/en/blog/dns-google-domains-fixed.html). What if no one else uses the same DNS server as you, especially from your ISP? I guess you can always advocate your DNS provider so it could be someone else too (I couldn't)? If it works most of time, does that outweight the times it won't work? Is perfect the enemy of good enough?
+Your private DNS provider will lie for you and say that your IP address is
+somewhere else where it will also place many others from your ISP. However what
+if it says you are a customer of another ISP, possibly even located in another
+country? It tends to have greater accuracy with IPv4 than IPv6,
+[see AdGuard Google Domains issue](https://adguard-dns.io/en/blog/dns-google-domains-fixed.html).
+What if no one else uses the same DNS server as you, especially from your ISP? I
+guess you can always advocate your DNS provider so it could be someone else too
+(I couldn't)? If it works most of time, does that outweight the times it won't
+work? Is perfect the enemy of good enough?
-In that case you may get even worse performance be in even worse situation than without ECS. Then again if everything works properly, you will get the benefit of ECS without the privacy impact and lessened security impact.
+In that case you may get even worse performance be in even worse
+situation than without ECS. Then again if everything works properly, you will
+get the benefit of ECS without the privacy impact and lessened security impact.
-See the next section for testing "where you are." Consider also what is important for you if you had to pick one or two from privacy, performance and climate.
+See the next section for testing "where you are." Consider also what is
+important for you if you had to pick one or two from privacy, performance and
+climate.
See also:
@@ -197,8 +248,8 @@ See also:
It's likely greener to just use adblocking DNS no matter where it is located,
preferably on router level. I don't trust router/DHCP provided DNS and encrypt
it on the end device anyway. And if something needs unfiltered access
-(AdNauseam?), give it DNS over HTTPS like all browsers and curl have the
-ability nowadays.
+(AdNauseam?), give it DNS over HTTPS like all browsers and curl have the ability
+nowadays.
Are you someone whom someone might want bad things to just for existing?
@@ -219,26 +270,38 @@ dig +short TXT whoami-ecs.v6.powerdns.org.
dig +short TXT whoami-ecs.v4.powerdns.org.
```
-- Note: [Cloudflare sends ECS only for `whoami.ds.akahelp.net`, nowhere else](https://developers.cloudflare.com/1.1.1.1/faq/#does-1.1.1.1-send-edns-client-subnet-header).
+- Note:
+ [Cloudflare sends ECS only for `whoami.ds.akahelp.net`, nowhere else](https://developers.cloudflare.com/1.1.1.1/faq/#does-1.1.1.1-send-edns-client-subnet-header).
---
## [DNS0.eu] or [Quad9]?
In my experience [DNS0.eu] tends to have better filtering and
-[reporting options](https://www.dns0.eu/report) than [Quad9], while [servers being located only in](https://www.dns0.eu/network) the
-[European Union](https://european-union.europa.eu) is mildly problematic when your users start traveling
-outside it either for work or leisure, which across continents tends to bring
-round-trips overseas. Additionally private ECS (see above) tends to be bad
-poor for IPv6 and for very small AS like a school, it directs to another side
-of the country, but that is a very minor issue.
+[reporting options](https://www.dns0.eu/report) than [Quad9], while
+[servers being located only in](https://www.dns0.eu/network) the
+[European Union](https://european-union.europa.eu) is mildly problematic when
+your users start traveling outside it either for work or leisure, which across
+continents tends to bring round-trips overseas. Additionally private ECS (see
+above) tends to be bad poor for IPv6 and for very small AS like a school, it
+directs to another side of the country, but that is a very minor issue.
-Meanwhile [Quad9] blocking seems almost as good in [tests like this](https://techblog.nexxwave.eu/public-dns-malware-filters-tested-in-2024/) and they give me impression [of more transparency](https://quad9.net/about/transparency-report) (as opposed to [DNS0.eu only
-having a Twitter X account](https://twitter.com/dns0eu)). [Quad9] also has more options on whether to ECS or not (see above).
+Meanwhile [Quad9] blocking seems almost as good in
+[tests like this](https://techblog.nexxwave.eu/public-dns-malware-filters-tested-in-2024/)
+and they give me impression
+[of more transparency](https://quad9.net/about/transparency-report) (as opposed
+to
+[DNS0.eu only having a Twitter X account](https://twitter.com/dns0eu)).
+[Quad9] also has more options on whether to ECS or not (see above).
-The end-users traveling outside of the EU is also solved as they [have servers all around the world](https://quad9.net/service/locations/).
+The end-users traveling outside of the EU is also solved as they
+[have servers all around the world](https://quad9.net/service/locations/).
-Back to [DNS0.eu], while disabling private ECS is not an option, they do have other options; [default filters](https://www.dns0.eu), [no filters](https://www.dns0.eu/open), [heavier filtering (zero)](https://www.dns0.eu/zero) and [kids](https://www.dns0.eu/kids).
+Back to [DNS0.eu], while disabling private ECS is not an option, they do have
+other options; [default filters](https://www.dns0.eu),
+[no filters](https://www.dns0.eu/open),
+[heavier filtering (zero)](https://www.dns0.eu/zero) and
+[kids](https://www.dns0.eu/kids).
[DNS0.eu]: https://www.dns0.eu
[Quad9]: https://quad9.net
@@ -284,18 +347,19 @@ with desktop versions etc._
### Android
-Use either `cloudflare-dns.com` (which doesn't have ECS) or `dns.google`
-(which has ECS) as the (Settings → Network & Internet → Advanced →)
-_Private DNS_ server as [they have special handling](https://cs.android.com/android/platform/superproject/main/+/main:packages/modules/DnsResolver/PrivateDnsConfiguration.h) and are thus DNS over
-HTTPS3 instead of the usual DNS over TLS. This can be confirmed with
-[`https://1.1.1.1/help`](https://one.one.one.one/help) (when using
-`cloudflare-dns.com`). **_However is connectivity in limited networks and
-maybe a bit faster speed in bad network more important than a level of
-security reached by a filtering resolver?_**
+Use either `cloudflare-dns.com` (which doesn't have ECS) or `dns.google` (which
+has ECS) as the (Settings → Network & Internet → Advanced →) _Private DNS_
+server as
+[they have special handling](https://cs.android.com/android/platform/superproject/main/+/main:packages/modules/DnsResolver/PrivateDnsConfiguration.h)
+and are thus DNS over HTTPS3 instead of the usual DNS over TLS. This can be
+confirmed with [`https://1.1.1.1/help`](https://one.one.one.one/help) (when
+using `cloudflare-dns.com`). **_However is connectivity in limited networks and
+maybe a bit faster speed in bad network more important than a level of security
+reached by a filtering resolver?_**
-Then setup your web browser (including Firefox (other than stable which
-disables `about:config`) and Chrome) to use DNS over HTTPS with your preferred
-server and while at it enabling HTTPS only mode.
+Then setup your web browser (including Firefox (other than stable which disables
+`about:config`) and Chrome) to use DNS over HTTPS with your preferred server and
+while at it enabling HTTPS only mode.
At least `https://security.cloudflare-dns.com/dns-query` won't downgrade to
system DNS resolver so
@@ -317,7 +381,8 @@ If testing Cloudflare, see also:
Do other Android based OSes contain the special handling of specific _Private
DNS_ domains turning into DNS-over-HTTP/3?
-- GrapheneOS: [yes](https://github.com/GrapheneOS/platform_packages_modules_DnsResolver/blob/13/PrivateDnsConfiguration.h)
+- GrapheneOS:
+ [yes](https://github.com/GrapheneOS/platform_packages_modules_DnsResolver/blob/13/PrivateDnsConfiguration.h)
- LineageOS:
[yes](https://github.com/LineageOS/android_packages_modules_DnsResolver/blob/lineage-20.0/PrivateDnsConfiguration.h)
- /e/OS:
@@ -325,14 +390,13 @@ DNS_ domains turning into DNS-over-HTTP/3?
### [Rethink](https://github.com/celzero/rethink-app)
-**_NOTE!_** This pretends to be a VPN and thus breaks things depending on
-seeing the IP directly such as wireless debugging LAN IP, Briar LAN
-connections, cause warnings in Ooni Probe and disable automatic testing,
-Syncthing Fork will not autostart due to detecting the network as metered,
-unless it's given permission to run in metered networks.
+**_NOTE!_** This pretends to be a VPN and thus breaks things depending on seeing
+the IP directly such as wireless debugging LAN IP, Briar LAN connections, cause
+warnings in Ooni Probe and disable automatic testing, Syncthing Fork will not
+autostart due to detecting the network as metered, unless it's given permission
+to run in metered networks.
-1. Use either GitHub or F-Droid release as Google Play doesn't have
- blocklists.
+1. Use either GitHub or F-Droid release as Google Play doesn't have blocklists.
1. Enable it.
1. In Android Settings, Internet, Advanced, VPN, select Rethink, make it
always-on and block connections not using it.
@@ -350,19 +414,17 @@ unless it's given permission to run in metered networks.
- Network: _Perform connectivity checks_
1. Remember to also visit Android app details for Rethink, in battery menu
- select unrestricted and in network allow unlimited data even with data
- saver.
-1. I also have a suspicion that Android _Developer_ Setting `Always keep
-mobile data active` is interfering with Rethink as always-on VPN causing
- connectivity issues or it not being sure whether "metered" or unmetered
- network is being used.
+ select unrestricted and in network allow unlimited data even with data saver.
+1. I also have a suspicion that Android _Developer_ Setting
+ `Always keep mobile data active` is interfering with Rethink as always-on VPN
+ causing connectivity issues or it not being sure whether "metered" or
+ unmetered network is being used.
1. The setting is enabled by default nowadays, to access it, go to about
- phone and rapidly tap `Software build number`
- (backtranslated to English from Finnish (like everything else (TODO:
- check in English)).
+ phone and rapidly tap `Software build number` (backtranslated to English
+ from Finnish (like everything else (TODO: check in English)).
1. Once you are a developer, `System Settings` (within `Settings`) should
- have a new `Developer Settings` menu `Mobile data always active` is
- under `Connection properties` section (which is above `Input`)
+ have a new `Developer Settings` menu `Mobile data always active` is under
+ `Connection properties` section (which is above `Input`)
Hopefully there is no situation where Rethink stops working and thinks it's
still working. As can be deduced from this section, sometimes Rethink and I
@@ -374,10 +436,9 @@ I think a few of the blocklists in Rethink are blocking apkpure's domain
breaking Obtainium and their official app and the steps to fix that are:
1. Use a DNS server that doesn't have the block (`https://open.dns0.eu/` or
- `https://unfiltered.adguard-dns.com/dns-query` if private ECS is
- desirable?)
-1. Select `Apps` in Rethink's main screen (the biggest button below `Proxy`
- and `Logs`.
+ `https://unfiltered.adguard-dns.com/dns-query` if private ECS is desirable?)
+1. Select `Apps` in Rethink's main screen (the biggest button below `Proxy` and
+ `Logs`.
1. Search for `Obtainium` or `APKPure` and select it.
1. Select `Domain Rules`.
1. Select the floating `+` from bottom right.
diff --git a/n/emoji.md b/n/emoji.md
index 27b6017..ff3d119 100644
--- a/n/emoji.md
+++ b/n/emoji.md
@@ -11,10 +11,8 @@ lang: en
# Unemojied emojis
-[John D. Cook shares a nice trick to prevent emojis from being displayed as
-emojis](https://www.johndcook.com/blog/2022/09/30/preventing-emoji/) and I
-want to store it here alongside the more personally
-relevant symbols.
+[John D. Cook shares a nice trick to prevent emojis from being displayed as emojis](https://www.johndcook.com/blog/2022/09/30/preventing-emoji/)
+and I want to store it here alongside the more personally relevant symbols.
So to make something not an emoji, `U+FE0E` or `︎` and to use emoji,
`FE0F` or (`️`).
@@ -49,7 +47,8 @@ _My shellrc has some reminders for me and these are the sequences there._
## aminda.eu
- 🧅︎ Onion: `\u1f9c5` `🧅︎`
- - I guess it just doesn't have a non-emoji variant at least on my system at the time of writing?
+ - I guess it just doesn't have a non-emoji variant at least on my system at
+ the time of writing?
### friends
@@ -58,20 +57,26 @@ _My shellrc has some reminders for me and these are the sequences there._
## Flags
-- 🏴☠︎ Pirate Flag: `\u1f3f4\u200d\u2620\ufe0f\ufe0e` or `🏴☠︎`
-- 🏳️🌈︎ Pride Flag: `🏳️🌈`
-- 🏳️⚧️︎ Trans Pride Flag: `🏳️⚧️︎`
+- 🏴☠︎ Pirate Flag: `\u1f3f4\u200d\u2620\ufe0f\ufe0e`
+ or `🏴☠︎`
+- 🏳️🌈︎ Pride Flag:
+ `🏳️🌈`
+- 🏳️⚧️︎ Trans Pride Flag:
+ `🏳️⚧️︎`
## Kingdom Hearts
-Well, one must be prepared to discuss the clash between Light and Darkness and the χ-blade, in case someone resurrects it?
+Well, one must be prepared to discuss the clash between Light and Darkness and
+the χ-blade, in case someone resurrects it?
- χ can be expressed as `\U03C7`, `χ` or neatly `χ`.
- - In case of `&Chi` making it a capital letter turns it into Χ, but can you even distinguish that from X?
+ - In case of `&Chi` making it a capital letter turns it into Χ, but can
+ you even distinguish that from X?
### Roman Numerals
-_You have no idea how often I miss these. And I don't even mean to discuss the_ Organization ⅫⅠ.
+_You have no idea how often I miss these. And I don't even mean to discuss the_
+Organization ⅫⅠ.
**_WARNING: The first syntax may be incorrect._**
diff --git a/n/essentialsoftware.md b/n/essentialsoftware.md
index e43cd89..e878941 100644
--- a/n/essentialsoftware.md
+++ b/n/essentialsoftware.md
@@ -32,27 +32,39 @@ _{{ page.excerpt }}_
## Security
-- `microcode` - propietary, but otherwise CPU holes are going to be gaping open. Refer to `tail -n +1 /sys/devices/system/cpu/vulnerabilities/*`
+- `microcode` - propietary, but otherwise CPU holes are going to be gaping open.
+ Refer to `tail -n +1 /sys/devices/system/cpu/vulnerabilities/*`
- Debian calls this as `amd64-microcode` or `intel-microcode`
- `ufw` for Deb-based or `firewalld` on Fedora
- `sshguard` for mitigating shared systems where others refuse to use keys
-- `needrestart` for knowing when updates actually require services to be restarted or a kernel upgrade happens and requires reboot
-- `molly-guard` so you won't accidentally `reboot` or `poweroff` production rather than local machine.
+- `needrestart` for knowing when updates actually require services to be
+ restarted or a kernel upgrade happens and requires reboot
+- `molly-guard` so you won't accidentally `reboot` or `poweroff` production
+ rather than local machine.
- `apt-listchanges` changelogs are worth knowing when updating.
- `apt-listbugs` known bugs are especially nice when performing bigger updates.
-- `chrony` - security demands the time to be correct, Chrony supports NTS and is proper NTP server instead of just SNTP like systemd-timesyncd.
+- `chrony` - security demands the time to be correct, Chrony supports NTS and is
+ proper NTP server instead of just SNTP like systemd-timesyncd.
- alternatively configure `systemd-timesyncd`
-- `unbound` - my choice for both DNSSEC validating and DNS-over-TLS, even if I had it connect to upstream dns\[crypt\]proxy
- - alternatively configure `systemd-resolved`. Simultaneously `systemd-networkd` may be a good idea.
-- `unattended-upgrades` or `dnf-automatic` so security updates are at least downloaded if not even directly installed (see configuration and systemd units!)
- - if `dnf-automatic`, consider `sudo systemctl enable dnf-automatic-install.{timer,service}`
- or at least `sudo systemctl enable dnf-automatic-download.{timer,service}`
+- `unbound` - my choice for both DNSSEC validating and DNS-over-TLS, even if I
+ had it connect to upstream dns\[crypt\]proxy
+ - alternatively configure `systemd-resolved`. Simultaneously
+ `systemd-networkd` may be a good idea.
+- `unattended-upgrades` or `dnf-automatic` so security updates are at least
+ downloaded if not even directly installed (see configuration and systemd
+ units!)
+ - if `dnf-automatic`, consider
+ `sudo systemctl enable dnf-automatic-install.{timer,service}` or at least
+ `sudo systemctl enable dnf-automatic-download.{timer,service}`
## Usability
- `nvim git tmux zsh` - good luck without these
-- if cryptographic operations are taking ages, consider something like `haveged`. It's controversial, so if there are no issues, don't install a random number generator.
-- userspace oom killer, may avoid frozen systems, much more pleasant than actually having to deal with a frozen system.
+- if cryptographic operations are taking ages, consider something like
+ `haveged`. It's controversial, so if there are no issues, don't install a
+ random number generator.
+- userspace oom killer, may avoid frozen systems, much more pleasant than
+ actually having to deal with a frozen system.
- `earlyoom`
- remember to `sudo systemctl enable --now earlyoom`
- `systemd-oomd`
@@ -63,14 +75,16 @@ _{{ page.excerpt }}_
- `thermald` for additional help keeping system cool, especially intel
- `sudo systemctl enable --now thermald`
- `vnstat` - help for observing bandwidth usage
-- `yggdrasil` - essential for getting through Carrier Grade NAT whether there is IPv6 or not. Also gives static internal IPv6 reducing need for dynamic DNS.
+- `yggdrasil` - essential for getting through Carrier Grade NAT whether there is
+ IPv6 or not. Also gives static internal IPv6 reducing need for dynamic DNS.
- `tlp` - for laptop power management, especially ThinkPad.
- `sudo tlp-stat | less`
- `sudo systemctl enable --now tlp`
## Offtopic system configuration
-This is just too close to not mention here (and was besides in my planning issue):
+This is just too close to not mention here (and was besides in my planning
+issue):
### Debian-based
@@ -82,4 +96,5 @@ This is just too close to not mention here (and was besides in my planning issue
### SSD
- `sudo systemctl enable --now fstrim.timer`
-- check that `/etc/fstab` has `noatime` so every file access isn't written to the disk. BTRFS filesystems should also have `ssd` flag.
+- check that `/etc/fstab` has `noatime` so every file access isn't written to
+ the disk. BTRFS filesystems should also have `ssd` flag.
diff --git a/n/f-droid.md b/n/f-droid.md
index 77fd1e4..32ad07e 100644
--- a/n/f-droid.md
+++ b/n/f-droid.md
@@ -1,6 +1,8 @@
---
title: F-Droid repository list
-excerpt: F-Droid is kind of apt for Android with multiple repositories available. This is my note to self on which repositories I tend to have configured.
+excerpt:
+ F-Droid is kind of apt for Android with multiple repositories available. This
+ is my note to self on which repositories I tend to have configured.
layout: mini
permalink: /n/f-droid.html
redirect_from: /n/fdroid.html
@@ -11,7 +13,8 @@ robots: noai
_{{ page.excerpt }}_
-Remember to prefer the [F-Droid Basic](https://f-droid.org/packages/org.fdroid.basic) app!
+Remember to prefer the
+[F-Droid Basic](https://f-droid.org/packages/org.fdroid.basic) app!
@@ -31,32 +34,46 @@ Remember to prefer the [F-Droid Basic](https://f-droid.org/packages/org.fdroid.b
## Official F-Droid repositories
-F-Droid and GuardianProject are configured by default, however cloudflare
-isn't enabled by default. And for some reason my Yeul decided that it
-needs 0 repositories out of the box, so time to add them too.
+F-Droid and GuardianProject are configured by default, however cloudflare isn't
+enabled by default. And for some reason my Yeul decided that it needs 0
+repositories out of the box, so time to add them too.
- [cloudflare.f-droid.org/repo](fdroidrepos://cloudflare.f-droid.org/repo?fingerprint=43238d512c1e5eb2d6569f4a3afbf5523418b82e0a3ed1552770abb9a9c9ccab)
- [cloudflare.f-droid.org/archive](fdroidrepos://cloudflare.f-droid.org/archive?fingerprint=43238d512c1e5eb2d6569f4a3afbf5523418b82e0a3ed1552770abb9a9c9ccab)
## Additional F-Droid repositories
-- [apt.izzysoft.de/fdroid/repo](fdroidrepos://apt.izzysoft.de/fdroid/repo?fingerprint=3bf0d6abfeae2f401707b6d966be743bf0eee49c2561b9ba39073711f628937a) is a less strictly foss repository by an F-Droid maintainer.
-- [fdroid.frostnerd.com/fdroid/repo](fdroidrepos://fdroid.frostnerd.com/fdroid/repo?fingerprint=74bb580f263ec89e15c207298dec861b5069517550fe0f1d852f16fa611d2d26) contains Frostnerd's apps, mainly Nebulo.
+- [apt.izzysoft.de/fdroid/repo](fdroidrepos://apt.izzysoft.de/fdroid/repo?fingerprint=3bf0d6abfeae2f401707b6d966be743bf0eee49c2561b9ba39073711f628937a)
+ is a less strictly foss repository by an F-Droid maintainer.
+- [fdroid.frostnerd.com/fdroid/repo](fdroidrepos://fdroid.frostnerd.com/fdroid/repo?fingerprint=74bb580f263ec89e15c207298dec861b5069517550fe0f1d852f16fa611d2d26)
+ contains Frostnerd's apps, mainly Nebulo.
- [guardianproject.info/fdroid/repo](fdroidrepos://guardianproject.info/fdroid/repo?fingerprint=b7c2eefd8dac7806af67dfcd92eb18126bc08312a7f2d6f3862e46013c7a6135)
- [guardianproject.info/fdroid/archive](fdroidrepos://guardianproject.info/fdroid/archive?fingerprint=b7c2eefd8dac7806af67dfcd92eb18126bc08312a7f2d6f3862e46013c7a6135)
-- [s2.spiritcroc.de/fdroid/repo](fdroidrepos://s2.spiritcroc.de/fdroid/repo?fingerprint=6612ade7e93174a589cf5ba26ed3ab28231a789640546c8f30375ef045bc9242) contains SpiritCroc's apps, mainly SchildiChat.
-- [s2.spiritcroc.de/testing/fdroid/repo](fdroidrepos://s2.spiritcroc.de/testing/fdroid/repo?fingerprint=52d03f2fab785573bb295c7ab270695e3a1bdd2adc6a6de8713250b33f231225) contains testing versions of SpiritCroc's apps, mainly SchildiChat.
-- [divestos.org/apks/official/fdroid/repo](fdroidrepos://divestos.org/apks/official/fdroid/repo?fingerprint=E4BE8D6ABFA4D9D4FEEF03CDDA7FF62A73FD64B75566F6DD4E5E577550BE8467) contains the DivestOS apps such as Hypatia and Mull Browser (not to be confused with Mullvad Browser).
+- [s2.spiritcroc.de/fdroid/repo](fdroidrepos://s2.spiritcroc.de/fdroid/repo?fingerprint=6612ade7e93174a589cf5ba26ed3ab28231a789640546c8f30375ef045bc9242)
+ contains SpiritCroc's apps, mainly SchildiChat.
+- [s2.spiritcroc.de/testing/fdroid/repo](fdroidrepos://s2.spiritcroc.de/testing/fdroid/repo?fingerprint=52d03f2fab785573bb295c7ab270695e3a1bdd2adc6a6de8713250b33f231225)
+ contains testing versions of SpiritCroc's apps, mainly SchildiChat.
+- [divestos.org/apks/official/fdroid/repo](fdroidrepos://divestos.org/apks/official/fdroid/repo?fingerprint=E4BE8D6ABFA4D9D4FEEF03CDDA7FF62A73FD64B75566F6DD4E5E577550BE8467)
+ contains the DivestOS apps such as Hypatia and Mull Browser (not to be
+ confused with Mullvad Browser).
## Official repositories for a single project
-- [mobileapp.bitwarden.com/fdroid/repo](fdroidrepos://mobileapp.bitwarden.com/fdroid/repo?fingerprint=bc54ea6fd1cd5175bcccc47c561c5726e1c3ed7e686b6db4b18bac843a3efe6c) is Bitwarden password manager.
-- [briarproject.org/fdroid/repo](fdroidrepos://briarproject.org/fdroid/repo?fingerprint=1fb874bee7276d28ecb2c9b06e8a122ec4bcb4008161436ce474c257cbf49bd6) is Briar local mesh/Tor messenger.
-- [microg.org/fdroid/repo](fdroidrepos://microg.org/fdroid/repo?fingerprint=9bd06727e62796c0130eb6dab39b73157451582cbd138e86c468acc395d14165) is an open implementation of Play Services and used just for devices without them.
-- [fdroid.emersion.fr/goguma-nightly/repo](fdroidrepos://fdroid.emersion.fr/goguma-nightly/repo/?fingerprint=ACC8CFEDDF58C590D021FCF37534A54F5919E026D7A8333AA01C1ABB3D34E68D) is the Goguma IRC client nightly repository.
-- [app.simplex.chat/fdroid/repo](fdroidrepos://app.simplex.chat/fdroid/repo?fingerprint=9f358ff284d1f71656a2bfaf0e005deae6aa14143720e089f11ff2ddcfeb01ba) is the SimpleX messenger repository.
-- [molly.im/fdroid/repo](fdroidrepos://molly.im/fdroid/repo?fingerprint=3B7E93B1FE32C6E35A93D6DDFC5AFBEB1239A7C6EA6AF20FF33ED53CDC38B04A) is Molly the Signal fork's repo.
-- [molly.im/fdroid/foss/fdroid/repo](fdroidrepos://molly.im/fdroid/foss/fdroid/repo?fingerprint=5198DAEF37FC23C14D5EE32305B2AF45787BD7DF2034DE33AD302BDB3446DF74) is Molly FOSS the Signal fork's repo without propietary components.
+- [mobileapp.bitwarden.com/fdroid/repo](fdroidrepos://mobileapp.bitwarden.com/fdroid/repo?fingerprint=bc54ea6fd1cd5175bcccc47c561c5726e1c3ed7e686b6db4b18bac843a3efe6c)
+ is Bitwarden password manager.
+- [briarproject.org/fdroid/repo](fdroidrepos://briarproject.org/fdroid/repo?fingerprint=1fb874bee7276d28ecb2c9b06e8a122ec4bcb4008161436ce474c257cbf49bd6)
+ is Briar local mesh/Tor messenger.
+- [microg.org/fdroid/repo](fdroidrepos://microg.org/fdroid/repo?fingerprint=9bd06727e62796c0130eb6dab39b73157451582cbd138e86c468acc395d14165)
+ is an open implementation of Play Services and used just for devices without
+ them.
+- [fdroid.emersion.fr/goguma-nightly/repo](fdroidrepos://fdroid.emersion.fr/goguma-nightly/repo/?fingerprint=ACC8CFEDDF58C590D021FCF37534A54F5919E026D7A8333AA01C1ABB3D34E68D)
+ is the Goguma IRC client nightly repository.
+- [app.simplex.chat/fdroid/repo](fdroidrepos://app.simplex.chat/fdroid/repo?fingerprint=9f358ff284d1f71656a2bfaf0e005deae6aa14143720e089f11ff2ddcfeb01ba)
+ is the SimpleX messenger repository.
+- [molly.im/fdroid/repo](fdroidrepos://molly.im/fdroid/repo?fingerprint=3B7E93B1FE32C6E35A93D6DDFC5AFBEB1239A7C6EA6AF20FF33ED53CDC38B04A)
+ is Molly the Signal fork's repo.
+- [molly.im/fdroid/foss/fdroid/repo](fdroidrepos://molly.im/fdroid/foss/fdroid/repo?fingerprint=5198DAEF37FC23C14D5EE32305B2AF45787BD7DF2034DE33AD302BDB3446DF74)
+ is Molly FOSS the Signal fork's repo without propietary components.
---
diff --git a/n/fairbuds.md b/n/fairbuds.md
index d00038e..bb36cab 100644
--- a/n/fairbuds.md
+++ b/n/fairbuds.md
@@ -1,6 +1,9 @@
---
title: Fairbuds XL and the equalizer settings
-excerpt: I have the misnamed XL and while it's clear, even with factory reset by pushing the joystick to the right until it says "factory reset complete", but the studio eq may not be so clear.
+excerpt:
+ I have the misnamed XL and while it's clear, even with factory reset by
+ pushing the joystick to the right until it says "factory reset complete", but
+ the studio eq may not be so clear.
layout: mini
permalink: /n/fairbuds.html
redirect_from:
@@ -35,7 +38,15 @@ Shamelessly copied from Matrix.
### 2024-04-11
-> My settings for Studio so far is 60hz+0db, 230hz+2db, 1.1khz+0db, 4khz+5db, 10khz+4db. I think the some people may prefer +/- a db or two on the 4khz and 10khz levels depending on their taste and "head related transfer function" (rabbit hole, not worth digging into). I could go for one more db on those myself since I tend to prefer that BUT that can also lead to some sharpness for my ears on some tracks. This is a better comfortable level for me. Also those settings don't assume the Fairbuds XL are flat because they're not, instead these settings aim to "correct" the issues I feel they have with the tools given in the app without being silly. :)
+> My settings for Studio so far is 60hz+0db, 230hz+2db, 1.1khz+0db, 4khz+5db,
+> 10khz+4db. I think the some people may prefer +/- a db or two on the 4khz and
+> 10khz levels depending on their taste and "head related transfer function"
+> (rabbit hole, not worth digging into). I could go for one more db on those
+> myself since I tend to prefer that BUT that can also lead to some sharpness
+> for my ears on some tracks. This is a better comfortable level for me. Also
+> those settings don't assume the Fairbuds XL are flat because they're not,
+> instead these settings aim to "correct" the issues I feel they have with the
+> tools given in the app without being silly. :)
In clearer words, in the app drag the four sliders to
diff --git a/n/firewalld.md b/n/firewalld.md
index ace4baf..5873538 100644
--- a/n/firewalld.md
+++ b/n/firewalld.md
@@ -12,8 +12,8 @@ robots: noai
# Quick note on firewalld usage
-This is practically [/ufw](/ufw), but for Firewalld which Fedora comes with.
-The blog post also predates me having a /n directory here.
+This is practically [/ufw](/ufw), but for Firewalld which Fedora comes with. The
+blog post also predates me having a /n directory here.
**_After done, run `sudo firewall-cmd --reload`_**
@@ -36,12 +36,12 @@ The blog post also predates me having a /n directory here.
## Zones
-firewalld zones are privilege of NetworkManager users, this tends to be
-a systemd-networkd household. Then again I don't believe in absolutely trusted
+firewalld zones are privilege of NetworkManager users, this tends to be a
+systemd-networkd household. Then again I don't believe in absolutely trusted
zones.
-Zone would be specified by `--zone=home` in the commands. The other zone I
-could imagine using is `public`.
+Zone would be specified by `--zone=home` in the commands. The other zone I could
+imagine using is `public`.
## Protocols
@@ -49,8 +49,10 @@ could imagine using is `public`.
sudo firewall-cmd --add-protocol=ipv6-icmp --permanent
```
-- Tells computers when things go wrong with IPv6 network. See also [Neil Alexander: Understanding ICMP and why you shouldn't just block it outright](https://neilalexander.dev/2017/04/16/understanding-icmp).
- - _Motivation for being here is [20/20 in IPv6-test.com](https://ipv6-test.com)._
+- Tells computers when things go wrong with IPv6 network. See also
+ [Neil Alexander: Understanding ICMP and why you shouldn't just block it outright](https://neilalexander.dev/2017/04/16/understanding-icmp).
+ - _Motivation for being here is
+ [20/20 in IPv6-test.com](https://ipv6-test.com)._
## Services
@@ -62,11 +64,10 @@ sudo firewall-cmd --add-service=syncthing --permanent
sudo firewall-cmd --add-service=mdns --permanent
```
-- I trust Chrony (ntp) to not allow it to be used from outside of LAN
- as `firewalld` is apparently not designed with limiting source
- addresses in mind.
-- `syncthing` is the client, not to be confused with `syncthing-gui`
- or `syncthing-relay`.
+- I trust Chrony (ntp) to not allow it to be used from outside of LAN as
+ `firewalld` is apparently not designed with limiting source addresses in mind.
+- `syncthing` is the client, not to be confused with `syncthing-gui` or
+ `syncthing-relay`.
## Ports
@@ -75,6 +76,7 @@ sudo firewall-cmd --permanent --add-port=9001/udp
sudo firewall-cmd --permanent --add-port=6771/udp
```
-- `9001/udp` is Yggdrasil automatic peering, although link-local and
- unlikely to be recognised by predefined rules.
-- `6771/udp` is [Bittorrent Local Peer Discovery](http://bittorrent.org/beps/bep_0014.html)
+- `9001/udp` is Yggdrasil automatic peering, although link-local and unlikely to
+ be recognised by predefined rules.
+- `6771/udp` is
+ [Bittorrent Local Peer Discovery](http://bittorrent.org/beps/bep_0014.html)
diff --git a/n/gpg.md b/n/gpg.md
index a2506fa..ef65e01 100644
--- a/n/gpg.md
+++ b/n/gpg.md
@@ -1,6 +1,8 @@
---
title: GPG notes without a better place
-excerpt: Creating Ed25519/future key, configuring WKD, Keyoxide PGP and something on Keybase.
+excerpt:
+ Creating Ed25519/future key, configuring WKD, Keyoxide PGP and something on
+ Keybase.
layout: mini
permalink: /n/gpg.html
redirect_from:
@@ -42,8 +44,8 @@ robots: noai
## Ed25519 (or future default) key creation
-To create an Ed25519 key, or whatever will be the default version in the
-future as defined by your GPG version:
+To create an Ed25519 key, or whatever will be the default version in the future
+as defined by your GPG version:
```
gpg2 --quick-gen-key address@domain.example future-default
@@ -59,26 +61,28 @@ deluid # to delete the uid which doesn't contain your name
save
```
-\* [OpenPGP User ID Comments considered harmful by dkg on debian-administrator.org (via web.archive.org)](https://web.archive.org/web/20201020082313/https://debian-administration.org/users/dkg/weblog/97)
+\*
+[OpenPGP User ID Comments considered harmful by dkg on debian-administrator.org (via web.archive.org)](https://web.archive.org/web/20201020082313/https://debian-administration.org/users/dkg/weblog/97)
-Then you are ready to publish the public key however you generally publish
-it, preferably in multiple places from where some recognise revokation
-certificates if the time ever comes.
+Then you are ready to publish the public key however you generally publish it,
+preferably in multiple places from where some recognise revokation certificates
+if the time ever comes.
-NOTE: You can extend the expiry time of an expired gpg signature by issuing
-the `expire` command in `--edit-key` and the key is valid again when the
-update is reimported to gpg keyrings by other people.
+NOTE: You can extend the expiry time of an expired gpg signature by issuing the
+`expire` command in `--edit-key` and the key is valid again when the update is
+reimported to gpg keyrings by other people.
## Keybase
-To publish the key `keybase pgp select --multi` (where multi
-is required for multiple PGP keys per account) and to submit changes to it,
+To publish the key `keybase pgp select --multi` (where multi is required for
+multiple PGP keys per account) and to submit changes to it,
`keybase pgp update --all` (where --all is again necessary only if you have
multiple keys).
## Claws-mail note that is somewhat related.
-Debian: `sudo apt install claws-mail claws-mail-address-keeper claws-mail-attach-warner claws-mail-gdata-plugin claws-mail-pgpinline claws-mail-pgpmime claws-mail-smime-plugin`
+Debian:
+`sudo apt install claws-mail claws-mail-address-keeper claws-mail-attach-warner claws-mail-gdata-plugin claws-mail-pgpinline claws-mail-pgpmime claws-mail-smime-plugin`
Load plugins from Configuration (menu) --> Plugins --> Load, they are all
somewhere in `/usr/lib/x86_64-linux-gnu/claws-mail/plugins` or similar path.
@@ -103,17 +107,19 @@ xxxx xxxx xxxx xxxx xxxx xxxx xxxx xxxx xxxx xxxx
```
-Note the empty line in the end, as PGP/INLINE is the way to sign emails,
-it the PGP signature comes after it and in my opinion looks a bit cleaner
-with the signature ending to an empty line.
+Note the empty line in the end, as PGP/INLINE is the way to sign emails, it the
+PGP signature comes after it and in my opinion looks a bit cleaner with the
+signature ending to an empty line.
---
## WKD
-Setting up GPG WKD (Web Key Directory), _mostly stripped/adjusted from
-Matt Rude whose page is NXDOMAIN and not in Wayback Machine. [What I find is](https://openpgpkey.mattrude.com/)
-pointers to [1](https://wiki.gnupg.org/WKD) [2](https://wiki.gnupg.org/WKS) [3](https://tools.ietf.org/html/draft-koch-openpgp-webkey-service)_
+Setting up GPG WKD (Web Key Directory), _mostly stripped/adjusted from Matt Rude
+whose page is NXDOMAIN and not in Wayback Machine.
+[What I find is](https://openpgpkey.mattrude.com/) pointers to
+[1](https://wiki.gnupg.org/WKD) [2](https://wiki.gnupg.org/WKS)
+[3](https://tools.ietf.org/html/draft-koch-openpgp-webkey-service)_
Requires a control over domain/.well-known and email under that domain.
@@ -126,7 +132,8 @@ Requires a control over domain/.well-known and email under that domain.
7. in Jekyll `_config.yml` ensure existence of `include: [.well-known]` if
applicable.
8. deploy
-9. test with `gpg -v --auto-key-locate clear,wkd,nodefault --locate-key email@example.net`
+9. test with
+ `gpg -v --auto-key-locate clear,wkd,nodefault --locate-key email@example.net`
NOTE: The empty `policy` goes to the `openpgpkey` directory, not `hu` (I
initially failed at this part)
@@ -144,7 +151,8 @@ commands in `gpg --edit-key "key fingerprint here"`:
- Add notations: `notation`
- Remove notations: `notation` from `showpref` with a `-` in the beginning
-Don't forget to `gpg --keyserver hkps://keys.openpgp.org --send-keys "your keyid here"` !
+Don't forget to
+`gpg --keyserver hkps://keys.openpgp.org --send-keys "your keyid here"` !
### Keyoxide docs
diff --git a/n/helen.md b/n/helen.md
index c28f696..0199fa2 100644
--- a/n/helen.md
+++ b/n/helen.md
@@ -15,7 +15,9 @@ hattiwattlowprice: "10 c/kWh"
lang: fi
---
-Tuntihinta @ [Apple App Store](https://apps.apple.com/app/tuntihinta/id824684537) [Google Play](https://play.google.com/store/apps/details?id=fi.fingrid.tuntihinta)
+Tuntihinta @
+[Apple App Store](https://apps.apple.com/app/tuntihinta/id824684537)
+[Google Play](https://play.google.com/store/apps/details?id=fi.fingrid.tuntihinta)
@@ -40,28 +42,49 @@ Tuntihinta @ [Apple App Store](https://apps.apple.com/app/tuntihinta/id824684537
Helen markkinahintasähkö kuukaudelle {{ page.month }} on {{ page.monthly }}.
-- Helen sähköverkot Oy:n siirron perusmaksu: {{ page.basicdistribution }}, siirron marginaali {{ page.distributionmargin }}.
-- Helenin pörssisähkön kuukausihinta: {{ page.basicstock }}, marginaali {{ page.stockmargin }}.
+- Helen sähköverkot Oy:n siirron perusmaksu: {{ page.basicdistribution }},
+ siirron marginaali {{ page.distributionmargin }}.
+- Helenin pörssisähkön kuukausihinta: {{ page.basicstock }}, marginaali
+ {{ page.stockmargin }}.
## Yhtälöt Tuntihinnalle
_Jekyll ei salli matematiikkaa suoraan tietoturvasyistä._
-- Kallis: {{ page.monthly }} + {{ page.distributionmargin }} (Helenin markkinasähköhinta + siirtohinta kWh)
-- Halpa: ({{ page.monthly }} + {{ page.distributionmargin }}) / 2 (Helenin markkinasähköhinta + siirtohinta kWh / 2), **_pyöristettynä alaspäin_**
-- Marginaali: {{ page.distributionmargin }} + {{ page.stockmargin }} (Helen Sähköverkot Oy siirtohinta kWh + pörssisähkön marginaali).
-- OmaHelen kohtelee alle {{ page.omahelenlowprice }} halpana ja yli {{ page.omahelenhighprice }} kalliina, joten vaihtoehtoiset kaavat ovat:
- - Kallis: {{ page.omahelenhighprice }} + {{ page.distributionmargin }} + {{ page.stockmargin }} (OmaHelenin korkea hinta + Marginaali)
- - Halpa: {{ page.omahelenlowprice }} + {{ page.distributionmargin }} + {{ page.stockmargin }} (OmaHelenin matala hinta + Marginaali)
-- [HattiWatt](https://hattiwatt.com/) vuorostaan sanoo korkean olevan yli {{ page.hattiwatthighprice }} ja halvan olevan alle {{ page.hattiwattlowprice }}. Se tosin näyttää hinnan myös liikennevaloin.
- - Halpa: {{ page.hattiwattlowprice }} + {{ page.distributionmargin }} + {{ page.stockmargin }} (HattiWattin matala hinta + Marginaali)
- - Kallis: {{ page.hattiwatthighprice }} + {{ page.distributionmargin }} + {{ page.stockmargin }} (HattiWattin korkea hinta + Marginaali)
+- Kallis: {{ page.monthly }} + {{ page.distributionmargin }}
+ (Helenin markkinasähköhinta + siirtohinta kWh)
+- Halpa: ({{ page.monthly }} + {{ page.distributionmargin }}) /
+ 2 (Helenin markkinasähköhinta + siirtohinta kWh / 2),
+ **_pyöristettynä alaspäin_**
+- Marginaali: {{ page.distributionmargin }} +
+ {{ page.stockmargin }} (Helen Sähköverkot Oy siirtohinta kWh +
+ pörssisähkön marginaali).
+- OmaHelen kohtelee alle {{ page.omahelenlowprice }} halpana ja yli
+ {{ page.omahelenhighprice }} kalliina, joten vaihtoehtoiset kaavat ovat:
+ - Kallis: {{ page.omahelenhighprice }} +
+ {{ page.distributionmargin }} + {{ page.stockmargin }} (OmaHelenin
+ korkea hinta + Marginaali)
+ - Halpa: {{ page.omahelenlowprice }} + {{ page.distributionmargin }} +
+ {{ page.stockmargin }} (OmaHelenin matala hinta + Marginaali)
+- [HattiWatt](https://hattiwatt.com/) vuorostaan sanoo korkean olevan yli
+ {{ page.hattiwatthighprice }} ja halvan olevan alle
+ {{ page.hattiwattlowprice }}. Se tosin näyttää hinnan myös liikennevaloin.
+ - Halpa: {{ page.hattiwattlowprice }} +
+ {{ page.distributionmargin }} + {{ page.stockmargin }} (HattiWattin
+ matala hinta + Marginaali)
+ - Kallis: {{ page.hattiwatthighprice }} +
+ {{ page.distributionmargin }} + {{ page.stockmargin }} (HattiWattin
+ korkea hinta + Marginaali)
## Lähteet
-- [Helen.fi: Markkinasähkö; ja sähkön markkinahinta](https://www.helen.fi/sahko/sahkosopimus/markkinahinta) määrittää kalliin hinnan.
- - Helen veloittaa sitä markkinasähköasiakkailtaan koko kuukauden ja pyrkii sillä kattamaan omat kulunsa ja varmistamaan, ettei myy sähköä liian edullisesti.
-- Siirtohinta näkyy _Oma Helen_-sovelluksessa ja muutokset ilmoitetaan Helenin asiakaslehdessä.
+- [Helen.fi: Markkinasähkö; ja sähkön markkinahinta](https://www.helen.fi/sahko/sahkosopimus/markkinahinta)
+ määrittää kalliin hinnan.
+ - Helen veloittaa sitä markkinasähköasiakkailtaan koko kuukauden ja pyrkii
+ sillä kattamaan omat kulunsa ja varmistamaan, ettei myy sähköä liian
+ edullisesti.
+- Siirtohinta näkyy _Oma Helen_-sovelluksessa ja muutokset ilmoitetaan Helenin
+ asiakaslehdessä.
-
-
Aminda Suomalainen
+
Aminda Suomalainen
Curriculum Vitae
@@ -96,20 +106,34 @@ robots: noai, nofollow
@@ -69,27 +92,44 @@ _Jekyll ei salli matematiikkaa suoraan tietoturvasyistä._
Helen's monthly market price for month {{ page.month }} is {{ page.monthly }}.
-- Distribution price: {{ page.basicdistribution }} and {{ page.distributionmargin }}.
+- Distribution price: {{ page.basicdistribution }} and
+ {{ page.distributionmargin }}.
- Stock price: {{ page.basicstock }} and {{ page.stockmargin }}.
## Equations for Tuntihinta
_Jekyll doesn't allow maths directly for infosec reasons._
-- Expensive: {{ page.monthly }} + {{ page.distributionmargin }} (Helen's Market Price Electricity + distribution margin)
-- Cheap: ({{ page.monthly }} + {{ page.distributionmargin }}) / 2 (Helen's Market Price Electricity + distribution margin / 2), **_round down_**
-- Margin: {{ page.distributionmargin }} + {{ page.stockmargin }} (Distribution fee + stock margin)
-- OmaHelen app treats {{ page.omahelenlowprice }} as cheap and over {{ page.omahelenhighprice }} as expensive, so alternative equations are:
- - Expensive: {{ page.omahelenhighprice }} + {{ page.distributionmargin }} + {{ page.stockmargin }} (OmaHelen's high price + Margin)
- - Cheap: {{ page.omahelenlowprice }} + {{ page.distributionmargin }} + {{ page.stockmargin }} (OmaHelen's low price + Margin)
-- [HattiWatt](https://hattiwatt.com/) again treats over {{ page.hattiwatthighprice }} as high price with low price being {{ page.hattiwattlowprice }}. It however shows price in traffic lights.
- - Cheap: {{ page.hattiwattlowprice }} + {{ page.distributionmargin }} + {{ page.stockmargin }} (HattiWatt's low price + Margin))
- - Expensive: {{ page.hattiwatthighprice }} + {{ page.distributionmargin }} + {{ page.stockmargin }} (HattiWatt's high price + Margin)
+- Expensive: {{ page.monthly }} + {{ page.distributionmargin }}
+ (Helen's Market Price Electricity + distribution margin)
+- Cheap: ({{ page.monthly }} + {{ page.distributionmargin }}) /
+ 2 (Helen's Market Price Electricity + distribution margin / 2),
+ **_round down_**
+- Margin: {{ page.distributionmargin }} +
+ {{ page.stockmargin }} (Distribution fee + stock margin)
+- OmaHelen app treats {{ page.omahelenlowprice }} as cheap and over
+ {{ page.omahelenhighprice }} as expensive, so alternative equations are:
+ - Expensive: {{ page.omahelenhighprice }} +
+ {{ page.distributionmargin }} + {{ page.stockmargin }} (OmaHelen's
+ high price + Margin)
+ - Cheap: {{ page.omahelenlowprice }} + {{ page.distributionmargin }} +
+ {{ page.stockmargin }} (OmaHelen's low price + Margin)
+- [HattiWatt](https://hattiwatt.com/) again treats over
+ {{ page.hattiwatthighprice }} as high price with low price being
+ {{ page.hattiwattlowprice }}. It however shows price in traffic lights.
+ - Cheap: {{ page.hattiwattlowprice }} +
+ {{ page.distributionmargin }} + {{ page.stockmargin }} (HattiWatt's
+ low price + Margin))
+ - Expensive: {{ page.hattiwatthighprice }} +
+ {{ page.distributionmargin }} + {{ page.stockmargin }} (HattiWatt's
+ high price + Margin)
## Sources
-- Definition of monthly plan price: [Helen: Market Price Electricity](https://www.helen.fi/en/electricity/electricity-products-and-prices/marketpriceelectricity)
- - They use it all month following stock market price and trying to get their own citation.
+- Definition of monthly plan price:
+ [Helen: Market Price Electricity](https://www.helen.fi/en/electricity/electricity-products-and-prices/marketpriceelectricity)
+ - They use it all month following stock market price and trying to get their
+ own citation.
- Distribution is in _Oma Helen_ and changes are announced in their newspaper.
diff --git a/n/index.html b/n/index.html
index 05f8bea..7b77368 100644
--- a/n/index.html
+++ b/n/index.html
@@ -1,7 +1,11 @@
---
layout: default
title: Notes
-excerpt: You have discovered my notes listing, where I ramble about random subjects for future me, so I don't have to rediscover the things again. I tend to access these with direct link, but for your benefit, they are also listed here. It is not without realm of possibility for you to be reading this page already.
+excerpt:
+ You have discovered my notes listing, where I ramble about random subjects for
+ future me, so I don't have to rediscover the things again. I tend to access
+ these with direct link, but for your benefit, they are also listed here. It is
+ not without realm of possibility for you to be reading this page already.
permalink: /n/index.html
redirect_from: /n/n.html
navigation: true
diff --git a/n/keyoxide.md b/n/keyoxide.md
index 603bf30..bed6bb1 100644
--- a/n/keyoxide.md
+++ b/n/keyoxide.md
@@ -9,10 +9,12 @@ lang: en
robots: noai
---
-> Keyoxide is a decentralized tool to create and verify decentralized online identities.
+> Keyoxide is a decentralized tool to create and verify decentralized online
+> identities.
- For painful OpenPGP proofs using notations refer to [n/gpg](/n/gpg.html).
-- For ASP profiles [Keyoxide-flutter](https://codeberg.org/Berker/keyoxide-flutter).
+- For ASP profiles
+ [Keyoxide-flutter](https://codeberg.org/Berker/keyoxide-flutter).
- [n/obtainium](/n/obtainium.html) is that way.
## My ASP profile
@@ -21,6 +23,8 @@ robots: noai
### Proofs
-- Plain: [`aspe:keyoxide.org:LGWNUB7QG4M326FXXBH5Z6PLVY`](https://keyoxide.org/aspe:keyoxide.org:LGWNUB7QG4M326FXXBH5Z6PLVY)
+- Plain:
+ [`aspe:keyoxide.org:LGWNUB7QG4M326FXXBH5Z6PLVY`](https://keyoxide.org/aspe:keyoxide.org:LGWNUB7QG4M326FXXBH5Z6PLVY)
- [`aspe:keyoxide.org:LGWNUB7QG4M326FXXBH5Z6PLVY`](https://keyoxide.org/aspe:keyoxide.org:LGWNUB7QG4M326FXXBH5Z6PLVY)
-- Hashed: `$argon2id$v=19$m=8192,t=2,p=4$UeKcKenApsCHc+YGJUGCHw$hoTY1qFVXf56BZpZCUNG39/2IrQjwKrT`
+- Hashed:
+ `$argon2id$v=19$m=8192,t=2,p=4$UeKcKenApsCHc+YGJUGCHw$hoTY1qFVXf56BZpZCUNG39/2IrQjwKrT`
diff --git a/n/ksoy.md b/n/ksoy.md
index 757bd0e..68c1434 100644
--- a/n/ksoy.md
+++ b/n/ksoy.md
@@ -11,7 +11,9 @@ stockmargin: "0.23 c/kWh"
lang: fi
---
-Tuntihinta @ [Apple App Store](https://apps.apple.com/app/tuntihinta/id824684537) [Google Play](https://play.google.com/store/apps/details?id=fi.fingrid.tuntihinta)
+Tuntihinta @
+[Apple App Store](https://apps.apple.com/app/tuntihinta/id824684537)
+[Google Play](https://play.google.com/store/apps/details?id=fi.fingrid.tuntihinta)
@@ -33,19 +35,26 @@ Tuntihinta @ [Apple App Store](https://apps.apple.com/app/tuntihinta/id824684537
_Siirtohinnasto ei tiedossa, joten se ei ole mukana yhtälöissä._
-KSOYn Jatkuvan sähkösopimuksen hinta kuukaudelle {{ page.month }} on {{ page.monthly }}.
+KSOYn Jatkuvan sähkösopimuksen hinta kuukaudelle {{ page.month }} on
+{{ page.monthly }}.
-- KSOY Pörssisähkön hinta: {{ page.basicstock }}, marginaali {{ page.stockmargin }}.
+- KSOY Pörssisähkön hinta: {{ page.basicstock }}, marginaali
+ {{ page.stockmargin }}.
## Yhtälöt Tuntihinnalle
_Jekyll ei salli matematiikkaa suoraan tietoturvasyistä._
-- Kallis: {{ page.monthly }} (KSOY jatkuvan sähkösopimuksen hinta)
-- Halpa: {{ page.monthly }} / 2 (KSOY jatkuvan sähkösopimuksen hinta / 2), **_pyöristettynä alaspäin_**
+- Kallis: {{ page.monthly }} (KSOY jatkuvan sähkösopimuksen
+ hinta)
+- Halpa: {{ page.monthly }} / 2 (KSOY jatkuvan sähkösopimuksen
+ hinta / 2), **_pyöristettynä alaspäin_**
- Marginaali: {{ page.stockmargin }} (pörssisähkön marginaali).
## Lähteet
-- [KSOY jatkuva sähkösopimus](https://www.ksoy.fi/sahkon-myynti/sahkoa-kotiin/ksoy-jatkuva/) määrittää kalliin hinnan.
- - KSOY veloittaa sitä jatkuvilta sähköasiakkailtaan koko kuukauden ja pyrkii sillä kattamaan omat kulunsa ja varmistamaan, ettei myy sähköä liian edullisesti.
+- [KSOY jatkuva sähkösopimus](https://www.ksoy.fi/sahkon-myynti/sahkoa-kotiin/ksoy-jatkuva/)
+ määrittää kalliin hinnan.
+ - KSOY veloittaa sitä jatkuvilta sähköasiakkailtaan koko kuukauden ja pyrkii
+ sillä kattamaan omat kulunsa ja varmistamaan, ettei myy sähköä liian
+ edullisesti.
diff --git a/n/localectl.md b/n/localectl.md
index e8c4cbc..747a59a 100644
--- a/n/localectl.md
+++ b/n/localectl.md
@@ -1,6 +1,8 @@
---
title: Quick localectl config
-excerpt: Reminder on systemd keyboard and language settings, also including more regionally tailored ones.
+excerpt:
+ Reminder on systemd keyboard and language settings, also including more
+ regionally tailored ones.
layout: mini
permalink: /n/localectl.html
redirect_from:
@@ -49,22 +51,24 @@ sudo localectl set-x11-locale fi
sudo localectl set-locale LANG=en_IE.UTF-8 LC_TIME=en_DK.UTF-8 LC_MONETARY=fi_FI.UTF-8 LC_NAME=fi_FI.UTF-8 LC_TELEPHONE=fi_FI.UTF-8
```
-- Everything will be in English, but time will be in ISO 8601, financial units use Finnish separators, names are sorted according to Finnish alphabet (a, …, x, y, z, å, ä, ö) and phone numbers begin with the Finnish `+358` prefix.
+- Everything will be in English, but time will be in ISO 8601, financial units
+ use Finnish separators, names are sorted according to Finnish alphabet (a, …,
+ x, y, z, å, ä, ö) and phone numbers begin with the Finnish `+358` prefix.
## Explanations
-- LANG is the language and defaults for other variables if they are unset.
- en_DK gives ISO 8601 date format for everything respecting LC_TIME.
- - `LANG=en_IE date` returns `Sun 02 Jun 2024 11:05:04 EEST`,
- while `LANG=en_DK date` returns `2024-06-02T11:05:04 EEST`.
+- LANG is the language and defaults for other variables if they are unset. en_DK
+ gives ISO 8601 date format for everything respecting LC_TIME.
+ - `LANG=en_IE date` returns `Sun 02 Jun 2024 11:05:04 EEST`, while
+ `LANG=en_DK date` returns `2024-06-02T11:05:04 EEST`.
- LC_MONETARY sets the currency and how sums of it are managed.
-- LC_NAME sets name format and I prefer Finnish (just the name) to Irish
- which probably has `M{r,s,rs}` and I hate them being gendered and I doubt it
+- LC_NAME sets name format and I prefer Finnish (just the name) to Irish which
+ probably has `M{r,s,rs}` and I hate them being gendered and I doubt it
understands Mx.
-- LC_TELEPHONE sets telephone number format and I set it to fi_FI as it
- defaults international numbers to +358 and I am more likely to be typing
- Finnish numbers than Irish. I imagine it can affect office tools, and
- it's here more of just in case.
+- LC_TELEPHONE sets telephone number format and I set it to fi_FI as it defaults
+ international numbers to +358 and I am more likely to be typing Finnish
+ numbers than Irish. I imagine it can affect office tools, and it's here more
+ of just in case.
And naturally to use these locales, they must be compiled.
@@ -78,13 +82,12 @@ fi_FI.UTF-8 UTF-8
and as always, after editing that file, you must run `sudo locale-gen`.
-(Debian & deriative users, you have `dpkg-reconfigure locales` that merges
-the editing and locale-gen and that is probably what you are supposed to
-use.)
+(Debian & deriative users, you have `dpkg-reconfigure locales` that merges the
+editing and locale-gen and that is probably what you are supposed to use.)
-It seems like I didn't even say anything about that UTF-8 part, but
-it's 2024 and everything is UTF-8 (or your things are horribly broken
-and the rest of the world hates you).
+It seems like I didn't even say anything about that UTF-8 part, but it's 2024
+and everything is UTF-8 (or your things are horribly broken and the rest of the
+world hates you).
Sources/thanks:
@@ -92,32 +95,37 @@ Sources/thanks:
- [Locale Helper: en_IE](https://lh.2xlibre.net/locale/en_IE/)
- [Locale Helper: fi_FI](https://lh.2xlibre.net/locale/fi_FI/)
- [Wikipedia: UTF-8](https://en.wikipedia.org/wiki/UTF-8)
- - Random misplaced advice: disable charset fallback in your
- IRC client and be UTF-8 only! You will see when someone is not
- using UTF-8 and won't submit useless bug reports to
- bots/bridges/whatever that are UTF-8 only (as supporting every
- charset is impossible, since IRC has nothing to declare character
- set, and there is zero reason why you wouln't be using UTF-8! Well nowadays
- some have [IRCv3 `UTF8ONLY` `ISUPPORT` token](https://ircv3.net/specs/extensions/utf8-only)).
+ - Random misplaced advice: disable charset fallback in your IRC client and be
+ UTF-8 only! You will see when someone is not using UTF-8 and won't submit
+ useless bug reports to bots/bridges/whatever that are UTF-8 only (as
+ supporting every charset is impossible, since IRC has nothing to declare
+ character set, and there is zero reason why you wouln't be using UTF-8! Well
+ nowadays some have
+ [IRCv3 `UTF8ONLY` `ISUPPORT` token](https://ircv3.net/specs/extensions/utf8-only)).
- [ISO 8601](https://en.wikipedia.org/wiki/ISO_8601)
- - You should read it or at least be aware of it especially if you are
- in contact with people from other countries and even more if you
- are in international communities trying to get anything done with
- anything that has to do with time or date!
+ - You should read it or at least be aware of it especially if you are in
+ contact with people from other countries and even more if you are in
+ international communities trying to get anything done with anything that has
+ to do with time or date!
---
-2019-12-27: I don't see LANGUAGE mentioned here, but it was blocking me
-from changing language of GNOME and `sudo dpkg-reconfigure locales` in the
-end gave me `*** update-locale: Warning: LANGUAGE (en_US:en) is not compatible with LANG (fi_FI.UTF-8). Disabling it.`.
+2019-12-27: I don't see LANGUAGE mentioned here, but it was blocking me from
+changing language of GNOME and `sudo dpkg-reconfigure locales` in the end gave
+me
+`*** update-locale: Warning: LANGUAGE (en_US:en) is not compatible with LANG (fi_FI.UTF-8). Disabling it.`.
Either I was wrong on it being list of fallback languages I wish to use, or
-GNOME has different view on it, but as I think I have seen errors related
-to it before, I will drop `LANGUAGE` from the variables I set.
+GNOME has different view on it, but as I think I have seen errors related to it
+before, I will drop `LANGUAGE` from the variables I set.
---
-2024-04-04: `export LANGUAGE=eo:fi:en` in a file read by my [`zshrc`](https://gitea.blesmrt.net/mikaela/shell-things/src/branch/master/rc/zshrc) works fine as it gets read before my [`startsway`](https://gitea.blesmrt.net/mikaela/scripts/src/branch/master/bash/usr-local-bin/startsway) anyway.
+2024-04-04: `export LANGUAGE=eo:fi:en` in a file read by my
+[`zshrc`](https://gitea.blesmrt.net/mikaela/shell-things/src/branch/master/rc/zshrc)
+works fine as it gets read before my
+[`startsway`](https://gitea.blesmrt.net/mikaela/scripts/src/branch/master/bash/usr-local-bin/startsway)
+anyway.
---
diff --git a/n/matrixspoilers.md b/n/matrixspoilers.md
index a56e00f..73c7fba 100644
--- a/n/matrixspoilers.md
+++ b/n/matrixspoilers.md
@@ -1,6 +1,8 @@
---
title: Spoilers on Matrix protocol
-excerpt: Instructions for proper spoiling on Matrix using FluffyChat, Nheko and Element Web.
+excerpt:
+ Instructions for proper spoiling on Matrix using FluffyChat, Nheko and Element
+ Web.
layout: mini
permalink: /n/matrixspoilers.html
redirect_from:
@@ -15,10 +17,10 @@ The Matrix specification supports spoilers since version 1.1:
- [Spoiler messages at Client-Server API of Matrix Specification](https://spec.matrix.org/latest/client-server-api/#spoiler-messages)
-My favourite Matrix clients, FluffyChat and Nheko, support spoilers when
-the spoiler is in the following format; `||Reason why this is a spoiler|Actually
-spoilered text.||` It can also be in-line and a spoiler without reason is just
-`||spoiler goes here||`.
+My favourite Matrix clients, FluffyChat and Nheko, support spoilers when the
+spoiler is in the following format;
+`||Reason why this is a spoiler|Actually spoilered text.||` It can also be
+in-line and a spoiler without reason is just `||spoiler goes here||`.
Element Web supports whole message spoilers through the `/spoiler` command.
@@ -28,9 +30,8 @@ Other clients supporting formatting may have to enter the HTML directly e.g.:
Spoilered text
```
-Some clients, like Nheko, have a `/plain` command to disable formatting for
-that message which allows sending this message in plain text to help someone
-else.
+Some clients, like Nheko, have a `/plain` command to disable formatting for that
+message which allows sending this message in plain text to help someone else.
```html
/plain Spoilered text
diff --git a/n/nomap.md b/n/nomap.md
index d3a038f..3d00e62 100644
--- a/n/nomap.md
+++ b/n/nomap.md
@@ -19,10 +19,11 @@ excerpt: Previously a blog post, now a note on _nomap in SSID.
_{{ page.excerpt }}_
-`_nomap` in the end of your SSID will exclude your network from Google, Apple, WiGLE etc.
+`_nomap` in the end of your SSID will exclude your network from Google, Apple,
+WiGLE etc.
-Microsoft has a separate [location services
-opt-out](https://account.microsoft.com/privacy/location-services-opt-out)
+Microsoft has a separate
+[location services opt-out](https://account.microsoft.com/privacy/location-services-opt-out)
which uses MAC addresses instead.
@@ -42,10 +43,13 @@ which uses MAC addresses instead.
## Why?
-Privacy. WiGLE.net may point your home directly just by entering the SSID and who knows how many similar services there are. While I have been thinking of this since 2015, there is at least one case where this has been used:
+Privacy. WiGLE.net may point your home directly just by entering the SSID and
+who knows how many similar services there are. While I have been thinking of
+this since 2015, there is at least one case where this has been used:
- [Christian Haschek: The curious case of the Raspberry Pi in the network closet](https://blog.haschek.at/2018/the-curious-case-of-the-RasPi-in-our-network.html)
## `_optout`
-Legacy from 2015-2016. Used to be part of Microsoft WiFi Sense that shared WiFi networks and passwords to all contacts.
+Legacy from 2015-2016. Used to be part of Microsoft WiFi Sense that shared WiFi
+networks and passwords to all contacts.
diff --git a/n/obtainium.md b/n/obtainium.md
index 26908b8..d0b09ff 100644
--- a/n/obtainium.md
+++ b/n/obtainium.md
@@ -1,6 +1,9 @@
---
title: Obtainiun
-excerpt: Obtainium downloads apps directly from forge/whatever without need for app stores and theoretically I can bootstrap it by copy-pasting the txt linked below into it, especially on devices that Google doesn't smile upon.
+excerpt:
+ Obtainium downloads apps directly from forge/whatever without need for app
+ stores and theoretically I can bootstrap it by copy-pasting the txt linked
+ below into it, especially on devices that Google doesn't smile upon.
layout: mini
permalink: /n/obtainium.html
sitemap: true
@@ -10,18 +13,20 @@ robots: noai
_{{ page.excerpt }}_
-[Obtainium](https://github.com/ImranR98/Obtainium/) downloads apps directly from forge/whatever without need for app
-stores and theoretically I can bootstrap it by copy-pasting the txt linked
-below into it, especially on devices that Google doesn't smile upon.
+[Obtainium](https://github.com/ImranR98/Obtainium/) downloads apps directly from
+forge/whatever without need for app stores and theoretically I can bootstrap it
+by copy-pasting the txt linked below into it, especially on devices that Google
+doesn't smile upon.
- [Obtainium's latest release](https://github.com/ImranR98/Obtainium/releases/latest)
-See also [2022-01-02 F-Droid Security Issues on privsec.dev](https://privsec.dev/posts/android/f-droid-security-issues/),
+See also
+[2022-01-02 F-Droid Security Issues on privsec.dev](https://privsec.dev/posts/android/f-droid-security-issues/),
regardless of my list containing F-Droids. Regarding that, **prefer
-[F-Droid Basic](https://f-droid.org/packages/org.fdroid.basic) over
-F-Droid** whenever possible (if nearby features aren't required)
-as it addesses some issues such as targeting higher API version and having
-automatic updates on Android 12+.
+[F-Droid Basic](https://f-droid.org/packages/org.fdroid.basic) over F-Droid**
+whenever possible (if nearby features aren't required) as it addesses some
+issues such as targeting higher API version and having automatic updates on
+Android 12+.
@@ -43,8 +48,10 @@ automatic updates on Android 12+.
## Importable app list
-- For apps that don't require API keys to be entered into Obtainium, see [txt/obtainium.txt](/txt/obtainium.txt).
-- For apps that require GitHub or GitLab API key to be entered into Obtainium, see [txt/obtainium2.txt](/txt/obtainium2.txt)
+- For apps that don't require API keys to be entered into Obtainium, see
+ [txt/obtainium.txt](/txt/obtainium.txt).
+- For apps that require GitHub or GitLab API key to be entered into Obtainium,
+ see [txt/obtainium2.txt](/txt/obtainium2.txt)
## Third party F-Droid repositories
@@ -67,34 +74,57 @@ _However I would use [the F-Droid repositories directly](/n/f-droid.html)._
- `https://divestos.org/apks/official/fdroid/repo?appId=us.spotco.malwarescanner`
- Hypatia malware scanner. Third party F-Droid repo.
- `https://divestos.org/apks/official/fdroid/repo?appId=us.spotco.fennec_dos`
- - Mull Browser (not to be confused with Mullvad). Often suggested as the closest to [LibreWolf](https://librewolf.net)
- on Android. Third party F-Droid repo.
+ - Mull Browser (not to be confused with Mullvad). Often suggested as the
+ closest to [LibreWolf](https://librewolf.net) on Android. Third party
+ F-Droid repo.
## App Stores
_Always exercise caution when installing apps, even from Google Play Store!_
- `https://github.com/accrescent/accrescent`
- - Accrescent is a recent App Store which I have seen recommended especially in privacy circles, while it's a bit plain and doesn't have much selection yet.
+ - Accrescent is a recent App Store which I have seen recommended especially in
+ privacy circles, while it's a bit plain and doesn't have much selection yet.
- `https://apkpure.net/apkpure/com.apkpure.aegon`
- - APK Pure. Full of intrusive advertising, I wouldn't use it without adblocker and even then would keep my family away from it.
+ - APK Pure. Full of intrusive advertising, I wouldn't use it without adblocker
+ and even then would keep my family away from it.
- `https://gitlab.com/AuroraOSS/AuroraStore`
- - Open source and anonymous interface for Google Play Store. Google doesn't like it, so the accounts often don't work, which is the reason this section has so many apps regardless of the common advice to install nothing outside of Play Store (that I obviously disagree with as there are dangerous and unwanted apps there too).
+ - Open source and anonymous interface for Google Play Store. Google doesn't
+ like it, so the accounts often don't work, which is the reason this section
+ has so many apps regardless of the common advice to install nothing outside
+ of Play Store (that I obviously disagree with as there are dangerous and
+ unwanted apps there too).
- `https://f-droid.org/packages/org.fdroid.fdroid`
- - FOSS-only app store with support for additional [repositories](/n/f-droid.html). I prefer the Basic version though, see below.
+ - FOSS-only app store with support for additional
+ [repositories](/n/f-droid.html). I prefer the Basic version though, see
+ below.
- `https://f-droid.org/packages/org.fdroid.basic`
- - F-Droid without local application sharing. Used to target higher API level than the main app allowing automatic updates for apps targeting recent enough app version. This is what I recommend and have installed for family for years.
+ - F-Droid without local application sharing. Used to target higher API level
+ than the main app allowing automatic updates for apps targeting recent
+ enough app version. This is what I recommend and have installed for family
+ for years.
- `https://github.com/Tobi823/ffupdater`
- - Installer and updater for privacy friendly browsers (and itself), including, but not limited to Firefox, Chromium and other browsers based on them (except obviously not Google Chrome). Would install for family, if they didn't have Google Play Store.
+ - Installer and updater for privacy friendly browsers (and itself), including,
+ but not limited to Firefox, Chromium and other browsers based on them
+ (except obviously not Google Chrome). Would install for family, if they
+ didn't have Google Play Store.
- `https://appgallery.huawei.com/app/C27162`
- - Huawei App Gallery. I don't think I recommend it, unless it comes with your phone, but it's nice to know it exists and can be installed?
+ - Huawei App Gallery. I don't think I recommend it, unless it comes with your
+ phone, but it's nice to know it exists and can be installed?
- `https://github.com/ImranR98/Obtainium`
- - An app downloader that can install apps directly from the publishers, a few other app stores and F-Droid repositories (see an earlier section on this page). But you should know that already considering this page is of no interest to anyone else than Obtainium users (and mainly only me).
+ - An app downloader that can install apps directly from the publishers, a few
+ other app stores and F-Droid repositories (see an earlier section on this
+ page). But you should know that already considering this page is of no
+ interest to anyone else than Obtainium users (and mainly only me).
- `https://uptodown-android.en.uptodown.com/android`
- - Uptodown app store, pleasant interface and not so intrusive advertising
- as opposed to APK Pure. I would consider installing it for a family member, should they reach ??? apps outside of Play Store that it offers (such as AdGuard (which Google again dislikes), Telegram.org/Android...)
+ - Uptodown app store, pleasant interface and not so intrusive advertising as
+ opposed to APK Pure. I would consider installing it for a family member,
+ should they reach ??? apps outside of Play Store that it offers (such as
+ AdGuard (which Google again dislikes), Telegram.org/Android...)
- `https://lite-uptodown-app-store.en.uptodown.com/android`
- - Lighter version for less powerful phones, thinking of you Android Go Edition, or certain other 8 GB memory phones. Additionally Google is stripped out of it.
+ - Lighter version for less powerful phones, thinking of you Android Go
+ Edition, or certain other 8 GB memory phones. Additionally Google is
+ stripped out of it.
## Other noteworthy apps:
diff --git a/n/prettier.md b/n/prettier.md
index 6491df8..2c141e3 100644
--- a/n/prettier.md
+++ b/n/prettier.md
@@ -41,13 +41,16 @@ _{{ page.excerpt }}_
## Installation
-1. `npm install -D -E prettier@3.3.2 prettier-plugin-nginx@1.0.3 @prettier/plugin-ruby@4.0.4 prettier-plugin-toml@2.0.1 @prettier/plugin-xml@3.4.1 prettier-plugin-sh@0.14.0` or probably just `pnpm install -D` if it's not your project.
-1. If they don't exist already `echo "{}" > .prettierrc && touch .prettierignore`
+1. `npm install -D -E prettier@3.3.2 prettier-plugin-nginx@1.0.3 @prettier/plugin-ruby@4.0.4 prettier-plugin-toml@2.0.1 @prettier/plugin-xml@3.4.1 prettier-plugin-sh@0.14.0`
+ or probably just `pnpm install -D` if it's not your project.
+1. If they don't exist already
+ `echo "{}" > .prettierrc && touch .prettierignore`
1. `pnpm exec prettier . --write` or `pnpm exec prettier . --check`
## Configuration
-I do with `.editorconfig` what I can, but for example my template `.prettierrc` looks like:
+I do with `.editorconfig` what I can, but for example my template `.prettierrc`
+looks like:
```json
{
@@ -68,7 +71,8 @@ I do with `.editorconfig` what I can, but for example my template `.prettierrc`
}
```
-at the time of writing. It's directly from documentation excluding the plugin names, but I will want it everywhere.
+at the time of writing. It's directly from documentation excluding the plugin
+names, but I will want it everywhere.
## `.pre-commit-config.yaml`
@@ -76,7 +80,11 @@ This is the file that controls [`pre-commit`]s behaviour.
### Offline
-I accidentally wrote this while updating this page to reflect me using prettier outside of [`pre-commit`] too nowadays. This has the advantage that the same local environment gets reused and dependencies are managed centrally, but assumes everyone uses pnpm, won't work in [`pre-commit` ci] and may have other issues I am not thinking of as a not-coder myself.
+I accidentally wrote this while updating this page to reflect me using prettier
+outside of [`pre-commit`] too nowadays. This has the advantage that the same
+local environment gets reused and dependencies are managed centrally, but
+assumes everyone uses pnpm, won't work in [`pre-commit` ci] and may have other issues
+I am not thinking of as a not-coder myself.
[`pre-commit`]: https://pre-commit.com
[`pre-commit` ci]: https://pre-commit.ci
diff --git a/n/puhelin.md b/n/puhelin.md
index 02c59d8..7bf6ef4 100644
--- a/n/puhelin.md
+++ b/n/puhelin.md
@@ -13,8 +13,8 @@ sitemap: false
lang: fi
---
-Uudet puhelimet: https://android.com/one
-LineageOS-yhteensopivuus: https://wiki.lineageos.org/devices/
+Uudet puhelimet: https://android.com/one LineageOS-yhteensopivuus:
+https://wiki.lineageos.org/devices/
Käytettyjä puhelimia suomalaisilta tai suomenkielisiltä yrityksiltä:
diff --git a/n/reuse.md b/n/reuse.md
index e850cc9..7ce0c34 100644
--- a/n/reuse.md
+++ b/n/reuse.md
@@ -35,12 +35,13 @@ SPDX-License-Identifier: CC-BY-SA-4.0
> reuse is a tool for compliance with the REUSE recommendations.
-says [their GitHub description](https://github.com/fsfe/reuse-tool) and
-in practice this means having a license header in all files or alternatively
-a `file.license` file. The tool can generate these, but I never remember
-the commands.
+says [their GitHub description](https://github.com/fsfe/reuse-tool) and in
+practice this means having a license header in all files or alternatively a
+`file.license` file. The tool can generate these, but I never remember the
+commands.
-For more detailed explanation, consult [reuse.software/tutorial](https://reuse.software/tutorial/)
+For more detailed explanation, consult
+[reuse.software/tutorial](https://reuse.software/tutorial/)
---
diff --git a/n/systemd-boot.md b/n/systemd-boot.md
index 4f8af03..342028d 100644
--- a/n/systemd-boot.md
+++ b/n/systemd-boot.md
@@ -11,9 +11,10 @@ sitemap: false
lang: en
---
-This is mostly based on [kowalski7.cc.xyz instructions](https://kowalski7cc.xyz/blog/systemd-boot-fedora-32/) which also tells
-more clearly what to do. These are my notes on what I have done on top of it
-and probably not very much comprehensible by others than me.
+This is mostly based on
+[kowalski7.cc.xyz instructions](https://kowalski7cc.xyz/blog/systemd-boot-fedora-32/)
+which also tells more clearly what to do. These are my notes on what I have done
+on top of it and probably not very much comprehensible by others than me.
@@ -43,17 +44,17 @@ later.
1. `sudo mkdir $(cat /etc/machine-id)` also note the machine-id, it's used a
lot.
1. `sudo dnf install systemd-boot-unsigned sdubby -y`
-1. `cat /proc/cmdline` noting it, it will become included in
- `kernel_cmdline=""` in `/etc/dracut.conf.d/99-cmdline.conf` (or other
- freeform name as long as it ends to .conf?) Might also be worth it to note
- other dracut configuration files including defaults
- `/usr/lib/dracut/dracut.conf.d`
+1. `cat /proc/cmdline` noting it, it will become included in `kernel_cmdline=""`
+ in `/etc/dracut.conf.d/99-cmdline.conf` (or other freeform name as long as it
+ ends to .conf?) Might also be worth it to note other dracut configuration
+ files including defaults `/usr/lib/dracut/dracut.conf.d`
1. TODO BOOTCTL INSTALL FROM ARCH WIKI?
1. TODO `printf "\tsudo mkdir /boot/%b/%b\n" "$MACHINEID" "$EXPECTEDKERNEL"`
-1. TODO `printf "\tsudo kernel-install add %b /lib/modules/%b/vmlinuz\n" "$EXPECTEDKERNEL" "$EXPECTEDKERNEL"`
-1. The original instructions said to `sudo dnf reinstall kernel-core`, but
- this has deviated with systemd-uki. They also said to `sudo bootctl` to
- see if it got installed properly before...
+1. TODO
+ `printf "\tsudo kernel-install add %b /lib/modules/%b/vmlinuz\n" "$EXPECTEDKERNEL" "$EXPECTEDKERNEL"`
+1. The original instructions said to `sudo dnf reinstall kernel-core`, but this
+ has deviated with systemd-uki. They also said to `sudo bootctl` to see if it
+ got installed properly before...
1. `sudo reboot`
1. TODO: PROTECTED PACKAGES SHELL-THINGS!
@@ -64,9 +65,9 @@ the image, but that doesn't seem to be the case for UKI. TODO!
# REMOVE ME UPON CONFIRMING THE ABOVE IS CORRECT
-1. Read https://kowalski7cc.xyz/blog/systemd-boot-fedora-32/ very helpful and base of this
-2. Anaconda inst.sdboot
- 3.efi mounttaus /efi, fstab
+1. Read https://kowalski7cc.xyz/blog/systemd-boot-fedora-32/ very helpful and
+ base of this
+2. Anaconda inst.sdboot 3.efi mounttaus /efi, fstab
3. Mkdir /efi/machine-id
4. systemd-boot-unsigned sdubby
5. cat /proc/cmdline
diff --git a/n/telegram.md b/n/telegram.md
index db71713..877b8bc 100644
--- a/n/telegram.md
+++ b/n/telegram.md
@@ -1,6 +1,8 @@
---
title: Telegram language links
-excerpt: You have ended up to my note-to-self on languages of Telegram that I care about (as /setlanguage/xx[<-beta>] is so difficult to remember)?
+excerpt:
+ You have ended up to my note-to-self on languages of Telegram that I care
+ about (as /setlanguage/xx[<-beta>] is so difficult to remember)?
layout: mini
permalink: /n/telegram.html
redirect_from: /r/telegram.html
diff --git a/n/telia.md b/n/telia.md
index 3201e16..fff3a55 100644
--- a/n/telia.md
+++ b/n/telia.md
@@ -5,20 +5,24 @@ redirect_from: /r/telia.html
sitemap: false
lang: fi
locale: fi_FI
-excerpt: Telia on pistänyt silmiini monissa asioissa, etenkin miten monta kertaa heidän verkkonsa on ollut nurin koko maassa ilman muiden operaattoreiden vastaavan häiriön tapahtumista.
+excerpt:
+ Telia on pistänyt silmiini monissa asioissa, etenkin miten monta kertaa heidän
+ verkkonsa on ollut nurin koko maassa ilman muiden operaattoreiden vastaavan
+ häiriön tapahtumista.
---
_{{ page.excerpt }}_
-Telian IPv6: https://yhteiso.telia.fi/t5/Kiinteat-nettiyhteydet-ja/Telia-IPv6/m-p/190240#M11822
+Telian IPv6:
+https://yhteiso.telia.fi/t5/Kiinteat-nettiyhteydet-ja/Telia-IPv6/m-p/190240#M11822
-- 2019-11-22: https://yle.fi/uutiset/3-11082343 "Telian verkon
- vikatilanteesta johtuen koko Suomessa hätäpuhelujen soittamisessa Telian
- liittymistä on ilmennyt häiriöitä."
+- 2019-11-22: https://yle.fi/uutiset/3-11082343 "Telian verkon vikatilanteesta
+ johtuen koko Suomessa hätäpuhelujen soittamisessa Telian liittymistä on
+ ilmennyt häiriöitä."
- https://yle.fi/uutiset/3-11083175 vaaratiedote ohi
- 2020-02-12: https://yle.fi/uutiset/3-11205636 "Telian mobiiliverkossa oli
laaja vikatilanne "
-- 2020-04-25: https://yle.fi/uutiset/3-11323265 "Telialla ongelmia
- yhteyksissä – vikaa selvitellään parhaillaan, syy ei vielä selvillä"
+- 2020-04-25: https://yle.fi/uutiset/3-11323265 "Telialla ongelmia yhteyksissä –
+ vikaa selvitellään parhaillaan, syy ei vielä selvillä"
- 2020-09-21: https://yle.fi/uutiset/3-11554861 "Telian liittymissä oli
häiriöitä hätäpuheluiden soittamisessa – Vika on korjattu"
diff --git a/n/yrityskone.md b/n/yrityskone.md
index 5d4d801..21fcda2 100644
--- a/n/yrityskone.md
+++ b/n/yrityskone.md
@@ -9,9 +9,7 @@ lang: fi
Käytettyjä enimmäkseen yrityskoneita suomalaisilta tai suomenkielisiltä
yrityksiltä:
-https://cimos.fi/
-https://taitonetti.fi/
-https://www.inrego.fi/
+https://cimos.fi/ https://taitonetti.fi/ https://www.inrego.fi/
Katso myös /n/puhelin
@@ -19,13 +17,11 @@ Katso myös /n/puhelin
people are the exact same._
+_Please keep in mind that everything in this page is just my opinion and not all
+trans or AS or \ people are the exact same._
diff --git a/pages/browser-extensions.markdown b/pages/browser-extensions.markdown
index 61b66f8..bf4b31a 100644
--- a/pages/browser-extensions.markdown
+++ b/pages/browser-extensions.markdown
@@ -169,7 +169,9 @@ TODO: Sort this list.
# Chromium flags
-These can generally be found from `about:flags` on Chromium based browsers, for Vivaldi explicit `vivaldi://flags` is required and it also has `chrome://settings` for the usual Chromium settings.
+These can generally be found from `about:flags` on Chromium based browsers, for
+Vivaldi explicit `vivaldi://flags` is required and it also has
+`chrome://settings` for the usual Chromium settings.
- `#enable-quic` - enabled
- `#enable-force-dark` - enabled with increased text constract
@@ -188,29 +190,49 @@ These likely also exist, but just without the `vendor-` part when searhcing.
# Firefox about:config
-_On LibreAwoo or autoconfig, refer to my [conf/librewolf.overrides.cfg in my shell-things repo](https://gitea.blesmrt.net/mikaela/shell-things/src/branch/master/conf/librewolf.overrides.cfg) which has kind of replaced this section?._
+_On LibreAwoo or autoconfig, refer to my
+[conf/librewolf.overrides.cfg in my shell-things repo](https://gitea.blesmrt.net/mikaela/shell-things/src/branch/master/conf/librewolf.overrides.cfg)
+which has kind of replaced this section?._
-- `security.certerrors.mitm.auto_enable_enterprise_roots` to `false` in order to not trust system CA store in case of enterprise MITM
-- `security.OCSP.require` to `true` in order to not allow [OCSP](https://en.wikipedia.org/wiki/OCSP_stapling) soft fail. This may be a bit paranoid, but _only the paranoid survive._
-- `privacy.resistFingerprinting.letterboxing` = `true` so letterboxing is
- used to hide real browser size. [Tor Browser support](https://support.torproject.org/tbb/maximized-torbrowser-window/)
+- `security.certerrors.mitm.auto_enable_enterprise_roots` to `false` in order to
+ not trust system CA store in case of enterprise MITM
+- `security.OCSP.require` to `true` in order to not allow
+ [OCSP](https://en.wikipedia.org/wiki/OCSP_stapling) soft fail. This may be a
+ bit paranoid, but _only the paranoid survive._
+- `privacy.resistFingerprinting.letterboxing` = `true` so letterboxing is used
+ to hide real browser size.
+ [Tor Browser support](https://support.torproject.org/tbb/maximized-torbrowser-window/)
- [Bug 70315: text in menus and boxes unreadable if using dark GTK theme](https://bugzilla.mozilla.org/show_bug.cgi?id=70315))
-- `image.animation_mode` to `once` in order to have gifs play once and
- then stop everywhere (`none` to never have them play).
-- `geo.provider.network.url` to `https://location.services.mozilla.com/v1/geolocate?key=%MOZILLA_API_KEY%` in order to send nearby WiFi networks to Mozilla instead of Google. See also [MLS Software](https://wiki.mozilla.org/CloudServices/Location/Software).
-- `network.IDN_show_punycode` to `true` in order to see punycode instead of UTF-8 in case of spoofing attempt. However makes reading non-ASCII domains painful. E.g. Cyrillic alphabet
-- `reader.parse-on-load.force-enabled` to `true` in order to allow reader use to be used on ~all websites and devices (regardless of low RAM?)
+- `image.animation_mode` to `once` in order to have gifs play once and then stop
+ everywhere (`none` to never have them play).
+- `geo.provider.network.url` to
+ `https://location.services.mozilla.com/v1/geolocate?key=%MOZILLA_API_KEY%` in
+ order to send nearby WiFi networks to Mozilla instead of Google. See also
+ [MLS Software](https://wiki.mozilla.org/CloudServices/Location/Software).
+- `network.IDN_show_punycode` to `true` in order to see punycode instead of
+ UTF-8 in case of spoofing attempt. However makes reading non-ASCII domains
+ painful. E.g. Cyrillic alphabet
+- `reader.parse-on-load.force-enabled` to `true` in order to allow reader use to
+ be used on ~all websites and devices (regardless of low RAM?)
-Future note: [`network.dns.blockDotOnion;false`](https://bugzilla.mozilla.org/show_bug.cgi?id=1497263) ?
+Future note:
+[`network.dns.blockDotOnion;false`](https://bugzilla.mozilla.org/show_bug.cgi?id=1497263)
+?
## Advertising
-Firefox seems to contain a lot of advertising or sponsoring nowadays, whether to other Mozilla products or whoever pays them. See also [Bug 1773860: Provide global long-term "disable all promos" flag](https://bugzilla.mozilla.org/show_bug.cgi?id=1773860).
+Firefox seems to contain a lot of advertising or sponsoring nowadays, whether to
+other Mozilla products or whoever pays them. See also
+[Bug 1773860: Provide global long-term "disable all promos" flag](https://bugzilla.mozilla.org/show_bug.cgi?id=1773860).
-- `browser.newtabpage.activity-stream.showSponsored` & `browser.newtabpage.activity-stream.showSponsored` to `false` to stop sponsored links.
-- `browser.vpn_promo.enabled` to `false` to hopefully stop Mozilla VPN advertisements
+- `browser.newtabpage.activity-stream.showSponsored` &
+ `browser.newtabpage.activity-stream.showSponsored` to `false` to stop
+ sponsored links.
+- `browser.vpn_promo.enabled` to `false` to hopefully stop Mozilla VPN
+ advertisements
- `browser.promo.focus.enabled` to `false` to stop Firefox Focus advertisements?
-- `browser.preferences.moreFromMozilla` to `false` to not hear from other Mozilla products?
+- `browser.preferences.moreFromMozilla` to `false` to not hear from other
+ Mozilla products?
## [Cookie banner blocking](https://www.ghacks.net/2022/12/24/configure-firefox-to-reject-cookie-banners-automatically/)
@@ -224,44 +246,69 @@ defaultPref("cookiebanners.bannerClicking.enabled", true);
## DNS over HTTPS
-- `network.trr.mode` depends, `3` to enforce DoH (required for ECH) or `5` to explicitly disable. `2` to prefer DoH, but fallback to system also exists.
- - [DoH is required by Firefox ESNI/ECH support](https://bugzilla.mozilla.org/show_bug.cgi?id=1500289) which encrypts SNI/ClientHello which would still leak which
- sites you visit. [Another bug about ESNI/ECH + Android DoT](https://bugzilla.mozilla.org/show_bug.cgi?id=1542754#c3)
- - Are you using a VPN? Do they provide a DoH server? If yes, maybe the answer is 3 for ESNI/ECH?
+- `network.trr.mode` depends, `3` to enforce DoH (required for ECH) or `5` to
+ explicitly disable. `2` to prefer DoH, but fallback to system also exists.
+ - [DoH is required by Firefox ESNI/ECH support](https://bugzilla.mozilla.org/show_bug.cgi?id=1500289)
+ which encrypts SNI/ClientHello which would still leak which sites you visit.
+ [Another bug about ESNI/ECH + Android DoT](https://bugzilla.mozilla.org/show_bug.cgi?id=1542754#c3)
+ - Are you using a VPN? Do they provide a DoH server? If yes, maybe the answer
+ is 3 for ESNI/ECH?
- `network.trr.early-AAAA` `true` to hopefully prefer IPv6
- `network.trr.uri` for the actual resolver address, e.g.
`https://doh.mullvad.net/dns-query`
- - and if they provide as SOCKS proxy as a killswitch, `network.proxy.socks_remote_dns` must be `false`
-- `network.trr.disable-ECS` to `false` if preferring speed over privacy or using NextDNS private ECS.
+ - and if they provide as SOCKS proxy as a killswitch,
+ `network.proxy.socks_remote_dns` must be `false`
+- `network.trr.disable-ECS` to `false` if preferring speed over privacy or using
+ NextDNS private ECS.
- [Wikipedia: EDNS Client Subnet](https://en.wikipedia.org/wiki/EDNS_Client_Subnet)
Some notes:
-- There is also `network.trr.exclude-etc-hosts` for those using `/etc/hosts` for blocking.
-- You can confirm TRR working by visiting `about:networking#dns` where
- you should be seeing DNS cache of Firefox and a lot of `TRR: true`.
-- ECH requires `network.dns.echconfig.enabled` and `network.dns.use_https_rr_as_altsvc` to be `true`,
- but they seem to default to true at least in Firefox Nightly so maybe no action is needed.
-- [While investingating how Android 9 Private DNS works, I also wrote a DNS provider comparsion here on 2019-07-11]({% post_url blog/2019-07-11-android-private-dns-in-practice %})
+- There is also `network.trr.exclude-etc-hosts` for those using `/etc/hosts` for
+ blocking.
+- You can confirm TRR working by visiting `about:networking#dns` where you
+ should be seeing DNS cache of Firefox and a lot of `TRR: true`.
+- ECH requires `network.dns.echconfig.enabled` and
+ `network.dns.use_https_rr_as_altsvc` to be `true`, but they seem to default to
+ true at least in Firefox Nightly so maybe no action is needed.
+- [While investingating how Android 9 Private DNS works, I also wrote a DNS
+ provider comparsion here on 2019-07-11]({% post_url blog/2019-07-11-android-private-dns-in-practice %})
## SSDs
-This information is from [Arch Wiki on Firefox tweaks](https://wiki.archlinux.org/index.php/Firefox/Tweaks)
+This information is from
+[Arch Wiki on Firefox tweaks](https://wiki.archlinux.org/index.php/Firefox/Tweaks)
-- `browser.sessionstore.interval` to `600000` in order to only store open session every ten minutes (instead of 15 seconds) in case of crashes.
- - alternatively `browser.sessionstore.resume_from_crash` to `false` to not store the session data for crash recovery at all. I think this may be the more healthy option with all the information flood and dozens of tabs.
+- `browser.sessionstore.interval` to `600000` in order to only store open
+ session every ten minutes (instead of 15 seconds) in case of crashes.
+ - alternatively `browser.sessionstore.resume_from_crash` to `false` to not
+ store the session data for crash recovery at all. I think this may be the
+ more healthy option with all the information flood and dozens of tabs.
Why?
-> Every object loaded (html page, jpeg image, css stylesheet, gif banner) is saved in the Firefox cache for future use without the need to download it again. It is estimated that only a fraction of these objects will be reused, usually about 30%. This because of very short object expiration time, updates or simply user behavior (loading new pages instead of returning to the ones already visited). The Firefox cache is divided into memory and disk cache and the latter results in frequent disk writes: newly loaded objects are written to memory and older objects are removed.
+> Every object loaded (html page, jpeg image, css stylesheet, gif banner) is
+> saved in the Firefox cache for future use without the need to download it
+> again. It is estimated that only a fraction of these objects will be reused,
+> usually about 30%. This because of very short object expiration time, updates
+> or simply user behavior (loading new pages instead of returning to the ones
+> already visited). The Firefox cache is divided into memory and disk cache and
+> the latter results in frequent disk writes: newly loaded objects are written
+> to memory and older objects are removed.
-> Firefox stores the current session status (opened urls, cookies, history and form data) to the disk on a regular basis. It is used to recover a previous session in case of crash. The default setting is to save the session every 15 seconds, resulting in frequent disk access.
+> Firefox stores the current session status (opened urls, cookies, history and
+> form data) to the disk on a regular basis. It is used to recover a previous
+> session in case of crash. The default setting is to save the session every 15
+> seconds, resulting in frequent disk access.
and this is the reason why Firefox is at times accused of killing SSDs.
---
-Changelog: [GitHub.com commits](https://github.com/Mikaela/mikaela.github.io/commits/master/pages/browser-extensions.markdown) | [gitea.blesmrt.net commits](https://gitea.blesmrt.net/mikaela/mikaela-info/commits/branch/master/pages/browser-extensions.markdown)
+Changelog:
+[GitHub.com commits](https://github.com/Mikaela/mikaela.github.io/commits/master/pages/browser-extensions.markdown)
+|
+[gitea.blesmrt.net commits](https://gitea.blesmrt.net/mikaela/mikaela-info/commits/branch/master/pages/browser-extensions.markdown)
diff --git a/pages/discuss.markdown b/pages/discuss.markdown
index a15ef9d..866771b 100644
--- a/pages/discuss.markdown
+++ b/pages/discuss.markdown
@@ -14,9 +14,14 @@ robots: noai
I have multiple instant messaging chatrooms.
-- [The ones listed below](#the-links) are for comments to my blog, this website in general, my FOSS spam activity and a contact point for reaching me in general for not so private matters. They are connected together by [Matterbridge](https://github.com/42wim/matterbridge/#matterbridge).
+- [The ones listed below](#the-links) are for comments to my blog, this website
+ in general, my FOSS spam activity and a contact point for reaching me
+ in general for not so private matters. They are connected together by
+ [Matterbridge](https://github.com/42wim/matterbridge/#matterbridge).
- Many linking here utilize the rules listed below.
-- Others are simply curious about protocols, transports, relays, bridges, etc. _Why did they end up on this page when they could have ended up anywhere else?_
+- Others are simply curious about protocols, transports, relays, bridges, etc.
+ _Why did they end up on this page when they could have ended up anywhere
+ else?_
---
@@ -42,43 +47,63 @@ I have multiple instant messaging chatrooms.
## Rules
-[Contributor Covenant 2.1](https://www.contributor-covenant.org/version/2/1/code_of_conduct/) is the primary Code of Conduct here (which isn't forked due to this community forming around me and my website. Any project growing bigger would have its own), but we do have a couple of other rules too:
+[Contributor Covenant 2.1](https://www.contributor-covenant.org/version/2/1/code_of_conduct/)
+is the primary Code of Conduct here (which isn't forked due to this community
+forming around me and my website. Any project growing bigger would have its
+own), but we do have a couple of other rules too:
-- Don't send private messages without asking for a permission first unless your message is purely moderation related.
- - Please include your business in your first message and not only greeting. See [nohello.net](https://nohello.net) for more about that.
-- Don't share personal affairs of other people outside of the room. This includes, but isn't limited to, gender/sexual/romantic orientation questioning, plurality, religion, etc. When in doubt, assume it's private.
- - Mind the limitations of machines and people especially in the private side. Transport encryption is not [end-to-end encryption](https://en.wikipedia.org/wiki/End-to-end_encryption), which can be broken by a compromised client device (including, but not limited to bot/relay/bridge) or the protocol in question may neglect to encrypt something [like Matrix does for reactions](https://github.com/matrix-org/matrix-spec/issues/660).
-- For other matters, [_Chatham House Rule_](https://www.chathamhouse.org/about-us/chatham-house-rule) applies.
+- Don't send private messages without asking for a permission first unless your
+ message is purely moderation related.
+ - Please include your business in your first message and not only greeting.
+ See [nohello.net](https://nohello.net) for more about that.
+- Don't share personal affairs of other people outside of the room. This
+ includes, but isn't limited to, gender/sexual/romantic orientation
+ questioning, plurality, religion, etc. When in doubt, assume it's private.
+ - Mind the limitations of machines and people especially in the private side.
+ Transport encryption is not
+ [end-to-end encryption](https://en.wikipedia.org/wiki/End-to-end_encryption),
+ which can be broken by a compromised client device (including, but not
+ limited to bot/relay/bridge) or the protocol in question may neglect to
+ encrypt something
+ [like Matrix does for reactions](https://github.com/matrix-org/matrix-spec/issues/660).
+- For other matters,
+ [_Chatham House Rule_](https://www.chathamhouse.org/about-us/chatham-house-rule)
+ applies.
## Languages
As for languages; English is preferred due to majority of the discussion
participants speaking it, but Finnish and Esperanto are also fine.
I sadly -don't consider myself capable of holding a discussion in other languages, but -I do hope to be able to grow this list in the future. +don't consider myself capable of holding a discussion in other languages, but I +do hope to be able to grow this list in the future. ## The links -- IRC@Etro, [`#mikaela.info`](ircs://etro.mikaela.info:6697/#mikaela.info) - my selfhosted IRC server. +- IRC@Etro, [`#mikaela.info`](ircs://etro.mikaela.info:6697/#mikaela.info) my + selfhosted IRC server. - [(Recommended) Gamja webchat](https://irc.etro.mikaela.info/#mikaela.info) - `MapAddress etro.mikaela.info otzmigofmchtadpek223bkmrzqoa6mmvhmr5dxqurcrtwalizfibuxid.onion` - [LiberaChat], [`#mikaela.info`](ircs://irc.libera.chat:6697/#mikaela.info) - - [Gamja webchat](https://web.libera.chat/gamja/#mikaela.info), [KiwiIRC webchat](https://web.libera.chat/#mikaela.info). _Warning: Libera.Chat has no message history_ + - [Gamja webchat](https://web.libera.chat/gamja/#mikaela.info), + [KiwiIRC webchat](https://web.libera.chat/#mikaela.info). _Warning: + Libera.Chat has no message history_ - `MapAddress palladium.libera.chat libera75jm6of4wxpxt4aynol3xjmbtxgfyjpu34ss4d7r7q2v5zrpyd.onion` -- [Matrix], [`#aminda.eu:pikaviestin.fi`](matrix:roomid/ruWhXaXgrPjaSSecvb:matrix.org?action=join&via=matrix.org&via=tedomum.net&via=pikaviestin.fi&via=beeper.com&via=envs.net), +- [Matrix], + [`#aminda.eu:pikaviestin.fi`](matrix:roomid/ruWhXaXgrPjaSSecvb:matrix.org?action=join&via=matrix.org&via=tedomum.net&via=pikaviestin.fi&via=beeper.com&via=envs.net), a decentralised conversation store. - [Convene webchat](https://letsconvene.im/app/#/join/%23mikaela.info:matrix.org) - [PirateIRC], [`#mikaela.info`](ircs://irc.pirateirc.net:6697/#mikaela.info) - [Gamja webchat](https://webchat.pirateirc.net/) - `MapAddress irc.pirateirc.net cbmtec5xuhpjwjq245kpp5jk2wij63ydgu5vwbxvdamzibfubc5uzaqd.onion` -- [Telegram], [invite link](https://t.me/joinchat/OEuthjzmg60xNzA0) a - popular instant messenger with open source clients. +- [Telegram], [invite link](https://t.me/joinchat/OEuthjzmg60xNzA0) a popular + instant messenger with open source clients. - [Twitch], [Ciblia](https://twitch.tv/Ciblia), a propietary game streaming platform. - - Expect my streaming to happen in [mikaela@libremedia.video](https://libremedia.video/accounts/mikaela/) + - Expect my streaming to happen in + [mikaela@libremedia.video](https://libremedia.video/accounts/mikaela/) (PeerTube) instead. -- [XMPP], [`mikaela.info@conference.blesmrt.net`](xmpp:mikaela.info@conference.blesmrt.net?join), +- [XMPP], + [`mikaela.info@conference.blesmrt.net`](xmpp:mikaela.info@conference.blesmrt.net?join), a federated chat protocol. [ergochat]: https://ergo.chat/ @@ -90,67 +115,81 @@ I do hope to be able to grow this list in the future. [twitch]: https://twitch.tv/ [xmpp]: https://xmpp.org/ -**_NOTICE ON LOG AVAILABILITY!_** The logging and history visiblity varies by protocol and thus -users joining in the future could see messages up to one year or longer in the -past. +**_NOTICE ON LOG AVAILABILITY!_** The logging and history visiblity varies by +protocol and thus users joining in the future could see messages up to one year +or longer in the past. ## A couple of words on protocols - _IRC_ was invented in 1988 and regardless of developing integrated message - storage since then, it's still _trivial to setup_ and runs well on _a toaster_. - _IRC servers_ are generally _[easy to enable Tor support on](https://github.com/ergochat/ergo/blob/master/docs/MANUAL.md#tor)_ and _IRC clients_ - widely come with _[proxy settings](https://hexchat.readthedocs.io/en/latest/tips.html#tor)_ where _[Tor can be enabled](https://weechat.org/files/doc/stable/weechat_user.en.html#irc_tor_sasl)_. My personal - _IRC_ history begins in 2010 as user and since then I have also opered - mostly on _Charybdis+Atheme_ and nowadays on a couple of _Ergos_. -- _XMPP_ runs on _a bit more powerful toaster_ and the servers talk to each other - without prior approval, it was originally introduced in 1999. I don't have - a record on when I begun using it as _all multi-protocol chat apps_ that were - common even before 2010 supported it. I haven't had a need or desire to _selfhost_. + storage since then, it's still _trivial to setup_ and runs well on _a + toaster_. _IRC servers_ are generally + _[easy to enable Tor support on](https://github.com/ergochat/ergo/blob/master/docs/MANUAL.md#tor)_ + and _IRC clients_ widely come with + _[proxy settings](https://hexchat.readthedocs.io/en/latest/tips.html#tor)_ + where + _[Tor can be enabled](https://weechat.org/files/doc/stable/weechat_user.en.html#irc_tor_sasl)_. + My personal _IRC_ history begins in 2010 as user and since then I have also + opered mostly on _Charybdis+Atheme_ and nowadays on a couple of _Ergos_. +- _XMPP_ runs on _a bit more powerful toaster_ and the servers talk to each + other without prior approval, it was originally introduced in 1999. I don't + have a record on when I begun using it as _all multi-protocol chat apps_ that + were common even before 2010 supported it. I haven't had a need or desire to + _selfhost_. - _Telegram_ was introduced in 2013 and is a popular _instant messenger_ with many _open source clients (not server)_ also on minority platforms (by third - parties). It's favoured by many for stickers and ease-to-use, while that - comes with _concern on security and privacy_. + parties). It's favoured by many for stickers and ease-to-use, while that comes + with _concern on security and privacy_. - _Matrix_ was introduced in 2014 and I started using it in 2016. Many of the - _client and server implementations are heavy_, _especially on server side_ requiring what to outside looks - like _a constant maintenance_ to deal with the _implementation performance issues_, - _I am not interested in even trying to selfhost a Matrix (home)server and bridges - until the situation significantly improves_. _[Matrix clients also seldom support connecting through Tor easily](https://github.com/vector-im/element-meta/issues/200)_, - while the _[Synapse server by Matrix.org team doesn't support connecting](https://github.com/matrix-org/synapse/issues/5152) through [I2P or Tor](https://github.com/matrix-org/synapse/issues/5455) at [all](https://github.com/matrix-org/synapse/issues/7088)_. - - Exception: [Hydrogen](https://hydrogen.element.io) ([GitHub](https://github.com/vector-im/hydrogen-web)) - is the only client I have encountered that works well on Nokia 1 TA-1047 - or in other words passes the so-called toaster test. It does self-describe - as _A minimal Matrix chat client, focused on performance, offline - functionality, and broad browser support_, which it redeems. - - Good luck to users of either [dendrite.matrix.org or matrix.org for entering captchas in Matrix clients.](https://github.com/matrix-org/matrix.org/issues/1314) + _client and server implementations are heavy_, _especially on server side_ + requiring what to outside looks like _a constant maintenance_ to deal with the + _implementation performance issues_, _I am not interested in even trying to + selfhost a Matrix (home)server and bridges until the situation significantly + improves_. + _[Matrix clients also seldom support connecting through Tor easily](https://github.com/vector-im/element-meta/issues/200)_, + while the + _[Synapse server by Matrix.org team doesn't support connecting](https://github.com/matrix-org/synapse/issues/5152) + through [I2P or Tor](https://github.com/matrix-org/synapse/issues/5455) at + [all](https://github.com/matrix-org/synapse/issues/7088)_. + - Exception: [Hydrogen](https://hydrogen.element.io) + ([GitHub](https://github.com/vector-im/hydrogen-web)) is the only client I + have encountered that works well on Nokia 1 TA-1047 or in other words passes + the so-called toaster test. It does self-describe as _A minimal Matrix chat + client, focused on performance, offline functionality, and broad browser + support_, which it redeems. + - Good luck to users of either + [dendrite.matrix.org or matrix.org for entering captchas in Matrix clients.](https://github.com/matrix-org/matrix.org/issues/1314) ## And on transports, relays and bridges - One of the marketing points of _XMPP_ was to connect to other protocols by means of transports. They plug into a _XMPP server_ and can be provided either by yours or be open for other _XMPP servers_. -- The word _relay_ is often used on _bots which copy messages from one protocol/network - and paste (or more simply said relay) it to another_. They aren't transparent and thus the - messages from them appear to be coming from bots beginning with the message - sender instead of being completely transparent. This is what is _commonly - used on IRC to connect to other IRC networks or protocols_. +- The word _relay_ is often used on _bots which copy messages from one + protocol/network and paste (or more simply said relay) it to another_. They + aren't transparent and thus the messages from them appear to be coming from + bots beginning with the message sender instead of being completely + transparent. This is what is _commonly used on IRC to connect to other IRC + networks or protocols_. - _Matterbridge regardless of the name acts like a relay. Like IRC and XMPP_, - it also _runs on a toaster requiring only [the binary](https://github.com/42wim/matterbridge/releases) - and a [config file](https://gitea.blesmrt.net/mikaela/gist/src/branch/master/irc/matterbridge/matterbridge-example.toml)_ + it also _runs on a toaster requiring only + [the binary](https://github.com/42wim/matterbridge/releases) and a + [config file](https://gitea.blesmrt.net/mikaela/gist/src/branch/master/irc/matterbridge/matterbridge-example.toml)_ being trivial to setup anywhere quickly or move around. - _[Recent IRC development allows (RELAYMSG)](https://github.com/ircv3/ircv3-specifications/pull/417)_ - allows relays to be transparent making messages appear from users outside - of the channel that don't actually exist. This is similar to _Discord webhooks + allows relays to be transparent making messages appear from users outside of + the channel that don't actually exist. This is similar to _Discord webhooks (that Matterbridge also supports) and Matrix Discord bridge_. - - Common complaint from _Matrix_ users is that they look ugly, but as shown - by _IRC and Discord_, that doesn't have to be the case + - Common complaint from _Matrix_ users is that they look ugly, but as shown by + _IRC and Discord_, that doesn't have to be the case _[and I hope Matrix will fix their issue allowing low-budget "toasterbridges"](https://github.com/matrix-org/matrix-spec/issues/840)_. - _Bridges are popularised by Matrix_ and _are almost XMPP transports_. However - while _XMPP transports connect to the other protocol, bridges attempt to - copy everything on both sides_ so _Matrix users_ see each other directly instead - of through the _transport_ on the other side and on the other side of _open protocols_ - _Matrix users_ can be interacted with as if they were native to it. - - Unlike _XMPP_, the _bridges also tend to be heavy and require a full homeserver - setup._ The _IRC bridge also generally requires blessing from the IRC network_ - and while some public bridges exist, they _move the control away from you_ - hijacking the room to _their rules_ and often have _performance trouble - compared to "local toaster matterbridge"._ + while _XMPP transports connect to the other protocol, bridges attempt to copy + everything on both sides_ so _Matrix users_ see each other directly instead of + through the _transport_ on the other side and on the other side of _open + protocols_ _Matrix users_ can be interacted with as if they were native to it. + - Unlike _XMPP_, the _bridges also tend to be heavy and require a full + homeserver setup._ The _IRC bridge also generally requires blessing from the + IRC network_ and while some public bridges exist, they _move the control + away from you_ hijacking the room to _their rules_ and often have + _performance trouble compared to "local toaster matterbridge"._ diff --git a/pages/irc/bot.markdown b/pages/irc/bot.markdown index e0f6cf3..ccde45c 100644 --- a/pages/irc/bot.markdown +++ b/pages/irc/bot.markdown @@ -3,7 +3,9 @@ layout: page title: The IRC bot Euforia permalink: /irc/bot.html sitemap: true -excerpt: "A little about my IRC bot. Useful links, why it doesn't reply to me, how to make it recognize me, what does it actually do?" +excerpt: + "A little about my IRC bot. Useful links, why it doesn't reply to me, how to + make it recognize me, what does it actually do?" redirect_from: /bot.html published: false --- @@ -17,14 +19,13 @@ _Please read also [rules of my channels.](https://mikaela.info/channel.html)_ ## Limnoria -My bot is [Limnoria] which is currently the most popular [Supybot] fork -that is still under active development and it has merged in features of -another popular fork, [Gribble]. +My bot is [Limnoria] which is currently the most popular [Supybot] fork that is +still under active development and it has merged in features of another popular +fork, [Gribble]. -My role with [Limnoria] was Finnish translator and IRC support and I also -made minor changes to make some default configuration variables more -reasonable. Most of [documentation] since [Supybot] and before my leaving -is also written by me. +My role with [Limnoria] was Finnish translator and IRC support and I also made +minor changes to make some default configuration variables more reasonable. Most +of [documentation] since [Supybot] and before my leaving is also written by me. [supybot]: https://github.com/Supybot/Supybot [limnoria]: https://github.com/ProgVal/Limnoria @@ -35,8 +36,8 @@ is also written by me. ### Addressing the bot -The following table opens where the bot will reply to in channel. In PM -the bot replies to everything _(without prefix)_. +The following table opens where the bot will reply to in channel. In PM the bot +replies to everything _(without prefix)_.
-For checking the channel specific prefixes, refer to the following
-commands. They can be used in channel (if you know the prefix) or PM.
+For checking the channel specific prefixes, refer to the following commands.
+They can be used in channel (if you know the prefix) or PM.
-International used devices (the goal of this note is business devices, but
-I am unsure whether all here are):
+International used devices (the goal of this note is business devices, but I am
+unsure whether all here are):
-Hungary:
-https://www.marseus.com/
+Hungary: https://www.marseus.com/
-Czech Republic in Czech
-https://www.gigacomputer.cz/
+Czech Republic in Czech https://www.gigacomputer.cz/
diff --git a/pages/404.markdown b/pages/404.markdown
index d1c4350..c5d4c7d 100644
--- a/pages/404.markdown
+++ b/pages/404.markdown
@@ -6,4 +6,5 @@ excerpt: "404, not found, don't bother clicking..."
lang: en
---
-Sorry, whatever you were looking for, is not here. Maybe the navigation bar above or on the top right on smaller displays will help you?
+Sorry, whatever you were looking for, is not here. Maybe the navigation bar
+above or on the top right on smaller displays will help you?
diff --git a/pages/about.markdown b/pages/about.markdown
index b949e5a..75d17f4 100644
--- a/pages/about.markdown
+++ b/pages/about.markdown
@@ -2,100 +2,100 @@
title: About me
layout: page
permalink: /about.html
-excerpt: "A little about me on transness, Asperger's syndrome/autism, feminism, asexuality & using Linux."
+excerpt:
+ "A little about me on transness, Asperger's syndrome/autism, feminism,
+ asexuality & using Linux."
published: false
lang: en
---
-Even if I talk about these things openly here, I prefer that
-you don't talk about me being these minorities to anyone
-and let me tell by myself if I see reason to do it.
-People interested enough can put my name to any search engine and find here sooner or later.
+Even if I talk about these things openly here, I prefer that you
+don't talk about me being these minorities to anyone and let me
+tell by myself if I see reason to do it. People interested enough can
+put my name to any search engine and find here sooner or later.
-If you did out me, you would risk me being treated differently and
-possibly cause dangerous concequences.
+If you did out me, you would risk me being treated differently and possibly
+cause dangerous concequences.
-On this page I am trying to explain myself more or those things that you
-might wonder in my self-description. Some things that I explain here may
-overlap with different features.
+On this page I am trying to explain myself more or those things that you might
+wonder in my self-description. Some things that I explain here may overlap with
+different features.
_For more material about these things, please see [GRSM links](/links2)._
## GirlsLikeUs — I am a trans woman
-It simply means that I was incorrectly defined as boy at birth which I
-never was. I didn't always know it, but around 14-15 Dysphoria really hit
-me.
+It simply means that I was incorrectly defined as boy at birth which I never
+was. I didn't always know it, but around 14-15 Dysphoria really hit me.
-I was always different from boys and I have been always bullied and I
-became suicidal and depressed. I was diagnosed with AS which didn't so
-much, but finally I came to realization on who I am and started the
-progress to be recognized as myself.
+I was always different from boys and I have been always bullied and I became
+suicidal and depressed. I was diagnosed with AS which didn't so much, but
+finally I came to realization on who I am and started the progress to be
+recognized as myself.
As the progress is too slow in Finland I ended up starting HRT
([Hormone Replacement Therapy](https://en.wikipedia.org/wiki/Hormone_replacement_therapy))
-by myself (like many (if not most) of us here do) and was on it for year
-before getting diagnosed and getting HRT officially.
+by myself (like many (if not most) of us here do) and was on it for year before
+getting diagnosed and getting HRT officially.
-Many people have said that I am nowadays happier and smile more and other
-things like that and I know this is who I am.
+Many people have said that I am nowadays happier and smile more and other things
+like that and I know this is who I am.
-It's also not very nice when you separate sex and gender by saying "your
-gender can be female, but you are always biologically male" and it has
-been noted multiple times that gender is biological.
-_[GRSM links](/links2)_
+It's also not very nice when you separate sex and gender by saying "your gender
+can be female, but you are always biologically male" and it has been noted
+multiple times that gender is biological. _[GRSM links](/links2)_
- [How to respect a Transgender person at WikiHow](http://www.wikihow.com/Respect-a-Transgender-Person)
-_I feel this part doesn't transmit how being trans feels and some things
-should possibly be mentioned here..._
+_I feel this part doesn't transmit how being trans feels and some things should
+possibly be mentioned here..._
## AS - Asperger's Syndrome
-I am AS-person and you might see it from the way I write and speak. I have
-some over-sensitive senses like sense of hearing and it becomes difficult
-for me to speak if I try to look into your eyes at the same time, so I am
-not trying to be impolite or anything, it's just easier to not look at you
-while I speak. Same applies to understanding your speaking.
+I am AS-person and you might see it from the way I write and speak. I have some
+over-sensitive senses like sense of hearing and it becomes difficult for me to
+speak if I try to look into your eyes at the same time, so I am not trying to be
+impolite or anything, it's just easier to not look at you while I speak. Same
+applies to understanding your speaking.
_This paragraph is stub -.-_
- [How to understand Autism at WikiHow](http://www.wikihow.com/Understand-Autism)
- - Might apply more to children, but it's a feature so one won't simply
- get healed from it.
+ - Might apply more to children, but it's a feature so one won't simply get
+ healed from it.
-_I have afterwards learned that I am also a [Higly Sensitive Person (HSP](https://en.wikipedia.org/wiki/Sensory_processing_sensitivity), but it
-overlaps with autism a little and I don't know what to start typing it and
-it's piece of information that would mainly interest another HSP like
-many other things on this page, so I am just leaving it here._
+_I have afterwards learned that I am also a
+[Higly Sensitive Person (HSP](https://en.wikipedia.org/wiki/Sensory_processing_sensitivity),
+but it overlaps with autism a little and I don't know what to start typing it
+and it's piece of information that would mainly interest another HSP like many
+other things on this page, so I am just leaving it here._
## Ace & Relationship Anarchist
_I am asexual and possibly relationship anarchist, but it will be seen..._
-I used to define myself as poly-curiuos (wondering if I am poly (capable
-of having simultaneous close romantic relationships with two or more
-people or not) and demiromantic (the ace of diamonds playing card is their
-symbol shared by demisexuals) which means only forming romantic attraction
-after forming close emotional bond with the person
+I used to define myself as poly-curiuos (wondering if I am poly (capable of
+having simultaneous close romantic relationships with two or more people or not)
+and demiromantic (the ace of diamonds playing card is their symbol shared by
+demisexuals) which means only forming romantic attraction after forming close
+emotional bond with the person
-At some point I started wondering does touching and caring have to be
-limited into relationship and found
-[Romantic Asexual, or Touch Hunger?](https://abnormaldiversity.blogspot.fi/2012/12/romantic-asexual-or-touch-hunger.html?) which made sense and made
-me think that there is no romanticity, just sensuality and in the bottom
-relationship anarchy. As what is the difference between friend and partner,
-what prevents you from (consentually) cuddling or having sex with friends?
-What prevents you from loving your friends and is loving so different from
-liking and don't you sometimes use the words interchangeably? What prevents
-you from doing all the things you wish to do with your partner with some
-friend? What if love comes after you stop for especially looking for one
-or multiple people to call as partner(s)?
+At some point I started wondering does touching and caring have to be limited
+into relationship and found
+[Romantic Asexual, or Touch Hunger?](https://abnormaldiversity.blogspot.fi/2012/12/romantic-asexual-or-touch-hunger.html?)
+which made sense and made me think that there is no romanticity, just sensuality
+and in the bottom relationship anarchy. As what is the difference between friend
+and partner, what prevents you from (consentually) cuddling or having sex with
+friends? What prevents you from loving your friends and is loving so different
+from liking and don't you sometimes use the words interchangeably? What prevents
+you from doing all the things you wish to do with your partner with some friend?
+What if love comes after you stop for especially looking for one or multiple
+people to call as partner(s)?
I have found a word for this, _quoiromantic_ (aka _wtfromantic_ or
-_whatromantic_) and I think I can still use the ace of diamonds symbol
-as _demisensual_ is the closest to describe my relationship with
-touch (meaning that I might like it after there is some sort of a emotional
-bond).
+_whatromantic_) and I think I can still use the ace of diamonds symbol as
+_demisensual_ is the closest to describe my relationship with touch (meaning
+that I might like it after there is some sort of a emotional bond).
However labels such as partner still appear to be necessary with unique
relationships based on their development or otherwise I am not understood.
@@ -108,24 +108,22 @@ happen will be seen when it happens._
## Feminist
-I support equal rights for everyone and the right of self-definition (or
-not requiring anyone to define themselves). Everyone should also be the one
-to choose what they do with their body (abortion, gender transition etc.)
-freely without complicated researchs and other people or society judging
-them.
+I support equal rights for everyone and the right of self-definition (or not
+requiring anyone to define themselves). Everyone should also be the one to
+choose what they do with their body (abortion, gender transition etc.) freely
+without complicated researchs and other people or society judging them.
_This is basicaly everything, but shouldn't I also say something more?_
## Linux user
-I have been used Linux since 2008, I started with [Ubuntu] \(8.04).
-My preferred distribution is [Ubuntu MATE] or [Arch Linux] or with servers
-[Debian], but I am also familiar with other distributions, mainly
-[Debian]-deriatives.
+I have been used Linux since 2008, I started with [Ubuntu] \(8.04). My preferred
+distribution is [Ubuntu MATE] or [Arch Linux] or with servers [Debian], but I am
+also familiar with other distributions, mainly [Debian]-deriatives.
-I have experience with [Fedora] and other distributions from that side too
-and I am not entirely lost while using them, but somehow I have always
-preferred Debian side. Maybe it's just that I have learned to use it.
+I have experience with [Fedora] and other distributions from that side too and I
+am not entirely lost while using them, but somehow I have always preferred
+Debian side. Maybe it's just that I have learned to use it.
[ubuntu]: http://www.ubuntu.com/desktop
[ubuntu mate]: https://ubuntu-mate.org/
@@ -143,26 +141,30 @@ getting removed entirely sometime._
## Life
-This link list to life post on my blog shouldn't be here, but it has no
-better place, so where else should it be?
+This link list to life post on my blog shouldn't be here, but it has no better
+place, so where else should it be?
_Time of writing in YYYY-MM-DD (ISO 8601): title or what it's about._
- [2015-03-25: Leaving bot communities & a little on my life]({% post_url 2015-03-25-leaving-bots-life %})
- [2015-04-03: Scum]({% post_url 2015-04-03-scum %})
- [2015-04-01: Saasta (same in Finnish)]({% post_url 2015-04-01-saasta %})
-- [2015-05-18: Somewhat more on my life & untold background of bots]({% post_url 2015-05-18-life-bot-background %})
-- [2015-06-16: Feelings and wounds of school bullying]({% post_url 2015-06-16-feelings %})
+- [2015-05-18: Somewhat more on my life & untold background
+ of bots]({% post_url 2015-05-18-life-bot-background %})
+- [2015-06-16: Feelings and wounds of
+ school bullying]({% post_url 2015-06-16-feelings %})
- [2015-06-29: Google translated "suicide post"](https://translate.google.fi/translate?sl=fi&tl=en&js=y&prev=_t&hl=fi&ie=UTF-8&u=https%3A%2F%2Fmikaela.info%2Ffinnish%2F2015%2F06%2F29%2Fminusta.html&edit-text=)
- _I was at psychiatrical hospital after writing this._
-- [2015-09-09: The most important post that I have written]({% post_url 2015-09-09-act-around-trans %})
+- [2015-09-09: The most important post that I
+ have written]({% post_url 2015-09-09-act-around-trans %})
- [2015-11-03: I moved to Lauttasaari, Helsinki]({% post_url 2015-11-03-moving %})
- way too positive for this section, but where else...
- [2015-11-21: Email to Legal Affairs Committee on how trans law must be based on the right of self-definition](https://translate.google.fi/translate?sl=fi&tl=en&js=y&prev=_t&hl=en&ie=UTF-8&u=https%3A%2F%2Fmikaela.info%2Ffinnish%2F2015%2F11%2F21%2Fsahkopostia-lakivaliokunnalle-translaki.html&edit-text=)
- [2017-04-18: Google Translated dance lesson trauma](https://translate.google.com/translate?sl=fi&tl=en&js=y&prev=_t&hl=en&ie=UTF-8&u=https%3A%2F%2Fmikaela.info%2Ffinnish%2F2017%2F04%2F18%2Ftanssitunti.html&edit-text=)
-- [2017-04-30: After trans process and AvPD, everything is OK]({% post_url 2017-04-30-post-trans %})
+- [2017-04-30: After trans process and AvPD, everything
+ is OK]({% post_url 2017-04-30-post-trans %})
---
-_Please keep in mind that everything in this page is just my opinion and
-not all trans or AS or \I sadly -don't consider myself capable of holding a discussion in other languages, but -I do hope to be able to grow this list in the future. +don't consider myself capable of holding a discussion in other languages, but I +do hope to be able to grow this list in the future. ## The links -- IRC@Etro, [`#mikaela.info`](ircs://etro.mikaela.info:6697/#mikaela.info) - my selfhosted IRC server. +- IRC@Etro, [`#mikaela.info`](ircs://etro.mikaela.info:6697/#mikaela.info) my + selfhosted IRC server. - [(Recommended) Gamja webchat](https://irc.etro.mikaela.info/#mikaela.info) - `MapAddress etro.mikaela.info otzmigofmchtadpek223bkmrzqoa6mmvhmr5dxqurcrtwalizfibuxid.onion` - [LiberaChat], [`#mikaela.info`](ircs://irc.libera.chat:6697/#mikaela.info) - - [Gamja webchat](https://web.libera.chat/gamja/#mikaela.info), [KiwiIRC webchat](https://web.libera.chat/#mikaela.info). _Warning: Libera.Chat has no message history_ + - [Gamja webchat](https://web.libera.chat/gamja/#mikaela.info), + [KiwiIRC webchat](https://web.libera.chat/#mikaela.info). _Warning: + Libera.Chat has no message history_ - `MapAddress palladium.libera.chat libera75jm6of4wxpxt4aynol3xjmbtxgfyjpu34ss4d7r7q2v5zrpyd.onion` -- [Matrix], [`#aminda.eu:pikaviestin.fi`](matrix:roomid/ruWhXaXgrPjaSSecvb:matrix.org?action=join&via=matrix.org&via=tedomum.net&via=pikaviestin.fi&via=beeper.com&via=envs.net), +- [Matrix], + [`#aminda.eu:pikaviestin.fi`](matrix:roomid/ruWhXaXgrPjaSSecvb:matrix.org?action=join&via=matrix.org&via=tedomum.net&via=pikaviestin.fi&via=beeper.com&via=envs.net), a decentralised conversation store. - [Convene webchat](https://letsconvene.im/app/#/join/%23mikaela.info:matrix.org) - [PirateIRC], [`#mikaela.info`](ircs://irc.pirateirc.net:6697/#mikaela.info) - [Gamja webchat](https://webchat.pirateirc.net/) - `MapAddress irc.pirateirc.net cbmtec5xuhpjwjq245kpp5jk2wij63ydgu5vwbxvdamzibfubc5uzaqd.onion` -- [Telegram], [invite link](https://t.me/joinchat/OEuthjzmg60xNzA0) a - popular instant messenger with open source clients. +- [Telegram], [invite link](https://t.me/joinchat/OEuthjzmg60xNzA0) a popular + instant messenger with open source clients. - [Twitch], [Ciblia](https://twitch.tv/Ciblia), a propietary game streaming platform. - - Expect my streaming to happen in [mikaela@libremedia.video](https://libremedia.video/accounts/mikaela/) + - Expect my streaming to happen in + [mikaela@libremedia.video](https://libremedia.video/accounts/mikaela/) (PeerTube) instead. -- [XMPP], [`mikaela.info@conference.blesmrt.net`](xmpp:mikaela.info@conference.blesmrt.net?join), +- [XMPP], + [`mikaela.info@conference.blesmrt.net`](xmpp:mikaela.info@conference.blesmrt.net?join), a federated chat protocol. [ergochat]: https://ergo.chat/ @@ -90,67 +115,81 @@ I do hope to be able to grow this list in the future. [twitch]: https://twitch.tv/ [xmpp]: https://xmpp.org/ -**_NOTICE ON LOG AVAILABILITY!_** The logging and history visiblity varies by protocol and thus -users joining in the future could see messages up to one year or longer in the -past. +**_NOTICE ON LOG AVAILABILITY!_** The logging and history visiblity varies by +protocol and thus users joining in the future could see messages up to one year +or longer in the past. ## A couple of words on protocols - _IRC_ was invented in 1988 and regardless of developing integrated message - storage since then, it's still _trivial to setup_ and runs well on _a toaster_. - _IRC servers_ are generally _[easy to enable Tor support on](https://github.com/ergochat/ergo/blob/master/docs/MANUAL.md#tor)_ and _IRC clients_ - widely come with _[proxy settings](https://hexchat.readthedocs.io/en/latest/tips.html#tor)_ where _[Tor can be enabled](https://weechat.org/files/doc/stable/weechat_user.en.html#irc_tor_sasl)_. My personal - _IRC_ history begins in 2010 as user and since then I have also opered - mostly on _Charybdis+Atheme_ and nowadays on a couple of _Ergos_. -- _XMPP_ runs on _a bit more powerful toaster_ and the servers talk to each other - without prior approval, it was originally introduced in 1999. I don't have - a record on when I begun using it as _all multi-protocol chat apps_ that were - common even before 2010 supported it. I haven't had a need or desire to _selfhost_. + storage since then, it's still _trivial to setup_ and runs well on _a + toaster_. _IRC servers_ are generally + _[easy to enable Tor support on](https://github.com/ergochat/ergo/blob/master/docs/MANUAL.md#tor)_ + and _IRC clients_ widely come with + _[proxy settings](https://hexchat.readthedocs.io/en/latest/tips.html#tor)_ + where + _[Tor can be enabled](https://weechat.org/files/doc/stable/weechat_user.en.html#irc_tor_sasl)_. + My personal _IRC_ history begins in 2010 as user and since then I have also + opered mostly on _Charybdis+Atheme_ and nowadays on a couple of _Ergos_. +- _XMPP_ runs on _a bit more powerful toaster_ and the servers talk to each + other without prior approval, it was originally introduced in 1999. I don't + have a record on when I begun using it as _all multi-protocol chat apps_ that + were common even before 2010 supported it. I haven't had a need or desire to + _selfhost_. - _Telegram_ was introduced in 2013 and is a popular _instant messenger_ with many _open source clients (not server)_ also on minority platforms (by third - parties). It's favoured by many for stickers and ease-to-use, while that - comes with _concern on security and privacy_. + parties). It's favoured by many for stickers and ease-to-use, while that comes + with _concern on security and privacy_. - _Matrix_ was introduced in 2014 and I started using it in 2016. Many of the - _client and server implementations are heavy_, _especially on server side_ requiring what to outside looks - like _a constant maintenance_ to deal with the _implementation performance issues_, - _I am not interested in even trying to selfhost a Matrix (home)server and bridges - until the situation significantly improves_. _[Matrix clients also seldom support connecting through Tor easily](https://github.com/vector-im/element-meta/issues/200)_, - while the _[Synapse server by Matrix.org team doesn't support connecting](https://github.com/matrix-org/synapse/issues/5152) through [I2P or Tor](https://github.com/matrix-org/synapse/issues/5455) at [all](https://github.com/matrix-org/synapse/issues/7088)_. - - Exception: [Hydrogen](https://hydrogen.element.io) ([GitHub](https://github.com/vector-im/hydrogen-web)) - is the only client I have encountered that works well on Nokia 1 TA-1047 - or in other words passes the so-called toaster test. It does self-describe - as _A minimal Matrix chat client, focused on performance, offline - functionality, and broad browser support_, which it redeems. - - Good luck to users of either [dendrite.matrix.org or matrix.org for entering captchas in Matrix clients.](https://github.com/matrix-org/matrix.org/issues/1314) + _client and server implementations are heavy_, _especially on server side_ + requiring what to outside looks like _a constant maintenance_ to deal with the + _implementation performance issues_, _I am not interested in even trying to + selfhost a Matrix (home)server and bridges until the situation significantly + improves_. + _[Matrix clients also seldom support connecting through Tor easily](https://github.com/vector-im/element-meta/issues/200)_, + while the + _[Synapse server by Matrix.org team doesn't support connecting](https://github.com/matrix-org/synapse/issues/5152) + through [I2P or Tor](https://github.com/matrix-org/synapse/issues/5455) at + [all](https://github.com/matrix-org/synapse/issues/7088)_. + - Exception: [Hydrogen](https://hydrogen.element.io) + ([GitHub](https://github.com/vector-im/hydrogen-web)) is the only client I + have encountered that works well on Nokia 1 TA-1047 or in other words passes + the so-called toaster test. It does self-describe as _A minimal Matrix chat + client, focused on performance, offline functionality, and broad browser + support_, which it redeems. + - Good luck to users of either + [dendrite.matrix.org or matrix.org for entering captchas in Matrix clients.](https://github.com/matrix-org/matrix.org/issues/1314) ## And on transports, relays and bridges - One of the marketing points of _XMPP_ was to connect to other protocols by means of transports. They plug into a _XMPP server_ and can be provided either by yours or be open for other _XMPP servers_. -- The word _relay_ is often used on _bots which copy messages from one protocol/network - and paste (or more simply said relay) it to another_. They aren't transparent and thus the - messages from them appear to be coming from bots beginning with the message - sender instead of being completely transparent. This is what is _commonly - used on IRC to connect to other IRC networks or protocols_. +- The word _relay_ is often used on _bots which copy messages from one + protocol/network and paste (or more simply said relay) it to another_. They + aren't transparent and thus the messages from them appear to be coming from + bots beginning with the message sender instead of being completely + transparent. This is what is _commonly used on IRC to connect to other IRC + networks or protocols_. - _Matterbridge regardless of the name acts like a relay. Like IRC and XMPP_, - it also _runs on a toaster requiring only [the binary](https://github.com/42wim/matterbridge/releases) - and a [config file](https://gitea.blesmrt.net/mikaela/gist/src/branch/master/irc/matterbridge/matterbridge-example.toml)_ + it also _runs on a toaster requiring only + [the binary](https://github.com/42wim/matterbridge/releases) and a + [config file](https://gitea.blesmrt.net/mikaela/gist/src/branch/master/irc/matterbridge/matterbridge-example.toml)_ being trivial to setup anywhere quickly or move around. - _[Recent IRC development allows (RELAYMSG)](https://github.com/ircv3/ircv3-specifications/pull/417)_ - allows relays to be transparent making messages appear from users outside - of the channel that don't actually exist. This is similar to _Discord webhooks + allows relays to be transparent making messages appear from users outside of + the channel that don't actually exist. This is similar to _Discord webhooks (that Matterbridge also supports) and Matrix Discord bridge_. - - Common complaint from _Matrix_ users is that they look ugly, but as shown - by _IRC and Discord_, that doesn't have to be the case + - Common complaint from _Matrix_ users is that they look ugly, but as shown by + _IRC and Discord_, that doesn't have to be the case _[and I hope Matrix will fix their issue allowing low-budget "toasterbridges"](https://github.com/matrix-org/matrix-spec/issues/840)_. - _Bridges are popularised by Matrix_ and _are almost XMPP transports_. However - while _XMPP transports connect to the other protocol, bridges attempt to - copy everything on both sides_ so _Matrix users_ see each other directly instead - of through the _transport_ on the other side and on the other side of _open protocols_ - _Matrix users_ can be interacted with as if they were native to it. - - Unlike _XMPP_, the _bridges also tend to be heavy and require a full homeserver - setup._ The _IRC bridge also generally requires blessing from the IRC network_ - and while some public bridges exist, they _move the control away from you_ - hijacking the room to _their rules_ and often have _performance trouble - compared to "local toaster matterbridge"._ + while _XMPP transports connect to the other protocol, bridges attempt to copy + everything on both sides_ so _Matrix users_ see each other directly instead of + through the _transport_ on the other side and on the other side of _open + protocols_ _Matrix users_ can be interacted with as if they were native to it. + - Unlike _XMPP_, the _bridges also tend to be heavy and require a full + homeserver setup._ The _IRC bridge also generally requires blessing from the + IRC network_ and while some public bridges exist, they _move the control + away from you_ hijacking the room to _their rules_ and often have + _performance trouble compared to "local toaster matterbridge"._ diff --git a/pages/irc/bot.markdown b/pages/irc/bot.markdown index e0f6cf3..ccde45c 100644 --- a/pages/irc/bot.markdown +++ b/pages/irc/bot.markdown @@ -3,7 +3,9 @@ layout: page title: The IRC bot Euforia permalink: /irc/bot.html sitemap: true -excerpt: "A little about my IRC bot. Useful links, why it doesn't reply to me, how to make it recognize me, what does it actually do?" +excerpt: + "A little about my IRC bot. Useful links, why it doesn't reply to me, how to + make it recognize me, what does it actually do?" redirect_from: /bot.html published: false --- @@ -17,14 +19,13 @@ _Please read also [rules of my channels.](https://mikaela.info/channel.html)_ ## Limnoria -My bot is [Limnoria] which is currently the most popular [Supybot] fork -that is still under active development and it has merged in features of -another popular fork, [Gribble]. +My bot is [Limnoria] which is currently the most popular [Supybot] fork that is +still under active development and it has merged in features of another popular +fork, [Gribble]. -My role with [Limnoria] was Finnish translator and IRC support and I also -made minor changes to make some default configuration variables more -reasonable. Most of [documentation] since [Supybot] and before my leaving -is also written by me. +My role with [Limnoria] was Finnish translator and IRC support and I also made +minor changes to make some default configuration variables more reasonable. Most +of [documentation] since [Supybot] and before my leaving is also written by me. [supybot]: https://github.com/Supybot/Supybot [limnoria]: https://github.com/ProgVal/Limnoria @@ -35,8 +36,8 @@ is also written by me. ### Addressing the bot -The following table opens where the bot will reply to in channel. In PM -the bot replies to everything _(without prefix)_. +The following table opens where the bot will reply to in channel. In PM the bot +replies to everything _(without prefix)_.