The effects of THC aren't an on/off kind of thing. There is a huge range of middle ground between baseline and high in the sky. You wouldn't call someone medicated on Adderall as prescribed by a doctor unfit for driving, either, would you? Yet a person self-medicating the same dosage without prescription is suddenly a danger to others. Which is insane. Same thing goes for THC IMO.
Not to mention that THC's psychoactive effects can be completely blocked by sufficient amounts of CBD and probably other compounds. You can try it yourself. Get CBD drops, ingest 100mg and try getting high. Even the most potent sativa will not work as you might expect.
dcron is very lightweight and has most of those features. Dunno about random delay/timeouts, but worst case those sound like a 10 line shell script away.
> dcron is very lightweight and has most of those features.
Hmm, let's see ...
- Choice 1: Use what comes with my system (two choices, systemd or, if for the anti-systemd people... cron)
- Choice 2: Install some random third-party that has not had any substancial git commits since 2014 (the 2019 commits are just admin metadata).
What makes you think adults don't like flavored liquids?
Seems insane to suggest that adults would prefer the taste of ashtray over apple or orange (I like fruity aromas). I mostly vape without flavoring nowadays because I'm lazy, but I just don't get the mindset. Adults like sugar, sweets, lemonade and all that stuff just as much as children do. Some seem to really like the taste of cigarettes, but I think for the most part people are just more comfortable to say "I like the taste" instead of "I'm addicted to nicotine", because inhaling burnt plant matter along with the diffused active agents and aromatic compounds generally isn't good for taste. Weed also tastes much better vaped.
For anyone who wants to go a similar route I can highly recommend OpenWrt as the OS. Not only does it run on cheap routers, but also on big x86 machines and even in VMs and/or containers. For example, I run OpenWrt on my desktop in a LXC container to manage networking (Wifi, bridging firewall for bridging VMs into the network, general firewall, etc.) through the nice webui. It gets direct to access the WiFi adapter and the host gets access through a bridge connected to the container via a VETH interface.
It comes with nice addon packages for stuff like Wireguard, all kinds of tunnels/VPN, adblockers, runs containers and a ton more. I even run it on a VPS as container with it having exclusive access to the "physical" NIC. The parent OS isn't directly accessible at all. Makes firewalling a breeze. The only open ports are for the Tor relay and Wireguard, through Wich I connect to the webui/ssh and do everything else.
I always found it baffling how a community maintained project like OpenWrt can not only keep routers updated for many years (unlike the manufacturer that gives you an update once in a blue moon for the first 2 years) but make these cheap routers so useful and so stable you just forget the thing is there in the first place. I can't remember the last time I had to reboot a router running OpenWrt because it started behaving erratically.
You can do a lot with these commodity ARM CPUs, 64-128MB of ram and a few tens of megabytes of flash storage.
i literally have my comcast router on a 24 hour time and it shutsdown for an hour each night from 3-4am . Communism style brownouts of internet over night
You SSH into it. Then do whatever you need to. There's nothing in the UI that can't be done via CLI as far as I know. Some plugins might not be 100% CLI compliant but at least the Base UI (luci) is completely transparent to the CLI via uci.
Do you have any recommended hardware for OpenWRT? I've been wanting to put in a low powered router/firewall on my home network that isn't controlled by a big vendor.
I haven't done a ton of research in this area, but I'd certainly like to use OpenWRT or OPNSense on my home routers/firewalls.
Side note: I've been trying to figure out a decent way to get rid of Android on my Galaxy S9+, but it appears to be locked.
At the end of the day, I just want to be in control of my bandwidth, my data, and know whats going on. Big companies are making this very complicated with all the tracking.
I recently re-enabled my pi-hole on a virtual machine, and it never ceases to amaze me what is talking to the internet without my permission. After digging into DoH a bit, I'm about to the point where I think I need to put in an outbound proxy, deny all outbound access except via the proxy, and iterate again and again.
I just don't want to have $200 a month in power bills to support my home network to save bandwidth and know what is traversing the net.
WRT3200ACM is what I use. It's one of the most powerful consumer devices with wifi supported by openwrt. It's powerful enough for a router with a little firewalling, VPN (wireguard only if you want speed), DoH and some Ad Filtering but thats pushing it's limits from my experience. If you want more power https://openbsdrouterguide.net/ is your friend.
That being said there is no hardcore prosumer hardware out there for this purpose. The moment you go beyond home user router hardware like the WRT3200acm you are in either CISCO Buisness stuff or custom server builds. Potentially a Raspberry Pi 4 with a PCIE ethernet card is closest to prosumer hardware out there and there's a lot of hacking involved to get that running to the same degree as a openwrt router
This is interesting. I'm going to research it further. I really appreciate the feedback. I'm really starting to hate DoH - and I may just not put any IoT thing on my network that uses it. Maybe that's the way to go.
But I doubt most consumers really care. It's complicated.
For techie home use of OpenWrt, I'm currently using Netgear R7800.
The R7800 is well supported by OpenWrt, has the hardware features I need, some room to gro, and it's affordable used. I paid about $90 for my first one, and about $70 for my backup unit.
For OpenWrt for smaller purposes, for which an R7800 is both overkill and physically bulky, I understand there are a bunch of near options now. I just keep some old WNDR3700 and WNDR3800 units on hand, which used to be my main routers, and actually still could be. (Sometimes they might be a simple WiFi bridge or print server. Other times, they might be an experimental LAN that needs different properties than I have set up for my main router, and with which I don't want to complicate my main router setup.)
I don't know if they specifically fit your bill, but the Turris devices are worth checking out [1]. They come out of the box with TurrisOS, which is an OpenWRT fork with some extra features (e.g. automatic updates, config snapshots) and some changes (e.g. knot resolver for dns). Turris are a bit opinionated about using DNSSEC, and I think historically it was a bit tricky to configure a custom DNS resolver, but it looks like that's now possible through their new UI [2]. By the way, they offer 3 UIs: Foris, reForis and OpenWRT's LuCI, and of course ssh is also available.
If you don't like the fork, at least with the Turris Omnia it looks like you can put on vanilla OpenWRT [3], but as always check the OpenWRT table of hardware for details before buying.
I think the PSU of the Turris Omnia is rated at 40W max, but I don't know what sort of real-world power draw you'd get with your specific use-case. I guess it depends on whether you use WiFi, the SFP port etc.
OpenWRT doesn't pack Python out of the box, so you need to install it, and have enough space for it, if you want to use Ansible. It uses a custom stack for configuration (like VyOS), so builtin ansible tasks won't always be so helpful. Configuration is not stored in a single place, but in several files, and it's easy to lock yourself out while testing changes: there's no commit-timeout, and there's no committing of changes, nor rollback. It's just editing random files, and restarting services.
I think there's a special configuration command that might fix some of the above issues, but I've been using the web interface (which actually does support committing and, to some extent, validation).
You know, I used to do this and give the same advice as well but after a lot of time spent on it, I am not anymore.
The way OpenWRT handles routing and firewall rules is particular and they apply their own terminology for some things. They have their own distro-specific packages for things like DHCP (odhcp(c)d) and firewall (fw3).
For very simple networks, it's very smooth to get to where you want. Add on dual-stack v4/v6, vlans, multiple firewall zones, routing policies etc and things start becoming very unpredictable.
Oh, and that adblock package? Turns out a single invalid line in a blocklist will completely break DNS (at least on the version I was running from last year).
Not to mention that (AFAIK) there's no good way to keep up to date with security patches and bugfixes while keeping the system stable.
After all the countless hours I poured into OpenWRT configuration, I finally realized that it's so much less pain and confusion with vanilla Debian with systemd-networkd (which BTW natively supports setting up Wireguard interfaces now) and firewalld+nftables, everything configured via ansible playbooks.
For someone diving into this today, it's a lot easier and more future-proof with nftables than iptables - and OpenWRT will be married to iptables for the foreseeable future.
It's great that it works for you, but if you like I did have some imposter syndrome over not perfectly understanding Linux networking and are happy that OpenWRT takes care of those confusing iptables rules and routing policies and what-not - you may just discover that learning how it actually works will take less work than abusing OpenWRT into doing what you want.
Sure, you have to give up the WebUI and some of the custom add-ons.
I am sure BSD or Rocky Linux are fine choices as well; Debian just happens to be what I mostly use for servers otherwise.
I don't want to hate too much on OpenWRT as it's great for novices with trivial needs and there are many devices where it or dd-wrt are the only readily available options. But if you run Linux anyway and have an x86/amd64/arm device you're going to use as a main router, I'd recommend choosing a "normal" distro and setting things up from scratch.
for home I can recommend openwrt running on a BT Home Hub 5A
you can buy them in the uk/ ebay for 15-20 pounds already with openwrt installed (you can do it yourself, but it includes a bit of soldering) - I have two in case the main one fails - talks to most if not all ISPs
I love openwrt now, it does take a bit of getting used to if you havent used it before.
I mainly use to lock my wifi down between hours for the kids. whilst keeping another wifi/ SSID open.
for security all my NAS's are wired and locked down to key wired computers - I keep meaning to create a Nextcloud gateway on docker
I thought about which OS for some of the same things and I realized that I would rather go with a lab version of a full enterprise firewall.
A Palo Alto VM gets you pretty much most of the sweet PA features without the cost, and a better approach than an outdated strategy like VLAN as Access Control, or zone firewalling, permitting the use of permit/deny by protocol, and overall better privilege tiering by network area.
I’m curious about PA firewalls. The product descriptions claim “Machine Learning” based routing/firewalls. What does that even mean? I’m a bit skeptical about AI being used in a firewall. Can someone help me understand why I should consider this instead of running pfsense on a Netgate appliance?
I have dd-wrt on a tp-link router and it works great and has been for about 3 years now. No issues. I just have to check the site about once a month and see if there's an update. I wish that was automated or had a notice in the web gui a new one is available. Very configurable and stable.
FWIW for portage (Gentoo) there is g-sorcery[0], which can create ebuilds for Emacs (m/elpa) and python packages automatically. Similarly there is also cargo-ebuild[1] which can create ebuilds for rust programs/libraries, including a list of all dependencies with hashes.
I've successfully used cargo-ebuild in the past to create ebuilds automatically, it's a breeze. I'd be surprised if similar tools didn't exist for deb/rpm based distros.
I'm always surprised how many problems people have with python on other distributions. On Gentoo I can install multiple versions at the same time, install libraries for any of those or just a specific python version of my choosing (including pypy), set a default python implementation (pypy) and of course I can pick the version of the libraries I need, too. It's not as flexible as nix, but quite close. Not a python dev though, so YMMV.
>I still sound a bit like an extremely out-of-date teenager.
I don't think it's surprising that the way you speak hasn't changed much when you stopped using the language. Your peers were mostly teens at the time and that's the manner of speech you picked up. Had you stayed in Germany and continued to speak with peers your age it surely would have developed along the way.
Sounds like a lack of exposure to me. With enough experience you should have no trouble to tell if others are speaking in a certain manner that is associated with male, female, child, teen, boss, subordinate, etc. etc. If you can tell you should have no problem talking correctly, or at least the way you want to be perceived by others.
If you can't tell the difference in how others use the language in stereotypical ways, you've basically not yet mastered the language.
I know from learning Japanese a bit myself. People often say using sources like anime and manga will make you sound like an anime character, which I think is ridiculous. Even in anime there are characters that talk quite normally (in fact a lot of them do, depending on what you watch, taking into account their age, gender, who they talk to, occupation and status, etc.) and it's easy enough to tell how actual usage in real life differs in real life by using some other sources, too. But even with only anime and manga as source, just use your brain and don't talk like friggin Naruto and you'd sound pretty normal. Given enough input variety at least.
I never check the "new" page, but this is the first time I've seen it and I've been reading HN almost daily for over half a decade. 2-3 years before Rust went 1.0 at least.
Not at all, although if you have any services that use dbus it might get started by one of them. On my system there isn't even a dbus service file that could be used to start dbus directly through OpenRC. OpenRC works fine without any dbus installed, in fact I'm not even sure if it's even used for any functionality at all. Service control is done through a socket in /var/run/openrc/control (or something), at least on any system configuration I've seen.
Interesting. I was basing this mostly on my most recent install of Gentoo, but it seems that even Gentoo's documentation is misleading on this subject.
Without systemd, you "need" elogind as a requirement which is a drop in replacement for systemd-logind. elogind relies on dbus, and in Gentoo needs to contact /run/dbus/system_bus_socket.
However, looking into it, it appears this is largely because of display manager compatibility. If you don't need a display manager, you very well might not need elogind, which means you might not need dbus. So OpenRC for embedded, deciding to manually control execution of your WM with Wayland or X11, or headless servers could still work, but you would need dbus to get display managers to work. I've been reading some blogs of people attempting to do exactly this and they seem to only get into issues with Gentoo and Debian without using elogind or systemd. That doesn't mean it's "required", though, they could just not know what they are doing.
When I was installing Gentoo I was using stage3 of hardened-selinux-openrc, I also had a huge issue enabling SELinux and it kept blocking OpenRC's access to DBus before finishing the boot sequence. I assume this was due to the elogind USE flag, but it seems it had compiled into it somehow, because I didn't initially have elogind turned on. I guess I just didn't know the relationship of elogind and OpenRC (not that this has made anything any clearer), I might actually try rebuilding that system's @world without the "elogind" USE flag just to see what happens (I don't really need a display manager anyway).
>If you don't need a display manager, you very well might not need elogind,
Yes, that's how I do it. At boot a service auto-logins on all vts and fires up an X server with my WM. Since I already have to enter a password to decrypt the disk this is OK. After half an hour idle/suspend the screen gets locked, so it's not worse than no auto-login.
Sadly, the documentation and wiki has detoriated in quality the last few years. For example I recently tried to look up how to run Xorg without suid, but the wiki had removed the simpler input-group based method in favor of this elogind stuff, which I consider to be worse than useless. Luckily the talk page pointed me in the right direction (history).
Personally, I put -* in make.conf's USE variable and only enable a few things I really want universally like threads, unicode, etc. Then I use flaggie to enable the flags I need when installing stuff. I check with emerge -a to get a list of everything with the possible flags, then enable/disable as necessary. Takes a bit longer the first time, but prevents stuff like this. Sometimes it can break stuff since that's not a supported configuration and might expose undeclared USE flag dependencies, but it's mostly OK.
Not to mention that THC's psychoactive effects can be completely blocked by sufficient amounts of CBD and probably other compounds. You can try it yourself. Get CBD drops, ingest 100mg and try getting high. Even the most potent sativa will not work as you might expect.