David

@[email protected]
18 Followers
57 Following
194 Posts
DavidFeb 18
Jeff GeerlingFeb 16
Open source maintainers already had enough to worry about before the ongoing agentic AI revolution... my thoughts on recent AI-induced problems in open source development: https://www.youtube.com/watch?v=bZJ7A1QoUEI
AI is destroying open source, and it's not even good yet

YouTube
DavidFeb 16

So this sort of thing actually happens (and apparently more than I thought). You never know what's going to be in the firmware of the stuff you buy (especially if you don't recognize the brand).

https://www.reddit.com/r/homelab/comments/1r5ppwr/my_home_lab_finally_paid_off_caught/

DavidMay 14, 2025
OAuth2 client secrets with forced expiration are annoying. The goal is for them to to be "actively monitored" by the owners, but this effectively creates a dead man's switch, and I *really* hate those, as they create a need for low-value human work from high-price workers.
DavidApr 20, 2025

I'm on a bit of an insane quest to make all of my Windows 10/11 and Linux RDP services use proper TLS certificates just because I *really& hate self-signed certs. Xrdp is easy enough, but Windows is a bit more tricky.

https://techcommunity.microsoft.com/blog/askds/remote-desktop-services-enrolling-for-tls-certificate-from-an-enterprise-ca/4137437 gives the best advice, but I don't know if it works when not joined to a domain.

DavidMar 25, 2025
I dislike the security vendor space because big companies are constantly acquiring, divesting, and rebranding stuff. Old documentation and support information is constantly being lost in the churn. Perhaps these big corps are more like private equity companies.
DavidFeb 14, 2025
Matt BlazeFeb 10, 2025
A reminder that "executive orders" are exactly that - orders from the president for the executive branch. They are not laws, and they do not directly bind anyone not in the executive branch of the US government. They might affect how laws are enforced and other things the executive branch does that affect private individuals, but they are not "orders" that private individuals (or organizations) are required to obey.
DavidJan 22, 2025
One thing that's annoying about using SSH with Kerberos (or Kerberos in general) is delegation. When you connect to a server, you don't get a TGT there. That's generally good, but I wish you could have the SSH client on the other end at least generate service tickets to be used by the server. This way, the client itself could constrain this "pseudo-delegation" by only allowing certain service tickets.
DavidNov 13, 2024
Randy CassinghamNov 13, 2024
Well played, fence builder. Well played.
DavidNov 9, 2024
Show threadJeff GeerlingNov 8, 2024

More: https://github.com/geerlingguy/sbc-reviews/issues/56

This is not an isolated incident. So many times I hop on board a new SBC board train, and end up spending more time just getting to the point I can start doing a project... than actually doing a project 🤦‍♂️

The hardware looks cool, though. Hopefully I can get logged in next week!

ArmSoM Sige7 / Banana Pi BPI-M7 · Issue #56 · geerlingguy/sbc-reviews

Basic information Board URL (official): https://www.armsom.org/sige7 (or https://banana-pi.org/en/banana-pi-sbcs/169.html) Board purchased from: Provided by ArmSoM/BPI Board purchase date: November...

GitHub
DavidOct 28, 2024
Andrew KalatOct 27, 2024