Skip to main content


Content warning: nerdy sysadmin stuff

Content warning: nerdy sysadmin stuff

Off hand, I cannot think of a way to isolate a network interface except with namespaces. If that is true, the simplest way would be with a container, especially an LXD container which is is functionally like a full OS with it's own kernel.
sudo apt install snapd
snap install lxd
lxd init --auto
lxc launch ubuntu:jammy mycontainer
lxc shell mycontainer
curl -fsSL https://tailscale.com/install.sh | sh
tailscale up
...
And of course tailscale is just an example of a simple-to-use Wireguard implementation as a proof of concept

Also, it occurs to me that likely the snap install lxd hides granting some privileges to the user who has sudo privs (via an lxd group).

In principle there might be a much slimmer container that could do the same, but I am too lazy to figure it out.

@Bruce Elrick Interesting, but snapd is gonna be a hard pass for me, sadly.
@Bruce Elrick Though it looks like lxd is in Debian's apt repository without the need for snaps. 😎
@Bruce Elrick A bit of a heavier solution than I was looking for, but in the absence of a better solution, I'll probably go this route. Thanks for the help.
You're welcome. If you find something lighter-weight in the future, I'd love to learn about it.
Whups, meant to type 'without it's own kernel'
Nope, since the kernel cannot route usrsa's traffic different from userb's traffic.

Coffee ⏚ reshared this.


Question for the #AVR crowd of the fediverse: What kind of ISP programmer do y'all recommend (for people using #Linux ) these days? An old tutorial recommended the USBtinyISP, but it appears to be out of stock (and possibly outdated?) everywhere I look. #AskFedi

reshared this

It was also fun to assemble.

@savanni hey, just to mention that you may also build your own #AVR programmer probably even cheaper (but more DIY) with the
#VUSBtiny project:

https://github.com/goncalor/vusbtiny

I've had mine for ~8 years and still use it. You can see it in the background on this post.

https://infosec.exchange/@goncalor/111015206229493477

#electronics


This absolutely unremarkable blink is actually quite cool to me at the moment since it's being controlled by a timer/counter, two compare matches and an interrupt service routine. This is just as a test for how I'm thinking of implementing HSYNC.

The pin is configured to toggle when the counter reaches a top value, via a compare match. That would make the LED blink by itself. However there is a second compare match at half (configurable) that top value which is forcing a compare match. So the pin can generate a pulse of configurable duration and period.

And not that I have written this I realise I seem to have just implemented a convoluted PWM lol. Should check if I can just use PWM for what I need.

#electronics



Caelyn McAulay reshared this.


Hey lazy web, is there something I can put in my ~/.ssh directory to tell sshd that I don't want to allow password-authenticated connections? I'm not the admin on this machine, so I can't touch the /etc/ssh directory.
#linux #unix #ssh #AskFedi
If you have working public key login, you could probably just ask the admin to disable your password altogether on that system.
@Andrew Pam I could probably have that done at SDF, but I doubt I'll get that level of service from rsync.net.

This website uses cookies. If you continue browsing this website, you agree to the usage of cookies.