I'm impressed!

I'm in this picture and I like it!

Gentoo gang represent!

What has worked for me quite well over the last few years was answering the phone without saying anything. Spammers usually are dead silent as it's just a voice recognition bot waiting for a "hello" or similar and hang up within a couple of seconds if nothing is said. Regular people have "static" most of the time. I've had a few recruiters call while having their mic on mute, but they start talking themselves fairly quickly.

Thanks for a genuine laugh!

I've never had the chance to deal with them and at this point I'm really happy about it!

Replying to test email notifications

Welcome aboard!

Not OP. I guess it depends on the frame of reference. Comparing to other inefficient methods it might seem OK :)

Maybe different pricing? Loading https://membership.theonion.com/ from across the pond shows 99 annual or 9/month

OMG this is a thing! Seriously evaluating my need for 9 bucks every month!

Testing this hypothesis on your comment.

I only have the indoor one, but Reolink is fine. Used it as a baby cam. No cloud bs, supports an rtsp stream. App has gone downhill, but due to rtsp I sort of don't care.

Happy it works for you!

I'm running it on arch so that I never have to go through big upgrades. Been over 5 years now - so far, so good!

In regards to docker - it's just a container. You can make any executable run a container. I quite like a lean system myself, though.

I don't use voyager, but worst case - you could just use a browser.

Does this link work? irc

Be the change you want to see!

[email protected]

I've never heard of mailcow specifically, but I was intentionally avoiding all-in-one packages when setting up. Life has proven that good things aren't easy and easy things aren't good.

And so far I'm happy with that decision - setup is modular, was already able to extend it with postfwd, dual dkim signatures (rsa and ed25519), mta-sts and some other policy I can't recall right now.

I've also specifically wanted to run as little code as possible that's exposed to the internet - as such, I chose to not have webmail.

I don't, but I could probably come up with one next weekend.

I roll my own. Postfix, dovecot, spamassasin and dmarc friends. Easy to setup? No. But takes about an hour/year of my time to maintain once the ball is going.

If the user is in the sudoers file, they are authorized to do the things configured there.

Correct. But the thing configured there is "to act on behalf of root for these items", not the "things" themselves.

Which is obvious when they can do the thing after entering their own password.

$ touch file1
$ sudo touch file2
$ ls -l file{1,2}
-rw------- 1 illecors   illecors   0 Nov 12 14:56 file1
-rw------- 1 root       root       0 Nov 12 14:56 file2

It is not you executing stuff with sudo. file1 is owned by you, but file2 is owned by root.

But since they already entered the same password at login, and are still logged in, there’s no point in entering the same password one more time.

There is a point. See above.

The argument “a password prompt tells the user to stop and think” is wrong.

That's not an argument I've made, nor make.

For that, you can pop up a confirmation dialog, or even a text box where they have to type in “yes”.

Both of which are much easier to defeat than a pop up confirmation dialog with a text box for your password.

Using a password for anything other than proving the correct user is at the keyboard makes it less secure.

No it doesn't - you seem to be making things up to justify your lack of understanding. Authentication is not the same as authorisation, nor should it be treated the same way.

When you type in your password on a login prompt - you authenticate who you are.

When you type in your password on a sudo prompt - you authorise a command to be carried out on behalf of root.

This is why Active Directory and Kerberos are so great. You log in once in the morning, and that’s it.

I'm not sure you realise how little you do on a windows machine. Good luck installing system software or altering system files on an AD managed Windows machine without authorisation. Which is what your meme(?) is implying.

And since you only have to type in your password once before work, it can be really secure and long.

There is no justification here, just a manufactured statement.

Also, the chance of someone standing behind you while you type it is reduced.

See above.

Yea, I don't think you understand what you're saying. Security is not a binary thing - it's layered. And your user is not, in fact, authorised to do pretty much anything outside your homedir.

Thanks!