notabot

It’s the loss meme (again…).

What ‘delightful’ imagery. “If it was coming out any faster, would still be cold.” just about did me in. Bravo!

I’m trying to do X in programming language Y, are there any libraries for that and can you give me an example"

I found them to be really bad for that in my testing. They’ll happily hallucinate the existance of a library with a vaguely plausible name, spit out ‘sample’ code for it, and then when I ask for a link to the documentation, say “I’m sorry, that library doesn’t exist”. It drives me round the bend!

• Heat a spoonful of butter in a pan.
• Once it’s melted and just sizzling, add about a spoonful of white flour, and stir until you have a smooth paste.
• Cook the roux until it’s slightly darker to give the sauce a richer flavour.
• Add a spoonful of milk and stir until smooth. This is the critical step, but it works out fine unless you let it burn.
• Keep adding milk, a spoonful or two at a time, and mixing, until the sauce is quite liquid and you’re not having to stir much.
• Add the rest of the milk a little faster, still stiring.
• Cook until the sauce is heated through, and bubbling.
• Add unhealthy amounts of your prefered cheese, grated, and keep stiring.
• Cook until the sauce starts to thicken and remove from the heat. It’ll thicken more as it cools.

It seems like a lot of steps, but once you get the hang of it, it’s quick and reliable. The recipies that add flour to a lot if liquid have a tendency to get lumpy, this one cooks the flour in fat first and adds liquid slowly, which pretty much eliminates the issue.

I like what you’ve done so far. It’s quick and simple to use. The one bugbear I’ve come across so far is it converting tables to html, rather than storing them as proper markdown.

I read the reasoning in the documentation, and certainly for my usecases, maintaining it as markdown is more important than trying to perfectly preserve the visual formating, especially as I use multiple devices with different sized screens, so I need different fornatting on each! That’s one of markdowns main strengths, it doesn’t preserve formatting so you don’t need to think about it and it’ll be displayed in a reasonable manner anywhere.

Is there any reasonable chance that there could be an option, at the server level rather than per page, to store tables as markdown?

I would have assumed the more intelligence you have the more capacity to understand and worry about problems you would have.

Intelligence gives you the ability to understand these things, and can also give you the understanding that worrying about the things you can’t change is of no benefit and the ability to then put those things aside so you can focus on changing the things you can improve.

That doesn’t always come naturally, but it’s a valuable thing to practice.

You want a break action penis, so you have to manually reload every couple of shots? Nah, you want belt fed, just hold the trigger and go!

Eink displays are pretty awesome for this sort of thing, I repuposed a kobo ereader as a household info display and it worked nicely. Those PaPiRus screens look easier to interface with, but a little small for reading wikipedia articles. They’d do in a pinch, but the eyestrain would have me looking for a bigger solution.

You’re going to need a monitor as well.

Wikipedia has torrents of the text, but you’d have to download images separately.

Debian, and its base packages have mirroring instructions here. Third party repos would need mirroring separately.

It depends if you want the images or previous versions of wikipedia too. The current version is about 25Gb compressed, the dump with all versions is aparently multiple terabytes. They don’t say how much media they have, but I’m guessing it’s roughly “lots”.

That took me longer than it should have…

Given its nature and functionality, it’s hard to see how the TPM subsystem itself could be backdoored in any meaningful fashion without the rest of the CPU also being compromised. Whilst that is certainly possible, and the remote management engines (IME and such) almost certainly are, it seems more likely to me that the encryption algorythms themselves are deliberately weakened in some way. The NSA, famously, have done that sort of thing before, subtly influencing aspects of the design of cryptographic systems to make them easier for them to break. It would not surprise me, for example, to discover that the supposedly random key material is actually linked to something like your CPU’s ID.

None-the-less, using functionality help prevent someone who has your password, but isn’t a government actor, decrypting your data.

Now go and wash your hands…

That’s absolutely possible, but there’s not much you can do about that really. My point was simply in response to OP’s assertion about encryption protecting your data from ‘alphabet agencies’. It wont because it is very unlikely you consider keeping your data confidential more important than your life.

I edited my comment, it was the mod who deleted your comment.

I don’t see many people debating you, but I do see a number of comments, including my own, that are pointing out things that need to be considered, or expanding on what you’d said. I don’t see much that could be called ‘stupid’, but you seem to be carrying a lot of pent up frustration and anger. You’ll probably find you have much more productiv£ and pleasant exchanges if you dump that on other people though.

One need only read or watch the news to know that a disturbingly large number of people are being abducted, predominantly under the umbrealla of ICE, but also for political reasons. It seems likely that if an agency has interest in the data of someone like that, presure of various sorts will be brought to bear on them. Most people will hand over their passwords long before the threat of physical violence is manifested, but the threat is there none-the-less. As you say, this won’t apply to most everyday citizens, for now at least.

Ultimately, it’s a case of setting up your security posture to match your own threat models. Encryption is an excellent step, but only addresses some threats, online attacks being the most obvious set that it does not help with.

You can have your machine unencrypt using the TPM module, have a look at clevis for example. Once you’ve got it set up you can pretty much forget it’s there.

I was actually largely agreeing with you, but responding to the bit where you said:

It Protects your files in case your computer is ever stolen and prevents alphabet agencies from just brute forcing into your Laptop or whatever.

It’ll stop alphabet agencies from brute forcing it, sure, but that’s not how they would approach extracting the information.

I see ~you’ve~ the mod has deleted this comment thread though, so it’s unlikely anyone else will see it.

As to your question about what technology would stop it, I think you may need to think differently as no technology will stop a determined enough opponent torturing you for a password, but they’re much more likely to attempt a malware style attack against you to skip all that bother. So countermeasures would involve a well locked down system (think about things like SELinux with MLS enabled and using VMs to isolate processes) and good information hygiene practices to reduce the risk of infection and the risk of it spreading if you are infected.

You want to think very carefully before giving a duress password, or using a destructive panic button when dealing with law enforcement. If you do, you will be charged with, at least, destruction of evidence. You have to decide if your data is worth that. A duress password that only decrypts part of your data is probably safer if twinned with deniable encryption, although you still risk legal trouble.

Encrypting your drives is a very sensible step to take, and it’s so low effort that it’s a no brainer in most cases. It’ll stop casual thieves stealing you machine and reading your files, and combining your password with a TPM encrypted one will mean your data isn’t readable on any machine except yours, even if the attacker has your password, which adds a little extra protection.

Unfortunately, none of that protects you against an adversary who is willing to kidnap and torture you to get your files. At that point you have to make a choice, which is more important; your files or your life/not being tortured. Fortunately, most people will never be in that situation, so should encrypt their drives and accept they’ll reveal their encryption passphrase if taken hostage/arrested.