1. 1

    Consider mosh, screen, or tmux. Double for tmux if the remote side runs OpenBSD since I believe it’s in the default install. Also double for tmux when the local side runs Mac OS and you use iTerm as your terminal emulator. On Mac OS use tmux’s -CC option which hides the tmux ‘in-band trigger’ issue transparently for you.

    1. 4

      My understanding of the article and the sleuthing the author did is that neither mosh, nor screen, nor tmux would help. He’s copying large files, and the problem was that misconfigured carrier grade NAT was killing the SSH connection before the official TCP timeout.

      1. 2

        I am by no means an expert on this, but I think that though screen and tmux would both be ineffective mosh might solve the issue. The former are terminal multiplexers, meant to manage and resume sessions – so not fixing the problem.

        Mosh, however, is a different protocol that ditches TCP altogether in favor of UDP and thus AFAIK will not be affected by the timeout.

        1. 1

          I’m not sure you could do file copies over mosh, even like the author did using netcat.

    1. 6

      Hetzner is quite cool although if you’re running Docker containers over there, you gotta be careful. Unlike other cloud providers, Hetzner offers no “Firewall” product (like AWS Security Groups,Digital Ocean Firewall etc). The only way to restrict incoming traffic is by yourself using iptables/ufw etc.

      Surprisingly Docker and UFW don’t play nicely together as demonstrated here. I’d like to make a move to Hetzner myself from DO but because of this limitation, I’m unable to. I know there are workarounds and hacks, but fiddling with iptables rules for protecting sensitive information is not something I’m willing to do.

      1. 5

        It looks like they added a Load Balancer since then so that information might be out of date. (source: https://www.hetzner.com/cloud )

        1. 1

          They seem to be building features, which is nice. First just vms. Then volumes, networks, floating ips, load balancers. I wonder if object storage is next?

        2. 4

          I’ve been bitten by this. I felt pretty stupid afterwards.

          My feeling is that docker is to blame here, after a lot of years, still not working with a widely deployed firewall, bypassing it if it’s enabled, and not supporting nftables at all? And not to mention the cgroups v2 issue.

          Yet I’m still using it. I should have moved to using podman or such…

          1. 3

            I felt pretty stupid afterwards.

            Same. Luckily I had just workloads with non critical data. I spent the following week moving back to DigitalOcean.

            should have moved to using podman or such…

            Does Podman respects UFW rules? How do they do networking stuff differently than Docker? Would be pretty interested to explore more on this.

            1. 1

              Does Podman respects UFW rules? How do they do networking stuff differently than Docker? Would be pretty interested to explore more on this.

              As far as I’ve understood it, podman doesn’t touch your networking at all. You have to set it up yourself, but I probably have misunderstood something in this area.

              I’m still (happily) using Hetzner, but I should really move to something else than debian/docker as this is still broken.

              1. 1

                Late comment - podman works just like plain old Docker, setting up network and all. Played around a bit with it using ansible on a brand new cpx11 on Hetzner, it’s so much faster than my old machines at home, hard to go back to after tasting that speed. Oh well.

          2. 1

            I’m currently running a bunch of Docker stuff on my DigitalOcean VPS, and have been relying on ufw for my firewall needs… Going to look into this right now, thanks for the heads up!

            1. 1

              If you have machines on Hetzner’s Robot (the bare metal offering) then you have a firewall option

              1. 2

                Yep, but like the author in the post said, one of the reasons to move was Cost. I doubt I’d want to pay 50% extra (yes for better resources) just to get Firewall. I think it’s a basic security feature that they should have offered in their core offering for a VPS too, but then again it gave me a chance to experiment with FreeBSD so not complaining much :)

                1. 1

                  Hmm, … a used 32G machine on Hetzner costs as much as a 32G VPS and has double the disk space (on RAID-0). And you can get 64G machines on robot (not on cloud). There are use cases where their cloud offering is better and others where their bare metal is best. I’ve run hybrid workloads there with great joy.

            1. 1

              I love spotifyd, but I can’t make it work for my use case because it doesn’t fully support the MPRIS standard. It doesn’t emit the correct signals when changing properties (track changed, position changed, etc).

              1. 2

                Seems like they’re working on it. Hope this gets fixed/implemented soon, though it’s not that big a deal for me as I’m not utilizing this in my specific setup.

                1. 1

                  Thanx for pointing me to the ticket. I remember looking at the Rust MPRIS library and giving up to come up with a working solution. :(

                  My use case is that I capture the track changed event with a small user daemon which then submits the data to last.fm, libre.fm or audioscrobbler.

                  For a while I circumvented this problem by using the SpotPRIS2 project, which creates MPRIS devices for all your Spotify devices, and reads the data using Spotify’s API. It gives better info than the official linux client, but it crashes a lot, so in the long term not worth it, sadly.

              1. 1

                What I’m waiting for is the release of API for adding custom controls there, it would be far more better than current statusbar soup where menu and status icons fight for space.

                1. 1

                  Yeah, I’ve noticed status bar icons on macOS Big Sur take up a disproportionate amount of space… Still trying to figure out how to optimize the space.

                1. 4

                  You sacrifice a certain amount of control by using a static site generator, like link properties.

                  Shameless plug: and that is why I’m making an SSG that gives you full control over the element tree without JS. ;) https://soupault.neocities.org/plugins/#safe-links

                  Nothing against Zola though, it’s a good project.

                  1. 2

                    Sorry if this is a stupid question, but why would you want safe links on a static site generator? I thought things like nofollow were for comment sections, wikis and other places where you let random members of the public post stuff. If only approved people are posting, why would you need these? Just to make you less of an attractive target for hackers?

                    1. 1

                      Well, there’s a few reasons that I can think of:

                      • Good link etiquette
                      • If I add forms for comments or email subscriptions in the future (which is definitely planned), I don’t want people hijacking my window when somebody opens a tab
                      • I want external links to open in new tabs

                      I’m not sure if it’s really that important, but it makes me feel good and it’s what I’ve always done.

                      1. 2

                        noopener on target=”_blank” links I understand because it’s a security measure, but nofollow just tells search engines not to give weight to your links, doesn’t it? Wouldn’t that be bad link etiquette, since you would be hurting the sites you link?

                        1. 1

                          I generally don’t use nofollow (I actually think I’ve never used it). Guess I misunderstood the question. noopener and norefferer are the most common ones I use, and I tend to throw them on every external link when possible.

                    2. 1

                      That’s awesome! Currently taking a break from rewriting my site (gotta let it sit for like… a week? Is that healthy?), but I’ll keep that in mind. Looking at some Github issues for Zola, it seems like they’re trying to work this out, but for the time being I’m going to have to deal with raw <a href="">s. :(

                      1. 1

                        Also a shameless plug, but http://mkws.sh/, not sure if there is any sacrifice in there.

                      1. 0

                        It’s a bit weird how Zola advertises itself as having no dependencies. It clearly has some. I guess it just means you won’t have a typical webdev npm ecosystem in there.

                        1. 7

                          I think that they meant no runtime dependencies, not compile-time dependencies.

                          1. 2

                            I think @hauleth has the right idea: no dependencies for you, because it ships as one binary. You are right that it appears to have some development dependencies if you’re working on the generator, but for the average user you’re not going to run into the mess that you do in the JS world – you just write markdown and go.

                          1. 1

                            Out of curiosity, did you compare zola to cobalt (another rust static website generator) ?

                            1. 2

                              I looked at them both, but ultimately chose Zola because it seemed more well known (so more community, support, and coolness-points once I start contributing). They both seem pretty neat, and I’ll always support a Rust-based project.

                            1. 3

                              Hey, author of the post here! Really happy to see it on Lobsters, and I’d be happy to answer any questions and/or comments you have!

                              I encountered this “bug” while working on rewriting my iOS app with the new App and Scene structures introduced during WWDC2020. The project is nearing completion, and I’m really excited about how its turning out.

                              Enjoy!

                              1. 12

                                Unfortunately not related to the content, but for me the font choice made the post too difficult to read.

                                1. 3

                                  Understandable. I was attempting to make it “retro,” though I’m going to change the font when I rewrite the site (soon) to make it clearer and load faster.

                                  1. 2

                                    Pictures/videos also don’t work in Safari 14.

                                    1. 1

                                      Yeah, they’re in .webm which for some reason is not supported by Safari despite massive size reductions from mp4. Going to need to add mp4s.

                                    2. 2

                                      I agree with you. Try using Reader View if your browser supports it. It’s much better.

                                    3. 3

                                      Nice post! Happens to all of us :-)

                                      That’s what you get for populating static items in a list. I’m a little confused about the sorting (or whether it works as needed):

                                      • Completed tasks are at the bottom. Ongoing tasks are at the top.
                                      • Higher priority items are at the top of their category (completed/ongoing).
                                      • After above two points, ordering is done ascending, by task name.

                                      The above statements sound nice, but:

                                      • the UI fails to show important (high prio) tasks
                                      • sorting by name is not visible, as the point above. Looking at the videos your provided, it appears sorting is random (although it may not be)

                                      I’m not an Apple user, but I would enjoy having a task list with the following features:

                                      • Priority items clearly marked (color/“hotness” or font weight)
                                      • Completed tasks with a “greyed out”/“disabled” state (the strikethrough helps)
                                      • Sorting based on the timestamp when the item was created/modified/completed
                                      1. 1

                                        Thank you for the great suggestions!

                                        Some clarifications about sorting:

                                        • The exclamation marks on the trailing side are supposed to be the main indicator of priority, which I understand might be too small of an indicator.
                                        • The “ascending task name sort” is just a fancy way of saying alphabetical order. Because it’s the third priority it may seem a little random, but what it does is sort all tasks of the same priority and the same category (completed/ongoing) in alphabetical order.

                                        Feature suggestions:

                                        • I love the idea of color/weight indicators for priority! Definitely going to implement that going forward.
                                        • Completed tasks are grayed out in addition to the strikethrough in the main app, I’ve just yet to implement it in the rewrite.
                                        • The timestamp sort would be an important thing, but a big feature of the app is that tasks get deleted at midnight every day so that would be a really short-term thing. I will consider adding it as an additional sort method, though.
                                    1. 14

                                      This exists, albeit not by default. The Show User Avatars setting in the Miscellaneous Settings section of your account page toggles avatar visibility.