If you're in Canada, Interac is a Canadian grown company. Just use your debit card and skip the credit if you can.
Shadow
joined 2 years ago
MODERATOR OF
Just give them commands, that aren't their name. Both my cat and dog do an assortment of tricks and are very food motivated.
If your hosting is a bad actor, you're screwed no matter what. Why bother with this when they have direct access to your disk and ram
You could turn off authorized key files, or lock them down. This isn't really a big security risk though, there's countless ways to backdoor a system once you have access to do this.
This just targets a remote account, not your local pc.
Fractal design, node case. One of them is a cube that takes 8x 3.5 and microatx. I used one for years and it was great.
The company said its IT complied with industry standards and it had taken out insurance against cyber-attack.
Maybe it should have complied with the standards that include offsite backups, rather than just buying insurance and praying.
Where's hodor?
I used to have a lot of fun doing this with buddies back in the day, before encryption was common.
That planet will be fine, humans maybe not so much.
I love the new Miata styling. I have a cx5 so Mazda sent me an invite to take the Miata around a track, it's a lot of fun.
I kinda want one, but I wish they were doing a better job with moving to electric. Feels like Mazda is going to be left behind.
You can buy stinging nettle tea online before you commit to growing it. It didn't help me at all (histamine intolerance).
Pretty clickbait title to compare a lab speed to average internet. I'm sure it's several million times faster than average Japanese internet too.
Hello everyone!
It’s time for another long-overdue update on how Fedecan and our various sites are doing. It’s been just over two years since the great Reddit migration, and in that time we’ve made some solid progress:
- Registered Fedecan.ca as a non-profit
- Moved from OVH to our own hardware in a Vancouver datacenter
- Started collaborating with the team behind sh.itjust.works
- Launched Pixelfed.ca
- Launched Piefed.ca
Finances
Here’s a look at our bank balance since we began accepting donations:
We’re currently sitting at around $2,900, with a monthly burn of about $200, which gives us roughly a year of runway. We have some additional annual costs (like domain renewals and non-profit registration), but overall we run very lean.
Fedecan still owes:
- TruckBC: $1,980
- Shadow (me): $525
These were out-of-pocket hosting and non-profit registration costs from 2023/2024. It’d be great to get those covered, but we want to keep at least a year of operating expenses in reserve.
If you're a regular user and value what we're doing, please consider donating! We have multiple ways to donate, you can find the comparison and donation links on our website: https://fedecan.ca/en/donate
Sh.itjust.works
Nothing major to report here - we’ve all been a bit busy lately, but collaboration is continuing slowly behind the scenes.
Fediverse Growth
We're seeing a healthy volume of posts and communities on lemmy.ca, surging with each Reddit drama:
Infrastructure
Our server is a Dell R7515 with an EPYC 7763, 1 TB ram and 4x 7.68tb nvme data disks, which is hosted in a datacenter in Vancouver, BC.
I spun up victoriametrics + victorialogs a few weeks ago and have been ingesting all of our data, giving us the ability to put together some nice grafana dashboards.
Everything is running great on the infrastructure side of things. Our server is barely working up a sweat and we shouldn't have to worry about scaling for a long time.
Lemmy.ca still comprises almost all of our traffic:
Lemmy.ca
Our over provisioned stack is performing well, handling the occasional lemmy / lemmy-ui dropout:
Similarly the DB is mostly running out of ram:
Our object storage is slowly climbing as expected, but we've got several years of capacity to figure out a long term solution:
I’m also doing some limited analytics on our web logs. As expected, lemmy.world makes up the majority of our federation traffic:
One interesting thing to see from the user-agent data is the breakdown of traffic by the different mobile clients:
The “dart” UA is just a common web library, Thunder reports as this and I suspect other clients do too. If you’re a client developer, please set your user-agent!
Out of the alternative web clients we support, tesseract is the most popular although the overall traffic volume is still low:
We only store 7 days of logs but I’m hoping to get these pulled out into metrics soon, since it would be interesting to track which clients / interfaces people use over time.
Pixelfed.ca
Not much to say on this one, due to using local storage it currently runs on a single VM without redundancy.
Piefed.ca
Piefed runs on a pair of VMs with its own database and object storage backends.
Cloudflare
If you want to compare against previous data posts, here’s our same cloudflare graphs for lemmy.ca
As always, feel free to reach out if you have any questions or ideas. Thanks for being a part of the Fediverse!
Good morning everyone. Just a quick heads up that I've banned a good chunk of IP space in China due to abusive traffic.
I've tried to restrict this where possible to datacenter blocks from Huawei, Tencent, and Alibaba, but China Telecom / Mobile were also heavy sources of suspicious traffic. I doubt we have many (if any) users in China, but if you are affected please let me know.
This has been ongoing for a while and I ignored it initially since the traffic levels were low, but it wasn't anymore.
The ban has very visibly cut our traffic levels:
I'm routinely running into an issue where if I haven't used the app in a while (a few hours), it hangs trying to connect. I then force restart and it's fine.
I was running onto this on the play store version but I'm on 0.7.0-1 now and still seeing it regularly.
Known issue? Or any suggestions on how to debug?
view more: next ›
Most don't create new keys per server machine but that's not the issue. I don't bother, I create a key per client machine on my side.
Server gets compromised once, admin logs in and fixes it, admin logs in next time and the backdoor compromises it again.
That's all this is. If you can get in once, it's a spot you can leave a backdoor that many admins will miss. That's it.
Admins don't generally copy that whole file around, they usually copy and paste the lines they want. Also I generally copy and paste it from my workstation, not another server.