Your body language can indicate you’re formulating a response, which makes people less impatient.

On a call there’s no body language so if you don’t say anything for a bit people get annoyed.

Image titles:

Flag of israel

Israeli flag

Israel flag

Using the google algorithm, which by design includes related results, is probably the worst way to “prove” anything.

IIRC MySql inherits that behaviour when running on windows (or at least older versions do)

That was a real fun time when switching OS

iDEAL sounds a lot like Bancontact/Payconic in Belgium.

Which doesn’t do everything Paypal does either. Others have mentioned the buyer protection, but there’s also multiple payment methods you can link to it, subscription management, and one-click payments (where it also enters your address for shipping) - and crucially: available worldwide.

.eu and your local tld are often quite a bit cheaper too!

Pretty sure the gpu BIOS is limited by default, nothing the OS can do about that.

Same for other parts like the cpu - core voltage is determined by the motherboard.

I doubt the os can just go “2V vcore” and blow up hardware.

I’ve been to the US exactly once in my life, and I clogged the toilet at the hotel I stayed at. Never had it at home.

Probably just coincidence, but hey

Literally

Wireguard (which is what tailscale is built on) doesn’t even require you to open ports on both sides.

Set up wireguard on a vps first, where it is accessible, then set it up from within your network. It’ll traverse NAT and everything, and you don’t have to open a port on your network.

Tailscale is the exact same thing, just easier because it does everything for you (key generation, routing, …). Their service replaces your vps, up to you if you think that’s acceptable or not. IMHO, wireguard is worth learning at least. I eventually (partially) switched to tailscale because I’m lazy, and all services I host have authentication anyway, with vpn just being a second layer.

Kubernetes yes, but minikube is kinda meh as a way to install it outside of development environments.

There’s so many better manageable ways like RKE/Rancher (which gives you the possibility to go k3s),Kubespray or even kubeadm.

All of those will result in a cluster that’s more suitable for running actual workloads.

Which is why we have HTML5, CSS3, and JavaScript, supported by all major browsers.

Unless you’re doing something outrageously non-standard, there is no reason to block specific browsers.

I don’t think programming language is a good metric for security. I assume everything I host has issues, and then try to mitigate from there.

IMHO, a better approach is to vet the project beforehand, looking at whether it is still actively maintained. I usually use things like commits, issues, etc to try and gauge whether a piece of software is actively maintained so that when an issue arises, it can be fixed.

You can mitigate much of the risk by using some basic best practices, like isolating all apps from each other (using docker, for example), using a reverse proxy, tools like fail2ban or a web application firewall, using proper database permissions for each app, etc

What I also do is add another layer by making certain applications accessible only over vpn. That won’t work for some tools, obviously, but also reduces the risk for tools you are only using yourself.

I’ve set up several Kubernetes clusters in a professional setting (and work with it daily), but I still use straight docker for running my own stuff.

Using tools like Rancher it’s pretty much no effort to set it up, but the overhead is just not worth it if you’re not using the orchestration IMO.