Running ai locally is the same energy as playing a 3d AAA game for the same time

I wonder if they’re factoring in the energy usage to train the model. That’s what consumes most of the power.

Crowdsec is much more efficient than fail2ban. Fail2ban is a lot of old single-threaded Python code with inefficient log parsing/tailing routines. Crowdsec is a more modern Go codebase.

If you’re looking at old-school solutions, there’s also DenyHosts.

Crowdsec blocks login attempts too.

you immediately tie the permanent accessibility of your local files to you retaining access to a cloud account?

The Microsoft account holds a backup of the recovery key, which you need to use to restore access in if you do something like significantly change the hardware or move the drive to a different system (which are effectively the same thing).

You don’t need it for day-to-day use of the system, and you can also just get the recovery key and print it out or write it down somewhere, which is usually how it’s handled on systems that don’t use a Microsoft account.

Say, Veracrypt is churning away in the background. Why would one leave Bitlocker activated?

That’s a good point.

You have different opinions on TPM and the prevalence of evil maids than me, fair

I work at a big tech company so have to be vigilant even with my personal systems :)

the premise of the thread

Some of the things mentioned in the OP don’t actually happen in real life, though. Bitlocker is only automatically activated if you use a Microsoft account to log in, and why wouldn’t you know the account credentials if it’s what you use to log in?

doesn’t rely on TPM and secureboot silliness

TPM is optional (but recommended) for Bitlocker. Practically every computer released in the past 10 years has TPM support.

Secure boot is needed to ensure that the boot is secure and thus it’s okay to load the encryption key. Without it, a rootkit could be injected that steals the encryption key.

You generally want to use TPM and secure boot on Linux too, not just on Windows. You need secure boot to prevent an “evil maid attack”

You can install Dropbear into your initramfs and configure it to allow entering the encryption key via SSH. Example guide I found: https://www.cyberciti.biz/security/how-to-unlock-luks-using-dropbear-ssh-keys-remotely-in-linux/

You do have to have an unencrypted /boot, but the rest of the system can be encrypted. This uses a separate authorized_keys file embedded within the initramfs.

I know, I just meant why would someone willingly disable Bitlocker?

It sounds like you’re complaining about both approaches.

If Microsoft doesn’t have the key: You can’t recover your files if you lose it.

If Microsoft does have the key: An attacker could get in and take it (unlikely if you have two factor auth though) and you need to trust Microsoft.

And Micosoft stores that key in plain text.

How do you know this, though? It could be encrypted using your account password as a key or seed.

But it also has the superior option which is to turn it off.

Why would you not want to encrypt your files? My Linux systems are encrypted too.

I wonder why they didn’t go with something more supported, like a Realtek chip. They’re not the best (I’d prefer Intel or Aquantia), but they’re cheap and widely supported. The Framework’s Ethernet expansion card uses a RTL8156 which is supported practically everywhere.

Does this have a way of sharing a directory publicly?

I think OP means “just work” as in the OS is preinstalled. Framework do support Linux but they don’t preinstall a distro for you.

Having said that, I’ve got a Framework 16 and it’s very nice.

What Ethernet chip do they use?

I’ve got a Framework 16 and all components work on both Fedora and Debian without installing custom drivers, so I’m surprised it’s still an issue for some laptops.

Haven’t watched the video yet, but in theory you can do anything in Excel on Windows since it can load COM/ActiveX components written in C / C++ / whatever language you want.

I hope that goes well for them. It’s hard and extremely expensive, which is why there’s so few good search engines and half of them just use Bing’s API.

Do you have a source for that? I think it’s nowhere near 95% of sites given there’s several major providers that aren’t AWS or Cloudflare (eg Hetzner, Google Cloud, DigitalOcean, Wordpress.com, and a bunch more)

Definitely true. I’ll have to try it out. Is Ecosia better than DuckDuckGo or Kagi?

Google was best in the 2000s, but things were different back then. They were still a young company trying to improve the world, SEO spam wasn’t really a thing yet, there were far fewer websites, and most online discussions were archived and searchable (compared to today where there’s platforms like Discord that aren’t indexable in search engines at all).

I use it for document summarization and it works well. I use Paperless-ngx to manage documents, and have paperless-ai configured to instantly set the title and tags using Gemini as soon as a new document is added.

I chose Gemini over OpenAI since Google’s privacy policy is better. I’m using the paid version, and Google says data from paid users will never be used to train the model. Unfortunately I don’t have good enough hardware to run a local model.

It’s been common ever since magnet links were created, since you can post a magnet link anywhere (even in a plain text file) rather than having to upload a .torrent file somewhere like in the old days.