content/blog: add more articles

blog-move
Jae Lo Presti 2 months ago
parent ff060e42cc
commit 2e7ce171c1
Signed by: jae
SSH Key Fingerprint: SHA256:hmKix/+XG+9GEGHgDdiqXfmB2O7BU4CPVOoQoIYIQ2Y
  1. 54
      content/blog/2022/2022-going-ipv6-only.md
  2. 26
      content/blog/2022/2022-jaes-kitchen-crunchy-peanuts.md
  3. 10
      content/blog/2022/2022-matrix-coordinated-docker-swarm.md
  4. 53
      content/blog/2022/2022-matrix-spam.md
  5. 29
      content/blog/2022/2022-two-weeks-of-vr.md

@ -0,0 +1,54 @@
---
title: "Going IPv6 only"
date: 2022-01-21
---
Good evening all of you, in today's post, we're gonna talk about going IPv6 only.
First, let's remind ourselves what is IPv6. [Wikipedia](https://en.wikipedia.org/wiki/IPv6) describes it as such:
> Internet Protocol version 6 (IPv6) is the most recent version of the Internet Protocol (IP) […] IPv6 was developed by the Internet Engineering Task Force (IETF) to deal with the long-anticipated problem of IPv4 address exhaustion. IPv6 is intended to replace IPv4. In December 1998, IPv6 became a Draft Standard for the IETF, who subsequently ratified it as an Internet Standard on 14 July 2017.
So, the main points are:
- IPv6 is intended to replace IPv4
But also other, other points not shown in that short introduction:
- Say goodbye to NAT
- 2^128 addresses instead of 2^32
One big advantage of IPv6 is that you could give every living creature on this planet (Earth) billions of addresses and still have millions left to play with. This means that every device, that is phones, tablets, computers, servers and so on can have their own unique address.
---
Going IPv6 only is easy with MikroTik, just go into WinBox, IP → DHCP Client and delete everything there.
Now, first thing: configuring DNS servers.
I use DNSCrypt-proxy on my main machine, you can see the documentation for it on the ArchWiki. I use the `cloudflare-ipv6` servers.
Only problem: lazy websites that never bothered to use IPv6 (hello Slack and others, blaming their hosting platforms, that support IPv6 BTW, instead of moving their arses).
For that, during business hours (as my current work relies on Slack), I use the Trex.fi DNS64 server, which does its job wonderfully.
At the end, I don't feel I'm missing out on anything by turning off IPv4, only badly made software and websites break.
For the ones that are doing it correctly, that we use often is:
- YouTube (Google has it natively enabled since 2012)
- Cloudflare (even though they have far too many captchas for me)
- Wikipedia
- Plex
As for the bad students:
- Slack, is lacking IPv6 and blaming it on others (screams for “won't do it, too lazy”)
- GitHub (main domain still has no AAAA records but hopes in the future for it to be supported as subdomains have that feature)
- The Steam store (not even a reply to the support ticket or any other issue opened on their GitHub)
- Anyone that says, “IPv4 is fine”
- Anyone that actively disables IPv6
Overall, it is a fun and interesting experiment, but also a sad one when seeing how many providers actually use it.
That's the end for today, and I'll see you next time!

@ -0,0 +1,26 @@
---
title: "Jae's Kitchen: Making Crunchy Peanuts"
date: 2022-03-21
---
Greetings everyone, today, I'm gonna show you how you can make a crunchy peanut topping that can also be eaten as a snack.
You will need:
- 150g of sugar
- 150ml of water
- A pot
- 250g of salty peanuts (without spices)
- Cooking paper
First, put the sugar and water into the pot and put the head on medium.
When it becomes a syrup, add the peanuts.
Let the water evaporate. When it is evaporated, stir it until it has a brown-ish colour.
When it is good enough for you, put it on a sheet of cooking paper to cool down.
And voilà, you have crunchy peanuts that can be used as a topping or eaten as a snack.
I'll see you next time!

@ -0,0 +1,10 @@
---
title: "Matrix-coordinated Docker swarm"
date: 2022-04-01
---
Got ya looking.
Check out this cool fennec I found.
[![Cute fennec](https://bm.jae.fi/web/Fennec_Fox-1.jpg)](https://bm.jae.fi/web/Fennec_Fox-1.jpg)

@ -0,0 +1,53 @@
---
title: "Matrix spam"
date: 2022-05-02
---
Greetings everybody.
If you are on the Matrix network, you probably noticed that some new spam waves are coming in these days.
Let's go through a small history of spam waves I experienced while moderating rooms there.
## The "classic" spam
This one was the first one I encountered and is the simplest form of spam. Basically, a user joins a room and then starts sending lots of messages usually containing the same text.
Those ones are easy to ban because it is the doing of only one user that is relatively easy to find.
## The "gore" spam
This one was also a early one I encountered and the principle is exactly the same as the classic spam except instead of message, the user will send gore images.
The thing is that in plus of the annoying nature of the spam, the disgusting imagery will likely make lots of people leave until the situation is resolved and the messages deleted.
It is resolved pretty easily like the classic spam.
## The "mass join" spam
This is the method that has been used recently to slow down servers.Basically a certain user will take advantage of outdated and open servers that don't check anything for registrations (no email, 3PID or captcha) to register thousands of accounts (event tens of thousands in some cases) and then make them join a single room at the same time.
The federation lag caused by the mass join will render most servers in the room inactive as they have to catch up with federation (no event priority yet).
Sometimes, the bot owners might also spam the room with messages in the meanwhile to add a bit more of hell into this.This is the spam method that has been used against [Furry Tech](https://furry.lol/) on March 1st 2022 in an attack that started at around 06:00 (Europe/Helsinki timezone).
> Thanks to Tulir for compiling [lists of user joins in spam waves](https://mau.dev/maunium/moderation/-/tree/main/spam).
While my server (jae.fi) got the federation pretty much figured out pretty quickly (within two hours of the attack), some other servers (like the-apothecary.club) is still struggling with the backlog at the moment I am writing these lines and hasn't federated any room changes yet (ACL, power level change, room access change).
To mitigate this spam attack type, I mainly put the room on invites only (invites are restricted to admins) and fired up Mjolnir to do the big of the work.I also compiled a ban list with (almost) all domains that started spamming.
In the meanwhile, another admin of the room started contacting homeserver managers (when it was possible) to let them know of this problem.Some of them acted very quickly and I want to thank them for that. Those servers got (of course) unbanned as soon as the mess was cleaned on their side.
Now the room has hundreds of servers in the ACL list but we are unlisting the servers where the managers are responding positively and are patching the problem.
So if you are a homeserver owner, please, please, if you want to run open registrations, add some sort of gatekeeper, an email confirmation, a 3PID or even a small captcha.
> Good remark from Dezponia in the Furry Tech channel:
> "[...] homeserver admins that know they don' t need user registration, because the intent of the server is to be a single user instance for themselves, or just manual invites for friends, should disable registration entirely. Fast and easy to do and most likely the case for a lot of these servers since synapse had registration enabled by default until recently."
This avoids that a single bad actor just creates thousands of random accounts in one go via a single API endpoint.Note that it will never stop spam completely but will at least render it more painful to setup in the first place.
That's all for today and I'll see you next time!If you liked that blog post, don't forget to subscribe to it via RSS and if you have any questions, feedback or just want to say hello, join my Matrix room (all of that is in the blog header)
P.S: a [PR has been created](https://github.com/matrix-org/mjolnir/pull/291) to the moderation bot Mjolnir to be able to kick most bots in one go.

@ -0,0 +1,29 @@
---
title: "Two weeks of VR"
date: 2022-02-22
---
Hello people!
I recently got my hands on a VR Headset: the Valve Index, which is something I wanted to try and experience on my own for quite some time.Previously, I only got the occasion to try VR three times in total (and that was at the time of the Occulus Rift, so quite old. One was in a professional setting in which VR was used to design and test parts inside of a 3D modeled plane and the other two at various gaming-related conventions (the Savoie Retro-Games to cite the most well-known).
First off, getting VR to work is quite the setup (at least with this headset).You will be handed:
- A headset (duh)
- An adaptor for the headset cable that has inputs for USB 3.0, DisplayPort and the power brick (and you really really don't want to break that cable)
- Two controllers
- Two base stations
The first step I did was to install the base stations and there was one of the first problems. The official guide recommends you to drill holes to screw the stations directly to the wall which would be the best method, but, problem is that I do not own a drill capable of the diameter required for the stations and buying a drill only for that seems a tad expensive (also, laziness).Instead of that, I used plain old double-sided tape which does its job wonderfully (even though the setup looks very cursed now).Each base station has its own power brick and does not needs to be connected to the computer.
After that, you need of course to plug the headset into your computer, start SteamVR and begin the calibration.Those steps are really easy and the calibration is basically outlining your room using one of your controllers.After this step, everything should work as intended... if you're not running on Windows 11.Yup, that's what I did at first. When waiting for the headset to arrive, I installed Windows 11 on another disk, naively thinking "Oh, it's not that different from 10, it should work correctly", suffice to say, it doesn't.Basically, SteamVR (same with the beta) would sometimes ask you to recalibrate everything, during gameplay, you would start clipping through the floor or just speed through spacetime without even touching your controllers.I then downgraded to a Windows 10 installation which fixed all the annoying problems.
Now, let's get to the best part: the games.Basically, the first game I ever launched in VR is Half-Life: Alyx, one could say I bought VR mostly for this game and I wasn't deceived.As of now, HL:A is the best VR game I have ever played. Weapons are usable easily and all have their own quirks that makes them useful, environments are very diverse, detailed and will reward those who will look a bit further than the surface level with some plans, drawings or even books that add even more depth to the world of Half-Life. The story itself? Well, it's a Valve game.Even though the game itself is very short (could finish it under 10 hours of playing), you find yourself stopping often just to observe the environment or the landscape. The best example of this is when you launch a new game, the scene feels real but isn't too overwhelming.In the end, if you want the best VR title so far, go for it, it's worth every single second.
Other notable games are VRChat which can seem boring at first but you end up growing a liking to it.H3VR (Hot Dog Horseshoes & Hand Grenades) is also a nice game if you like to shoot stuff. The gunplay in this game is more focused on realism and throughout gameplay, you can see how much effort has been put in every single weapon even though the game itself is made by a very small team.Here is a small video of me shooting hot-dog targets to demonstrate the game:
{{< yt "L7A34ye4u8M" >}}
In the end, VR is probably the one of the greatest things I ever used.Sadly, the entry price for it is still quite high and cheaper options such has Quest headsets are owned mainly by Meta.Hopefully, Open headsets such as the Relativity will become more widespread and cheaper over time.
I'll write an update when I will have taken some time to install a Linux to test VR and see if it works as well as on Windows.Until then, I'll see you next time!