The general topic was about self-hosting. IPv6 is very useful for self-hosting,… connections.

I’ll admit there is a critical mass problem with torrenting clients, but if you’re trying to set up a wire guard tunnel with your friends, IPv6 is a absolute banger

In most environments ipv6 bypasses cgnat (because, why would you need a nat with ipv6).

https://www.wireguard.com/netns/

Here is a good how to for wireguard. Most commercial VPNs let you connect directly with wireguard.

Basically crate the interface in your clearnet namespace and then move it to your vpn namespace

I wish it were that easy, there’s a lot of shared architecture in CPU design. So maybe there’s cache lines that are shared, those have to be disabled.

Architecturally, maybe memory tagging for cash lines that in addition to looking at the TLB and physical addresses also looks at memory spaces. So if you’re addressing something that’s in the cache Even for another complete processor, you have to take the full hit going out to main memory.

But even then it’s not perfect, because if you’re invalidating the cache of another core there is going to be some memory penalty, probably infotesimal compared to going to main memory, but it might be measurable. I’m almost certain it would be measurable. So still a side channel attack

One mitigation that does come to mind, is running each program in a virtual machine, that way it’s guaranteed to have completely different physical address space. This is really heavy-handed, and I have seen some papers about the side channel attacks getting leaked information from co guest VMs in AWS. But it certainly reduces the risk surface

Everything you said is true, but I don’t think it’s the complete answer the OP would like.

For instance if somebody goes to Google, on the raw network, and on the VPN. They would correctly expect that traffic to take two different routes, and come from different IP addresses

I’m afraid as long as you have shared architecture you will always have side channel data leaks. The only true mitigation is dedicated resources per compute item. So dedicated cores, dedicated cache etc

Network namespaces!

ip exec namespace command

One namespace for surfshark, and anything you run in that namespace uses those rules

I set this up a while ago, so the services are a little dated there might be something better.

I also use speedify, and I use 10, yes 10, different mullvad VPN connections.

I have three internet connections at home. Each of the three connections has a wire guard connection to my two closest mullvad cities and one connection across the Pacific.

Speedify sees the wireguard tunnels, and each of the three uplinks. And I can use that to aggregate all the different pathways and do a first pass the post race for every packet.

Every packet gets replicated 13 times, and it races across the ocean, and the first one there gets delivered to the destination.

It’s great for gaming! I was able to shave off 65 milliseconds of latency to game servers across the ocean.

Is this wasteful? Absolutely, but it’s fun! The reason I use 10 mullvad connections is just because you get 5 simultaneous logins per account.

There’s a couple different ways to set this up, Linux network name spaces, really intricate wire guard configurations, VLANs. I went with VLANs, it was the most robust and portable across different devices.

https://support.speedify.com/article/918-openwrt

Oh well, I had no idea that speedified now supports Open WRT directly. That’s great

What’s not great is the new router plan, three terabytes per month limitation, 5x the price of the individual plan…

Discord’s main killer feature is Discovery of who is currently voice chatting in a room.

I’ve not seen any alternative platform that has the same level of voice discovery that discord does. Discord makes it easy to have a community, oh I see Bob’s online, let’s jump in and say hi.

It really is the local bar, you can just walk up and talk to anybody. That is absolutely critical. It’s open discovery, it’s effortless communication of status.

A refrigerator uses a compression cycle to pump heat from one place to another place. In addition to the heat that is moved, the work itself generates heat.

So refrigerator in a heated house is producing extra heat, which is the goal currently in the heated house…

What an I missing?

That’s a really good point I didn’t consider.

Adding heat to a place you want to make warm isn’t a problem.

They have a freezer INSIDE their heated house, I know it’s convenient, but the engineer in me gets annoyed when I see that.

maybe we as a society could standardize fridge sizes so we could build fridges that open on the inside but radiate on the outside

Same for heat sources being inside a AC house (oven, fridge, etc) outdoor kitchens make so much sense, or even garage fridges

im sad she hasn’t posted a new video in a year.

Yeah, to me it’s a absolute killer feature for a travel phone. The GOS discussion around it boils down to violating the android profile security model.

E.x., im using a hotel wifi that only allows one device, or I have a esim for one phone only that doesn’t allow “tethering”.

Fair enough on the security model, but at least give me the option… Maybe with a always on notification warning. Being paternalistic about how you think the phone will be used and in which context is overstepping for infrastructure

I travel with a backup phone, and because of this I have calyxos on the backup and not gos.

lineageOS, and CalyxOS both let you share vpn over hotspot connections.

most AVR, automatic voltage regulators, won’t allow for rapid switching on and off.

Actively cooled UPSes, especially the ones that do more active double conversions, absolutely always have the fan on.

PCU: power conditioner unit?

VRU: voltage regulator unit?

While the UPS does have lots of upside, there are some downsides to consider:

Battery is a consumable, off gas venting, perhaps active cooling fan noise

oh interesting, what reasons make the ups safer?

It doesn’t sound like you need a UPS. It sounds like you needed automatic voltage regulator.

It’ll condition the power so it’s clean, and if it’s not clean it’ll cut the power off.

Many good UPS’s have a voltage regulator built in, but then you have the hassle the battery and everything. Up to you depends on what’s easier to find for you locally

Never thought I’d get to share this … Super Sinia does lots of video blogs about her life, she spent many years on Diego Garcia!

https://www.youtube.com/playlist?list=PLxrrYn3RecyCGvmc_0S-C9_NPlUzmiySi