The client has the private key, the server has the corresponding public key in its authorized keys file.

The server is vulnerable to the private key getting stolen from the client.

Use the DNS challenge instead? You’ll need a DNS provider with an API though

It’s comfort food. Never pushing the envelope much, but always high quality.

Note that the first game came out in 1986. These remakes will look great and put some modern conveniences on… But it will still be a game from 1986. If you want a modern DQ then 11 is great.

I use this, it’s fine, but development on the open version is very very slow.

And they still haven’t fixed my pet bug: they introduced Unix socket listening, I found that enabling it prevented upgrades, reported the bug with details and repro, and nobody cares. The workaround is simple, delete the socket file before every start. But I remain confused why a bug that prevents upgrades remains.

Not perfect for me, I was also wondering if it would be in this post.

I find the scrolling in the sms display wack, and the copy otp button doesn’t work (just enabled the log follow workaround, so we’ll see), and the right click menu on the system tray icon goes off screen the first try.

By default, unencrypted, and unauthenticated, and permissions rely on IDs the client can fake.

May or may not be a problem in practice, one should think about their personal threat model.

Mine are read only and unauthenticated because they’re just media files, but I did add unneeded encryption via ktls because it wasn’t too hard to add (I already had a valid certificate to reuse)

You could use a reverse proxy to terminate tls, and take the tls off of ad guard itself.

Well, released is a strong word when it’s not on Nvidias site. It was pushed to the cuda repos only, so far.

Same, I’ve been happy with my two play 1s for over a decade. But my secret is not updating, and not using the app (neither phone nor windows), I use Home Assistant (Python) and Noson. My other secret is not adding more Sonos speakers, because I believe you need to use the official phone app for grouping or updates.

Not true, Arch and Ubuntu (the ones I personally checked on) already pushed patches that disabled cups browsed by default, removing the service listening on 631.