Fork me on GitHub
#off-topic
<
2020-06-18
>
borkdude09:06:11

What's a nice solution for making a box you have at home available to yourself on the internet via a remote desktop-ish solution, safely? - ssh -X tunneling of an X server, with fail2ban - VNC? I'm not too familiar with all the options, so if you're using this, it would be nice to hear about it. The other option is to run Windows with remote desktop along with rdpguard for blocking (similar to fail2ban)

hiredman15:06:46

I have a wireguard VPN between a cloud server and a computer on my home network. The computer on my home network does this weird double nat, so all the computers on my local network can send traffic through the VPN, and all the computers on the VPN can send traffic to computers on my local network(but with the ip address range remapped to something less common)

hiredman15:06:50

So if I am out of the house my laptop can connect to the cloud server also using wireguard and I have access to my home network

borkdude15:06:43

Could you also cut out the cloud server and connect directly to one of your machines at home using WireGuard?

hiredman15:06:07

You could, but you would need to faff around with port forwards (or terminate the VPN at your router somehow) and make sure your ip doesn't change

hiredman15:06:48

(or use some kind of ddns I guess)

borkdude15:06:48

right, thanks

hiredman15:06:54

For actually accessing the computers remotely I just use ssh, my laptop is the only non-headless computer anyway. I have used the VPN to access things like my emby media server while on vacation

borkdude15:06:54

so you log into the VPN and then ssh right? since ssh isn't exposed directly to the internets?

borkdude16:06:24

cool, this is what I want as well

borkdude16:06:50

I might cut out the cloud server though, since my IP is relatively stable. just one port forward in my router and I should be set

walterl16:06:37

sidenote: x11vnc: > VNC server to allow remote access to an existing X session

borkdude16:06:37

interesting, thanks

👍 3
hiredman17:06:23

https://gist.github.com/hiredman/905f5755783f30a4bfe83a6fc0cc8506 is the shell script I use to setup the double nat thing, it maps the common 192.168.1.0 address range I use at home to 192.168.38.0 for traffic to/from the vpn to avoid any conflicts with other local networks my laptop may be connected to

borkdude17:06:34

thanks for sharing

ghadi18:06:34

❤️ wireguard

sveri08:06:46

Just, wanted to add, in terms of UI performance the windows RDP server is the fastest one. I tried everything under the sun and while you even have notable input lag with RDP, it's worse with all the other options I tried.

borkdude08:06:42

thanks for the input

gibb05:06:23

I'm setting up a similar setup to hiredman with wireguard. It seems the performance is great too.

gibb05:06:15

But I don't use remote desktop either just ssh

dharrigan09:06:44

Run a private network, using wireguard or zerotier. As for display options, not sure - vnc is pretty easy to setup and ubiquitous.

👍 6
dpsutton13:06:17

is that just spam?

naomarik18:06:09

@seancorfield Thank you! I just tried like 3 different deps.edn uberjar tools before landing on depstar, none of them could compile my project properly. Uberdeps came closest but for some reason had an issue with datomic.

jjttjj18:06:22

random pet peeve: with tools deps dependency coords (or aliases) they're often in a readme like this:

{:deps
 {my/lib {:mvn/version "1.0"}}}
ie, they include some level of outer nesting. I find I end up messing up the copy/paste process of this 50% of the time. Isn't something like
;;:in :deps
my/lib {:mvn/version "1.0"}
Better? So you can just copy and paste it into the already existing deps? I realize this is an extremely inconsequential aspect of coding 🙂 But is anyone else constantly getting burned by this?

naomarik18:06:41

yeah little annoying but not a big deal to me since it's not an everyday thing

jjttjj18:06:08

Alternatively something like

{:deps
 {
  my/lib {:mvn/version "1.0"}
  }
}
could work but probably just omitting the outer map is fine

borkdude18:06:16

another thing: I often mistype {:mvn/version "1.0"} and just write "1.0" which gives a confusing message

naomarik18:06:59

oh the msg is the worst, i had :mvn/verson on accident and had no idea what it was trying to tell me

borkdude18:06:31

or :mvn/release 🙂

jjttjj18:06:38

I agree it's not a big deal but maybe there was an occasional complaint, library authors would save themselves the few keystrokes in their readmes :)

seancorfield20:06:27

Yup, I'll be reviewing and updating my libraries after seeing this!

jjttjj20:06:26

👍 Awesome, thanks!

Drew Verlee18:06:18

The core issue is that were coping text around. What would it look like to create a registry that we could programmatically pull from. I feel like this is an issue everyone has and so I assume the solution is very complex.

hindol19:06:42

CIDER/Emacs can search and add a dependency programmatically (via CLJ Refactor), so I guess an API does exist.

Drew Verlee23:06:30

Did you try it with deps? Did it work?

Drew Verlee23:06:04

I tired and it didn't. But sometimes I mess up :)

hindol04:06:12

With deps I found a quirk. You need to have the :deps {} present. Else it errors out. But after adding that key it works.

Drew Verlee21:06:06

It worked for me once randomly in about 8 tries. Which is as good as being useless unfortantly. I think ill come back to this once we get tools/add-lib out of alpha and we can do hotload deps in one command

Alex Miller (Clojure team)18:06:50

ticket welcome for the error message thing @borkdude

👍 3
borkdude18:06:23

@alexmiller will do. at tools.deps?

borkdude18:06:42

oh jira right

Alex Miller (Clojure team)18:06:30

I just added a fix recently for the case where you typo :version which was extra bad

Alex Miller (Clojure team)18:06:20

don't worry about a patch, just a jira is fine and I'll catch it the next time I go through the list

emccue19:06:55

re: that earlier conversation about hiring practices

emccue19:06:01

that post in #events feels like a good example of the problem

seancorfield20:06:13

Yeah, ordinarily the admins would consider that to be unwanted spam but given the impact of COVID-19 and the fact that these annoying companies are offering their seminars/courses for free, we're letting them stand (since, unfortunately, a lot of companies interview that way).

emccue00:06:28

It really gives me SAT prep vibes if that makes sense

emccue00:06:23

Not saying it should be taken down or anything - don't hate the player hate the game.

thanks2 3