Canadians have two moods. The first is “I’m sorry”, the second is “You’ll be sorry.”

Second mood activated.

However, it’s worth mentioning that WireGuard is UDP only.

That’s a very good point, which I completely overlooked.

If you want something that “just works” under all conditions, then you’re looking at OpenVPN. Bonus, if you want to marginally improve the chance that everything just works, even in the most restrictive places (like hotel wifi), have your VPN used port 443 for TCP and 53 for UDP. These are the most heavily used ports for web and DNS. Meaning you VPN traffic will just “blend in” with normal internet noise (disclaimer: yes, deep packet inspection exists, but rustic hotel wifi’s aren’t going to be using it ;)

Also good advice. In my case the VPN runs on my home server, there are no UDP restrictions of any kind on my home network and WireGuard is great in that scenario. For a mobile VPN solution where the network is not under your control and could be locked down in any number of ways, you’re definitely right that OpenVPN will be much more reliable when configured as you suggest.

I use WireGuard personally. OpenVPN has been around a long time, and is very configurable. That can be a benefit if you need some specific configuration, but it can also mean more opportunities to configure your connection in a less-secure way (e.g. selecting on older, less strong encryption algorithm). WireGuard is much newer and supports fewer options. For example it only does one encryption algorithm, but it’s one of the latest and most secure. WireGuard also tends to have faster transfer speeds, I believe because many of OpenVPN’s design choices were made long ago. Those design choices made sense for the processors available at the time, but simply aren’t as performant on modern multi core CPUs. WireGuard’s more recent design does a better job of taking advantage of modern processors so it tends to win speed benchmarks by a significant margin. That’s the primary reason I went with WireGuard.

In terms of vulnerabilities, it’s tough to say which is better. OpenVPN has the longer track record of course, but its code base is an order of magnitude larger than WireGuard’s. More eyes have been looking at OpenVPN’s code for more time, but there’s more than 10x more OpenVPN code to look at. My personal feeling is that a leaner codebase is generally better for security, simply because there’s fewer lines of code in which vulnerabilities can lurk.

If you do opt for OpenVPN, I believe UDP is generally better for performance. TCP support is mainly there for scenarios where UDP is blocked, or on dodgy connections where TCP’s more proactive handling of dropped packets can reduce the time before a lost packet gets retransmitted.

Except the car’s HVAC system passes air through a filter. How much of a difference that makes is going to depend on the type of filter and whether it’s been changed sufficiently often, but it’s definitely doing more than nothing.

Father David Michael? Never trust someone with two first names.

Market capitalization is just simple math, multiplying a company’s stock price by the number of shares that have been issued. Tesla has issued roughly 3.2 billion shares and is currently trading at around $550, which makes their current market cap about $1.75 trillion dollars.

I don’t understand how the value can be that high compared to all of the other companies, especially China.

On its face it seems utterly nonsensical that Tesla is worth as much as all other auto makers combined, when Tesla only accounts for something like 5% of total US car sales. There are two reasons I can think of why this is currently so:

• Tesla accounts for roughly half of all US electric vehicle sales, and electric vehicle sales are roughly 10% of all US vehicle sales. If electric vehicles largely replace ICE vehicles and if Tesla maintains that share of EV sales, then Tesla will be an extremely valuable company. Investors might be betting on a) electric vehicles and b) Tesla continuing to the win the lion’s share of electric vehicle sales.
• Tesla investors are irrational. Personally, my money is on this one. I think long-term Tesla is going to get crushed by cheaper and better-built EVs, probably from China but also possibly from other existing car manufacturers. Sometimes I’m tempted to short Tesla’s stock based on this belief, but to quote John Maynard Keynes: “Markets can remain irrational longer than you can remain solvent.”

are there games that try to portray life and folklore of people I may not know about?

Kingdom Come: Deliverance might fit this. It’s set in 15th century Bohemia (modern day Czechia), and was designed with input from archaeologists and historians. That may present too much overlap with 15th century Bavaria, though. It’s an immersive sim with at least some jankiness, though I believe many bugs have been squashed since release. It can also be a bit tough in the early going as your character starts out pretty weak by design. Your character gets better at skills as you use them and the game starts to shine more once you’ve established some basic competency.

Are there games that play with this kind of meta mystery (I don’t know what word best describes it) where you have a glimpse that there’s something bigger behind the scenes?

I’d recommend There Is No Game: Wrong Dimension. Chock full of 4th wall breaks and meta commentary on games, game design and game development, plus lots of humour and a ton of heart. There is a bit of a mystery component as well. I’d recommend avoiding spoilers if at all possible, I went in blind and I think it made for a much better overall experience.

Beware of reverse survivorship bias. We’d know relatively little about the smart deviants if they rarely get caught.

I don’t dislike that art style in general, but to my mind it seems like a poor fit for a Dragon Age game. I guess they’re pivotinf strongly away from the series dark and gritty roots, which is unfortunate because I think that was one of its strong points.

Watching Skill Up’s review now, and oof. That art style… that writing. Don’t know who they made this game for, but it’s definitely not me.

Oh I’m streets ahead, I never took him at his word in the first place.

I think you’re referring to FlareSolverr. If so, I’m not aware of a direct replacement.

Main issue is it’s heavy on resources (I have an rpi4b)

FlareSolverr does add some memory overhead, but otherwise it’s fairly lightweight. On my system FlareSolverr has been up for 8 days and is using ~300MB:

NAME           CPU %     MEM USAGE
flaresolverr   0.01%     310.3MiB

Note that any CPU usage introduced by FlareSolverr is unavoidable because that’s how CloudFlare protection works. CloudFlare creates a workload in the client browser that should be trivial if you’re making a single request, but brings your system to a crawl if you’re trying to send many requests, e.g. DDOSing or scraping. You need to execute that browser-based work somewhere to get past those CloudFlare checks.

If hosting the FlareSolverr container on your rpi4b would put it under memory or CPU pressure, you could run the docker container on a different system. When setting up Flaresolverr in Prowlarr you create an indexer proxy with a tag. Any indexer with that tag sends their requests through the proxy instead of sending them directly to the tracker site. When Flaresolverr is running in a local Docker container the address for the proxy is localhost, e.g.:

If you run Flaresolverr’s Docker container on another system that’s accessible to your rpi4b, you could create an indexer proxy whose Host is “http://<other_system_IP>:8191”. Keep security in mind when doing this, if you’ve got a VPN connection on your rpi4b with split tunneling enabled (i.e. connections to local network resources are allowed when the tunnel is up) then this setup would allow requests to these indexers to escape the VPN tunnel.

On a side note, I’d strongly recommend trying out a Docker-based setup. Aside from Flaresolverr, I ran my servarr setup without containers for years and that was fine, but moving over to Docker made the configuration a lot easier. Before Docker I had a complex set of firewall rules to allow traffic to my local network and my VPN server, but drop any other traffic that wasn’t using the VPN tunnel. All the firewall complexity has now been replaced with a gluetun container, which is much easier to manage and probably more secure. You don’t have to switch to Docker-based all in go, you can run hybrid if need be.

If you really don’t want to use Docker then you could attempt to install from source on the rpi4b. Be advised that you’re absolutely going offroad if you do this as it’s not officially supported by the FlareSolverr devs. It requires install an ARM-based Chromium browser, then setting some environment variables so that FlareSolverr uses that browser instead of trying to download its own. Exact steps are documented in this GitHub comment. I haven’t tested these steps, so YMMV. Honestly, I think this is a bad idea because the full browser will almost certainly require more memory. The browser included in the FlareSolverr container is stripped down to the bare minimum required to pass the CloudFlare checks.

If you’re just strongly opposed to Docker for whatever reason then I think your best bet would be to combine the two approaches above. Host the FlareSolverr proxy on an x86-based system so you can install from source using the officially supported steps.

My dream was to work as a game developer. This was nearly 20 years ago. I actually got an offer in that field at one point, and the salary was like $20k less than what I was already being paid. I was the main bread-winner in what was a (mostly) single-income household at that time, with my partner pursuing her PhD. Gave up the dream, and I’m glad I did based on what I later learned about that industry. If I went into the game industry I’d be making far less money and have far less free time to do the things I enjoy, like playing the games other people make.

They smell like plastic, metal, complex hydrocarbons, and death.

It’s likely CentOS 7.9, which was released in Nov. 2020 and shipped with kernel version 3.10.0-1160. It’s not completely ridiculous for a one year old POS systems to have a four year old OS. Design for those systems probably started a few years ago, when CentOS 7.9 was relatively recent. For an embedded system the bias would have been toward an established and mature OS, and CentOS 8.x was likely considered “too new” at the time they were speccing these systems. Remotely upgrading between major releases would not be advisable in an embedded system. The RHEL/CentOS in-place upgrade story is… not great. There was zero support for in-place upgrade until RHEL/CentOS 7, and it’s still considered “at your own risk” (source).

Anything that pushes the CPUs significantly can cause instability in affected parts. I think there are at least two separate issues Intel is facing:

• Voltage irregularities causing instability. These could potentially be fixed by the microcode update Intel will be shipping in mid-August.
• Oxidation of CPU vias. This issue cannot be fixed by any update, any affected part has corrosion inside the CPU die and only replacement would resolve the issue.

Intel’s messaging around this problem has been very slanted towards talking as little as possible about the oxidation issue. Their initial Intel community post was very carefully worded to make it sound like voltage irregularity was the root cause, but careful reading of their statement reveals that it could be interpreted as only saying that instability is a root cause. They buried the admission that there is an oxidation issue in a Reddit comment, of all things. All they’ve said about oxidation is that the issue was resolved at the chip fab some time in 2023, and they’ve claimed it only affected 13th gen parts. There’s no word on which parts number, date ranges, processor code ranges etc. are affected. It seems pretty clear that they wanted the press talking about the microcode update and not the chips that will have the be RMA’d.

I’m not sure it fits 100% with what you’re looking for, but I’ll take chance and recommend Slice & Dice (Google Play, Apple App Store). Free demo, no ads, single in-app purchase to unlock the full version. This game is easily the best value-for-dollar mobile game I’ve ever purchased.

Because the toxins your body is reacting to are already in your bloodstream. It’ll take time for those to get metabolized by your liver, and how much or little you vomit won’t change how much work your liver has to do.