Goats sure are neat

To someone watching network traffic, a VPN connection looks like two machines exchanging encrypted packets. You can’t see the actual data inside the packet, but you can see all the metadata (who it’s addressed to, how big it is, whether its TCP or UDP, when it’s sent). From the metadata, you can make guesses about the content and VPN would be pretty easy to guess.

When sending a packet over the Internet, there’s two parts of the address: the IP address and the port. The IP address is a specific Internet location, blocks of IP addresses are owned by groups (who owns what is public info) and there are many services that do geo-ip mappings. So if you’re connecting to an IP address that belongs to a known VPN provider, that’s easy.

The second part of the address is the port-number. Servers choose port-numbers to listen to and the common convention is to use well-known ports. So, for example, HTTPS traffic is on port 443. If you see a computer making a lot of requests to port 443, even though the traffic is encrypted we can guess that they’re browsing the web. Wikipedia has a list (which is incomplete because new software can be written at any time and make up a new port that it prefers) and you can see lots of VPN software on there. If you’re connecting to a port that’s known to be used by VPN software, we can guess that you’re using VPN software.

Once you’re running VPN software on an unknown machine and have configured it to use a non-standard port, it’s a bit harder to tell what’s happening, but it’s still possible to make a pretty confident guess. Some VPN setups use “split-tunnel” where some traffic goes over VPN and some over the public Internet. (This is most common in corporate use where private company traffic goes in the tunnel, but browsing Lemmy would go over public.) Sometimes, DNS doesn’t go through the VPN which is a big give-away: you looked up “foo.com” and sent traffic to 172.67.137.159. Then you looked up “bar.org” and sent traffic to the same 172.67.137.159. Odds are that thing is a VPN (or other proxy).

Finally, you can just look at more complex patterns in the traffic. If you’re interested, you could install Wireshark or just run tcpdump and watch your own network traffic. Basic web-browsing is very visible: you send a small request (“HTTP GET /index.html”) and you get a much bigger response back. Then you send a flurry of smaller requests for all the page elements and get a bunch of bigger responses. Then there’s a huuuuge pause. Different protocols will have different shapes (a MOBA game would probably show more even traffic back-and-forth).

You wouldn’t be able to be absolutely confident with this, but over enough time and people you can get very close. Or you can just be a bit aggressive and incorrectly mark things as VPNs.

Responsibility lies with “The Democrats” (some sort of far away secret group that I can’t influence) and not with any American. If those Democrats can’t give me my perfect candidate, then I’ll just give up and let the fascists win. Also, I can’t figure out why they won’t do this–my ideal liberal candidate would appeal to the majority of Americans!

It’s a bad headline: seems easy to believe that there’s just a lot more journalists around today than there were in the world wars.

Much better would be to highlight from the body of the article that the death toll is also more than have been killed in the invasion of Ukraine. That one’s modern, well-covered by media, Russia has repeatedly targeted civilians, and Russia’s been attacking for longer. So to have still killed more journalists makes it clear that it’s deliberate.

I wonder if the sleep-change fucks up our brains and that’s why more people aren’t upset about it.

Until this comment, I’d completely forgotten about how the most recent time-change messed up me and the puppy I’ve been training, because of course she needs to pee as soon as she wakes up at 6am every day…

But note that that’s about nudity and sex being the same, and the sex is pornographic (that is, the intent in showing it is to arouse the viewer). The OP is about non-sexual nudity. In fact, OP doesn’t mention sex at all, but I feel like it’s reasonable to extend the argument to non-pornographic depictions of sex.

The subtext of “anti-DEI”, though, is that it is not possible to have two competent candidates where one is a woman/minority because conservative Christian English-speaking white men from wealthy families are inherently superior.

It’s a funny post, but a serious point. The Europe of my childhood was different countries all very different from the US. But over time American media and algorithmic dominance are eroding things toward being America with accents. And what will you get for throwing away that cultural identity? Americans will still sneer at Europe.

I think a trickier question is: if Europe ought to retain its own identity, then shouldn’t each European country retain its own identity instead of banding together as “Europe”.

As a programmer, DST creates tons of bugs for anything using time and is annoying. But whatever, I guess I get paid either way.

As a parent, DST is miserable. It’s miserable as an adult, also, but multiplied misery when you have to get up early to ruin your kid’s sleep. And then that night they’re not ready to suddenly go to sleep an hour early so you lose an extra hour…

I hope Poland succeeds.

Wow! That is a big bean!

Torture isn’t useful as an intelligence-gathering tool, but that’s not what it’s being used for here. Torture works quite well for manufacturing confessions to use as propaganda to justify further killing/torture/other crimes.

enough that voted Trump

Fuck those assholes. The ones that break my heart are the ones who didn’t vote at all because “the Democrats are terrible too”. Yeah, they are. But voting for the least-bad politician is the minimum-effort thing and everyone I know who skipped voting is not spending their time community-organizing or engaged in violent revolution.

deleted by creator

You haven’t missed anything; there isn’t any such place. There’s a bunch of suggestions on how you could patch such a thing together StackOverflow: Is there a way to list pip dependencies/requirements?. Basically either running pip or querying the PyPI API to discover transitive dependencies. Sounds like a fun little programming project! 😀

Not an answer to your question, but I thought this was a nice article for getting some basic grounding on the new AI stuff: https://arstechnica.com/science/2023/07/a-jargon-free-explanation-of-how-ai-large-language-models-work/

it is agnostic of cloud providers: you can use it to deploy infrastructure to multiple providers

Nicely put. I frequently see the first part of this sentence and not the second. (Maybe I only pay attention to the first part and then disappoint myself…)

Terraform/Tofu allow me to use the same basic syntax and to have one project that controls AWS/GCP/K8s/my home servers, but I cannot use it to describe “a running server process” and just deploy that on any of those places. Instead I’d need to have like aws_beanstalk_service { ... } and gcp_application { ... } and kubernetes_manifest { ... } and systemd_service { ... } and the contents of those blocks would be totally different (and I’d need a bunch of different ancillary blocks for each of those).

The job market is not terrible. But there is a frustrating thing where a “senior” developer with 3 years of experience will get tons of recruiter-spam offering them $200k+ positions, while a junior developer (your position) will get ghosted when you apply for a job that’s offering to pay $50k. So it can feel demoralizing because people you see as your peers are having a very different experience. (And if you go in some circles the FOMO just never stops; people telling you you’re wasting your life not being a Meta dev getting $800k TComp or founding a unicorn start-up…)

You say you enjoyed programming, which sure sounds to me like you could enjoy getting paid to do it. But it’s easy to overwork yourself because your boss says that real developers pull 80-hour weeks. Or burn out because it’s so frustrating to watch bad decisions ruin your good work. If you can find the right balance of caring and not caring, you can make good money and enjoy your job.

And it only takes a year or two to get rid of the “junior developer” label and then jobs are a lot easier. (Others have said that the market is bad. And it is bad compared to how it was in, like, 2020. But it’s still a very good market all things considered.)

I notice you asked for an explanation and then only sort-of read the first sentence.

The national parks are amazing. But who knows if they’ll still be around since we’re firing everyone who maintains them. Not sure if the plan is to destroy them or to give them to some oligarch as a little play-area.

There’s substantial Israelis who aren’t calling for genocide. But it’s like the US after 9-11 and they’ve mostly gone into hiding because the right-wing media presence is so overpowering and successful on the “with us or against us” message.