I didn’t realise they have unprotected streams 👀

usually cable channels lock down their streams pretty well, with CDN URLs that either expire or have a single-use token in them.

If you’re not getting 100% full strength signal, it is literally unwatchable.

It depends… Sometimes it’s terrible, while other times even low signal strength is fine. I only get around 65% signal strength and 75% signal quality for one channel (ABC, I think?), and it still works fine with no stuttering.

I use a HDHomeRun TV tuner, so I can place the antenna where I get the best signal, and the HDHomeRun transmits it over my LAN.

At least NBC is a broadcast station, so you can watch it for free using an antenna. I have an indoor antenna in my garage, connected to a HDHomeRun.

Huh, interesting. TIL videos can have non-square pixels.

THE CHEESE IS UNDER THE SAUCE

Rewriting existing systems is one of the riskiest things a company can do, so old codebases are going to be around for a long time.

Those old COBOL codebases likely contain 50 years of bug fixes for every possible edge case. It’d take a long time to rewrite everything and ensure feature parity, and there’s usually not a significant business reason to rewrite it (after all, a successful end result is just that the system behaves exactly the same as the old one).

The COBOL language is still getting updates, too.

Both of those documents agree with me? RedHat are just using the terms “client” and “server” to make it easier for people to understand, but they explicitly say that all hosts are “peers”.

Note that all hosts that participate in a WireGuard VPN are peers. This documentation uses the terms client to describe hosts that establish a connection and server to describe the host with the fixed hostname or IP address that the clients connect to and, optionally, route all traffic through this server.

–

Everything else is a client of that server because they can’t independently do much else in this configuration.

All you need to do is add an extra peer to the WireGuard config on any one of the “clients”, and it’s no longer just a client, and can connect directly to that peer without using the “server”.

There’s no such thing as a client or server with Wireguard. All systems with Wireguard installed are “nodes”. Wireguard is peer-to-peer, not client-server.

You can configure nftables rules to route through a particular node, but that doesn’t really make it a server. You could configure all nodes to allow routing traffic through them if you wanted to.

If you run Wireguard on every device, you can configure a mesh VPN, where every device can directly reach any other device, without needing to route through an intermediary node. This is essentially what Tailscale does.

Setting up typescript takes an hour or two if you have no clue what you’re doing

Modern versions of Node.js have native TypeScript support. For scripts, you can just write the script then run it. That’s it. No build process needed. A beginner could just rely on type checking in their editor (I think VS Code has the TypeScript tooling installed by default?)

For web apps, just use something like Bun or Deno. Bun gives you practically all the tooling you’d need (JS runtime, TypeScript, package manager, test runner, bundler, and framework for building web apps) out-of-the-box. It doesn’t have a formatter, but you can just use your editor’s formatter.

You’ll need to use a VPN that supports port forwarding. You could use a cheap VPS instead.

Where I live in California, electricity can be over US$0.60/kWh during peak summer time. Thankfully I have solar panels that offset most of the cost. I’m from Australia which also has high electricity prices.

Depending on the electricity price where you live, a VPS with 8GB RAM might be cheaper than running the laptop. Just something to keep in mind. GreenCloudVPS have some for $45 annually: https://greencloudvps.com/billing/store/budget-kvm-sale (I’m not affiliated with them)

Should I run the server over a VPN

Do you mean for you to access it remotely, or do you mean to expose it publicly via the VPN (so that you can have publicly-exposed services while hiding your home IP)?

For remote access, I’d recommend Tailscale. It mostly “just works”.

you can also do the exact same thing with any other HikVision camera too

Most people that install security cameras don’t directly connect them to the internet like this. A company that’s installing them at scale should be aware of this.

using default credentials

Modern Hikvision and Dahua cameras don’t have a default password. They require you to set a strong password during initial setup.

In general, a lot of electronics have moved away from generic default passwords, as many jurisdictions ban them now. Any modern device should either require you to set the password during initial setup, or have a randomly-generated password printed on a sticker under the device.

The device you found was either a very old one, or one where the owner intentionally set a basic password.

There’s automated filters (both manually-created and AI) but bad actors find ways around them.

Click the three dots button and select the option to report it. Those reports are actually monitored.

I’ll try it out! I totally forgot it exists.

I was using LibreOffice Calc on my work PC with a Threadripper CPU, and somehow it still chugs at times. Scrolling was very laggy with larger spreadsheets for example. I ended up using Google Sheets instead, which is way more responsive for me. If it was for personal use, I’d probably try IronCalc.

Wow, this is very useful!!

a program that runs as root

Does it have to run as root? It’s common to run Docker in rootless mode in production environments.

You might be interested in StirlingPDF too.