Experts know that copy/pasting and/or reimplementing code is not an issue in practice regardless of how often it comes up as an anti-pattern in freshman CS courses. The (amalgamated) software system can still be audited in reasonable time as long as the number of third party dependencies is kept low.
Rust has thrown the baby out with the bathwater in that regard resulting in software that is practically impossible to audit without putting in enormous effort.
I've never seen a C program use hundreds of dependencies. This is typical in Rust (and Node). I know a few high assurance teams that dropped Rust for this very reason.
They look no different than your usual Rust crate. And their full flattened dependency trees already exceeds hundreds of packages.
C/C++ libraries have much more complex build systems with many optional features shipped inside the library. Just think of curl and how many protocols it supports.
Rust's build system, however, is extremely simplistic and limited. So to have things like multiple backends for rendering, parsing, serializing etc. you have to split your library into multiple crates due to limitations Cargo impose on you. So the full equivalent of curl will be 20+ individual crates.
I think the hundreds of dependencies is overblown due to this effect. I maintain my argument. C and C++ projects are just as complex and vulnerable. CMake and fully binary distribution via Linux package managers just hide their complexity.
I haven't seen hundreds of dependencies in C projects either. But I _have_ seen on the scale of 1s to 10s of libraries and algorithms vendored in (sometimes just a header or 5).
It's also an indirect risk, but I've seen C projects reimplement things that would be a dependency in Rust, and introduce subtle (or not subtle) bugs.
The level of delusional wishful thinking here defies belief. Seattle and all other US "left" strongholds are decomposing and falling apart, with parts of these cities worse off than the third world. Instead of realizing that it's ineffective, incompetent and detached from reality politicians that have brought ruin and misery, you want to hand them even more money.
Parts of these cities worse off than the third world? Have you been to a third world country? Or Seattle, for that matter?
The commonly scapegoated cities in the United States are not experiencing third world conditions. Appalachia is experiencing third world conditions. Hollowed out rust belt cities in the Midwest are experiencing third world conditions. These areas are not run by lefty politicians. The United States has a systemic problem, not a local one.
And yes, the systemic problem is that there are a tiny number of ultra wealthy people with wildly outsized influence on the government of the United States, doing everything they can to reduce the amount they need to pay in taxes while simultaneously ensuring they extract the maximum amount of profit from the US government's wildly excessive expenditures.
> Seattle and all other US "left" strongholds are decomposing and falling apart, with parts of these cities worse off than the third world
You can tell this is true because property values have plummeted and nobody wants to live there any more, right? Or, since that’s not true at all, possibly the people who craft the media you consume are not being fully honest.
I don’t really care about whatever taxes the politicians will heap on the rich. My point is that if the rich leave it will not the economic calamity so many pundits forecast. Life will go on without rich people.
Just look at Oregon for example. It’s a lot like WA state but without the billionaires. And it is a really nice place to live. If WA state ends up like Oregon I won’t mind.
As has happened in nearly every European state with wealth taxes. But the elephant in the room is that these policies give the same ineffective, corrupt and entirely worthless politicians even more money to "manage". The very definition of delusional wishful thinking.
this is the key fact. If a wealth tax were enacted and a responsible group were endowed with the money we might reap some value from a wealth tax. Giving American Politicians more tax money is like giving a heroine addict more heroine.
This level of naivety is characteristic of certain SV types where wishful thinking is the order of the day. We're already living through the disastrous effects of the "social media" revolution and this is going to be much more of the same, with even worse negative effects on society.
Just imagine what this will do to critical thinking, interpersonal relationships and family dynamics in a country where illiteracy is rapidly climbing. I don't think it's a stretch to write that if the unrestrained capitulation in terms of societal costs towards big tech continues, we're setting ourselves up for {generational, class-based} conflict that will rip our country to pieces.
I was scratching my head trying to figure out how he got Internet to access qbittorrent on a private IP, but then I read this:
"you see, at some point in time the password was bypassed for users on local network 192.168.1.0/24, however the traefik ingress lives on 192.168.1.1"
which of course is his real problem (reverse proxy, microservices). And of course he has to double down and pile on even more complexity as the solution, instead of throwing out all the crap he's stacked together and coming up with something simple, performant and sane.
I think he wants Traefik's proxied requests to come from a different subnet, that way externally you need to authenticate but internally you don't.
Personally I wouldn't bother with that and instead I would not directly expose the service to the internet at all, and just use a VPN. I don't trust that any services I run are safe to expose to the internet unless they are very intentionally designed for that.
That's fair, a VPN might've been a better approach. I've been having some weird routing issues with WireGuard, that seem to work differently based on the client, but I've not had time to sort that out.
At the end of the post I mention, that having proper separation would've helped, but again, that's a whole project...
It's not really "piling on more complexity". I already have a well-configured OIDC provider that already handles a lot of home lab software that supports OIDC natively.
For things not supporting OIDC natively there's OIDC Proxy for traefik. So in this case the solution is adding a label requesting the OIDC Proxy Middleware, and adding a redirect URL to the OIDC application.
You could argue that it's "more complexity", but routing it through a home vpn, for instance, is also "more complexity".
What, in your opinion is "simple, performant, and sane"? You casually throw that around, but never explain...