diff options
author | Vidhu Kant Sharma <vidhukant@vidhukant.xyz> | 2022-09-20 23:11:52 +0530 |
---|---|---|
committer | Vidhu Kant Sharma <vidhukant@vidhukant.xyz> | 2022-09-20 23:11:52 +0530 |
commit | f23dae307e06d95499b35dbdd8e341b45756b330 (patch) | |
tree | b46c707a8cd62f8c63c78eb4018dc9bc0da1cffe /content/blog/2022 |
First commit
Diffstat (limited to 'content/blog/2022')
-rw-r--r-- | content/blog/2022/_index.md | 3 | ||||
-rw-r--r-- | content/blog/2022/i-created-a-blog.md | 39 | ||||
-rw-r--r-- | content/blog/2022/my-failed-attempt-at-installing-gentoo.md | 60 | ||||
-rw-r--r-- | content/blog/2022/securing-your-mailserver-with-spf-and-dkim.md | 264 | ||||
-rw-r--r-- | content/blog/2022/tech-companies-are-using-you.md | 79 | ||||
-rw-r--r-- | content/blog/2022/why-i-customize-everything-about-my-system.md | 58 | ||||
-rw-r--r-- | content/blog/2022/why-social-media-should-be-avoided.md | 165 |
7 files changed, 668 insertions, 0 deletions
diff --git a/content/blog/2022/_index.md b/content/blog/2022/_index.md new file mode 100644 index 0000000..3bf91c1 --- /dev/null +++ b/content/blog/2022/_index.md @@ -0,0 +1,3 @@ +--- +title: 2022 +--- diff --git a/content/blog/2022/i-created-a-blog.md b/content/blog/2022/i-created-a-blog.md new file mode 100644 index 0000000..c0825cc --- /dev/null +++ b/content/blog/2022/i-created-a-blog.md @@ -0,0 +1,39 @@ +--- +title: "I Created a Blog!" +date: 2022-07-12T12:54:32+05:30 +--- + +## Yos I have finally done it + +This is sort of like a test for my blog, generated with hugo, pog stuff. +This has been a journey. This is like the third iteration of my blog. First one was blog.vidhukant.xyz which no longer exists. +It was not a static site, it was a server side rendered web app written in go. It looked awesome but I got bored pretty quickly. +(also writing markdown is better) + +Second time I decided to just write my blog in plain html which was a horrible, horrible idea and now on third iteration now we have this! A static site built with hugo. + +## The "philosophy" behind this blog + +Seems cool doesn't it? + +Yea that's it. I like talking to likeminded people online, but social media is tiring ~~(and evil!)~~ so I just created my own blog! +Hopefully I write at least a few useful posts. I totally see this going into either a doujin review site or me just shilling free software. + +## What are these GIFs on the bottom? + +This seems to be a trend from the 90s, you'd add different GIFs linking to other websites that you like. +I wasn't even born at that time so I obviously haven't seen this trend in all of its glory, but hey these things are fun so I'll add it. +If you also have a website (preferably a "minimal" one) (wait does this one count as minimal?) do add my "web button" to your site! + +## Thanks to landchad.net + +I learned many things from landchad.net, like setting up a nginx frontend server, firewalls, rsync and stuff. Really neat site, I recommend checking out. +Also lol check out my [youtube channel](https://youtube.mikunonaka.net) because why not. At this moment there aren't any videos because +I deleted my old channel and this is a brand new one. But stay tuned for some quality content! + +## Check out the latest projects I've been working on + +[MAL2Go](/docs/mal2go/v4) is a very neat API Wrapper that lets you use the MyAnimeList API using Go. +[macli](/docs/macli) is an awesome CLI-Based BASED MyAnimeList unofficial client so you don't have to look at a web page (eww) + +And I'm already shilling software. diff --git a/content/blog/2022/my-failed-attempt-at-installing-gentoo.md b/content/blog/2022/my-failed-attempt-at-installing-gentoo.md new file mode 100644 index 0000000..c9056da --- /dev/null +++ b/content/blog/2022/my-failed-attempt-at-installing-gentoo.md @@ -0,0 +1,60 @@ +--- +title: "My Failed Attempt at Installing Gentoo" +date: 2022-08-02T16:35:58+05:30 +--- + +After using Arch Linux for slightly more than 2 years I decided to move to Gentoo. +I managed to install it (well it wasn't hard) but still way too many things went wrong; +and I'm gonna share my suffering with you guys by talking about it. + +## Why I moved back to Arch Linux + +Gentoo is actually really interesting, waiting 2 hours for portage to install your terminal really is a feel. +Though turns out that compiling the terminal didn't take that long, THAT SHIT ALSO COMPILED THE FUCKING PROGRAMMING LANGUAGE. +Yeah, I compiled rust THEN compiled alacritty because that's what pro hackers do. +(I really thought it'd automatically pull the binary, apparently that's rust-bin not rust) + +I like this, you compile things with the support for only what you need, and disable what you don't. It's not like Arch, +you literally don't have support for the stuff you don't need, which is even faster! +But I guess I still am not fit for that kind of pro gamer level stuff, so I'll stick to arch. + +## Not even an X server worked + +Maybe it's just because I'm a dumbass, but I can't even get an X server running. Also wifi refused to work. +I ran 2 floors to get an ethernet cable at 3 am and that also refused to work! I re-compiled my kernel with networking support and it didn't work! +I guess I should have read the logs but no, like any smart arch user would do, I re-installed it! How fun! + +Over the course of 4 days I installed Gentoo 4 times. 2 of those 4 attempts even occoured in the same day. +I guess getting everything to work would've been easier, but I realised that too late. +If you're planning to install gentoo, remember that it's easier to fix gentoo, a re-install would take too long. + +## Installation wasn't hard at all! + +Okay, to me, the installation part really wasn't too hard. I mean on Arch you just need to copy-paste a couple of commands, +it's really the same with gentoo but.. easier somehow. I didn't have to run many shell commands, I just had a bunch of config files to play around +to fine-tune my system. It was time consuming, but not harder than Arch. I'd say some things were *easier* because instead of setting some variables myself +I just used the `eselect` command to set locales and stuff, I guess that's kinda interactive and "less boring" + +Overall I'd say, no installing gentoo is not hard at all. Especially if you've installed Arch before. BUT using it was pretty hard.. +I had to deal with a lot of masked packages, and had to wait more than an hours just so I can install Xorg; I didn't even bother getting XMonad to work, +just installed dwm because that compiles within seconds. + +Also, while compiling a kernel isn't hard at all (I mean you just get an ncurses program with shit loads of options), but figuring out what I need to get +various things to work was pretty tricky, not to mention that I wasn't able to even do that successfully! + +## I will go back to gentoo but not now.. + +Okay, I quit because I had wasted a lot of my time, and was tired and fed up of it. I **will** go back to installing gentoo on my main machine. +To anyone reading this interested in gentoo, I am NOT saying that gentoo is a bad distro. I'm just saying that it's very frustrating to install, +takes an incredibly long time, and by the time you install it you don't get left with any mental energy to fix any bugs. + +I hope next time I try (maybe in a few months) I will be able to set up XMonad and polybar and all that cool stuff just like I have on Arch +or maybe have an even better setup, and maybe never even look back to Arch! But not now, I'm tired and will work on other stuff for now. + +## A little gentoo wallpaper I made + +I made this funny wallpaper to use with my gentoo installation (while my kernel was compiling in the background!) + +[![Funny Gentoo Wallpaper](/images/Gentoo\_Wallpaper\_OreImo.png)](/images/Gentoo\_Wallpaper\_OreImo.png) + +But sadly I wasn't able to use it. *Some day...* diff --git a/content/blog/2022/securing-your-mailserver-with-spf-and-dkim.md b/content/blog/2022/securing-your-mailserver-with-spf-and-dkim.md new file mode 100644 index 0000000..592c45b --- /dev/null +++ b/content/blog/2022/securing-your-mailserver-with-spf-and-dkim.md @@ -0,0 +1,264 @@ +--- +title: "Authenticating Your Mailserver With SPF and DKIM" +date: 2022-09-14T18:52:08+05:30 +--- + +I recently did a video on setting up an email server, with Postfix for SMTP and +Dovecot for IMAP, which you can check out [here.](https://odysee.com/@MikunoNaka:d/self-hosting-email-server:0) +Now this much isn't enough since you want to make sure no one can spoof your domain and/or tamper with the content of your E-mails. +This is where SPF (Sender Policy Framework) and DKIM (DomainKeys Identified Mail) come to the rescue. + +## What are SPF and DKIM? + +SPF is used to limit which servers are allowed to send emails from your domain. It protects your domain against domain spoofing. +Even if you don't use E-mail on your domain, I recommend using SPF to specify that you won't be sending any emails from this particular domain, +so no one can spoof your domain and pretend to be you while sending emails. + +DKIM can be used to sign the emails with a key pair (where the public key is added to your domain's TXT records) so your E-mails' contents cannot be tampered with. +OpenDKIM is an open source implementation of DKIM, we will be setting up OpenDKIM in this tutorial +(because I have a natural urge to use anything which has "open" in its name) + +### Setting up SPF for outgoing emails on your domain + +You need to add a TXT record to your domain containing the SPF syntax. the SPF record should always start with the SPF version number you are using. +For me it is `v=spf1`. Then, you can add all the SPF "mechanisms" that need to be evaluated in order to identify the E-mail. + +Most of the time you just need one or two mechanisms, which are `mx` or `mx:your-domain.tld` and `ip4:your_servers_ipv4` and `ip6:your_servers_ipv6` +(you don't need all of them, it's kinda overkill) + +- `mx` means the email is legit if it comes from a server which is in the MX Records of this domain +- `mx:your-domain.tld` means the email is legit if it comes from a server which is in the MX Records of your-domain.tld +- `ip4:ipv4_address` means the email is legit if the sending server has this particular IPv4 address +- `ip6:ipv6_address` means the email is legit if the sending server has this particular IPv6 address + +You can prepend any of these with `-` to *reject* emails which meet this condition (by default it *accepts* the ones passing this condition); You can use `-all` to make sure +all the other unauthorised emails don't pass the SPF test. + +So this is what a valid SPF record would look like: + +``` +v=spf1 mx -all +``` + +Now I did say using all of these at ones is pretty overkill, but here is what mine looks like: + +``` +v=spf1 mx ip4:172.105.59.60 ip6:2400:8904::f03c:93ff:feac:ca67 mx:m.vidhukant.xyz -all +``` + +I don't think using many mechanisms is a bad thing, so you can just copy mine and replace the IP4 and IP6 addresses with your server's IP4 and IP6 addresses. +Which is enough for most usecases. To apply this SPF record just add a TXT record to your root domain. It should look like this: + +![SPF Record Screenshot](/images/spf-record-example.png) + +**NOTE:** If you are using multiple domains for a single mail server, you should use the exact same SPF record for all the domains. +If you don't plan to use E-mail with any of your domains, set the SPF record to `v=spf1 -all`. +ALWAYS add this to your root domain since it tells every receiving server that this domain doesn't +send E-mails and if you receive one that means it's probably malicious. + +[This website](https://www.spf-record.com/syntax) has all of the other info about structuring an SPF record. + +### Setting up DKIM (OpenDKIM) + +#### Install the necessary packages + +``` fish +apt install opendkim opendkim-tools +``` + +#### Configure OpenDKIM + +The OpenDKIM config file located at `/etc/opendkim.conf` should look like this: + +``` +Syslog yes +SyslogSuccess yes +Canonicalization relaxed/simple +Mode sv +SubDomains no +OversignHeaders From +Socket local:/var/spool/postfix/opendkim/opendkim.sock +PidFile /var/run/opendkim/opendkim.pid +AutoRestart yes +AutoRestartRate 10/1M +Background yes +DNSTimeout 5 +SignatureAlgorithm rsa-sha256 +UserID opendkim +UMask 002 +KeyTable /etc/opendkim/key.table +SigningTable refile:/etc/opendkim/signing.table +ExternalIgnoreList /etc/opendkim/trusted.hosts +InternalHosts /etc/opendkim/trusted.hosts +TrustAnchorFile /usr/share/dns/root.key +``` + +This is what works for me on Debian 11. The data files for OpenDKIM will be stored in `/etc/opendkim/`. If you want to store them anywhere else, +edit the `KeyTable`, `SigningTable`, `ExternalIgnoreList`, `InternalHosts` parameters in `/etc/opendkim.conf` + +#### Setting up the Signing Table + +Make a list of all the domains you want to handle E-mails for, and add them to `/etc/opendkim/signing.table` like this: + +``` +*@example.tld mail._domainkey.example.tld +``` + +Replace both occurances of example.tld to your domain name, and mail to whichever subdomain sends emails. `mail._domainkey.example.tld` would act +as the DKIM selector for example.tld + +If you have any other subdomain set up for the mail server (for example I have `m.vidhukant.xyz` while the standard would be `mail.vidhukant.xyz`), +replace "mail" with that. +You can add as many domains you want, But don't add domains which won't be sending emails. + +#### Setting up the Key Table + +Now edit `/etc/opendkim/key.table` and add lines for each domain like this: + +``` +mail._domainkey.example.tld example.tld:mail:/etc/opendkim/keys/example.private +``` + +Add one line like this for all the domains added to the signing.table file, replace `mail` and `example.tld` respectively. +Decide a short name for the private key for this domain, `/etc/opendkim/keys/example.private` in this example holds the private key for `example.tld` +You should decide different names for each domain you're adding and remember that name, you will need that later. + +#### Setting up the Trusted Hosts + +Edit the `/etc/opendkim/trusted.hosts` file and add these contents: + +``` +127.0.0.1 +::1 +localhost +hostname +hostname.example.tld +*.example.tld +``` + +Replace hostname with your server's hostname (defined in `/etc/hostname`), and example.tld with your domain. If you have more than one domain, +you can append those to the file prepended with a `*.`, just like in `*.example.tld`. +No need to add another entry for `hostname.example.tld`, just append `*.yourdomain.tld` to the file as many times (for as many domains) you want. + +#### Set file permissions + +Make sure opendkim user has access to the required files/directories: + +``` fish +chmod u=rw,go=r /etc/opendkim.conf +chown -R opendkim:opendkim /etc/opendkim +chmod -R go-rwx /etc/opendkim/keys +``` + +#### Generating the keys + +Run this command, replacing example.tld with your domain name, and mail with the subdomain for email: + +``` fish +opendkim-genkey -b 2048 -h rsa-sha256 -r -s mail -d example.tld -v + +mv /etc/opendkim/mail.private /etc/opendkim/keys/example.private +mv /etc/opendkim/mail.txt /etc/opendkim/keys/example.txt +``` + +Replace "example" in the `example.private` and `example.txt` files with the short name you entered for the domain in the `key.table` file. +Repeat this step for all the domains if you have multiple of them! + +**NOTE:** Never share the contents of the generated ".private" files! + +#### Start OpenDKIM + +``` fish +systemctl restart opendkim +``` + +#### Add the TXT Records + +Read the contents of the TXT file generated by `opendkim-genkey`: + +``` fish +cat /etc/opendkim/keys/example.txt +``` + +The output would be something like this: + +``` +mail._domainkey IN TXT ( "v=DKIM1; h=sha256; k=rsa; " + "p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxzNTZydyFiNljq/Md1cXNEqemKDk9CKhZGHSzEH6x0zxtdcv5ROzaytJ4OsatDOdk+Pygkj6Qq9PiLCc3HlWPTcvMEs+M8YvRergTATFNoAmXLXvpbi+DD0oXAsbz2dM/klObY9OSNlJqFpzmGjgRbtSnvCbot8Smg5LreCjmkuHo/sxyynRHGwRHUM6jokm2YGIGATZBIVqtS" + "jM418Gtxx9MZUbwcQTlchk1hSQgbXlAAl5tagle3bq/2GwrwrdaghRH750qLjnBQhzdFnH+GjHTmRl2drQ/2zG1L0GlufipZ1UkWulidox2RtIykv2VxDlBYb77G4PAiiJsSar+wIDAQAB" ) ; ----- DKIM key mail for example.tld +``` + +Carefully delete everything outside the parenthesis (including the parenthesis) and join all three lines into one. +Now, remove all the quotes and also the whitespaces between line 2 and 3, so both lines get merged into one, without any space between them. + +The result should look like this: + +``` +v=DKIM1; h=sha256; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxzNTZydyFiNljq/Md1cXNEqemKDk9CKhZGHSzEH6x0zxtdcv5ROzaytJ4OsatDOdk+Pygkj6Qq9PiLCc3HlWPTcvMEs+M8YvRergTATFNoAmXLXvpbi+DD0oXAsbz2dM/klObY9OSNlJqFpzmGjgRbtSnvCbot8Smg5LreCjmkuHo/sxyynRHGwRHUM6jokm2YGIGATZBIVqtSjM418Gtxx9MZUbwcQTlchk1hSQgbXlAAl5tagle3bq/2GwrwrdaghRH750qLjnBQhzdFnH+GjHTmRl2drQ/2zG1L0GlufipZ1UkWulidox2RtIykv2VxDlBYb77G4PAiiJsSar+wIDAQAB +``` + +This is your public key for DKIM. + +Now go to your DNS editor, click on Add TXT Record, the hostname should be `mail._domainkey` or whatever the first few characters the original example.txt showed. +In the value field copy and paste the public key. Make sure there are no errors. + +#### Configuring postfix to use OpenDKIM + +Set up postfix to process outgoing E-mails with OpenDKIM + +``` fish +postconf -e "milter_default_action = accept" +postconf -e "milter_protocol = 6" +postconf -e "smtpd_milters = local:opendkim/opendkim.sock" +postconf -e "non_smtpd_milters = local:opendkim/opendkim.sock" +``` + +Add this to your `/etc/default/opendkim` file to set the socket for postfix + +``` +SOCKET="local:/var/spool/postfix/opendkim/opendkim.sock" +``` + +And then create the socket directory + +``` fish +mkdir /var/spool/postfix/opendkim +chown opendkim:postfix /var/spool/postfix/opendkim +``` + +#### Testing if DKIM is working + +Wait for the DNS records to propagate (shouldn't take long!) and send an email with your SMTP server, on the receiving end, your email client should have an option +to "view source" or "show email headers", open that, you should see a `DKIM-Signature:` field there. + +You can now send a test email to a GMail account, and on the GMail web app you can view the email's source. +It will show detailed information about your DKIM and SPF setup. GMail is by far the best test to verify +that your authentication mechanisms (SPF, DKIM, etc) are working properly. + +## Use DMARC to tell receiving servers how to handle your email + +Domain-based Message Authentication, Reporting and Conformance, short for DMARC can be used to specify a set of instructions for the receiving email servers on how +to handle the email. You can use it to specify which authentication mechanism (SPF, DKIM or both) is in place, what to do with emails which fail authentication +(you can reject, send, or quarantine them), how to check the `From: ` field of the email. It can also be used by receiving servers to report back to your own server, +in case any of the checks fail. + +All DMARC records start with `v=DMARC1`, and the `p=` field would specify what to do with emails that fail the SPF or the DKIM test. `p=` can have these three values: + +- none: do nothing +- quarantine: quarantine the email (e.g send it to the spam folder) +- reject: reject the incoming email + +It is best to use `p=none` while testing your SPF and DKIM records, after that you can choose between `p=reject` or `p=quarantine`. + +You can also optionally use `rua=mailto:your_email` to get DMARC fail reports to your email. Just replace `your_email` with your E-mail. +You can specify multiple E-mail addresses seperated with a comma. + +Here's what an example DMARC record should look like: + +``` +v=DMARC1; p=quarantine; rua=mailto:user@example.com +``` + +Add this to your domain's TXT records and set the hostname to `_dmarc` and you should be good to go! + +Use [this](https://appmaildev.to/en/dkim) DKIM test to test your SPF, DKIM and DMARC configuration. diff --git a/content/blog/2022/tech-companies-are-using-you.md b/content/blog/2022/tech-companies-are-using-you.md new file mode 100644 index 0000000..ec82483 --- /dev/null +++ b/content/blog/2022/tech-companies-are-using-you.md @@ -0,0 +1,79 @@ +--- +title: "All these \"tech companies\" are taking away your freedom." +date: 2022-09-16T09:09:22+05:30 +--- + +Most people (speaking from my experience) don't even understand what freedom means. From the start they are taught to go with the flow. There are things that they must do, there are things they mustn't. And frankly they don't even care about it if they're getting what they want. +And the people who know better than that, are taking advantage of this. They want you to believe that this is the right thing. They're real manipulative people. + +All of this applies to the tech sphere. I'm relating this to tech for two reasons: First being that this is my field of specialization, and second, because it's really ingrained in our lives now. It's at the point where it is very hard to back out. Which is concerning because seems like soon it'll become impossible to back out! That's **not** a good thing! + +## You are just a pawn for all of these "tech companies" + +Would you like to live in a world where people's opinion is greatly affected by just one individual? +Or a world where nothing in your life can be kept private? +A world where all of your actions are being dictated by others? +Well you don't have to imagine it! You already are! how cool. It's only going to get worse. + +You are living in a world of constant surveilance. Your phone number, more often than not, is tied to your legal ID. +When you sign up for... almost anything at this point, you are giving away your publically identifiable information. +Wherever you go, your mobile phone is scanning where you are, and sending this data to your phone company. +Even dumb phones are subject to surveilance. The text messages you send to people, they're not private. + +Many people argue that so what if, say, Discord knows what they're talking about with their friends? Or that they have "nothing to hide". +Which is just, irresponsible. You're literally throwing away some of your rights by saying "I have nothing to hide". + +*"Privacy is not the same as secrecy. Everyone knows what happens in the toilet, still everyone locks the door."* - Unknown (I forgot) + +### The data that you share will be used to manipulate you + +The point is, that all these "tech" companies are data mining you. They know your daily activities, and the system has made you to believe that it's not a big deal. +They know your vulnerabilities, they know your likes and dislikes. They are the connoisseurs of social engineering. +When you are giving out all this data to others, you have to understand the liabilities of it. +This data can very well be used against you. + +#### Targeted advertisements + +Targeted marketing is a very serious thing. These businesses feed on your insecurities, (which you cannot hide! The Gods of AI see everything) +they are constantly searching for ways to make you buy their product. They are very good at making you believe that you absolutely need this thing. + +#### Social platforms, etc use this data to get you addicted to their service + +This is one of the most concerning things I see with people around me. Take YouTube for example, when you watch a video, it would recommend you other videos related to it. These recommendations aren't random, they are mostly based on what you have seen in the past. Their ML algorithm is very good at analysing what your likes are depending on what you've watched before. +This, on the outside, looks like very convenient technology. I mean shit, I love when they recommend me music I like, even I'm not immune to this. But people just overlook the dark side of it. I've said this before but this is a really good technique to get you addicted to their service. +They're want you to get the dopamine rush you need. You watch one video, they give you another until you get immune to the dopamine, and consume more and more of their content, until you get addicted. + +#### You can be held liable for everything you've said + +Your phones are constantly listening. They record everything that you talk about, and they send it to your phone company. +What's worse is that now we have all these voice activated "smart" devices, which ~~you can use to turn on the lights with your voice~~ can use *you* for their profits. +On the surface this doesn't seem too bad, but you have to realise that the things you say now, the places you go to now, they are recorded and in the future you can totally be held liable for that. + +There was this incident about a student who said something like he'd commit arson if he loses this game or something like that. I'm not exactly sure what it was, but he was just chatting with his friends while playing some online game. He was most likely just joking but 3 years later the recording somehow got out, and he was taken to court. He didn't even do anything, but he was taken to court and I'm not sure if he's still in there but he had to spend time in jail. +And the judge literally said that he doesn't know what it means to "download" something (he probably said something like that in the recording), yet he was jailed. + +This could happen to YOU and imagine how much worse it could become in the next few years. Some people are installing smart devices in like, every room of their houses. +That was just a voice chat, a smart device listening to you is bound to be so much worse. + +For those people who believe that they don't keep their recordings "because they said so", you literally have no proof. You can NEVER trust software unless it is Free. Nonfree software can never, in any way, can be trusted. Unless your IoT device is librebooted, be ready to get in deep trouble for a dumb reason like 5 years later. + +### You are not in control of the things that you own + +#### Companies selling features as services are bullshitting you + +We have reached a ridiculous point where you (obviously) have to pay for something you buy, and **you need to pay extra to use it.** + +I recently read about a new BMW car (I forgot the model but you can look it up pretty easily on the internet), which comes with heated seats, but you have to pay extra to use the heated seats. Now you might be thinking, they charge extra for the heated seats because probably most people don't need it and it's expensive so they did this to reduce the car's cost. +Boy, are you wrong. This fucking car, comes with heated seats. When you pay for the car, you pay for the heated seats. You own the seats. But you need to pay them extra *on a monthly basis* to use those seats. What kind of idiot would be okay with this? This is not ethical. They've realised that people will pay for literally anything if they sugarcoat it. This is what they think about their customers. That they're dumb enough to buy everything they sell. + +Tesla also did something like this a few years ago! (not sure if they still are doing this kind of thing) +Their lower end cars would come with all those cameras and stuff but it won't come with autopilot mode enabled. But you need to pay $5000 to get the feature enabled. +You. paid. for. the. equipment. Now you need to pay $5000 to use it. Imagine buying a house, but you need to pay the property dealer extra so they can unlock the kitchen. + +The main point is, you're not paying to get the kitchen built, you're paying to use the pre-built kitchen you already paid for. + +## Your opinions are not yours anymore + +The internet influences a lot of us. Sometimes in good ways I must say, but the downsides can't help but take over the good sides. +The media really wants to force their opinions down your throat. They want you to believe in things that would benifit them. It's worse than ever because +media is now greatly controlled by people who *make* these devices you use to access the internet. They have the authority to control what is being shown to you, and what isn't. You're totally not free. You are in virtual jails created by huge corporations, filled with targeted advertising, and social engineering. diff --git a/content/blog/2022/why-i-customize-everything-about-my-system.md b/content/blog/2022/why-i-customize-everything-about-my-system.md new file mode 100644 index 0000000..fcf0a00 --- /dev/null +++ b/content/blog/2022/why-i-customize-everything-about-my-system.md @@ -0,0 +1,58 @@ +--- +title: "Why I Try to Customize Everything About My System" +date: 2022-07-19T01:28:07+05:30 +--- + +I love customizing things. I always go out of my way to make sure my phone, or my laptop, is doing what I want, the way I want. +Recommended usage? Pre-defined shortcuts? Don't tell me how to use my computer. I tell my computer how I want to use it. And make it adapt to that! + +I like to make my desktop/phone look good (doesn't matter if other people find it pretty though), and I love it when everything is easily accessible and all that. +Moreover, I like when all my devices look similar, and work similarly. It starts from my laptop and my phone having an anime wallpaper to radiate max weeb energy, +but also includes everything being of my favourite color, etc. + +## It's actually a learning experience + +Going out of the way to customize software is actually a learning experience, if you're very serious about it, that is. +I learned to flash phones in like 2018 because I wanted to install a newer version of android on my phone, and now I only run custom ROMs on my phone. +And that's for a very good reason. + +All phones are built differently, and nowadays phone manufacturers add new features and remove old features for various reasons that I won't cover, +but basically 2 phones both running the same OS still have many differences. I don't like it because when I use a device (i.e a phone), I don't want to waste my +time learning some new system or missing some (software) feature because the manufacturer decided to remove it. This is why always use LineageOS +(or another AOSP-based operating system, but Lineage is my preferred choice) on my phones. Really because I'm used to the UI, I love the Trebuchet launcher, +and the default ringtone is awesome (literally the only default ringtone that isn't cringe) + +And this has taught me how to work with fastboot, twrp, etc to flash phones and install different operating systems on it. It's not very hard +(but kinda dangerous for your device, I will say) to do but spending hours putting different OSs on my phone has helped me understand how +phone operating systems really work. + +Similarly, on the desktop side, my quest to get the best desktop experience, with an interface which works hand-in-hand with my thought process, +and everything being plastered with my favourite color, purple, I learned a lot about the command line, linux, etc. + +So if you want to learn more about computers, I highly recommend trying to customize them. I.e tweak your desktop to your liking, try out different programs, +or (if you want to learn programming), try to build alternatives to the programs you already use, with a different UI or colorscheme that you like. + +## It boosts my productivity + +I use tiling window managers and CLI apps, because these are very configurable/extensible. This not only helps me understand how my operating system really works, +but also lets me tweak everything to my liking and "match how I really think". What that means is if I like to work with the keyboard I can configure my system to +be as keyboard-driven as possible so not only it tires my mind less, it really boosts my productivity. And this isn't something you can achieve with proprietary +software since it's not very configurable. This is a very good reason to use only free and open source software since it boosts your productivity. + +I'm not saying that oh you should use XMonad and spend hours configuring it. I'm saying you should try out different things, window managers, apps, whatever. +You should find out what suits your workflow and use that. Or, you can even fork/create one of your programs that fulfil one specific requirement you have. +Trying out different things is always a good thing. And it really teaches you about the different ways a task can be performed on a computer. + +Those "things" can be anything, right, maybe just switch to firefox if you use chrome (seriously, don't use chrome/opera/edge), or if you're on firefox install icecat. +Play around with different software, tweak it to your liking. See what differences the alternatives have. +Maybe install a different operating system, try dual booting, just try out different stuff! And learn from it! + +## Conclusion + +I just want my phone/computer to do what I want. And I want the UI to match my tastes. And I think this kinda adds "personality" to my devices! +I think anyone who wants to learn computers should play around with the different settings, etc because this in my opinion is one of the best ways to +understand how your system actually works. + +Also, if you're a programmer (doesn't matter if you're learning) it could inspire you to work on different projects. Which is always helpful. +Personally, I learned shell scripting just because I wanted to share my linux desktop audio and mic input on discord at the same time, and I +created a shell script for that! It solved my problem, and added shell scripting to my skill set! diff --git a/content/blog/2022/why-social-media-should-be-avoided.md b/content/blog/2022/why-social-media-should-be-avoided.md new file mode 100644 index 0000000..b7c8577 --- /dev/null +++ b/content/blog/2022/why-social-media-should-be-avoided.md @@ -0,0 +1,165 @@ +--- +title: "Why Social Media Should Be Avoided" +date: 2022-07-15T17:56:56+05:30 +--- + +Welcome to Vidhu Kant's Based and Redpilled Blog. Enjoy your time here. +If you have any opinions to share I'd be more than happy to hear. + +This one's gonna be the legendary, shitting on social media blog post. + +# Social media is evil and is using you. + +Okay, I will try my best to not be extreme and try to explain this topic in layman's terms. +Basically, there are way too many bad things with social media. And I don't see those flaws going away anytime soon. +There is no "one flaw" there are many and you need to look at these said flaws in different perspectives to understand what I mean. + +I won't be covering much about the "privacy" part (I'd love to but that's what everyone does), +I'll be explaining how social media usage is bad for your mental health and is very bad for the society. +There are many more arguments one can make but I'll leave that up to those people who are smarter than me (especially in the fields I don't cover here) + +For clarification I will say, I'm not including messaging apps with my reasoning though many things (especially in the privacy section) do apply there. +I personally think they *are* somewhat important. I don't like using them but you can't just leave some of these services. +(You can take that as an excuse, but I stand with my point) + +## Glossary + +- SNS: Social Networking Service +- PII: Publically Identifiable Information + +## Social media can manipulate your views. + +Social media is very good at manipulating your views. You won't realise but your thinking gets greatly affected by [SNS](#glossary). + +### Their recommendation system plays with your mentality + +These social networking sites are really good at analysing your likes and dislikes, and manipulate the recommendations shown to you based on that. +It's a very convenient and honestly kinda cool system. But it's also very dangerous. + +This kind of system that adapts to your recommendations would make you fall into a rabbit hole and would make you believe in this one thing and one thing only. +You'd watch some kind of conspiracy videos and YouTube would recommend more of them. If you're not being careful and are in a vulnerable state of mind +you'd really start believing in those kinds of things. This is actually a really dangerous thing. On the surface it might just seem like a cool system +which would help you find something like, music that really matches your tastes. But this kind of system can very easily destroy your mindset. +I'm not saying this has the potential to do this kind of thing. If you pay attention you might spot victims of this *pretty easily*. + +### Our mind seeks validation, social media provides that in excess + +Seeking validation is a human trait, and I'm not saying that it's a bad thing. When you do some task you'd try to seek others to +give you a compliment, or to praise you. +Which is a basic human instinct, but social media gives us an incredible amount of validation, which is literally like a trap. +They want to give you the dopamine rush you need. It doesn't seem too bad at the start but soon you'll realise that you are addicted to it. +All these "challenges" and "social experiments" and other trends that require your participation, they try to keep you in the community and make sure that you +don't leave. + +This system is designed in this way because they want user retention. You are literally generating the big tech companies money by using their platform. +And in return you really are not getting anything useful. They try to understand what you like, and collect your data, to fine-tune the ads shown to you. +To all these big social media companies you're just a slave that can't leave their product, and generates you money and fame. + +### Social media forces you to follow what's mainstream + +This goes with many things. Some brand that manufactures something, some k-pop group, whatever. +Social media has made it so that you just have to follow mainstream things. It keeps ~~shilling~~ promoting all these products, +and these "influencers" promoting random garbage makes you think that you really need to spend money on this thing that you really don't need. + +I'm not saying either of these "influencers" or the advertisers are wrong, this is just how social media works, and they know it. +Everything seems to be monetised at this point. Most of the popular social media accounts are just dedicated to shilling all this mainstream media, +mainstream products. And, really, pressuring you to spend your time/money on them too. Which sadly seems to be normal at this point, but: + +#### Social media has taken away most people's personality at this point + +This is a very, very personal opinion of mine. Most of the social media users I know, (I mean everyone uses SNS at this point, but I'm talking about the hardcore users) +are living this constant fight to consoom as much memes, and as much information they can. It's like if you haven't followed this particular account or don't like this +meme you'd be exiled or some shit. + +Also, everyone just wants to copy others. They try to copy some famous YouTuber to become the center of attention, things like that. (copying should not be confused +with taking inspiration and immitating others to learn from them. Which kind of is a thing in the YouTube community) + +It almost seems like people don't even have a personality anymore. They are supposed to believe this one opinion. If you don't agree or do something else twitter +is literally going to "cancel" you. This is dumb. And this is a reality. + +### Social media takes away your freedom + +Most social networking services are owned by private companies, they don't care about you. They care about money. And you are a just a tool to make them money. +To even look at a post they want you to sign up. You need to give your PII (Publically Identifiable Information) in order to register with their services. + +You can't just opt out of them not collecting your data. You need to give them some of your most sensitive private info to even use their service. +They put unnecessary regulations on you and demand you to share your personal data. You don't have the freedom to choose what is visible to others and what is +kept private. And then they put up vague rules in their "content policy" to keep you confused. Suppose you post something and it gets removed, they won't +tell you why it got removed. They just give a vague reply like "this post goes against our terms of service/community standards". They don't give you a reason. +They want to keep you confused and afraid that you won't make this mistake again lest they terminate your account. + +There are a LOT of platforms that take away your freedom of speech in various ways. They won't allow you to say anything that goes against the moderators' personal +beliefs. This in a way engineers the society to also agree to whatever they want them to believe. + +### Social media gives you false hope + +I've seen this case irl with a few people and it infuriates me. +You might think that these bullshit services teach you life hacks and different things, because "internet is a great way to share information" +which it is, but social media definitely not one of those places. + +People absolutely believe that scrolling through instagram would give them access to news, and facts, and various scientific knowledge which also trains their mind +to believe that there's nothing wrong with using instagram (or whatever). It doesn't cross their mind that they might be making use of this particular service/app +a bit too much. And social media is designed that way. Again, it's supposed to keep you on it. It'd brainwash you into believeing that what you are doing is right +and you should never leave this particular service. In my opinion these "big tech" are just abusing their users. Manipulating them into using their service more +and more and get them addicted to it. + +I cannot stress this enough. To big tech you are a tool to generate money (and fish personal data out of). You should avoid them whenever you can. You should always +be in moderation of what services you use and what personal data you share. You are much better than this. Don't fall into their trap. +It's your right to be in control of your personal data and they take it away. + +## ~~Social media~~ most of the services on the internet strip away your privacy. + +Apart from the psychological aspect, they are collecting your data. Which can be considered a massive breach to your privacy. + +I like to call the modern internet a "privacy shithole". Every other big website is just after your personal data. And this "I have nothing to hide" +and "Privacy is for criminals" mindset is very toxic towards yourself and is making the situation worse. + +### Before allowing a site/app access to your device, decide if it really needs it + +Whenever you install an app on your phone, or visit a website, they ask you for various permissions. Look at them and think about it - does said app/website +really needs that access? And do you want to allow it? + +Take facebook for an example, when you install the app, it (at least on android) asks for a bunch of "App Permissions". Those include things like + +- Microphone access +- Location access +- Camera access +- Filesystem access +- Gyroscope access +- many more (I don't use fb so I don't fully know) + +This seems pretty normal, most people are familiar with the "allow \_\_\_\_ access to \_\_\_\_?" message. Many even click allow without even reading it. +Which is by far one of the worst things you can do with your phone. + +When you see such message, think. *Do you really want facebook to have access to your microphone? Why would it use the mic?* +Surely if you are using the calling or video recording feature you might need mic access. *But are you even using it?* +If not, do NOT give mic access. It's your right to decline mic access to them. They are spying on you and you should take an initiative to go against them. + +I'm saying this a lot, but this is a really effective way how facebook fishes out your data. It's listening to you. +While you are using their app they would record your audio and analyse that, to generate better ad recommendations for you. +It's totally a system designed to act against you. It's a very dangerous thing that they are recording your personal data. +Things you might not want anyone to know, they are recording it all. You should not use such apps. It's a dangerous concept. + +Your data needs to be private. Even if you think you "have nothing to hide", hear me out: +**They are making money with YOUR personal information.** +And you aren't even getting anything in return! What did they give to you? Mental stress? Jealousy? Desire to spend money/time/mental energy on something useless? +Trust me, social media is not worth it for its downsides. + +# But how are we supposed to exchange information on the internet? + +Normally I'd explain how easy it is to set up a website (without even knowing any programming!) but this is supposed to be an article for *everyone*, +wether you understand tech or not. ([tell me](/contact/) if I managed to do that!) So while I don't 100% agree with it, I'd recommend everyone to use social media under moderation, and try to minimise the usage, +share as little personal information as possible. But really I'd just say - don't use social media! Don't base your lifestyle around it. +There are better things out there. There are many more things to explore on the internet! +The internet is full of very informative websites without the garbage monetization and useless features included with social media. +But you need to explore. Try out <https://wiby.me>, it's a search engine which only allows personal, small websites without many ads, etc. +If you know other websites without unnecessary trackers, etc, you can also submit them to [wiby](https://wiby.me)! + +## Advice for organisations/businesses + +Also, this is advice for organisations/businesses, etc. Set up your own websites. You can totally do that. It doesn't have to be one with a very modern UI. +Focus more on the content, not aesthetics (but also don't make it an eyesore!). +Make your users want to re-visit your website. Host all the useful info related to your brand on the website. +When someone asks, just give them your website. You are free to do whatever with your site, you don't have to comply with any other service's terms of use, +and it just looks MUCH more professional! + |