Yes

And even if you do live there.

Definitely, yeah

You mean, spend 4-6 days tearing your hair out, before landing on a solution which evaluates to literally the same output as your current version, but is 10% cleaner and more elegant?

Of course you do, after all, that satisfies that itch. Well. For a while, anyways…

Oh please. Be real. Are you sure there’s nothing in your flake to refactor or modularize? :)

Huh - you’re right. I went back to Signal’s X3DH spec because I was sure I was right, but it seems I misremembered how the “prekey bundles” work: Users publish these to the server, allowing (in my original assumption) for the server to just swap them out for a server/attacker-controlled key bundle for each Alice and Bob.

However, when Alice wants to send Bob an initial message and she gets a forged prekey bundle, Bob will simply not be able to derive the same key and communication will fail, because Bob knows what his SPK private key is, while the server only knows the public key.

A compromised server would allow the server to man-in-the-middle all new connections (as in, if Alice and Bob have never talked to each other before, the Server/Eva can MITM the x3dh key exchange and all subsequent communication). That’s why verifying your contact’s signatures out-of-band is so important.

(And if you did verify signatures in this case, then the issue would immediately be apparent, yes.)

Edit: I was wrong. See below.

Nice, same! Was also really positively surprised by how great the Android app(s) for XMPP feel.

Only thing not working yet for me is group chat creation. Oh well. Maybe this weekend.

On the other hand though, voice and video calls have worked flawlessly.

I mean, how can we feel superior if we are not wasting huge amounts of time setting things up!?

Why, by boasting that it’s so easy, just look at that, it is only two options you need to set thanks to the 80 custom modules I’ve written to abstract the abstractions from nixpkgs!

I WISH I could put an /s here, but I cannot.

Interesting discussion on this from yesterday on the NixOS forums:

https://discourse.nixos.org/t/compliance-with-u-s-age-verification-laws/75791

Ehm… I’m also on Nixos and I’d say it’s super trivial.

services.openssh = {
  enable = true;
  settings = {
    PasswordAuthentication = false;
    PermitRootLogin = "no";
  };
};

users.users.<name>.openssh.authorizedKeys.keys = [ list of pubkeys ideally read from file in repo ];

Eh, the machine is actually in one of my wireguard nets anyways, but for different purposes.

The nice thing about SSH key-based access is, I either have the key and login succeeds, or I have no business trying to log in.

That’s why my remote root server bans via fail2ban after a single failed login.

Yes I’ve had to write support to get a KVM. Yes it’s still configured like this.

Yeah the UX for setting it up was not great. Conversely though, the UX for using it has been fantastic so far. My biggest concern was that the clients would feel dated (on Android esp), but no, they’re surprisingly polished!

Oh no! And just when I finally got around to setting up an XMPP server, too!

So do they

Here’s the email I got from them:

Dear xxx,

This mail is to inform you about an unfortunate, but necessary price change that we must make.

There have been drastic price increases in various areas in the IT branch recently. That is why, unfortunately, we must also increase the prices of our products.

The costs to operate our infrastructure and to buy new hardware have both increased dramatically. Therefore, our price adjustment will affect both your existing products and new orders.

The underlying causes of the increased costs are, among others, the exploding demand for AI-related computing power and for cloud services. In addition, raw material prices and production costs have also generally risen for manufacturers. The costs for RAM and SSDs especially have risen by a large amount. For example, the cost for DRAM memory has increased up to 500% since September 2025. And according to market researchers like TrendForce, this price trend will continue throughout the year.

We have genuinely tried hard to optimize our costs and to prevent increasing our prices for as long as possible. But we can no longer compensate for the strain that it has placed on our operations. We want to continue to deliver quality products that meet both our standards and your expectations, so we must take this step.

The price changes will take effect on 1 April 2026 for both new orders and existing products. For orders placed before 1 April 2026, but delivered after 1 April 2026, the adjusted prices will apply.

The following existing products, listed under the customer number specified in the subject line, are affected by the price increase as follows.

Product previous price New price as of 1 April 2026 Server Auction € 43.56 € 44.87 all prices incl. 21% vat

We know that price changes are always a challenge for everyone. However, we believe that our products’ prices and conditions still have a competitive price-to-performance ratio.

We have prepared a list of all new prices for you on Hetzner Docs at https://docs.hetzner.com/general/infrastructure-and-availability/price-adjustment. Starting on 1 April 2026, the new prices will also be on our website.

If you do not wish to continue your contract, you can cancel the products within the regular cancellation periods via your administration interface.

We hope that you will be able to understand and accept our decision, and that we are sorry that we have to change our prices.

If you have any questions, we will be happy to help. Please log onto your account and go to “Support” in the menu and create a support request.

Kind regards,

Hetzner Online

1.31 for me!

Past me had a dick

Sorry, couldn’t resist.

Did you prompt it in English, or on Chinese? This is just a next-token-predictor, and it will largely use its English training data for its English output prediction.

This is not surprising. Nor is it indicative of, well, anything.

It’s because people get mislead by the “agent”, assuming there’s something actually intelligent at the other end, able to act like they would, just… Automated.