Hey, working at the DNALC was my first job when I was in high school. I made a port of their iOS 3D brain app for Android, based on pre-rendered images (which was the style at the time - 2009-ish). It looks like it has since been taken down, which makes sense - I targeted my G1 at the time for acceptable performance, and Android broke things as it moved on. I also helped out on some web apps at the time. Great experience.
In practice this can be made to work but a networking expert can probably explain better than me why splitting a prefix into chunks smaller than a /64, and assigning them to virtual networks within a host is a bad idea.
In Hetzner's specific case: they won't give me one or more additional /72s: only a /56 if I pay for it. Per server.
splitting things out in a smaller prefix then a /64 breaks a couple of things.
SLAAC will not work, and slaac is actually a really neat usecase for containers.
Not having the overhead of DHCP for container addressing is neat.
Also, smaller blocks then /64 makes things like prefix delegation (usually) also break from a provider.
A container should absolutely not even need a /72. The traditional reason for /64 is for slaac but you most certainly don't need that for one container (if at all honestly).
Indeed, a host should be able to request a /64 via DHCPv6-PD and split that between millions of container networks. But you can't do that on Hetzner (or anywhere else).
Yeah that obviously only works on /56 and above because networks should be a minimum of /64. I use k3s and each host has a /64; cilium just gives each pod a /80 and the host does NDP and stuff. Works fine, no need to require dhcp6.
https://en.wikipedia.org/wiki/Collabora_Online ("Collabora Online (often abbreviated as COOL) is an open-source online office suite developed by Collabora, based on LibreOffice Online, the web-based edition of the LibreOffice office suite.")
The PDF format supports this, at least Adobe Reader can validate a signed PDF if it's signed in a certain way[1]. I know DocuSign does this - and Reader even has a little button to view the signed version (embedded in the PDF, I think)[2].
[1]: https://helpx.adobe.com/acrobat/desktop/e-sign-documents/man...
[2]: Example in Adobe Reader: https://i.moveything.com/1cf1e4ea5619 (redacted partly by me)
Signing PDFs digitally is kind of a pain, though. There are several different standards, compatible with different readers, and you need to pay up to get a trusted certificate or Adobe will stick a huge "THIS DOCUMENT WAS SIGNED BY AN UNKNOWN PARTY" banner across the screen when you open it. And then you need to opt into the services of a timestamp server to validate your signature or your document might be marked untrusted when your certificate expires.
It's a better technical solution but unfortunately it's not as simple as you'd hope it to be.
Yes it is not perfect. At least in Lithuania you can use government issued personal ID to sign PDFs that pass Adobe/Foxit checks of signature authenticity. Trusted timestamp is part of a valid signature as it allows to check validity of signee certificate at the time of signing.
Adobe says:
Source of Trust obtained from European Union Trusted Lists (EUTL).
This is a Qualified Electronic Signature according to EU Regulation 910/2014.
Foxit says:
Source of Trust obtained from European Union Trusted Lists (EUTL).
This is a Qualified Electronic Signature according to EU Regulation 910/2014.
I remember a case in a different jurisdiction where a judge dismissed a digitally signed document with an argument they aren't a party of PKI system and don't have a key, so they can't do anything. This stuff is weird.
I think you can file a NOTAM for a weather balloon even if you don't need clearance. Might depend on the size and payload, though, like if it's closer to a party balloon than a real weather balloon, and how high it's going.
That would explain the difference in experiences. My balloon was 8' diameter at launch and expanded to ~40' when it burst at ~90k'. Mine needed the radar reflector and blinky lights. They were supposed to blink at a certain rate, but we cheated and had lights blinking faster as that's all we could find for our budget/schedule.
- Office Space (1999)
reply