E.U. halts approval of U.S. trade deal after Trump's Greenland tariff threat
E.U. halts approval of U.S. trade deal after Trump's Greenland tariff threat
The European Union's legislative body halted work on the final approval and implementation of the trade deal it reached last summer with President Donald Trump.Steve Kopack (NBC News)
like this
‘I could not stay silent’: Palestinian prisoner tells of sexual abuse in Israeli jail
Sami al-Saei said he heard the Israeli prison guards who raped him laughing through the assault, before they left him lying blindfolded, handcuffed and in agony on the floor to take a cigarette break.
At least one of the group knew a crime was being committed and intervened, not to stop the torture but to prevent its documentation. Al-Saei said he heard the man warning others “don’t take a photo, don’t take a photo” as they attacked.
“I tried to prevent them by clenching my muscles (in my anus), but I could not. They forced it in very deep, it was extremely painful,” he said in an interview about his ordeal. “I don’t know how loudly I screamed from the pain.”
It left him in so much pain that he collapsed twice when ordered to stand up and walk afterwards. Moved to an overcrowded cell, al-Saei said he received no medical treatment and was forced to use wads of toilet paper to staunch the blood.
‘I could not stay silent’: Palestinian prisoner tells of sexual abuse in Israeli jail
Sami al-Saei has defied social stigma to speak out about what a report calls a ‘grave pattern’ of sexual violenceEmma Graham-Harrison (The Guardian)
‘I could not stay silent’: Palestinian prisoner tells of sexual abuse in Israeli jail
Sami al-Saei said he heard the Israeli prison guards who raped him laughing through the assault, before they left him lying blindfolded, handcuffed and in agony on the floor to take a cigarette break.
At least one of the group knew a crime was being committed and intervened, not to stop the torture but to prevent its documentation. Al-Saei said he heard the man warning others “don’t take a photo, don’t take a photo” as they attacked.
“I tried to prevent them by clenching my muscles (in my anus), but I could not. They forced it in very deep, it was extremely painful,” he said in an interview about his ordeal. “I don’t know how loudly I screamed from the pain.”
It left him in so much pain that he collapsed twice when ordered to stand up and walk afterwards. Moved to an overcrowded cell, al-Saei said he received no medical treatment and was forced to use wads of toilet paper to staunch the blood.
‘I could not stay silent’: Palestinian prisoner tells of sexual abuse in Israeli jail
Sami al-Saei has defied social stigma to speak out about what a report calls a ‘grave pattern’ of sexual violenceEmma Graham-Harrison (The Guardian)
like this
Next time you hear our US politicians, or other western politicians, speak about some moral, some common good, remember this. They support this, they ignore it, they suppress information about it, they ruthlessly pursue anyone protesting stuff like this.
It gives lie to their whole schtick. They are cynical manipulators. We need all new leadership, not principally for this either, just to get the worse guys out we need popular reform tickets not status quo weak leadership not calling out anyone screwing us, winning only as a rejection of the other party.
Rape is abhorrent, and anyone supporting it because they think they don't like the victim is a piece of shit, liable to manipulation, and with a weak mind they would be susceptible to it.
Pentagon orders more active-duty soldiers to ready for possible Minneapolis deployment
Pentagon orders more active-duty soldiers to ready for possible Minneapolis deployment
The department has issued a ready to deploy order for a Army military police brigade stationed at Fort Bragg, North Carolina.Laura Barrón-López (MS NOW)
Trump's ICE force is sweeping America. Billions in his tax and spending cuts bill are paying for it
A ballooning Immigration and Customs Enforcement budget. Hiring bonuses of $50,000. Swelling ranks of ICE officers, to 22,000, in an expanding national force bigger than most police departments in America.
President Donald Trump promised the largest mass deportation operation in U.S. history, but achieving his goal wouldn’t have been possible without funding from the big tax and spending cuts bill passed by Republicans in Congress, and it’s fueling unprecedented immigration enforcement actions in cities like Minneapolis and beyond.
The GOP’s big bill is “supercharging ICE,” one budget expert said, in ways that Americans may not fully realize — and that have only just begun.
“I just don’t think people have a sense of the scale,” said Bobby Kogan, senior director of federal budget policy at the Center for American Progress and a former adviser to the Biden administration’s Office of Management and Budget.
IRS head announces a shake-up on the eve of the 2026 tax season
Notably, Gary Shapley, the whistleblower who testified publicly about investigations into Hunter Biden’s taxes and served just two days as IRS Commissioner last year, was named deputy chief of the Criminal Investigation division. Guy Ficco, the head of Criminal Investigation, is set to retire and will be replaced by Jarod Koopman, who will also serve as chief tax compliance officer alongside Bisignano.
The June National Taxpayer Advocate report to Congress warned that the 2026 season could be rocky after a series of mass layoffs last year brought on by the Department of Government Efficiency.
“With the IRS workforce reduced by 26% and significant tax law changes on the horizon, there are risks to next year’s filing season,” said Erin M. Collins, who leads the organization assigned to protect taxpayers’ rights.
https://apnews.com/article/treasury-irs-tax-season-fd379f43d501d064cdad046eb32fb9f6
Lindsey Halligan leaves DOJ as judge calls her use of title 'charade'
Lindsey Halligan has left the Department of Justice after a federal judge threatened disciplinary actions against the controversial U.S. Attorney for the Eastern District of Virginia, Attorney General Pam Bondi announced Jan. 20.
Halligan, a former personal lawyer to President Donald Trump, was the prosecutor who brought charges against Former FBI Director James Comey and New York Attorney General Letitia James last year.
Those cases were dismissed in November 2025 after a U.S. district judge ruled Halligan was not lawfully chosen to head the office for the Eastern District of Virginia. The Department of Justice has appealed the dismissals.
Lindsey Halligan leaves DOJ as judge calls her use of title 'charade'
The former personal attorney to Donald Trump left the Eastern District of Virginia after a ruling called her use of the office's top title a "charade.", USA TODAY (USA TODAY)
adhocfungus likes this.
The Situation: “Evident Clinical Symptoms”
In other words, to remove the president using the impeachment process, the forces of sanity would need to muster a two-thirds majority in the Senate. To remove the president under the 25th Amendment, they would need to do it in both houses.Don’t kid yourself, folks: There is no magic bullet here. There is no constitutional magic bullet. There is no investigative or prosecutorial magic bullet—no Robert Mueller or Jack Smith. There is no combination of protests and elections or lobbying that can make this problem go away quickly.
There is, instead, a long hard slog ahead of us—a long hard slog of elections, advocacy, protest, litigation, and people fighting for their rights.
And there is a long hard slog ahead of Europe too in handling the disaster the United States has unleashed on the world. Because that is what managing a deranged person is like.
... This was long before George Conway wrote his famous Atlantic article about Trump’s malignant narcissism. Trump’s mental health was not a subject it was considered appropriate to discuss—at least not in a serious way, and I’m not a clinician, and Lawfare is not a medical or psychological journal. And yet, even then—eight months before he was elected the first time—there was “the small matter of Trump’s—there’s no polite way to say this—evident clinical symptoms. I’m not a psychologist qualified to make a diagnosis, but it simply has to be significant that it’s hard to have a serious conversation about Trump without using words like egomania, grandiosity, or narcissism.”
There was no escaping it. He was deranged—grandiose, egomaniacal, narcissistic, the sort of man who would get obsessed with acquiring Greenland and blow up America’s most sacred international commitments to get it done. The sort of man who would respond to not getting the Nobel Peace Prize by declaring he was no longer solely interested in peace. The sort of man who would take the medal from its rightful winner and feel no shame at the theft.
George Conway: Trump Is Unfit for Office
Donald Trump’s narcissism makes it impossible for him to carry out the duties of the presidency in the way the Constitution requires.George T. Conway III (The Atlantic)
Ireland is updating it's laws to get more surveillance powers(including using spyware and intercepting communication encrypted or not encrypted via various methods)
Minister Jim O’Callaghan strengthens lawful interception powers
Official website of the Government of IrelandDepartment of Justice, Home Affairs and Migration (Government of Ireland)
like this
OpenAI will try to guess your age before ChatGPT gets spicy
Because that's what the world needs. Spicier ChatGPT.
OpenAI says it has begun deploying an age prediction model to determine whether ChatGPT users are old enough to view "sensitive or potentially harmful content."Chatbots from OpenAI and its rivals are linked to a series of suicides, sparking litigation and a congressional hearing. AI outfits therefore have excellent reasons to make the safety of their services more than a talking point, both for minors and the adult public.
Hence we have OpenAI's Teen Safety Blueprint, introduced in November 2025, and its Under-18 Principles for Model Behavior, which debuted the following month.
OpenAI is under pressure to turn a profit, knows its plan to serve ads needs to observe rules about marketing to minors, and has erotica in the ChatGPT pipeline. That all adds up to a need to partition its audience and prevent exposing them to damaging material.
OpenAI will try to guess your age before ChatGPT gets spicy
: Think of the children...and the monetization options available where they're not allowedThomas Claburn (The Register)
Australia is doing absolutely everything to protect Great Barrier Reef — except, perhaps,the one thing that really matters
The global prognosis is bleak. The world has already lost about half of its coverage of coral reefs since the 1950s, not including steep losses over the last two decades. And should wealthy countries continue burning fossil fuels — pushing global temperatures more than 2 degrees Celsius above the pre-industrial baseline — it will likely lose the rest of it.
An exclusive look inside the largest effort ever mounted to keep the Great Barrier Reef alive
Bleaching, cyclones, and pollution threat the future of this World Heritage Site. Can a government-backed project, known as RRAP, help this iconic reef and its corals survive?Benji Jones (Vox)
Water ‘Bankruptcy’ Era Has Begun for Billions, Scientists Say | Stress and scarcity aren’t strong enough terms to capture the water crisis facing much of the world, according to a new UN report.
Chronic overuse of groundwater, forest destruction, land degradation and pollution have caused irreversible freshwater loss in many parts of the world — problems that are compounded by climate change.
80 years without a general strike. Then ICE came to Minneapolis
cross-posted from: ibbit.at/post/156674
From MR Online via this RSS feed
80 years without a general strike. Then ICE came to Minneapolis - MR Online
For most of U.S. history, general strikes have been rare–not because workers lacked the will to fight, but because the ruling class moved quickly and violently whenever that power surfaced.Editor (MR Online)
Verizon carriers start switching to 365-day device unlock policy, up from 60 days
Verizon carriers start switching to 365-day device unlock policy, up from 60 days
After the FCC lifted a restriction on how soon carriers need to unlock devices, Verizon has extended its device unlock...Ben Schoon (9to5Google)
Por que homens matam mulheres no Brasil?
Por que homens matam mulheres no Brasil?
Enquanto uma onda de feminicídios repercute no Brasil, o que sustenta a violência de gênero é mantida e protegida por discursos reacionários e liberais.jornalofuturo.com.br
Man sold cars on Facebook Marketplace only to steal them from the new owners hours later, police say
Man sold cars on Facebook Marketplace only steal them from the new owners hours later, police say
In one case he tried to sell the same car to the same victim twiceHarry Cockburn (The Independent)
RRF Notizie 21 01 26 Scontro Trump UE. Femminicidio. ONU di Trump. Ucraina al gelo senza energia. Sport
Microsoft CEO warns that we must 'do something useful' with AI or they'll lose 'social permission' to burn electricity on it
Workers should learn AI skills and companies should use it because it's a "cognitive amplifier," claims Satya Nadella.
in other words please help us, use our AI
like this
Taking a fat dump on protest nay-sayers
I wish I could tag this as discussion.
I'm getting little annoyed at people only say "protest are useless" then proceed to suggest nothing and do nothing just to keep us in a state of complacency with the status quo.
Protest do have a function they do show those in power that people are opposed to policy or politician, but more importantly they show that other people the people that live in their city or local area are willing to show their political stance publicly. It can raise awareness and pull people in the margin to your side. from what I experience, it can show the right that they wont act on their violent words.
I get that the opposition to protest say that it never changed anything or trump continues to act crazy, and I'd say that we need to do more in addition to the protest not that we shouldn't do protest. I'll need someone that advocate not doing protest to speak in the comment.
I want to see protest "upgrade" from a gathering of people to meet-and-greets and concert. If you are at a protest you should actually enjoy it, show off your signs explain it to other protestors, and talk with other people on what to do locally. I would suggest promoting a business at a protest.
protest are good way to get around social media algorithms
TPB weird behavior in searches?
Greetz,
If i access TPB's .onion site it's available and i can do searches, however, there are always no search results whatsoever.
If i use the clearnet version, even via tor, then i get results....
Is anyone experiencing similar issues?
like this
good alternatives like 1337x
No .onion link, uses cloudflare and immediately tried to download some mpeg.
I'll check the other links though, thanks.
Edit there is an onion site.
Edit alas, links redirect through cloudflare to aliexpress... wtf?
Podman Quadlets Arr-Stack Setup And Networking
I need some help if anyone could take the time and has the knowledge:
I'm basically new to podman and namespaces, relatively new to linux and a noob at networking. So figuring this out and getting it to work took many more hours than I would like to admit, but I still have a few problems.
I have all my current Quadlets below in the spoiler (seperated by "---", assume user123 = UID 1000). I am on Bazzite, rootless Podman, which probably makes this even harder.
::: spoiler Spoiler with the Quadlets
[Unit]
Description=Arr-stack pod
[Pod]
PodName=arr-stack
# Network
# Network=vpn-only
# User mapping / I don't fully understand this yet, but the pod does not work without this (maps user id to specified ID inside the containers? So the containers have UID:GID 1000:1000?)
UserNS=keep-id:uid=1000,gid=1000
#
# Homepage Port Mapping
PublishPort=3000:3000
# Jellyfin Port Mapping
PublishPort=8096:8096/tcp
# qBittorrent Port Mapping
PublishPort=8080:8080
\#PublishPort=6881:6881
\#PublishPort=6881:6881/udp
# Prowlarr Port Mapping
PublishPort=9696:9696
# Flaresolverr Port Mapping
PublishPort=8191:8191
# Radarr Port Mapping
PublishPort=7878:7878
# Sonarr Port Mapping
PublishPort=8989:8989
# Jellyseerr Port Mapping
\#PublishPort=8055:5055
\#[Install]
# WantedBy=default.target
---
[Unit]
Description=Gluetun Container
# Dependencies
# pod
Wants=arr-stack-pod.service
After=arr-stack-pod.service
Requires=arr-stack-pod.service
PartOf=arr-stack-pod.service
# .pod is probably not quite what I want, but it works and I might as well keep it, in case they change the syntax
Wants=arr-stack.pod
After=arr-stack.pod
Requires=arr-stack.pod
PartOf=arr-stack.pod
[Container]
ContainerName=gluetun
Pod=arr-stack.pod
Image=docker.io/qmcgaw/gluetun:v3
AutoUpdate=registry
# Network
# Network=vpn-only
# UID/GID permissions / root + privileged for networking?
PodmanArgs=--privileged
User=0
Group=0
# Equivalent to cap_add: - NET_ADMIN # one wrong?
AddCapability=NET_ADMIN
AddCapability=CAP_NET_ADMIN
# Required for Gluetun to delete the bridge's default route, but does not work
AddCapability=NET_RAW
AddCapability=CAP_NET_RAW
# Equivalent to "devices: - /dev/net/tun:/dev/net/tun"
AddDevice=/dev/net/tun:/dev/net/tun
# EnvironmentFile=global.env
Timezone=UTC
Environment=TZ=Etc/UTC
# EnvironmentFile=gluetun.env
# Environment=FIREWALL_OUTBOUND_SUBNETS=10.90.0.0/24 / test from a specific podman network
Environment=FIREWALL_INPUT_PORTS=8080
#
Environment=VPN_SERVICE_PROVIDER= <123>
Environment=VPN_TYPE=wireguard
Environment=WIREGUARD_PRIVATE_KEY= <key>
Environment=SERVER_COUNTRIES= <country>
# for now:
Environment=VPN_PORT_FORWARDING=off
\#Secret=openvpn_user,type=env,target=OPENVPN_USER
\#Secret=openvpn_password,type=env,target=OPENVPN_PASSWORD
\#Volume
Volume=/var/home/user123/.config/arr-configs/gluetun:/gluetun:Z
# SecurityLabel=disable
[Service]
Restart=always
\#[Install]
\#WantedBy=default.target
---
[Unit]
Description=qBittorrent Container
# Dependencies
# pod
Wants=arr-stack-pod.service
After=arr-stack-pod.service
Requires=arr-stack-pod.service
PartOf=arr-stack-pod.service
# .pod is probably not quite what I want, but it works and I might as well keep it, in case they change the syntax
Wants=arr-stack.pod
After=arr-stack.pod
Requires=arr-stack.pod
PartOf=arr-stack.pod
# gluetun
Wants=gluetun.service
After=gluetun.service
Requires=gluetun.service
BindsTo=gluetun.service
# .container is probably not quite what I want, but it works and I might as well keep it, in case they change the syntax
Wants=gluetun.container
After=gluetun.container
Requires=gluetun.container
BindsTo=gluetun.container
[Container]
ContainerName=qbittorrent
Pod=arr-stack.pod
Image=lscr.io/linuxserver/qbittorrent:latest
AutoUpdate=registry
# Network
Network=container:gluetun
# UID/GID permissions / linuxserver images require UID:GID 0:0 at the start; they won't start without it
User=0
Group=0
Environment=PUID=1000
Environment=PGID=1000
# EnvironmentFile=global.env
Timezone=UTC
Environment=TZ=Etc/UTC
# EnvironmentFile=qbittorrent.env
Environment=WEBUI_PORT=8080
# Environtment=TORRENTING_PORT=6881
# Volume :Z (> :z) probably works as well and is saver for configs?
Volume=/var/home/user123/.config/arr-configs/qbittorrent:/config:z
Volume=/var/home/user123/Videos/Downloads:/downloads:z
# Volume=/var/home/user123/Videos/Downloads/completed:/downloads:z,U
# Volume=/var/home/user123/Videos/Downloads/incomplete:/incomplete:z,U
# Volume=/var/home/user123/Videos/Downloads/torrents:/torrents:z,U
[Service]
Restart=always
\#[Install]
\#WantedBy=default.target
---
[Unit]
Description=Prowlarr Container
# Dependencies
# pod
Wants=arr-stack-pod.service
After=arr-stack-pod.service
Requires=arr-stack-pod.service
PartOf=arr-stack-pod.service
# .pod is probably not quite what I want, but it works and I might as well keep it, in case they change the syntax
Wants=arr-stack.pod
After=arr-stack.pod
Requires=arr-stack.pod
PartOf=arr-stack.pod
# gluetun
Wants=gluetun.service
After=gluetun.service
Requires=gluetun.service
BindsTo=gluetun.service
# .container is probably not quite what I want, but it works and I might as well keep it, in case they change the syntax
Wants=gluetun.container
After=gluetun.container
Requires=gluetun.container
BindsTo=gluetun.container
[Container]
ContainerName=prowlarr
Pod=arr-stack.pod
Image=lscr.io/linuxserver/prowlarr:latest
AutoUpdate=registry
# Network
Network=container:gluetun
# UID/GID permissions / linuxserver images require UID:GID 0:0 at the start; they won't start without it
User=0
Group=0
Environment=PUID=1000
Environment=PGID=1000
# EnvironmentFile=global.env
Timezone=UTC
Environment=TZ=Etc/UTC
# EnvironmentFile=prowlarr.env
Environment=WEBUI_PORT=9696
# Volume
Volume=/var/home/user123/.config/arr-configs/prowlarr:/config:z,U
[Service]
Restart=always
\#[Install]
\#WantedBy=default.target
---
[Unit]
Description=Sonarr Container
# Dependencies
# pod
Wants=arr-stack-pod.service
After=arr-stack-pod.service
Requires=arr-stack-pod.service
PartOf=arr-stack-pod.service
# .pod is probably not quite what I want, but it works and I might as well keep it, in case they change the syntax
Wants=arr-stack.pod
After=arr-stack.pod
Requires=arr-stack.pod
PartOf=arr-stack.pod
# gluetun
Wants=gluetun.service
After=gluetun.service
Requires=gluetun.service
BindsTo=gluetun.service
# .container is probably not quite what I want, but it works and I might as well keep it, in case they change the syntax
Wants=gluetun.container
After=gluetun.container
Requires=gluetun.container
BindsTo=gluetun.container
[Container]
ContainerName=sonarr
Pod=arr-stack.pod
Image=lscr.io/linuxserver/sonarr:latest
AutoUpdate=registry
# Network
Network=container:gluetun
# UID/GID permissions / linuxserver images require UID:GID 0:0 at the start; they won't start without it
User=0
Group=0
Environment=PUID=1000
Environment=PGID=1000
# EnvironmentFile=global.env
Timezone=UTC
Environment=TZ=Etc/UTC
# EnvironmentFile=sonarr.env
Environment=WEBUI_PORT=8989
# Volume / Disable SecurityLabels due to SMB share, need to look this up
SecurityLabelDisable=true
Volume=/var/home/user123/.config/arr-configs/sonarr:/config:z
Volume=/var/home/user123/Videos/Shows:/tv:z
Volume=/var/home/user123/Videos/Downloads:/downloads:z
[Service]
Restart=always
\#[Install]
\#WantedBy=default.target
---
[Unit]
Description=Radarr Container
# Dependencies
# pod
Wants=arr-stack-pod.service
After=arr-stack-pod.service
Requires=arr-stack-pod.service
PartOf=arr-stack-pod.service
# .pod is probably not quite what I want, but it works and I might as well keep it, in case they change the syntax
Wants=arr-stack.pod
After=arr-stack.pod
Requires=arr-stack.pod
PartOf=arr-stack.pod
# gluetun
Wants=gluetun.service
After=gluetun.service
Requires=gluetun.service
BindsTo=gluetun.service
# .container is probably not quite what I want, but it works and I might as well keep it, in case they change the syntax
Wants=gluetun.container
After=gluetun.container
Requires=gluetun.container
BindsTo=gluetun.container
[Container]
ContainerName=radarr
Pod=arr-stack.pod
Image=lscr.io/linuxserver/radarr:latest
AutoUpdate=registry
# Network
Network=container:gluetun
# UID/GID permissions / linuxserver images require UID:GID 0:0 at the start; they won't start without it
User=0
Group=0
Environment=PUID=1000
Environment=PGID=1000
# EnvironmentFile=global.env
Timezone=UTC
Environment=TZ=Etc/UTC
# EnvironmentFile=radarr.env
Environment=WEBUI_PORT=7878
# Volume / Disable SecurityLabels due to SMB share
SecurityLabelDisable=true
Volume=/var/home/user123/.config/arr-configs/radarr:/config:z
Volume=/var/home/user123/Videos/Movies:/movies:z
Volume=/var/home/user123/Videos/Downloads:/downloads:z
[Service]
Restart=always
\#[Install]
\#WantedBy=default.target
---
[Unit]
Description=Flaresolverr Container
# Dependencies
# pod
Wants=arr-stack-pod.service
After=arr-stack-pod.service
Requires=arr-stack-pod.service
PartOf=arr-stack-pod.service
# .pod is probably not quite what I want, but it works and I might as well keep it, in case they change the syntax
Wants=arr-stack.pod
After=arr-stack.pod
Requires=arr-stack.pod
PartOf=arr-stack.pod
# gluetun
Wants=gluetun.service
After=gluetun.service
Requires=gluetun.service
BindsTo=gluetun.service
# .container is probably not quite what I want, but it works and I might as well keep it, in case they change the syntax
Wants=gluetun.container
After=gluetun.container
Requires=gluetun.container
BindsTo=gluetun.container
[Container]
ContainerName=flaresolverr
Pod=arr-stack.pod
Image=ghcr.io/flaresolverr/flaresolverr:latest
AutoUpdate=registry
# Network
Network=container:gluetun
# UID/GID permissions
User=0
Group=0
Environment=PUID=1000
Environment=PGID=1000
# EnvironmentFile=global.env
Timezone=UTC
Environment=TZ=Etc/UTC
# EnvironmentFile=flaresolverr.env
Environment=WEBUI_PORT=8191
Environment=LOG_LEVEL=info
Environment=LOG_HTML=false
Environment=CAPTCHA_SOLVER=none
# Volume=flaresolverr:/app/
[Service]
Restart=always
\#[Install]
\#WantedBy=default.target
---
[Unit]
Description=Podman - Jellyfin
# Dependencies
# pod
Wants=arr-stack-pod.service
After=arr-stack-pod.service
Requires=arr-stack-pod.service
PartOf=arr-stack-pod.service
# .pod is probably not quite what I want, but it works and I might as well keep it, in case they change the syntax
Wants=arr-stack.pod
After=arr-stack.pod
Requires=arr-stack.pod
PartOf=arr-stack.pod
# gluetun
Wants=gluetun.service
After=gluetun.service
Requires=gluetun.service
BindsTo=gluetun.service
# .container is probably not quite what I want, but it works and I might as well keep it, in case they change the syntax
Wants=gluetun.container
After=gluetun.container
Requires=gluetun.container
BindsTo=gluetun.container
[Container]
ContainerName=jellyfin
Pod=arr-stack.pod
Image=ghcr.io/jellyfin/jellyfin
AutoUpdate=registry
# Network
Network=container:gluetun
# UID/GID permissions / 1000:1000 might work?
User=0
Group=0
Environment=PUID=1000
Environment=PGID=1000
# EnvironmentFile=global.env
Timezone=UTC
Environment=TZ=Etc/UTC
# EnvironmentFile=jellyfin.env
Environment=WEBUI_PORT=8096:8096/tcp
\#PublishPort=8096:8096/tcp
\#PublishPort=8920:8920
\#PublishPort=7359:7359/udp
\#PublishPort=1900:1900/udp
# Volume
Volume=/var/home/user123/.config/arr-configs/jellyfin:/config:z
Volume=/var/home/user123/Videos/jellyfin-cache:/cache:z
Volume=/var/home/user123/Videos/Movies:/data/movies:z
Volume=/var/home/user123/Videos/Shows:/data/shows:z
[Service]
# Inform systemd of additional exit status
# SuccessExitStatus=0 143a
Restart=always
TimeoutStartSec=900
\#[Install]
# Start by default on boot
\#WantedBy=default.target
---
[Unit]
Description=Homepage Dashboard
# Dependencies
# pod
Wants=arr-stack-pod.service
After=arr-stack-pod.service
Requires=arr-stack-pod.service
PartOf=arr-stack-pod.service
# .pod is probably not quite what I want, but it works and I might as well keep it, in case they change the syntax
Wants=arr-stack.pod
After=arr-stack.pod
Requires=arr-stack.pod
PartOf=arr-stack.pod
# gluetun
Wants=gluetun.service
After=gluetun.service
Requires=gluetun.service
BindsTo=gluetun.service
# .container is probably not quite what I want, but it works and I might as well keep it, in case they change the syntax
Wants=gluetun.container
After=gluetun.container
Requires=gluetun.container
BindsTo=gluetun.container
# idk about this?:
After=network-online.target
Wants=network-online.target
# Socket
Wants=podman.socket
After=podman.socket
Requires=podman.socket
[Container]
ContainerName=homepage
Pod=arr-stack.pod
Image=ghcr.io/gethomepage/homepage:latest
AutoUpdate=registry
# Network
Network=container:gluetun
# UID/GID permissions
User=1000
Group=1000
Environment=PUID=1000
Environment=PGID=1000
# EnvironmentFile=global.env
Timezone=UTC
Environment=TZ=Etc/UTC
# EnvirontmentFile=homepage.env
\#Environment=LOG_LEVEL=debug
Environment=HOMEPAGE_ALLOWED_HOSTS=gethomepage.dev
\#PublishPort=3000:3000
# Podman socket (recommended on Bazzite)
Volume=%t/podman/podman.sock:/var/run/docker.sock:ro
\#Volume=/var/run/docker.sock:/run/user/1000/podman/podman.sock:ro
\#Volume=/%t/podman/podman.sock:/run/user/1000/podman/podman.sock:ro
# Volume / Config directory
SecurityLabelDisable=true
Volume=%h/apps/homepage:/app/config:Z
Volume=%h/apps/homepage/icons:/app/public/icons:Z
[Service]
Restart=on-failure
TimeoutStartSec=300
\#[Install]
\#WantedBy=default.target:::
Questions:
- 1. If I use "podman exec ip route" (on e.g. qbittorrent) the default route goes through my actual network interface (actual ip adress) which I very much do not want (or through my killswitch dummy network from my VPN if on, which is better but still not ideal). Is there a way to completely remove my actual network from a container's eyes? "podman exec ip addr" shows 1 lo (local), 2 my actual network, 4 tun0 from gluetun. The traffic does go through gluetun correctly, but I don't trust it 100%. Having the containers separated and NOT inside a pod gives the same result, since the containers share the network namespaces from the gluetun container when I do "Network=container:gluetun" (same as just having them in a pod as far as I understand).
I tried to also create a podman network without a default gateway, but then gluetun cannot connect to the VPN in the first place.
EDIT: A few notes: I thought gluetun was supposed to set the default route (but it seems it either doesn’t or can’t). My goal was to only have gluetun see my computer’s network and have the containers only see local network and gluetun’s tun0 network (with default routing through tun0). AFAIK pods share network namespaces, though, so that might not be possible? (even without pods?)
- My setup works but is quite convoluted and probably has many unnecessary lines, so please give me any improvements you see
- Is User=1000, Group=1000, even sensible? For example in the homepage container those lines result in the container showing User "1000:1000" (from podman inspect). Would User=0, Group=0 (or no lines since I use UserNS=keep-id in the pod?), which shows as User=root (podman inspect) mean that it has actual root access or just that it is root INSIDE the container?
Thank you in advance for the answers, in case I don't reply to your comment specifically.
I don't know much about ip routing, but userns=keep-id id determined based on what podman is run as. For example, I run podman as user 1000 on the host, so if I do keep-id the user in the container will map to the same id. This often messes with things as the container require it is root inside it's own context. It seems you are running podman as root, meaning that keep-id will map the container user to the actual root id, givintthe container essentially root access. Normally the container user is mapped to a random id on the host, like 653477, not 0. It's unsafe to map the containers id to root as they would be unbounded if they managed to escape. I would recommend doing systemctl cat on the different services to see what the .container file expands to.
When it comes to the networking I think that you need to create a podman network with internal set to true. I believe that this restricts internet access. Then you would need to only let these services communicate with gluetun.
I don't know if this was any help, but it's all I've managed to learn from doing it myself.
Here are some liks I found:
lists.podman.io/archives/list/…
docs.podman.io/en/v4.6.1/markd…
I Can’t Sell You Laptops Anymore (video) (enshittification of computer repair)
From : techhub.social/@sawaba@infosec… (mastodon)
The enshittification of computer repair is happening.
AI has amazingly managed to make repairable computers practically worthless.
The increase in memory and storage pricing is destroying the second-hand market for computing hardware and this makes me sad. I watched a video from someone that runs a repair shop, and this is what's happening:
The memory/storage alone is worth more than the rest of the computer, so people are stripping them out to sell separately.
The second hand market is now flooded with computers that have no memory or storage. Buying new memory or storage to put in these used computers is now more expensive than buying a new computer.
So we now suddenly have a giant e-waste problem PLUS a giant problem for repair shops that want to stay in business.
In the video, he was basically saying that they have to pivot to the only computers that folks aren't stripping RAM and storage out of - computers that have those things soldered on. The irony here is that repair shops now have to ignore the most repairable computers and focus on the least repairable computers instead.
- YouTube
Profitez des vidéos et de la musique que vous aimez, mettez en ligne des contenus originaux, et partagez-les avec vos amis, vos proches et le monde entier.www.youtube.com
like this
How do you discover new music while avoiding AI generated ones?
I've been looking for a way to discover new music. Spotify used to be quite good, but now I feel like 10% of the stuff it recommends me is AI slop.
How do you navigate the music-scape?
adhocfungus likes this.
RRF Cultuta. La letteratura impegnata
Shadowrun 1e GM Advice
Hello!
I am a fairly new GM, and have only ran a few sessions of CY_BORG. I’ve played in many home TTRPG games (mostly DnD 5e) and have familiarized myself (through reading rather than experience sadly) with some fundamental RPG design and GM advice. My issue is, at the time I went to the game store to pick up RPG books, I wasn’t knowledgeable on Shadowrun and the editions/universe other than the fact I wanted to run it some day.
I have now realized, after buying the book and past the possibility of return, that I have bought the reprint of Shadowrun 2050 (1e) which appears to be the most complicated and problematic of the games in terms of system. That being said, I’d still like to run this some day and I’m mostly fine with a bit of complexity and crunch in an RPG. I was wondering, though, if there was a way that I could sort of build up to running something like Shadowrun?
Running not only a very rules heavy system but also a world with something complicated like The Matrix in it is pretty daunting compared to most RPG systems I’ve been interested in, so I’m a bit lost on resources to help guide me. It also doesn’t help that even among old school Shadowrun fans 1e seems to be the least played edition.
Thanks in advance!
Stop arresting Palestine Action supporters, White House tells Britain
Tim Sigsworth
19 January 2026 2:48pm GMT
The White House has told Britain to stop arresting people who express support for Palestine Action.
Sarah Rogers, Donald Trump’s free speech tsar, said the arrests were “censoring” free speech and did “more harm than good”.
More than 2,000 people have been arrested for expressing support for Palestine Action since it was proscribed as a terror group in July last year.
Ms Rogers, the US state department’s under-secretary for public diplomacy, said that the public should be allowed to say they back the group.
“I would have to look at each individual person and each proscribed organisation,” she told Semafor. “I think if you support an organisation like Hamas, then depending upon whether you’re coordinating, there are all these standards that get applied.
“This Palestine Action group, I’ve seen it written about. I don’t know what it did. I think if you just merely stand up and say, ‘I support Palestine Action’, then unless you are really co-ordinating with some violent foreign terrorist, I think that censoring that speech does more harm than good.”
Palestine Action was proscribed in July 2025 after its activists broke into RAF Brize Norton in Oxfordshire and vandalised military aeroplanes.
In a campaign of vandalism and trespass protesting the war in Gaza, it has targeted businesses that it claims are linked to Israel.
Anyone who expresses support for the group – which is often done on a piece of paper – faces arrest and a maximum prison sentence of six months.
Ms Rogers has been an outspoken critic of Sir Keir Starmer’s Government and freedom of speech in Britain since taking her position in October last year.
She has criticised the Prime Minister for cancelling local elections, curbing rights to jury trials and not banning cousin marriage.
Ms Rogers also compared Britain under Labour to Vladimir Putin’s Russia after the Government threatened to ban Elon Musk’s X over the creation of naked images of women and children by its AI service, Grok.
She also said British police forces were wrong to arrest people for using the phrase “globalise the intifada”.
The Metropolitan Police and Greater Manchester Police (GMP) said last month that anyone chanting the slogan would face arrest in a more robust approach to pro-Palestinian protesters following the Bondi Beach and Manchester synagogue terror attacks.
“I’m from New York City where thousands of people were murdered by jihadists,” Ms Rogers said, referring to the 9/11 terror attack. “I don’t want an intifada in New York City, and I think anyone who does is disgusting, but should it be legal to say in most contexts? Yes.”
In December, Greta Thunberg, the Swedish climate activist, was arrested in London for expressing support for Palestine Action. She was later bailed until March.
The group is in the midst of a legal challenge against its proscription and critics of the ban have argued the group is not comparable to violent terror groups such as Al-Qaeda or the Irish Republican Army (IRA).
Proscription ‘is draconian’
Amnesty International, the charity, has said the group’s proscription is an example of “problematic, overly broad and draconian restrictions on free speech”.
A number of the group’s activists embarked upon a hunger strike while being in prison on remand as they awaited trial.
Scottish prosecutors have offered to drop charges against some supporters of Palestine Action if they accept a £100 fine.
Adam McGibbon, who refused the offer, said: “The fact that the authorities are offering fines equivalent to a parking ticket for a ‘terrorism offence’ shows just how ridiculous these charges are. Do supporters of Islamic State get the same deal?
“I refuse to pay this fine, as has everyone else I know who has been offered one. Just try and put all 3,000 of us who have defied this ban so far in jail, Shabana Mahmood. Have you got the space?”
Mr McGibbon was among those arrested at a mass rally on Edinburgh’s Royal Mile in July 2025.
Lord Walney, co-chairman of the all-party parliamentary group for defending democracy, said: “It is unfortunate that Sarah Rogers says she is unaware of the history of violence and organised sabotage that led the UK Government to proscribe Palestine Action as a terrorist organisation.
“The president has spoken out in strong terms against far-Left violence and intimidation in the US and it is obvious he would in no way support these extremists damaging RAF jets, smashing up defence factories and attacking security staff with sledge hammers here in the UK.”
A spokesman for the Home Office said: “Palestine Action has conducted an escalating campaign involving not just sustained criminal damage, including to Britain’s national security infrastructure, but also intimidation and alleged violence and serious injuries to individuals. That kind of activity puts the safety and security of the public at risk.”
Greta Thunberg arrested at Palestine Action protest in London
Swedish activist, 22, expressed support for proscribed group at demonstration in LondonTom Cotterill (The Telegraph)
CIRO confirms data breach exposed info on 750,000 Canadian investors
The organization notes that it spent over 9,000 hours investigating the incident and found no evidence that the stolen data has been misused or published on the dark web.
However, to help mitigate the risks, CIRO will be providing all affected investors with a free-of-charge two-year credit monitoring and identity theft protection service.
WebRTC Leak on Android
Can Android apps use WebRTC, or is WebRTC only available in browsers?
If Android apps can use WebRTC, how can it be blocked per app or system-wide to prevent IP or network leaks?
WebRTC is a protocol, you can use it in both web apps and mobile apps.
If I remember well it was used as a trick from Facebook to leak personal data using the SDP.
eldavi
in reply to HiddenLayer555 • • •the bazooka is pointed in the wrong direction and will never be utilized against the united states.
HiddenLayer555
in reply to eldavi • • •reagansrottencorpse
in reply to HiddenLayer555 • • •"the European Union, America's largest trading partner,"
HOW?
HiddenLayer555
in reply to reagansrottencorpse • • •buddascrayon
in reply to reagansrottencorpse • • •Because as we're the largest consumer of Chinese goods. Europe is the largest consumer of American goods.
You see that thing down there with the hole in it? That's America's foot, right where Trump shot it.
Gonzako
in reply to HiddenLayer555 • • •