Can I connect grenades with a detonator and use it as a ranged weapon in combat?

We’ve been dipping into Starfinder and I find myself playing a mechanic. I love the idea of using grenades to their fullest advantage, it’s a fun, volatile weapon that turns up as loot too often not to make use of. However, as we level up the average grenade is not as useful as one-by-one weapons and so I thought about connecting them with a detonator and using that as a ranged weapon, or as a dropped weapon that I set off when at a safe distance. A sort of "grenade bomb".

But first, the facts:

Detonators: This conical device primes and detonates explosives (including grenades) with a push of a button. Programming a detonator to a specific package of explosives takes 1 minute, after which the detonator can be triggered in one of several ways. The detonator can be set to ignite its payload with the simple press of a button (no action), a four-digit command code (a move action), or a complex input method, such as scanning your retina or thumbprint (a full action). You choose the triggering method when setting the detonator. A detonator detonates its payload only if it is within 500 feet, but some detonators can make use of signal-boosting technologies at the risk of becoming vulnerable to countermeasures like signal jammers and other effects. Explosives have the same price, effect, and weight as grenades (see page 183). If you successfully set an explosive on a stationary object with a detonator using the Engineering skill, the explosive’s damage ignores half of the object’s hardness. (SCRB, 219)

And:

Grenades: Grenades are thrown weapons that detonate in an explosive radius when they reach the target…The DC of the save is equal to 10 + half the grenade’s item level + your Dexterity modifier. Any penalty you take to your attack roll also applies to this save DC. (SCRB, 183)

Ok, now, from these descriptions, I think it’s possible. The detonator is a little bit confusing because it talks about grenades and explosives as separate where explosives can damage a stationary object. So I wouldn’t be using this grenade bomb to damage an object specifically. It would be against creatures.

Questions, and I’m wondering if this might just be GM discretion:

  • Would this grenade bomb be a ranged weapon or something that I have to plan and place? I.E. Could it be prepared in advance (takes one minutes, but doesn’t specify if that’s in battle or beforehand) and used when needed?
  • How many grenades can be connected to a detonator? Would there be penalties to my attack roll? How would one calculate the save against the grenade bomb?

Thank you all so much!

Cannot connect to MariaDB Columnstore database on Docker

I’m running MariaDB 10.5 Columnstore on Docker as described here. This works fine when I connect to the database starting a command line in the container itself. I can connect and create a database and tables.

But when I try to connect with an SQL Client (such as DBeaver) from localhost on port 3306, I get the following error:

Host '_gateway' is not allowed to connect to this MariaDB server 

I tried to fixed that changing the /etc/my.sql.d/server.cnf file. I tried all the options below but the container always fails after restart, no matter the option.

How to make a MariaDB Columnstore container accept connections from localhost and/or other IP addresses?

These are the options that didn’t work:

[server] bind-address = ::  [mysqld] skip-networking bind-address = 0.0.0.0  [mysqld] bind-address = ::   [mysqld] skip-networking bind-address = ::   [mysqld] skip-networking=0 skip-bind-address 

How to Connect a Website to a Simple Database Using PHP?

I watched this video here and want to build a simple database. Source code: http://bit.ly/2TwJmJP

When I connect to my domain, I get the following error message whenever I type anything in: Connect Error (1045) Access denied for user ‘root’@’localhost’ (using password: NO)

i did exactly like the video did, except called my database IDK. What do I have to do to have values start showing up in my database? I already created a table, and I feel like I am missing something.

Can’t connect to postgresql database with SSL using GSSAPI

With postgresql 12.4, I’ve got this in pg_hba.conf:

hostssl all all 192.168.0.0 255.255.0.0 gss map=myrealm 

but whenever I try to connect with:

psql 'postgresql://hostname/database?sslmode=require' 

I get

2020-11-26 16:03:37.934 GMT [9585] FATAL:  no pg_hba.conf entry for host "192.168.215.220", user "username", database "database", SSL off 

If I replace hostssl with host I can connect (with GSSAPI).

How do I get psql to connect with SSL? I have ssl = on in my postgresql.conf and I have valid server.crt and server.key in the PGDATA directory.

Thanks

Connect to Ms SQL Server

I’ve been asked to develop custom plugins which will connect to a database hosted on MS SQL Server in different geographical location, i.e the website is hosted with a hosting service and the database is hosted within the businesses office. I have no idea how to go about remotely connecting the SQL server. Any advice people may offer would be greatly appreciated.

postgresql server, can connect with SSL

I installed and used a Postgresql server a while back and have been using it with Postgis.
I would like to use my letsencrypt certificates with the server so i followed this article:
https://medium.com/@pavelevstigneev/postgresql-ssl-with-letsencrypt-b53051eacc22

The problem is that I can’t get it work.
If I follow the articles instructions and try to psql a database:

psql: error: could not connect to server: could not connect to server: No such file or directory Is the server running locally and accepting connections on Unix domain socket "/var/run/postgresql/.s.PGSQL.5432"?

Same with outside connections.

I installed postgresql 12 on a ubuntu server.
I followed every step in the article.
I use the certbot/letsencrypt certificates for apache2 and vsftpd

Questions i struggle with:
Is there an extra I forgot about?
Do i need to open an extra port on the firewall to enable the connection (other than 5432)?
Should I configure an extra subdomain in DNS so cerbot can make designated certificates?

OpenID Connect with user bound roles and M2M access

I’m trying to get my head straight about how to properly design a OpenID connect provider and the roles to use with it. I understand the basic of scopes, claims and the different flow one can use. However, I’m trying to get my head around how I should handle the cases where i want M2M access to all resources, and a end user should only have access to his/her data.

My question is more related to how I should handle roles, is it overkill to have roles such as:

  • view_company_data
  • view_all_data

An example could be to provide a public API to access all data, e.g. collaborating companies, while also allowing me to have specific users to only access the data created by him/her. In my case that would be government body that wants access to all data, whilst the business owners should only have access to their own data.

I have an authentication provider, along with several resource servers. The business owners access their data through our client with only read/write permission for their own entity, and the government body wants access through our APIs to access all the data.

I wish to have all access control in a central entity, so generating access tokens on each separate resource server along with default JWT tokens from the authentication server seems like a bad idea. I’d rather handle it all from the authentication server.

Also a user should be able to generate these full-access tokens, given that they have an Global administration role.

So, what would be the right thing to do here?

What ways are there to securely connect different sites/branches?

I’m somewhat new to the field, but I have been tasked with coming up with the best way to connect remote customer sites to our two main offices. The data sent across from the customer to the main offices contains sensitive information and needs to be protected adequately.

From what I’ve gathered, VPN connections would be one of the traditional ways of doing this, but I’m not sure about what topology would fit best, mesh or hub-and-spoke. There are probably a lot of things you can do with cloud computing too, and if you guys have any ideas that would be great.

I’m sure there are several more ways of transferring data securely and I would appreciate every single bit of advice!

Store cookies for multiple sites on remote server and connect from multiple clients


Would it be secure to:

  1. Store all my website cookies (stack sites, webhost, github, web-based email, etc) on a remote server (using an customized open-source VPN or something)
  2. Login to the server with password + 2fa (and maybe have a trusted devices list?)
  3. Keep the cookies only on the server… never actually download them to any of my devices
  4. When visiting stackexchange.com, for example, my server would send the cookies to stack exchange, get the response, and send it back to me, but REMOVE any cookies & store them only on my server

Benefits (I think):

  1. I could keep diverse and very strong passwords for every website, but don’t store the passwords anywhere digitally (keep them on paper in a safe at home or something)
  2. logging in to all the sites I use on a new device only requires one sign in (to my custom VPN server)
  3. Only cookies would be stored digitally, so if anything went wrong server-side, my passwords would be safe & I could disable all the logins through each site’s web-interface

Problems (I think):

  1. If the authentication to my custom VPN is cracked, then every website I’ve logged into would be accessible
  2. The time & energy & learning required to set something like this up.

Improvement idea:

  1. When I sign in to the server the first time, the server creates an encryption key, encrypts all the cookies with it, and sends the encryption key to me as a cookie. Then on every request, my browser uploads the key, the website’s cookie is decrypted, then the request is made to whatever website I’m visiting. Then only one client could be logged in at a time (unless the encryption cookie were stolen)
  2. Encrypt each cookie with a simple password, short password or pin number
  3. An encryption key that updates daily (somehow)
  4. Keep a remote list of trusted devices, identified by IP address? Or maybe by cookie?

Why not just sign into the browser and sync cookies across devices?

  • Signing into Firefox mobile & Firefox on my computer doesn’t give the cookies to Twitter’s or Facebook’s web-browsers (that frustratingly always open first instead of taking me to my actual browser!)
  • It’s not as cool?
  • That would require me to trust a third-party (of course, I’ll ultimately have to trust my web-host to some extent)

OAuth2, SAML, OpenID connect – Which one to use for my scenario?

I work for a company where we give customer (hundreds/thousands of users) access to 2 sites. One owned by a 3rd party SaaS and one owned by us. Customers spend alot of time registering for both sites and we also spend alot of time removing accounts when customers no longer need access.

I would like users to register for Site A. After successful authentication; a user can click on a link within the site to access Site B but without the user entering credentials. I want Site A identity to be used to access site B and its resources. I do not need site B resources to be presented on Site A site, but simply allow users to access site B if already authenticated to site A.

Users may have different roles on site B.

What is my best option? Oauth2 sounds like a good option. But will it satisfy my requirement above?

Who will manage the authorisation server? I presume Site B?

Thank you.