PeriodicallyPedantic
@PeriodicallyPedantic@lemmy.ca
- Comment on What can you host with limited bandwidth but lots of storage? 5 hours ago:
Store a lot of things you never access
Hope that helps 😌
- Comment on A Knight of Seven Kingdoms goes so hard 6 hours ago:
That’s a lot of dragons. You sure they’re not wyverns?
- Comment on If you pay attention to panhandlers 6 hours ago:
I need to do more to help the poor people around me.
- Comment on Makes ya think 7 hours ago:
Toad isn’t a mushroom, it’s an example of convergent evolution 😌
- Comment on Rage for the machine? 8 hours ago:
Step aside butthole surfers, here come the butthole sniffers!
- Comment on Overseerr & Jellyseerr to merge into Seerr 8 hours ago:
I hate how so many of the arr apps don’t describe what they do in a way that people who don’t already know can understand.
Even the tutorials and guides are frustratingly vague.
- Comment on But the Canadien stock market is over 33,000! 11 hours ago:
I’m skeptical of this - where do you get those figures from?
Objective counter-evidence: Why are they not selling out big stadiums if spectating is that popular?
Anecdotal counter-evidence: I hear people talk about hockey matches, I rarely hear people talk about curling matches.
They’re both good sports and I like both, I’d like to try curling sometime.
But surface level evidence suggests you’re incorrect, so you need to provide more convincing evidence - Comment on Home renovations 1 day ago:
Ikr, this at least makes the pole get hot because current is actually running through part of it.
But at no point is a human part of the path of least resistance for the electricity. - Comment on 2 days ago:
ICE agents already in Canada.
It’s not out of the realm of possibility.
- Comment on 3 days ago:
Right. But the chance that your booby trap is discovered by the law without it blowing up is way higher than it serving it’s purpose as an uno reverse against ICE.
So rather than going to prison for no reason, I say take the fight to them!
- Comment on 3 days ago:
I feel like you got my point and you’re just kidding around, but just in case:
It’s not subtle, it’s probably going to be discovered and you arrested before it has an opportunity to serve it’s purpose
- Comment on 4 days ago:
Yeah, but you don’t wanna do the illegal thing AT YOUR HOUSE.
Set it up in a bush near the police station or something.
- Comment on 4 days ago:
If he doesn’t explode, why have you and everyone else died?
- Comment on PROTIP 4 days ago:
The saying is “don’t bring a knife to a gun fight”, but I think this probably gets a pass
- Comment on 4 days ago:
I don’t think borris needs to explode for him to be discovered and you to be charged lol
- Comment on 5 days ago:
Unfortunately I think this is still illegal 😔
- Comment on 2 weeks ago:
None of those really “feel like” the things they’re replacing. I don’t really even think that should be the goal. They occupy the same space, though, and the infographic would look stupid if it showed all the options in some category, so they just picked a popular proprietary/centralized one, and a popular federated alternative in the same category. In this case discord is a popular chat app, and the most popular federa chat app afaict is matrix.
- Comment on I have several questions 2 weeks ago:
I already share the baddies away 🥲
- Comment on Too much of anything is not good for you 2 weeks ago:
What is up with Pooh’s face?
Is this AI? - Comment on If you have one, how much do you pay for a domain name? Any cheap registrar recommendations? 3 weeks ago:
On [CloudFlare, user224.com(domains.cloudflare.com/?domain=User224) renews annually at least than $11
That’s where I got my domain (I was using them at the time, but it doesn’t matter), for that price, and that includes whois privacy.
- Comment on Help getting started with self hosting Jellyfin via NAS? 3 weeks ago:
I can’t answer many of the questions here, but I can help a little with two:
If you’re worried about noise, don’t get ironwolf drives. I just did and they’re noisy af. I brought some sound absorbing foam to put around the place where I keep my NAS, because they’re so much louder than I expected.
Don’t open up a port in your network.
Use something like tailscale to connect your devices to your home network, or rent an VPS to run a secure tunnel using pangolin (you’ll need to look into bandwidth limits). - Comment on Bo'le of wa'er 3 weeks ago:
Ah, RP, so Bottol of wotta
- Comment on Bo'le of wa'er 3 weeks ago:
Are you the
Buh’oh ah wa’ah
Or
Bah’ol ah wa’er
Or
Bo’el a wo’ah
Type of English? - Comment on Bo'le of wa'er 3 weeks ago:
“have”?
I think you mean'ave, mate, innit? - Comment on News could use a reboot. 3 weeks ago:
News 2: electric Boogaloo
- Comment on Using Immich in combination with NAS permissions 3 weeks ago:
Sorry I misread when you said “library” for some reason I thought you meant “external library”
The problem that I’m trying to solve and I think OP is also trying to solve, is that they want the files to be on their NAS because it is high capacity, redundant, and backed up, but many users have access to the NAS, so they cannot rely on immich alone to provide access permissions, they need access permissions on the files themselves.
I solved this by having a separate share for every user, and then mounting that user’s share on their library (storage label).
It sounds like OP wants a single share, so having correct file ownership is important to restrict file access to the correct users who are viewing the filesystem outside of immich.Not sure what you mean by your last paragraph, how do you assign a share to individual files (assume you mean directories) outside of immich’s need for storage?
- Comment on Using Immich in combination with NAS permissions 3 weeks ago:
Library access won’t allow upload, this will.
My knowledge here isn’t super deep, but it seems like you can do mapping per-share-per-ip, which means you can say “all file access coming from the immich host to this share will act as this user” which I think is fine if that share belongs to that user, and you don’t have anything else coming from that host to that share which you want to act as a different user. Which are very big caveats.
- Comment on Using Immich in combination with NAS permissions 3 weeks ago:
Yes, except for the NAS user ownership of those files.
I think there might be a way to do the file ownership too, which I’ll get to at the end, but I don’t think its necessary. for now here is my setup:
First off, you need to be using Storage Templates.
Second, you need to have either a fresh install, or users need to be set up with storage labels that aren’t their intended final storage labels.In docker, you’ll need to set up an external NFS volume for every user. I use portainer to manage my docker stacks, and its pretty easy to set up. I’m not sure how to do it with raw docker, but I dont think its complicated.
in your docker compose files, include something like this
services: immich-server: # ... volumes: - ${UPLOAD_LOCATION}:/data - /etc/localtime:/etc/localtime:ro - type: volume source: user1-share target: /data/library/user1-storage-label volume: subpath: path/to/photos/in/user1/share - type: volume source: user2-share target: /data/library/user2-storage-label volume: subpath: path/to/photos/in/user2/share # and so on for every user # ... volumes: model-cache: user1-share: external: true user2-share: external: true # and so on for every user
There are 2 things about this setup:
- it does not scale automatically. this is fine as long as you don’t intend to be adding/removing users often.
- it is only saving the photos and videos. all thumbnails and transcoded videos, etc, get saved to
${UPLOAD_LOCATION}. For me this is fine, I dont want to pollute my NAS with a bunch of transient data, but if you want that info then for every user, in addition to thetarget: /data/library/user1target you’ll also need atarget: /data/thumbs/user1,target: /data/encoded-video/user1, etc.
finally, redeploy, and add your users (making sure that the user’s storage labels match the target directories) or change your user storage labels (to match the target directories, and run the migration job). the storage label must not have existed before you deployed, otherwise it’ll get masked by the mount and you wont see the existing data.
You may also want to add similar volumes for external libraries (I gave every user an external “archive” library for their old photos) like this:
- type: volume source: user1-share target: /archive/user1-storage-label volume: subpath: path/to/photo/archive
and once immich allows sharing external libraries (or turning external libraries into sharable albums) I’ll also include a volume for a shared archive.
To address the file ownership:\n I honestly don’t think its important, as long as your user has full access to the files, its fine. But if you insist then you have a separate share for every user and set up the NFS server for that share to squash all to that share’s user. Its a little less secure, but you’ll only be allowing requests from that single IP, and there will only be a request from a single user from that server anyways.
Synology unfortunately doesn’t support this, they only allow squashing to admin or guest (or disable squashing). - Comment on Rules for a gun fight 3 weeks ago:
Any size is fine if the other side doesn’t know they’re coming to a gun fight
- Comment on Bluesky just verified ICE 4 weeks ago:
It’s illegal to hire people or refuse to hire people based on political beliefs or affiliation, so you’re not gonna have companies that only employ Trump supporters or employ no Trump supporters. Politics is considered a protected group wrt employment law in the USA and many countries.
But how would it actually work?
It’s not like it’s difficult to gauge employee sentiment about ICE. If your employees are strongly against it, then you simply don’t enter the competition for ICE contracts, or you choose to not renew the contracts when they expire.