marsara9

@marsara9@lemmy.world

This is a remote user, information on this page may be incomplete. View at Source ↗

“Buy Me A Coffee”

⁨Comment⁩ on ⁨Dynamic DNS vs Dedicated VPN IP⁩ ⁨⁨6⁩ ⁨months⁩ ago⁩:
Yes it would. In my case though I know all of the users that should have remote access snd I’m more concerned about unauthorized access than ease of use.

If I wanted to host a website for the general public to use though, I’d buy a VPS and host it there. Then use SSH with private key authentication for remote management. This way, again, if someone hacks that server they can’t get access to my home lan.
⁨Comment⁩ on ⁨Dynamic DNS vs Dedicated VPN IP⁩ ⁨⁨6⁩ ⁨months⁩ ago⁩:
Their setup sounds similar to mine. But no, only a single service is exposed to the internet: wireguard.

The idea is that you can have any number of servers running on your lan, etc… but in order to access them remotely you first need to VPN into your home network. This way the only thing you need to worry about security wise is wireguard. If there’s a security hole / vulnerability in one of the services you’re running on your network or in nginx, etc… attackers would still need to get past wireguard first before they could access your network.

But here is exactly what I’ve done:
1. Bought a domain so that I don’t have to remember my IP address.
2. Setup DDNS so that the A record for my domain always points to my home ip.
3. Run a wireguard server on my lan.
4. Port forwarded the wireguard port to the wireguard server.
5. Created client configs for all remote devices that should have access to my lan.
Now I can just turn on my phone’s VPN whenever I need to access any one of the services that would normally only be accessible from home.

P.s. there’s additional steps I did to ensure that the masquerade of the VPN was disabled, that all VPN clients use my pihole, and that I can still get decent internet speeds while on the VPN. But that’s slightly beyond the original ask here.
⁨Comment⁩ on ⁨[Immich] What is the "proper" way to navigate migration from another service (all photos are already on the server)⁩ ⁨⁨9⁩ ⁨months⁩ ago⁩:
A couple of options in my opinion, as I just did this myself:

You can use the CLI tool to “upload” them. You can even do this from the server itself. So upload times would be as fast as your network card can process or however fast your server is, whichever is slower. It does require that you create an API key for the user in question though.

Otherwise you can create an external library and link that to your account. Now Immich will still index this library but it won’t move or manage the actual files. I’m not sure though if it looks at those files for duplicates (i.e. if you try and upload the same photo from your phone to the server). This external library will also prevent deleting photos as well, FYI.

There might be other options that I’m not aware of, as I’ve only been using Immich for about a month now.
⁨Comment⁩ on ⁨[help]Question regarding Builder design patter.⁩ ⁨⁨1⁩ ⁨year⁩ ago⁩:
So the builder pattern is supposed to solve the problem of: if you have a large number of optional fields that may or may not need to be set to construct your object. Then once the dev has called all of the setters that they require, they call build to fully realize that object.

Some rules that all builders should follow:
- All setters SHOULD represent optional parameters. (Or ones that have a default value). If a parameter is required for all instances, include it in the constructor of the Builder itself.
- All setters SHOULD return a copy of the Builder. This way you can chain calls off of each other.
- Setters SHOULD do nothing more than store the provided value in a field local to the builder itself and then return itself (or a copy of itself).
- You MUST expose a .build() method that will return the fully realized object. This method should essentially call the constructor for your target object using all of the parameters, regardless if a setter was called or not. Obviously any value where the setter wasn’t called will be null or some default value.
⁨Comment⁩ on ⁨Question about Lenny? If instance leaves⁩ ⁨⁨1⁩ ⁨year⁩ ago⁩:
If an instance goes down (permanently), federation of all of the communities hosted by that instance essentially stop. The content that has already been posted remains but anything new added to those communities only remain on your home instance. The only way for federation to resume is for that instance to come back online with the same domain it started with.
⁨Comment⁩ on ⁨Welp that answers a lot of why all .ml are down⁩ ⁨⁨1⁩ ⁨year⁩ ago⁩:
With ActivityPub all of the primary ids contain the domain of the hosting server. So if you lose your domain none of the other instances know that you’re the authority on those communities, posts, comments or users. So essentially federation breaks with all of the old data.
⁨Comment⁩ on ⁨Netflix password crackdown has actually caused a growth in Subscriptions⁩ ⁨⁨1⁩ ⁨year⁩ ago⁩:
Lookup Overseerr. overseerr.dev
⁨Comment⁩ on ⁨Anyone else being forced to log into the site for each visit?⁩ ⁨⁨1⁩ ⁨year⁩ ago⁩:
Clicking on the link would if you’re currently on lemmy.world and it’s taking you to programmingml.dev. But ya typing the URL into the browser bar shouldn’t.

Something you might try… Logout and log back in and the look for the jwt cookie and see what properties are set on it. Maybe they’ve started using session only cookies?
⁨Comment⁩ on ⁨Anyone else being forced to log into the site for each visit?⁩ ⁨⁨1⁩ ⁨year⁩ ago⁩:
How are you visiting the site? Are you typing the URL into the address bar yourself or are you going to Google and then clicking on the link?

For the later, a few weeks back Lemmy pushed a change that doesn’t allow cookies to be seen if coming from an external domain. This change might have finally made it to your instance.

For the former, I have no idea. 🫤