TCB13
@TCB13@lemmy.world
- Comment on Opera explains how it plans to keep uBlock Origin support as Google Chrome disables it 3 weeks ago:
I guess the current situation could be better if Opera and Brave coordinated among themselves a shared codebase for a patch that would allow both of them to keep v2 working. The thing is that Brave most likely doesn’t actually care, they’ve a built in adblocker so if v2 goes away then their marketshare will increase. Opera can’t do it alone because, well it is the Opera Chinese owned company after all.
I was really hopping that Microsoft would take on this, think about it, from a strategic PoV if Edge kept v2 and advertised it they could just snatch a big chunk of users from Google.
- Comment on Opera explains how it plans to keep uBlock Origin support as Google Chrome disables it 3 weeks ago:
A better title: Opera explains shit on how it plans to keep uBlock Origin support. Will talk to developers so see if anyone has a good ideas.
- Comment on Ditching Spotify and YT Music 3 weeks ago:
The funny part is that they sell it as modern yet they use Java like if it was a banking software from the 90’s.
- Comment on Ditching Spotify and YT Music 3 weeks ago:
Nextcloud Music (…) Downside: it is Nextcloud.
- Comment on If you hoard video games and aren’t selfhosting GameVault yet, you’re missing out! 4 weeks ago:
It’s so hard to have a SMB share with one folder per game. The solution is obviously to run 4000 docker containers.
- Comment on which VPS do you recommend? 1 month ago:
So, looks like tons of HTTP services and SSH.
- Comment on which VPS do you recommend? 1 month ago:
Great, but what services are you hosting ? What ports you need?
- Comment on which VPS do you recommend? 1 month ago:
Yeah, those may work. Since you’ve one how does it look like? Are there blocked ports line SMTP? Are the IP good / aren’t blacklisted everywhere already? Thanks.
- Comment on And you will never catch up as Bezos make 8,000,000 per hour 1 month ago:
Yeah because making it isn’t only about just waiting for time to pass and money to come it, it is also about compounding.
- Comment on Proxying torrent traffic to homeserver 1 month ago:
This means I don’t need to mess around with QBT’s “proxy” settings?
No, you don’t. In short, trackers will look at the source address of the incoming connection on their side, that means you VPS IP because you’re doing NAT on the VPS.
Just make sure qBittorrent is restricted to the WG interface and nothing else.
- Comment on Three Mile Island nuclear plant set for restart on Microsoft AI power deal 1 month ago:
I agree with that, 100% but for the majority of the world how green it is usually depends on how far-left you are.
- Comment on Three Mile Island nuclear plant set for restart on Microsoft AI power deal 1 month ago:
So… now nuclear is considered “green power”. Okay boomers.
- Comment on If I already have a VPN always on on my system, do I need to set up a gluetun container? 1 month ago:
but without nix it’s a pita to maintain through restores/rebuilds.
No it isn’t. You can even define those routing polices in your systemd network unit alongside the network interface config and it will manage it all for you.
If you aren’t comfortable with systemd, you can also use simple “ip” and “route” commands to accomplish that, add everything to a startup script and done.
major benefit to using a contained VPN or gluetun is that you can be selective on what apps use the VPN.
Systemd can do that for you as well, you can tell that a certain service only has access to the wg network interface while others can use eth0 or wtv.
- Comment on If I already have a VPN always on on my system, do I need to set up a gluetun container? 1 month ago:
In terms of homelab stuff, I know a lot of people appreciate the containerized approach.
What I said applies to containerized setups as well. Same logic, just managed in a slightly different way.
- Comment on Proxying torrent traffic to homeserver 1 month ago:
By “set up wireguard to route through the VPS” you mean having wireguard forward a port from the VPS to a port on the homeserver at its wireguard IP address?
Yes, he means that.
qBittorrent will still need to publish the right IP address to peers though, right? So I will need to configure the proxy VPS’s IP address in qBittorrent…
No. For most things qBittorrent does public IP detection. For the rest your VPS will be doing NAT between the WG interface and the public internet. This means your qBittorrent client sends outgoing packets with the source address of your WG private IP and then the VPS will change those to it’s public IP address.
The thing you must be careful about is that you need to restrict qBittorrent to only send and receive traffic on the WG interface, otherwise it will be using both. You can do it in the settings, but the safest way is to do it at the systemd service level and completely hide any interface that isn’t the WG one from it.
- Comment on If I already have a VPN always on on my system, do I need to set up a gluetun container? 1 month ago:
You can force all outgoing traffic to use the VPN interface via iptables/routes (meaning if it doesn’t exist or doesn’t work nothing will be able to access the internet) OR use systemd globally hide the non-VPN network interface from all services except for the VPN client.
- Comment on If I already have a VPN always on on my system, do I need to set up a gluetun container? 1 month ago:
All of that can be achieved with simple systemd or iptables/routes tweaks. You can force all outgoing traffic to use the VPN interface via routes (meaning if it doesn’t exist or doesn’t work nothing will be able to access the internet) OR use systemd globally hide the non-VPN network interface from all software except for the VPN client.
- Comment on Proxmox rebuild 2 months ago:
Maybe this will help you: linuxcontainers.org/incus/docs/main/backup/
How are snapshots with ZFS on Incus?
What do you mean? They work, described here, the WebUI can also make snapshots for you.
- Comment on Proxmox rebuild 2 months ago:
You should consider replacing Proxmox with LXD/Incus because, depending in your needs, you might be able to replace your Proxmox instances with Incus and avoid a few headaches in the future.
While being free and open-source software, Proxmox requires a payed license for the stable version and updates. Furthermore the Proxmox guys have been found to withhold important security updates from non-stable (not paying) users for weeks.
Incus / LXD is an alternative that offers most of the Proxmox’s functionality while being fully open-source – 100% free and it can be installed on most Linux systems. You can create clusters, download, manage and create OS images, run backups and restores, bootstrap things with cloud-init, move containers and VMs between servers (even live sometimes).
Incus also provides a unified experience to deal with both LXC containers and VMs, no need to learn two different tools / APIs as the same commands and options will be used to manage both. Even profiles defining storage, network resources and other policies can be shared and applied across both containers and VMs. The same thing can’t be said about Proxmox, while it tries to make things smoother there are a few inconsistencies and incompatibilities there.
Incus is free can be installed on any clean Debian system with little to no overhead and on the release of Debian 13 it will be included on the repositories.
Another interesting advantage of Incus is that you can move containers and VMs between hosts with different base kernels and Linux distros. If you’ve bought into the immutable distro movement you can also have your hosts run an immutable with Incus on top.
Incus Under Debian 12
If you’re on stable Debian 12 then you’ve a couple of options:
- Run the LXD version provided on their repositories: this will give you LXD 5.0.2 LTS that is guaranteed to be compatible with Debian 13’s Incus. Note that this was added before Canonical decided to move LXD in-house;
- Use the backported version as described here: linuxcontainers.org/incus/docs/main/installing/;
- Get the latest Incus pre-compiled from github.com/zabbly/incus and install as described above.
In the first option you’ll get a Debian 12 stable system with a stable LXD 5.0.2 LTS, it works really well however it doesn’t provide a WebUI. The second and third options will give you the latest Incus but they might not be as stable. Personally I was running LXD from Snap since Debian 10, and moved to LXD 5.0.2 LTS repository under Debian 12 because I don’t care about the WebUI. I can see how some people, particularly those coming from Proxmox, would like the WebUI so getting the latest Incus might be a good option.
I believe most people running Proxmox today will, eventually, move to Incus and never look back, I just hope they do before Proxmox GmbH changes their licensing schemes or something fails. If you don’t require all features of Proxmox then Incus works way better with less overhead, is true open-source, requires no subscriptions, and doesn’t delay important security updates.
Note that modern versions of Proxmox already use LXC containers so why not move to Incus that is made by the same people? Why keep dragging all of the Proxmox overhead and potencial issues?
- Comment on Firefox rolls out Total Cookie Protection by default to all desktop users worldwide | It is Firefox’s strongest privacy protection to date, confining cookies to the site where they were created 2 months ago:
Of course I am… and that’s the point. Librewolf is Firefox without the spyware.
- Comment on New $38 'FlippyDrive' ODE Lets You Keep Your GameCube's Optical Drive | Time Extension 2 months ago:
Why can’t we get something like this for the Dreamcast :)
- Comment on Full open source and private camera monitoring system 2 months ago:
Reolink / AMCrest - no internet required, can be setup offline AND have a WebUI that allows full control over all functionality. Check the details of specific models, may vary a bit.
… NO internet required, no apps, nothing.
- Comment on Full open source and private camera monitoring system 2 months ago:
- TPLink Tapo line - requires internet / cloud access for setup, then can be viewed by any ONVIF capable software. You can cut their internet access and they mostly work, however timestamps and some features may break randomly;
- Reolink / AMCrest - no internet required, can be setup offline AND have a WebUI that allows full control over all functionality. Check the details of specific models, may vary a bit.
- Comment on Self-hostee storage for Gmail 2 months ago:
it’s possible to have an email client download all the messages from Gmail and remove them from the server. I would like to set up a service on my servers to do that and then act as mail server for my clients. Gmail would still be the outgoing relay and the always-on remote mailbox, but emails would eventually be stored locally where I have plenty of space.
Do you really need this extra server? Why not just configure the account on Thunderbird and move the older / archival mail to a local folder? Or even drag and drop it out of Thunderbird to a folder and store the resulting files somewhere?
I’m just asking this because most people won’t need regular access to very old email and just storing the files on a NAS or something makes it easier.
- Comment on Router died - Replacement/solution recommendations 3 months ago:
Be prepared to be hostage of their cloud services… Unifi was all cool until they introduced the Cloud Key and a few other things.
- Comment on Sega Rally 2’s PC Port Now Playable on Modern Systems 3 months ago:
Anyone found the link?
- Comment on I spent ~$35 on new cables and my LAN speed increased 6x 3 months ago:
The future of ethernet is not expensive cabling, more like switches capable of doing more on current cables. We’ve been seeing this trend for a while.
- Comment on I spent ~$35 on new cables and my LAN speed increased 6x 3 months ago:
Staggered will reduce the failure rate by a lot, specially if you’re into gigabit speeds or anything above it. Although I know from experience that you can get gigabit on non-staggered connectors it won’t always happen on the first try. On long distances the noise caused by having the wires side by side may also cause problems.
- Comment on I spent ~$35 on new cables and my LAN speed increased 6x 3 months ago:
It depends: lemmy.world/comment/11680250
- Comment on I spent ~$35 on new cables and my LAN speed increased 6x 3 months ago:
CCA wasn’t probably your issue there, CCA is actually becoming the standard everywhere because copper is way too expensive and to be fair not needed with modern hardware.
You most likely issue with that CCA is the AWG size you picked, cheap cable is usually 24, 26 or even 28 AWG and those will be bad
If you want PoE or anything gigabit or above you need to pick 23 AWG. This is considerably cheaper than full copper and it will work fine for the max. rated 100m. Either way, cheap 26 AWG should be able to deliver gigabit and PoE at short distances like 20 meters or so.
Another important thing is to make sure your terminations are properly done and the plugs are good. Meaning, no Cat5e connectors should be used, always use staggered ones:
