dogs0n
@dogs0n@sh.itjust.works
- Comment on China’s ‘artificial sun’ breaks nuclear fusion limit thought to be impossible 1 day ago:
That’s true, reading your comment reminded me of SUBURBIA!!! Definitely not easy to fix that.
Certainly a good place to start with better zoning as you say.
- Comment on Instead of everyone leaving NATO, could everyone else just kick the US out? 1 day ago:
The UK and France have more than 500 nukes.
The US doesn’t “have the keys” to UK nukes (ie the UK doesn’t keep US approval to fire them), but they are maintained and built by the US (I’m sure if they had to, they could figure it out themselves).
And let’s be real, you don’t need thousands of nukes when a handful (when carefully stored and separated like the UK does in submarines for their active ones) could destroy so much of the planet.
Will a country with 1000 nukes invade a country that has “only” 5?
- Comment on China’s ‘artificial sun’ breaks nuclear fusion limit thought to be impossible 1 day ago:
Luckily major european countries that have well designed streets publish a lot of their found research, it just has to start being adopted in the more car-centric places.
The US as an example is pretty far gone, but if the major cities went fully in the correct direction, it probably would only take a few decades to look completely different (amsterdam is decent proof of this).
- Comment on China’s ‘artificial sun’ breaks nuclear fusion limit thought to be impossible 1 day ago:
Assuming you mean commericial grade hauler trucks and such, I absolutely agree with all your points.
Oh yes, I mean commercial hauler trucks, etc. The ones that do their job well of course. Of course theres other types of trucks for maintenece, last mile deliveries, etc.
(Side note, europe has nice delivery vans)
Definitely not the things the average american has started calling a “truck”, which has 5mpg and is used solely for one person to go to and from an office job, etc, never hauling anything.
And plus 1 for bikes, idk about motorbikes though, sadly they seem like death traps because of how fast you can go, one mistake by you or someone else on the road and you could see black.
- Comment on Stop using MySQL in 2026, it is not true open source 1 day ago:
Postgres or sqlite are the only ones I ever consider nowadays.
- Comment on China’s ‘artificial sun’ breaks nuclear fusion limit thought to be impossible 1 day ago:
Seems obvious to pick a new transit paradigm for personal cars, obviously trucks can stay.
Also in the current era, coal plants already have a good replacement: nuclear. At least for bigger countries, but most are shutting down rather than improving. This might be (hopefully) starting to change though in recent times.
Also I don’t know what fusion power is, I shall be on wikipedia now. Good day sir.
- Comment on Cloudflare CEO Matthew Prince talks about Italy fines while praising JD Vance and Elon Musk 2 days ago:
To one feature of cloudflare, maybe.
- Comment on A complete tier list for our solar system 3 days ago:
Has potential though…
- Comment on OpenWRT router 5 days ago:
Not to mention how apparently 2.5 and 5ghz bands suffer on the Flint 3 just to get Wifi 7.
Hope no one’s buying them (though I imagine a lot of people see 3 > 2 and blindly trust it’s better in all cases).
Flint 3 probably would’ve been better as a different product line. As it currently stands, It seems a bit misleading to attach it to the Flint 2 when so much is different at its core.
- Comment on Github Banned a Ton of Adult Game Developers and Won’t Explain Why 5 days ago:
To explain ur downvotes: git != github
- Comment on OpenWRT router 6 days ago:
Looking at you Flint 3 DOWNGRADE!!!
- Comment on Do people actually believe those "gurus" on the internet that supposedly "give advice"? These seems very sussy and feel scam-adjacent, isn't it? 1 week ago:
People do, but I have a hard time believing them. If you have a secret unlimited money glitch, why would you give it away? Or why would you charge any amount of money for it in a course?
Sometimes it can maybe be a clickbaity title to real advice or an educational video, but anyone peddling advice in a course, etc, should be seen as the snake oil salesmen that they are.
The real advice is always available for free on the internet, just have to find that dude that is so compassionate about the real stuff they give it to you straight up.
- Comment on ublock Origin can get rid of Cookie Banners 1 week ago:
It’d be nice if that header was default for all users, unfortunately it can (and has, probably) end up being just another data point for uniquely identifying you.
Probably will never be default since 99% people use Chrome, and we know who owns that…
Extensions seem the only way without making your traffic mote unique.
- Comment on Where are you running your wireguard endpoint? 1 week ago:
Maybe easier to setup because routers that support vpns come with nice-ish web uis.
That said, if you have a server (pc, pi, etc), setting up wireguard with wg-easy is mostly painless (comes with a nice web ui), so there is no reason to replace your router in this case!
Instead of replacing a router, I’d prefer buying a pi anyways.
Unless you want to route all outbound traffic through a vpn with zero config on devices, I can’t see why you’d replace a router.
Final note: most people prefer hosting a vpn on a server, even if their router supports it as far as I’m aware at least.
- Comment on PLEASE 3 weeks ago:
YOU FORGOT ABOUT CONTRAST AND NOW I HAVE CRASHED
- Comment on It will trickle down any second now 4 weeks ago:
You’d think that, but go research or watch a video and get informed on how these bimbos use their networth (stocks) as collateral for bank loans of still more money than we will ever see in our life times (that they never really pay back btw).
- Comment on What's the security situation when opening a jellyfin server up for casting? 4 weeks ago:
Hehe yep, that’s a good takeaway and the same as what I think.
Thank you too, i enjoyed this discussion.
- Comment on What's the security situation when opening a jellyfin server up for casting? 4 weeks ago:
No problemo.
Thanks for pointing out the reverse proxy comment. I think I was wrong to say simply putting jellyfin behind a reverse proxy will increase your security.
The benefits may only be minute or non-existent if you don’t use the reverse proxy for handling other stuff like HTTPS (and redirects to https, etc), restricting access or adding extra authentication requirements (mainly https).
It may also be good to note that Jellyfins docs explicitly do not recommend directly exposing jellyfin ports to the internet (a reverse proxy or using a vpn are recommended instead).
Still I will continue to feel safer always using a reverse proxy when I expose to the internet (maybe my misconceptions).
- Comment on What's the security situation when opening a jellyfin server up for casting? 4 weeks ago:
Your SSH setup is good.
ssh is a very resilient piece of software so I doubt with your setup you would encounter any issues.
Enforcing use of a VPN to get into your network before being able to ssh into a machine is mostly just an extra layer of defense, though using a non-standard port, only allowing key logins and disabling root user login are all layers of defense you have already added.
I thinj you’ll be fine, but if you are worried, you could setup a VPN or alternatively something like Fail2Ban if you notice any brute-force attacks (which may be unlikely with the use of a non-standard port).
What I meant with the Jellyfin question was kind of, how is having it exposed via a reverse proxy different from exposing its port right away? Is it because the only allowed connection would be HTTPS/encrypted etc, maybe?
It’s down to how secure the software is really.
Jellyfins (and other software) don’t use really secure web servers for getting themselves accessible via the network.
Caddy (a reverse proxy, for example) is made to be exposed to the internet and so it is more resilient and safe to use.
So putting the resilient software (a good reverse proxy) infront of Jellyfin (or most other software) simply increases your security by having the more safe web server be the one interfacing with end users.
Have fun on your journey!
- Comment on It will be great, they said... 4 weeks ago:
Hm, I’m gonna remain skeptical.
Using the random ip you get from mobile data or using dynamic dns feels risky. Maybe that’s because I’m not smart, but the whole trust level is mail thing seems very heuristical and the risk of damaging my domains trust factor doesn’t seem worth it.
I’m not skeptical about having two ip addresses, but rather using ones that I don’t have control over (i don’t have the only right to use).
I might be wrong on the PTR record thing, seems it might be possible with DDNS providers but not 100% sure.
- Comment on It will be great, they said... 4 weeks ago:
For mail this won’t work.
For one, you have to now think about dynamic dns because you have your one static ip and then whatever ip your data backup will rollover onto. This isn’t ideal. Probably going to ruin any trust your domain will have.
Second, there is no way you’re getting a reverse PTR record setup to work in this config.
So, no, it’s not gonna work.
It may work fine if you have random services, but tbh I don’t ever want to use or deal with a ddns service myself.
- Comment on What's the security situation when opening a jellyfin server up for casting? 4 weeks ago:
If you don’t want to worry too much, you can setup a vpn (like wireguard) on your server for ssh access.
Using a non standard port is a good idea, but not entirely foolproof because bots might still port scan (even if unlikely that they do that for ssh I’m not sure). At a mininum, you probably want to use keys for login like the other commenter on the main comment said.
Personally, using a vpn for when I want access to SSH when I’m out is worth the couple hours setting it up the one time (very simple setup with wireguard-easy for example). Maintenence time spent on upgrading is very low.
(Tl;dr I’d use a vpn to access ssh specifically rather than exposing it to the internet)
Same thing for Jellyfin?
Not 100% sure what you mean, but to clarify: Don’t accidentally expose jellyfins port to the internet (eg the default port 8096). Make sure it is only accessible from outside your network through your reverse proxy.
- Comment on What's the security situation when opening a jellyfin server up for casting? 4 weeks ago:
I agree, there is a lot of paranoia, but honestly that’s probably a good thing, because the people who are paranoid might not know that much, so a good amount of paranoia is healthy there.
The chance of being exploited is very low for me to care too too much. Why spend countless days locking up my entire infra when there’s a very low low chance anyone could exploit me in the first place (obviously get your setup to a good standard, I don’t recommend not reading up on anything and exposing server, etc. Just for me, I don’t need to over do it).
That being said, personally I have ssh behind a vpn because that’s a very important service that only I am accessing anyways, so it makes sense for me to disable that attack vector.
- Comment on It will be great, they said... 4 weeks ago:
Oh okay, so it doesn’t work then is what I’m gathering (for email).
- Comment on RAM prices soar, but popular Windows 11 apps are using more RAM due to Electron, Web components 4 weeks ago:
Cool, thank you for the knowledge!
- Comment on It will be great, they said... 4 weeks ago:
If you have a regular data plan that you use if your internet goes down, you’re server would technically have an internet connection, but your services (like email) still wouldn’t work would it?
Do you have some type of setup that keeps that working on data?
I don’t know how buying the ISPs data addon works, but I’ve been skeptical that that swap over would keep anything online either (but getting a generic data plan surely cant work at all right?).
- Comment on RAM prices soar, but popular Windows 11 apps are using more RAM due to Electron, Web components 4 weeks ago:
If your app interfaces with the OS, like most apps would (reading a file, managing the window, etc), then you would be writing rust, no?
- Comment on RAM prices soar, but popular Windows 11 apps are using more RAM due to Electron, Web components 4 weeks ago:
Doubt it
- Comment on It will be great, they said... 5 weeks ago:
Lol the commenter you replied to didnt expect a one of a kind person to reply.
Normal people don’t have a ginormous battery and a generator for when the power goes out.
Every ISP is dogshit too. If it doesn’t go down from incompetence, it’s their physicial infra being broken from weather or some other “natural event”.
Even then, I can’t justify paying their crazy rates for 5g backup year round just for it to kick in once or twice a year or a couple nights where I’m not awake anyways.
Every email server that sends mail should have a rety mechanism if it fails to deliver too, so you shouldn’t miss any mail as long as your server isn’t offline for too long.
Ofc you are allowed to need 99.99% uptime for your home server, just disagreeing that it’s a need for most of us (including me).
- Comment on What's the security situation when opening a jellyfin server up for casting? 5 weeks ago:
The default configuration for Jellyfin is good. I mostly mean as long as you follow best practices in general you should be fine (keep your system and jellyfin updated, have some type of firewall in place, make sure you aren’t accidentally exposing jellyfins port directly to the internet).