Chewy7324
@Chewy7324@discuss.tchncs.de
- Comment on Best Synology Replacement? 2 days ago:
Ugreen NAS support other OS. You could put TrueNAS or Proxmox on there, so no, there’s no security concerns (beyond all computer hardware being partly manufactured there in some way).
- Comment on How to manage docker compose apps? 5 days ago:
It won’t save you from doing a bit of work but you could use podman. There’s systemd integration so you can still start/stop/enable your services with systemctl while using docker/container images. You won’t be able to use docker-compose directly, but it’s usually not that hard to replicate the logic with systemd (Immich was a PITA at first, but it improved considerably).
I do this with NixOS quite a bit, and I’ve yet to use docker compose (although the syntax is different, it’s still the same process).
- Comment on How can I optimize my jellyfin, specifically transcoding and the CPU usage involved? I'm running it off a mini pc so resources are everything 5 days ago:
Given OP mentioned torrent and watching media in the same sentence I assumed they didn’t rip their own media, and pirated it instead.
If my assumption is wrong, I apologize.
Piracy and Morality
Whether they own a physical edition of that media I don’t know. In my opinion owning a physical medium of the media is a big part in the morality discussion of piracy. But in my juriscition I’m legally not allowed to break the encryption used for CD/DVD/Blu-ray, so I’m technically pirating even if I rip my own discs. There’s obviously no way to find out for copyright owners of their discs were ripped for a private copy, but that’s also (nearly) the case for Usenet/Torrent with proper precautions. Anyway, if you read until this point, thank you!
- Comment on How can I optimize my jellyfin, specifically transcoding and the CPU usage involved? I'm running it off a mini pc so resources are everything 5 days ago:
Especially anime often use the superior .ass subtitle format, which many devices don’t support. Sadly Crunchyroll is switching to .srt which has broader support, so it likely won’t require burning them in the video (transcoding), which is the only positive thing (still a shame imo).
- Comment on How can I optimize my jellyfin, specifically transcoding and the CPU usage involved? I'm running it off a mini pc so resources are everything 5 days ago:
Given they use a N100, I’d suggest redownloading instead of transcoding for time and energy saving (i.e cost).
- Comment on FFS Plex, the server is on my local network 1 week ago:
And making sure Tailscale auto launches on a FireTV stick is a pita too. Telling them to open Tailscale on each start is not an option.
- Comment on FFS Plex, the server is on my local network 1 week ago:
Setting up auth before Jellyfin breaks clients. This is not an option.
- Comment on FFS Plex, the server is on my local network 1 week ago:
And sharing my libraries with other friends sharing back with me is pretty great.
This feature is imo THE killer feature of Plex, although I use Jellyfin. There’s no sharing of libraries like Plex does. Multiple user accounts per server, yes, but you have to switch between servers and search separately.
- Comment on Data Backup Solutions 3 weeks ago:
I also wholeheartedly recommend Restic. Hetzner Storage Box or Backblaze B2 are great storage backends and directly supported by Restic.
Borg is great too, though I’ve never used it because I’ve discovered Restic first.
- GitHub - gmag11/Paperless_ngx_uploader: a simple Android app to upload documents to a Paperless-NGX server using the native share intent.github.com ↗Submitted 1 month ago to selfhosted@lemmy.world | 6 comments
- Comment on Got my first script kiddy 2 months ago:
Some game servers, some ISPs don’t provide IPv6 for (some of) their customers.
- Comment on Sortable Table view with $/TB for serverpartdeals.com 3 months ago:
Sadly they’ve gone up in price over the last 6 months.
Mindfactory had 16TB for 160€ (10€/TB), but now they want 240€ for 18TB (13.3€/TB).
On eBay there’s sellers like HMCW, which are now also more expensive. But returns/warranty are questionable to say the least.
- Comment on ! Mastodon new ToS from July 1has a binding abbreviation wave !!r 3 months ago:
Yeah. There’s already are arbitrators by law: public courts.
- Comment on ELI5: How to put several servers on one external IP? 3 months ago:
Yes, even IPv4 was intended to give each device in the world their own IP, but the address space is too limited. IPv6 fixes that.
Actually, each device usually has multiple IPv6s, and only some/one are globally routable, i.e. it works outside of your home network. Finding out which one is global is a bit annoying sometimes, but it can be done.Usually routers still block incoming traffic for security reasons, so you still have to open ports in your router.
- Comment on ELI5: How to put several servers on one external IP? 3 months ago:
If you go with IPv6, all your devices/servers have their own IP. These IPs are valid in your LAN as well a externally.
But it’s still important to use a reverse proxy (e.g. for TLS).
- Comment on Plex has paywalled my server! 3 months ago:
Many places don’t enforce those laws for simply torrenting.
Some countries (US) ask the ISP to send warning letters and might disable the internet. In other countries law firms get personal details from the ISP and send a costly letter of a thousand Euro for a single infraction like in Germany.
- Comment on Plex Server Replacement 3 months ago:
I would ideally like to convert the library to h.265 or even AV1 if I can make it work.
Unless you’ve downloaded remuxes (which I doubt), I’d seriously recommend redownloading instead of converting your existing files.
h.265 and especially AV1 take a long time to encode by CPU, and hardware encoding won’t give you any space savings, unless you’re okay with losing much details.
Redownloading is most definitely faster, will result in more space savings for the quality you’ll get. PS: Unless you’ve got data volume limits, but even then I’d recommend slowly upgrading over time. It’s quite simple with TRaSH guides and giving h.265 a higher score.
- Comment on What webapps do you selfhost that aren't media/game servers? 5 months ago:
- ActualBudget for finances.
- Radicale for calendar/contacts.
- Immich for photos/videos.
- Redlib as a frontend for Reddit (LibRedirect ftw). - TheLounge as an IRC client.
- Bitwarden/Vaultwarden as a password manager.
- Comment on NixOS on Proxmox LXC: Good or Bad? 5 months ago:
NixOS in LXC works great, although I switched to bare metal NixOS a few months ago. I didn’t see the need for proxmox as it hindered my ability of declaring the whole system.
Creating NixOS LXC’s is a bit of a pita. Some links that helped me two years ago:
- Comment on Framework “temporarily pausing” some laptop sales because of new tariffs 5 months ago:
What I find interesting is that they don’t increase the price and only remove those devices where they’d make a loss. I’d expected them to simply add the tariffs on top of the price and continue as usual.
- Comment on OpenID Connect Single Sign-On Identity & Access Management 5 months ago:
It’s great to see another open source OIDC provider (with more features). I’ve set up Pocket ID which is awesome because of it’s simplicity and it’s great.
- Comment on What steps do you take to secure your server and your selfhosted services? 5 months ago:
I found the guide/examples on their website a bit irritating at first (that’s on me) but it works well once understood and configured.
- Comment on What steps do you take to secure your server and your selfhosted services? 5 months ago:
127.0.0.0 is the localhost. This is the IP the container is listening on. Even if there was no firewall it wouldn’t allow any connection except from the host. If it’s set to 0.0.0.0 it means it’ll allow connections from any IP (which might not be an issue depending on your setup).
The reverse proxy runs on localhost anyway, so any other IPs have no reason to ever have access.
- Comment on What steps do you take to secure your server and your selfhosted services? 5 months ago:
It’s mostly to allow the reverse proxy on localhost to connect to the container/service, while blocking all other hosts/IPs.
This is especially important when using docker as it messes with iptables and can circumvent firewall like e.g. ufw.
You’re right that it doesn’t increase security on case of a compromised container. It’s just about outside connections.
- Comment on What steps do you take to secure your server and your selfhosted services? 5 months ago:
Some I haven’t yet found in this thread:
- rootless podman
- container port mapping to localhost (e.g. 127.0.0.1:8080:8080)
- systemd services with many of its sandboxing features (PrivateTmp, …)
- Comment on What steps do you take to secure your server and your selfhosted services? 5 months ago:
I do the same, but with Wireguard instead of OpenVPN. The performance is much better in my experience and it sucks way less battery life on my phone.
- Comment on Making sure restic backups are right 6 months ago:
Trying to actually restore is the best way to ensure the backup works. But it’s annoying so I never do it.
I usually trust restic to do it’s job. Validating that the files are there and are readable can be done with
restic mount
, and you’ve mentioned restic check.The best way to ensure your data is safe is to do a second backup with another tool. And keep your keys safe and accessible. A remote backup has no use of the keys burned down.
- Comment on Internet forums are disappearing because now everything is Reddit and Discord. And that's worrying. 6 months ago:
Yes. I like to leave the original link in the post body for that reason.
- Comment on Internet forums are disappearing because now everything is Reddit and Discord. And that's worrying. 6 months ago:
Sadly it’s not possible to provide links using Firefox Translate. People would have to translate it themselves (i.e. opening in a browser and clicking translate). Depending on the device they likely wouldn’t bother.
- Comment on Internet forums are disappearing because now everything is Reddit and Discord. And that's worrying. 6 months ago:
Agreed. In general people seem to like centralised platforms. They don’t want to sign up on another site for a specific purpose. They stick to what they know unless there’s good reason to change (mostly peer/ad/social media pressure I feel like).
In a way Lemmy is similar in that it’s a single platform to access all types of content. Given most people don’t care about the technical “how”, I can see why they like Discord and Reddit.