Pika
@Pika@sh.itjust.works
- Comment on Is they're an easy way to make my Jellyfin accessible outside of my home network 1 week ago:
it’s actually the recommended way if you use jellyfin, theres a few security/privacy vulnerabilities with publicly exposing the jellyfin server anyway, they are being worked on but, the safest way to do it is just use a vpn regardless.
- Comment on Immich v3.0.0 is out, with Workflows preview 1 week ago:
I’m not sure, I was running 2.7.5 myself but i am not sure what version of immich I started with. I don’t think this would effect fully docker setups anyway, this would mostly effect people who had configured with a preexisting database. I think the docker edition with postgres built in upgraded for you awhile back unless you supplied an environment variable telling it to do otherwise.
- Comment on How secure is my local backup drive with ssfhs? 1 week ago:
your welcome, glad it worked for your use case
- Comment on How secure is my local backup drive with ssfhs? 1 week ago:
hey everyone gotta learns somewhere, and defo don’t expect you’ll ever stop learning on this adventure. That’s part of what makes this hobby fun.
- Comment on How secure is my local backup drive with ssfhs? 1 week ago:
is there any reason in particular that you are using both SSHFS and rsync? Rsync supports ssh connection via
rsync -e ssh source dstUser@dstHost:/pathif you are only using the sshfs system to allow a local ssh directory on your system to use with rsync, you could likely skip that entire part and just use rsync.
- Comment on Immich v3.0.0 is out, with Workflows preview 1 week ago:
As an FYI to people who are upgrading and use a preexisting postgres database If you still use pgvectors.rs (if the command \dx on the immich database responds with vectors not vector) you will need to install both pgvector and vectorchord in order to continue using immich. This will require restarting your postgres instance at least once if not twice.
It threw me for a loop at first because of the similar naming. Just thought I would share.
- Comment on If you could only play 10 games for the rest of your life, which would you choose? 1 week ago:
I couldn’t find a solid 10 but…
- Minecraft for sure; the mod packs are insane and just GTNH could last me months.
- rimworld - I suck at it but… I have time to learn
- Oxygen not included - i have to be in the mood for this but it can hook me for hours
- fallout 3 - ive never actually finished this because I’ve always got distracted by mods
- Car mechanic simulator 21- I love the car mechanic games, I have hours in each even though ive basically finished them
- Mass effect trilogy(I’ve never finished the series and the fact they all interweave means its defo on my bucket list)
- If multiplayer is allowed: Ark survival evolved or ascended.
- elden ring with randomizers.
- Comment on Setting up local Caddy with Porkbun 1 week ago:
Yea hopefully. I know that short lived certs is currently an additional parameter when requesting, hopefully when the default changes they will have a higher rate limit.
- Comment on Setting up local Caddy with Porkbun 1 week ago:
I wasn’t aware of that the managed registered domains the way they do. I may need to reconcider my certificate setup currently, as I currently run a certificate per service because its more secure, but if they count x.website.com certificates as website.com certificates, its entirely possible that when they switch to short lived certificate defaults I may come close to that rate limit.
- Comment on Immich bridge to google photos shared albums 2 weeks ago:
this right here. If you have immich setup behind a reverse proxy, just route any requests that use the /share on the proxy manager to route to the immich instance, and have it 403 on anything else when the request is not via the vpn
- Comment on Rootless docker and symlink to docker.sock security issues 2 weeks ago:
If it’s running as root anyway, then I change my statement. No I don’t see any security risk with it. Patchmon is running as root anyway, so no matter what your permissions are on the links or the original sock, as long as it’s smart enough to follow the link it should be fine. Generally symlinks follow the same permission as their target, with the exception of changing its owner with lchown or removing it. I.E they are going to almost always just be whatever the permission of the target is. So your /var/run/docker.sock is going to be whatever permissions your /var/user/{userid}/docker.sock is normally and since patchmon is running as the root user, it’s not going to care what permissions are present as root overrides all restrictions/permissions anyway.
I have my concerns that patchmon might try to change docker files while as the root user, which could create files that docker couldn’t read but since it seems to be using the docker sock anyway, I expect it’s just going to operate over the sock which means it would be using dockers built in system which would be using its docker user.
- Comment on Rootless docker and symlink to docker.sock security issues 2 weeks ago:
I’m not fully understanding here, are you saying that the symlink is root because root is required to access /var/run or that its root because its required by patchmon.
If its root because the rest of the /var/run is root, is it not on the table to just chown the /var/run/docker.sock to be the userid? since I would assume that patchmon would be running as the docker user anyway since you are running in a rootless environment? I might be misunderstanding.
- Comment on Rule 3 - Updated 4 weeks ago:
I want to add on to this comment that there are also users who use clients that hide the ability to downvote if negative scores or downvotes are disabled in the settings (which is fair). Tesseract is one that comes to mind with that restriction, where if downvotes are turned off, your downvote button is removed and the upvote button is replaced with a like/heart button.
Being said, agree I don’t see many low quality posts in the first place. But it would be nice if reports or comments could be included as a way to judge low effort as well,
- Comment on Laptop as server, how to best manage battery? 5 weeks ago:
As others have stated, if your model is able to have the battery removed and have it still run off power, no problem, do so.
You should be using a dedicated UPS for something like that if you’re concerned about power going out , For a power input that a laptop requires, you could very easily find a $30 or $40 one at your closest big box retail store.
If you must keep the battery in it be careful to monitor it. I ran a laptop as a server for almost four years. It does work really nice. But depending on model, they may be prone to having the battery expand if it’s on 24-7. And even if it doesn’t, that battery is going to be shot after two or three years of constant use anyway.
You can mitigate the battery health issue by making sure you have some form of battery management software running where it stops charging the battery once it hits like 80-85%. and allows it to discharge on its own. But realistically using a laptop battery as a backup power source isn’t super recommended.
Plus with a UPS, you could also hook your router and modem/ONT up to it, which means that not only is your laptop going to remain on, but usually your network will remain up as well since communication lines are quite a bit more durable and generally stay alive even if the power goes down
- Comment on [Meta] Removing definitions from Decronym? 5 weeks ago:
I’ve never personally had any issues with the bot, but I’ve also never really needed to look at the bot either to see what the acronyms meant, but I’ve appreciated that someone’s trying to help if someone didn’t know what the acronyms were.
Being said, I do have to agree with what others have stated. It would be nice, if possible, to have it so the definitions link to hyperlinks to persistent pages such as Wikipedia. Even more so on technical style terms like DNS, for example, because that’s one of those terms that if someone doesn’t know the acronym to it, chances are they don’t know the full name to it either.
- Comment on Messaging apps - XMPP vs Matrix vs ??? 5 months ago:
There is also some that you just don’t want to put that type of responsibility onto either. I moved my grandfather to a password manager 5 or 6 years back. I reiterated at least 8 times do not forget this password if you do you will lose all passwords and need to do everything over again.
He lasted 3 or 4 weeks then suddenly called me saying he couldn’t remember his password period. Like he tried for a good 40 minutes to guess what he may have done and was in a pretty intense panic because he didn’t want to have to change every service he had.
Thankfully it had not been long enough for his file history backup to have deleted the file, so i just restored the last backup of his passwords.docx file and put it back where he was used to it.
I’m not about to try and have him use a password manager again, he has decent enough password management skills since he doesn’t reuse passwords period, but like, it was far too risky putting him on a password manager again.
- Comment on Messaging apps - XMPP vs Matrix vs ??? 5 months ago:
I couldn’t get into matrix, but I was a huge fan of open fire. It’s interface was stupid easy for XMPP administration and for awhile I ran it no issue with my group of friends. granted we ended up just going back to discord not due to any issue with the server or protocol but because it was tedious trying to get people to switch off a platform that works for most people.
- Comment on Need for Speed: what is the best title of the series? 1 year ago:
I loved UG and UG2, but honestly HP2 takes the cake for the best game, not because of the involvement but, because no other game in the series ever did the Cops system as well as it. The newer HP game was also good too, but I felt it branched off. HP2 you could just give a map, no reason for it, and spend the entire game dodging the cops the rest of them it felt like you were actively penalized for not pulling over. I loved the added challenge of running from the cops + racing