doeknius_gloek

@doeknius_gloek@discuss.tchncs.de

This is a remote user, information on this page may be incomplete. View at Source ↗

⁨Comment⁩ on ⁨Backup for important files/pictures?⁩ ⁨⁨2⁩ ⁨weeks⁩ ago⁩:
Obligatory: RAID is not a backup.
⁨Comment⁩ on ⁨Safest CalDAV/CardDAV server⁩ ⁨⁨3⁩ ⁨weeks⁩ ago⁩:
Security in software is about implementation, not different programming languages. Security as a whole is also not something you can achieve just by installing “secure” software - every software has bugs and vulnerabilities (but not every one of them automatically poses a security risk, this depends on your usage and environment). You can try to harden your system, but you need to do this in layers and the application code is just one of them.

For example, you could geoblock IP addresses so their requests never even reach your application. This does not mean that you’re automatically safe from attackers from e.g. Russia, but you make youself a less easy target.

There are many other defense mechanisms like request limiting, dynamically blocking malicious requests with something like Fail2Ban, strong authentication, network segregation, virtualization, and so on. I hope you see were I’m going. Security is complex and depends a lot on your personal threat model.

That being said, if you need to know how secure the code of a given software is, you need to find something that has recently been audited or audit it yourself.
⁨Comment⁩ on ⁨With the recent happenings with Synology/Plex, I’ve decided it’s time to make the move and up my self-hosting game, just need some input from the veterans to solidify my plan and put it into action.⁩ ⁨⁨5⁩ ⁨weeks⁩ ago⁩:
I might be cynical, but moving away from Synology and Plex because of the writing on the wall and then choosing Unraid probably won’t end well.

Don’t get me wrong, I understand the love for Unraid even though I don’t use it. It looks nice and newbie-friendly and you can throw all your random disks at it regardless of size. But enshittification will come for Unraid and I personally think that it has already begun.
⁨Comment⁩ on ⁨Come to say thank you. Time to move from proprietary to Open Source⁩ ⁨⁨1⁩ ⁨month⁩ ago⁩:
Thanks for your response!
⁨Comment⁩ on ⁨Come to say thank you. Time to move from proprietary to Open Source⁩ ⁨⁨1⁩ ⁨month⁩ ago⁩:
What made you switch from TrueNAS Scale to Unraid, if I may ask? Is it just the ability to mix different drive sizes? I’m currently using TrueNAS Core and thinking about migrating to TrueNAS Scale.
⁨Comment⁩ on ⁨How to send backups on multiple location?⁩ ⁨⁨2⁩ ⁨months⁩ ago⁩:
I have an offsite NAS where I run the Restic REST server as a docker container. I connect to it over Nebula but you could also use a traditional VPN, Tailscale, Headscale, Pangolin or whatever.

Works like a charm.
⁨Comment⁩ on ⁨Considering a refurbished Lenovo ThinkCentre M920q for use as a discrete HTPC / SteamLink console. Is this a good idea? Does anyone here have any experience with these?⁩ ⁨⁨2⁩ ⁨months⁩ ago⁩:
I was recently reading a lot about these because I wanted to use three Lenovo M920x for my homelab as virtualization hosts with Proxmox.

The really cool thing about them is their low power usage, that you can easily buy them used/refurbished and that you can fit a small PCIe expansion card into them.

I didn’t use them in the end because sadly 22110 M.2 SSDs don’t fit and I wanted to use enterprise SSDs for Ceph.

However, your use case seems simpler, so I’d think a M720q or maybe even M710q (without PCIe slot) would do, for less money than the M9xx series (which support vPro).

There’s a really nice forum thread on ServeTheHome with loads of information about these units.
⁨Comment⁩ on ⁨How to secure Jellyfin hosted over the internet?⁩ ⁨⁨2⁩ ⁨months⁩ ago⁩:
Uhh, interesting! Thanks for sharing.
⁨Comment⁩ on ⁨How to secure Jellyfin hosted over the internet?⁩ ⁨⁨2⁩ ⁨months⁩ ago⁩:
No, it isn’t.
⁨Comment⁩ on ⁨Google will move Android AOSP development behind closed doors⁩ ⁨⁨2⁩ ⁨months⁩ ago⁩:
I don’t know anything about Android AOSP, so I found this clarification important:

This does not mean that Google is making Android a closed-source platform, but rather that the open-source aspect will only be released when a new branch is released to AOSP with those changes, including when new full versions or maintenance releases are finished.
⁨Comment⁩ on ⁨Help with iptables, using nixos setting up a wiregaurd server for friends⁩ ⁨⁨4⁩ ⁨months⁩ ago⁩:
You need more Excalidraw in your life.
⁨Comment⁩ on ⁨Wubuntu: The lovechild of Windows and Linux nobody asked for⁩ ⁨⁨6⁩ ⁨months⁩ ago⁩:
Kill it before it lays eggs!