MinFapper
@MinFapper@startrek.website
- Comment on Have clankers visited my blog one hundred twenty-one sexagintillion eight hundred ten novemquinquagintillion times so far in November?? 1 week ago:
It’s interesting that anubis has worked so well for you in practice.
What do you think of this guy’s take?
- Comment on Have clankers visited my blog one hundred twenty-one sexagintillion eight hundred ten novemquinquagintillion times so far in November?? 1 week ago:
It’s interesting that anubis has worked so well for you in practice.
What do you think of this guy’s take?
- Comment on Zero Chull 1 week ago:
There are a lot of programs that try to detect VMs and other unverified environments (e.g. Google’s safety net) to deter bots and fraud.
Buying physical devices circumvents all that
- Comment on People using Cloudflare, are you still happy with it? Would you consider any self-hosted alternative? 2 weeks ago:
ngrok isn’t just for development.
That’s news to me lol. I’ve personally only used them for development so I can’t tell you how good they are for running production services.
I just looked at their pricing page and it looks like the Free and Hobbyist only include 1GB and 5GB of data, respectively. I’ve never actually measured my data usage because Cloudflare gives unlimited data, but I suspect that’s nowhere near enough for a photo sharing app like Immich.
- Comment on People using Cloudflare, are you still happy with it? Would you consider any self-hosted alternative? 2 weeks ago:
You might be misunderstanding the value-add of a CDN to self-hosting, so here’s my attempt at explaining:
I’ve been self-hosting things for a very long time. In the old days, we would wrangle our routers to expose port 80 for HTTP (and later, port 443 for HTTPS) and forward those connections to the self-host server and then add the appropriate DNS records to point our website domain to our home IP address (which was its own fun challenge when ISPs refused to give static IP addresses for home plans). Relatively simple.
However, in recent years (especially after the pandemic) the internet has become a much more hostile place. People find vulnerabilities in your nginx/caddy/apache or whatever reverse proxy you use (or router, or any one of the many other parts of your network/software stack) gain access to your local network and your personal data. And then there are bad actors doing DDoS attacks or AI crawlers generating DDoS levels of incoming requests to overload your hardware.
All that combined means it’s very dangerous to have your home IP exposed to the internet (allowing any sort of inbound requests) at all.
So, how do we access our self-hosted stuff while we’re outside of home? The safest approach is to use a VPN. Tailscale is the most popular one that I’ve come across. Only client devices that are connected to the VPN have access to your stuff. Random bad actors can’t poke your self-hosted stack for vulnerabilities.
Okay, what if you want to share something with people publicly? I for one, use Immich for my photo libraries and it’s very easy to be able to share a link to an album for friends and extended family to access without having to install and configure a VPN on their phones.
That is where cloudflare comes in. We can run
cloudflaredon our machine, which makes an outbound request to cloudflare and creates a tunnel to route all the incoming requests from their servers to your reverse proxy. Your network is still not exposed to the internet, and the edge nodes (the machines that actually front the incoming traffic from the clients) are not owned by you.Now, I guess it’s feasible to rent a VPS on DigitalOcean/OVH/Azure/AWS and run a Tailscale exit node there to achieve a similar result. I haven’t looked too deeply into Pangolin but it looks kind of similar. Now you’re adding extra work to keep those configured correctly (and up-to-date), is less secure because you’re not doing that full time (unlike the engineers at cloudflare) and you’re still dependent on that VPS provider to not go down, so the disaster recovery profile hasn’t changed all that much.
That’s why there’s no self-hosted alternatives to a CDN. I guess you can go with their competitors like Fastly/Akamai/etc, but all of them are considerably more expensive. And even the ones that do have free tiers have data limits or bill per gigabyte. That’s an extra headache to worry about for that one month your mother decides to take 1000 videos of your son during the family vacation and her phone automatically backed up all of them at full-quality.
- Comment on Google is collecting troves of data from downgraded Nest thermostats 2 weeks ago:
Anything recommended by the Open Home Foundation or partners with Home Assistant
- Comment on GNOME Mutter Now "Completely Drops The Whole X11 Backend" 3 weeks ago:
They’re still keeping XWayland though. There’s not going to be much change in functionality.
This is just cleaning up some legacy/dead code.
- Comment on Passkeys Explained: The End of Passwords 3 weeks ago:
Might I suggest Bitwarden.
It’s open source, syncs across every platform I know of, and supports passkeys.
- Comment on Promised myself I will support them after they go stable. They kept their promise and so did I 5 weeks ago:
Yep. Tailscale uses wireguard under the hood so that setup sounds exactly the same.
The Cloudflare tunnel is free. They don’t seem to have a traffic cap either. They’ll charge you if you want to use a non apex domain (e.g. subdomain) or if you need their more advanced bot detection/defense products. But a basic/standard setup like what us self hosters have is free.
- Comment on Promised myself I will support them after they go stable. They kept their promise and so did I 5 weeks ago:
Yes, and yes.
Their Android app feels like an exact clone of the Google Photos Android app.
To access it remotely, you can use Tailscale like someone else mentioned. But you need to have Tailscale installed on everyone’s phones.
You can also use a Cloudflare Tunnel to allow it to be accessed over the Internet without exposing anything from your home network directly to the Internet.
The latter is useful when I want to share a secret link to a photo album after hanging out with people so everybody can upload the photos they took to one place (something I used to do a lot with Google Photos)
- Comment on Promised myself I will support them after they go stable. They kept their promise and so did I 5 weeks ago:
Does everything Google photos does. Their app looks/feels exactly Google’s app, including sharing links. Assuming you’re running it on reasonably powerful hardware, it does all the same face recognition and ML based search that Google photos does.
- Comment on $96.5 million for Nadella | Microsoft's CEO receives record pay in a year that saw 15,000+ layoffs 1 month ago:
Eh, Microsoft actually has enough money in the bank to prevent layoffs. They’re doing them on purpose to raise the stock price.
- Comment on How long do we have before PCs get locked bootloaders and corporations ban installation of "non-approved" software? (for context: Google is restricting sideloading worldwide on Android ETA 2027) 2 months ago:
$1M carries the weight of about 1M signatures, which is to say… not much.
- Comment on Organic Maps migrates to Forgejo due to GitHub account blocked by Microsoft. 8 months ago:
It doesn’t seem like a very “walled” garden if they were able to migrate all their data including issues and comments
- Comment on Thighs 9 months ago:
Source?
- Comment on FBI recommends coming up with a 'secret word or phrase' to make sure your family know you're you and not some hellish AI copycat 11 months ago:
Aw man, how do I give you Lemmy gold?
- Comment on 'Democrat propaganda': Marjorie Taylor Greene plans to team up with Musk to defund NPR 1 year ago:
Unfortunately, reality has a liberal bias these days
- Comment on Please Don’t Make Me Download Another App | Our phones are being overrun 1 year ago:
Some stores require you to use the app for order pickup.
Sounds like a store to avoid like the plague.