non_burglar

@non_burglar@lemmy.world

This is a remote user, information on this page may be incomplete. View at Source ↗

⁨Comment⁩ on ⁨Am I doing this (networking) safely?⁩ ⁨⁨19⁩ ⁨hours⁩ ago⁩:
Didn’t you say you have whitelist of allowed ips? Why don’t you just drop any other inbound traffic?
⁨Comment⁩ on ⁨Am I doing this (networking) safely?⁩ ⁨⁨21⁩ ⁨hours⁩ ago⁩:
This is a waste of time and your router’s CPU. You already have a whitelist and know your safe TCP sources, just drop all wan traffic and only allow new input from whitelist. Your chain input rule is just creating a pretty list of bots you’re dropping anyway.
⁨Comment⁩ on ⁨What's your opinion on Ubiquiti/Unifi gear?⁩ ⁨⁨1⁩ ⁨day⁩ ago⁩:
Ah, good catch, thanks.

It’s moot point for me because I’m sick of unifi so I’m not going back to worse performance and locked-away features.
⁨Comment⁩ on ⁨What's your opinion on Ubiquiti/Unifi gear?⁩ ⁨⁨1⁩ ⁨day⁩ ago⁩:
This is an opinion on the WiFi access points.

I took the unifi pill in 2018 on the advice of my devops coworkers that ubiquiti is set-and-forget. I also was sold on the unifi network controller I deployed and used until last month being easy to use and local only.

The single pane of glass to control and update the access points is nice. Wifi works OK. There are, however, several downsides:
- channel and power management are not automatic and tweaking WiFi settings with unifi is not intuitive.
- similar to your nas experience unifi advanced metrics are locked behind paying for other unifi equipment or an official controller.
- network appliance is built on mongodb and its performance is pretty abysmal (Up to 2.5GB memory to run it)
- the network appliance is now discontinued and self-hosting the network appliance can no longer happen software-only, you have to use their “server os”, which can’t be run in a container.
After the unifi Debian repo stopped updating properly, I decided to install openwrt on my APs.

Not only did it work well, but performance is now much better with openwrt.

I’m personally stepping away from brands that have their own ecosystems from now on, if I can help it. The enshitification is just too tempting for them, it seems, and it it’s always at our expense.
⁨Comment⁩ on ⁨Weird Internet Behavior Starting Selfhost Server & PC's⁩ ⁨⁨1⁩ ⁨day⁩ ago⁩:
Fair enough.

I see your posts and comments regularly in self-hosted, keep it up. Staying engaged is learning.
⁨Comment⁩ on ⁨Weird Internet Behavior Starting Selfhost Server & PC's⁩ ⁨⁨1⁩ ⁨day⁩ ago⁩:
As a fellow tinhat wearer, I applaud your reluctance to trust what they tell you.

However, there isn’t much you can do about your VPN provider setting up multiple exit routes, or maybe they’re doing something really fancy like NAT filtering DNS requests so big players like Netflix have a harder time catching on to ppl geo-hopping.

But the outcome is the same: you have no control over this behaviour.
⁨Comment⁩ on ⁨Weird Internet Behavior Starting Selfhost Server & PC's⁩ ⁨⁨1⁩ ⁨day⁩ ago⁩:
DNS leak tests only understand your exit IP. If your VPN provider allows round Robin load balancing, this may happen. This is a drawback of VPN exits out of your control, that you can’t know how their exits are handled.

Why you are so concerned about DNS leaks beyond one test is another matter only you can solve. Unless you are changing your dnssec config daily, this should be checked once.
⁨Comment⁩ on ⁨Am I doing this (networking) safely?⁩ ⁨⁨1⁩ ⁨day⁩ ago⁩:
1. Have the router to block portscanners
What do you mean by this?
⁨Comment⁩ on ⁨Western Digital details 14-platter 3.5-inch HAMR HDD designs with 140 TB and beyond⁩ ⁨⁨1⁩ ⁨day⁩ ago⁩:
It doesn’t really matter, the current limitations are not so much data density at rest, but getting the data in and out at a useful speed. We breached the capacity barrier long ago with disk arrays.

SATA will no longer be improved, we now need u.2 designs for data transport that are designed for storage. This exists, but needs to filter down through industrial application to get to us plebs.
⁨Comment⁩ on ⁨Bringing playlists into lidarr - how and what tool?⁩ ⁨⁨1⁩ ⁨day⁩ ago⁩:
I use a filesharing platform called nicotine+and then curate my music manually.

Nicotine isn’t just for music, but it is really good for finding weird and non-mainstream music, which is what blocks me from.using lidarr.
⁨Comment⁩ on ⁨Bringing playlists into lidarr - how and what tool?⁩ ⁨⁨2⁩ ⁨days⁩ ago⁩:

I have lots of single songs rather than albums

Lidarr is not for you, then. Lidarr has a very particular workflow, and playlists like yours aren’t it.
⁨Comment⁩ on ⁨I made a way to remotely control my homelab without any internet access required⁩ ⁨⁨2⁩ ⁨days⁩ ago⁩:
There is an ongoing issue with meshtastic users where they keep fighting about mqtt and maps of nodes. meshmap.net apparently only shows about 20% of mqtt-reporting nodes.
⁨Comment⁩ on ⁨💞 FairScan > Syncthing > Paperlees-ngx⁩ ⁨⁨2⁩ ⁨days⁩ ago⁩:
I will look into this, thank you!
⁨Comment⁩ on ⁨💞 FairScan > Syncthing > Paperlees-ngx⁩ ⁨⁨2⁩ ⁨days⁩ ago⁩:
Sounds like a great workflow!

Unfortunately, I just can’t get syncthing to run in the background of my phone without chewing up the battery.
⁨Comment⁩ on ⁨Geo-distributed Jellyfin⁩ ⁨⁨4⁩ ⁨days⁩ ago⁩:
You unfortunately cannot solve this yourself, this is where 800lb gorillas like akamai outclass self-hosted.

Netflix alone has many thousands of isps participating in Open Connect alone, these providing CDN peering points all over the world and making Netflix only a few hops away for more end users.
⁨Comment⁩ on ⁨Self-hosting paradox: Windows for specifically MS word⁩ ⁨⁨6⁩ ⁨days⁩ ago⁩:
This isn’t an option for op, they’re collaborating with others for work, so they can’t change the involvement of MS.
⁨Comment⁩ on ⁨Self-hosting paradox: Windows for specifically MS word⁩ ⁨⁨6⁩ ⁨days⁩ ago⁩:
They likely need to track changes, which look and act weird when using LO on ms docs.
⁨Comment⁩ on ⁨[deleted]⁩ ⁨⁨1⁩ ⁨week⁩ ago⁩:

I guess the point is, what’s the use of an open non corporate controlled linked in?

LinkedIn serves no other purpose but showing others how much you “play ball” and always has. So I suppose the answer is “nothing”.
⁨Comment⁩ on ⁨A Netadmin's NAS: Creating a maintenance-free NAS based on RouterOS, from a homelab holdout's perspective⁩ ⁨⁨1⁩ ⁨week⁩ ago⁩:
I mean… It would work fine to use ROS for this, and truly, my mikrotik devices are definitely hands-off except updates and few rule adjustments, but this isn’t really any different from a Linux box. You have about as much initial config in a hardened immutable box as this.

The other thing is that mikrotik code isn’t open, which might be an issue for some.

I want to add that I respect this approach, it just seems like about as much work as any other roll-your-own solution.
⁨Comment⁩ on ⁨[deleted]⁩ ⁨⁨1⁩ ⁨week⁩ ago⁩:
Lately? LinkedIn has always been that. Facebook for corporate douchbags.
⁨Comment⁩ on ⁨Self hosting Sunday! What's up and how long?⁩ ⁨⁨1⁩ ⁨week⁩ ago⁩:
Finally killed my Discord account and moved my monitoring notifications to a self-hosted nyfy server. Works well.
⁨Comment⁩ on ⁨Calibre-Web-Automated v4.0.2 - Includes critical database stability updates + a number of snazzy new features⁩ ⁨⁨1⁩ ⁨week⁩ ago⁩:
Very nice, checking out the changes now.
⁨Comment⁩ on ⁨Self-Host Weekly (30 January 2026)⁩ ⁨⁨1⁩ ⁨week⁩ ago⁩:
Fair enough.

I am trying to be careful not to disparage the technology, it’s not the tech, it’s the mad rush to AI everything that’s the problem. And in our space, it is causing folks who normally think critically to abandon basic security and stability concerns.

It wasn’t my intention to criticize your choice. Have a good one.
⁨Comment⁩ on ⁨Server ROI Calculator⁩ ⁨⁨1⁩ ⁨week⁩ ago⁩:
Jeez, i re-read my answer and I always come across more severe than I wanted.

It’s definitely a good milestone for someone potentially getting carried away with buying gear, if only to stop and figure out what one is trying to accomplish. And I say this as a person who worked in it for 25 yrs and has waaay too much gear.
⁨Comment⁩ on ⁨Self-Host Weekly (30 January 2026)⁩ ⁨⁨1⁩ ⁨week⁩ ago⁩:

Everyone keeps forgetting

No, I read it the first time.

They show you what commands it’s going to run.

When it works, sure.

I review everything it will do.

Then what, pray tell, is the point of the agent if you need to check its work each time?

I will point out how many posts, articles, and comments there are about how agents with this level of access have repeatedly and consistently failed to follow “safeguards”.

Ultimately, if you feel informed enough, by all means use it.
⁨Comment⁩ on ⁨Self-Host Weekly (30 January 2026)⁩ ⁨⁨1⁩ ⁨week⁩ ago⁩:
- Bot can write to file
- Bot can execute code
You honestly think there isn’t an issue with that?!
⁨Comment⁩ on ⁨Server ROI Calculator⁩ ⁨⁨1⁩ ⁨week⁩ ago⁩:
This is neat, and I see that lots of folks are getting a good look at their laid out setup costs. However, you should stop using project management budget coding words. Also:
1. You are confusing roi with payback period.
2. There are intangible factors to consider like command of your data, control over security, etc.
3. Opex and capex are values used for fixed-term projects, they aren’t meant to quantify ongoing efforts past project outset.
4. Hardware is absolutely NOT a “one-time purchase”. If you are amortizing the cost of equipment, you must include projected failure rates, particularly for disks. Please refer to green-cycling.
5. Information projects are different than physical processing projects because they “expire”, meaning your i5-7200 is OK now, but will likely be nearly useless in 2030 when everyone is pretty much moved to 4k.
⁨Comment⁩ on ⁨How many containers are you all running?⁩ ⁨⁨1⁩ ⁨week⁩ ago⁩:
1. There are usually one or two of those that are just experimental and might get trashed.
⁨Comment⁩ on ⁨Getting worn out with all these docker images and CLI hosted apps⁩ ⁨⁨1⁩ ⁨week⁩ ago⁩:

only 1gbE

What needs more than 1gbe? Are you streaming 8k?

Sounds like you are your own worst enemy. Take a step back and think about how many of these projects are worth completing and which are just for fun and draw a line.

And automate. There are tools to help with this.
⁨Comment⁩ on ⁨Immich v2.5.0 - 90000 Stars Release, with Free Up Space, non-destructive editing, backup and restore on the web, visual refreshing, and moreeeee! 🎉⁩ ⁨⁨1⁩ ⁨week⁩ ago⁩:
I’m looking forward to the changes to editing. I was happy to see the tools built in (just the simple crop/rotate/mirror), but then being prompted to save to gallery instead of just keeping it in immich was a dumb choice, it defeats the purpose of the edits altogether. Plus, the new image had new metadata?? Like I have to find the old pic, get the metadata, copy it to the new image upload new image and delete old image?? Wtf is the point of that?

Otherwise, immich works well. But man, the editing just isn’t thought out at all. Also no editing options in web ui, which baffles me.