DarkSirrush
@DarkSirrush@lemmy.ca
- Comment on How do I manage docker&Traefik behind a reverse proxy not on docker. 4 days ago:
- Comment on In the cave 1 week ago:
Which gives you really fucky barred windows that face a cement wall the same size as the window, that lets in less light than an angled window 1/4 of the size.
PS: fuck illegal basement suites in new builds in Vancouver.
- Comment on In the cave 1 week ago:
I’m pretty sure its illegal to advertise a windowless room as a bedroom in Canada.
- Comment on Pi-hole client filtering without DHCP? 1 week ago:
I am definitely not the best at networking, but can’t you do that through your current dhcp client?
- Comment on I self hosted a World of Warcraft server. 1 week ago:
The server has been reverse engineered for literal decades at this point.
- Comment on 🔒 Setting Up Headscale & Tailscale on NixOS: A Zero-Trust Networking Guide for ❄️ NixOS - YouTube 2 weeks ago:
I can share my traefik setup - note I am doing this on my phone at work, so I might miss something
compose.yaml labels: - "traefik.enable=true" - "traefik.http.routers.traefik.middlewares=authwares@file"
GNU nano 7.2 /config/traefik/dynamic/middlewares.yaml http: middlewares: limit: buffering: memRequestBodyBytes: 5000000000 memResponseBodyBytes: 5000000000 maxRequestBodyBytes: 5000000000 maxResponseBodyBytes: 5000000000 authwares: chain: middlewares: - default-headers - authelia - limit default-headers: headers: accessControlAllowHeaders: "content-type,authorization" accessControlAllowMethods: - GET - OPTIONS - PUT - POST - DELETE frameDeny: true accessControlAllowOriginList: "*" accessControlMaxAge: 100 addVaryHeader: true browserXssFilter: true contentTypeNosniff: true forceSTSHeader: true stsIncludeSubdomains: true stsPreload: true stsSeconds: 15552000 customFrameOptionsValue: SAMEORIGIN referrerPolicy: "strict-origin-when-cross-origin" customRequestHeaders: X-Forwarded-Proto: https customResponseHeaders: X-Robots-Tag: "none,noarchive,nosnippet,notranslate,noimageindex" server: "" X-Forwarded-Proto: "https,wss" hostsProxyHeaders: - "X-Forwarded-Host" authelia: forwardAuth: address: http://auth/api/verify?rd=https%3A%2F%2Fauth.example.com%2F trustForwardHeader: true authResponseHeaders: - "Remote-User" - "Remote-Groups" - "Remote-Email" - "Remote-Name"
GNU nano 7.2 /config/traefik/traefik.yaml global: checkNewVersion: false sendAnonymousUsage: false entryPoints: web: address: :80 proxyProtocol: insecure: false trustedIPs: - 172.32.0.0/16 - 192.168.1.0/24 forwardedHeaders: insecure: false trustedIPs: - 172.32.0.0/16 - 192.168.1.0/24 http: redirections: entryPoint: to: websecure scheme: https permanent: true websecure: address: :443 proxyProtocol: insecure: false trustedIPs: - 172.32.0.0/16 - 192.168.1.0/24 forwardedHeaders: insecure: false trustedIPs: - 172.32.0.0/16 - 192.168.1.0/24 http: tls: options: modern@file certResolver: letsencrypt domains: - main: "example.com" sans: - "*.example.com" providers: docker: # constraints: "!Label(`com.docker.compose.service`,`auth`)" exposedByDefault: false network: compose_proxied allowEmptyServices: true endpoint: "http://socket:2375/" defaultRule: "Host(`{{ index .Labels \"com.docker.compose.service\"}}.example.com`)" file: directory: /config/dynamic watch: true api: insecure: false dashboard: true certificatesResolvers: letsencrypt: acme: email: acme@example.com storage: /certificates/acme.json dnsChallenge: provider: cloudflare resolvers: - "1.1.1.1:53" - "1.0.0.1:53" log: level: DEBUG filePath: /config/logs/traefik.log format: json accesslog: filepath: /config/logs/access.log bufferingSize: 100 format: json
- Comment on Self-hosted meteo apps ? 2 weeks ago:
Guess I am making this in excel now.
- Comment on 🔒 Setting Up Headscale & Tailscale on NixOS: A Zero-Trust Networking Guide for ❄️ NixOS - YouTube 2 weeks ago:
Note that its also possible to set up service auto discovery with traefik, the only traefik related config I do on new containers is
Traefik.enabled=true
- Comment on Just how visible is your butthole to a gynecologist? 2 weeks ago:
Pretty sure Lemmy has a display name feature, yes
- Comment on Hmmm who could it possibly be? 3 weeks ago:
Only if you are an alcoholic.
- Comment on Hmmm who could it possibly be? 3 weeks ago:
I know someone who did go into food science to get into a chocolate production factory - they were done eating chocolate for good after their first 6 months.
Turns out all you can eat samples is a great way to get food fatigued real fast.
- Comment on Everybody poops 4 weeks ago:
Merperson touring a human city - presumably they have both lungs and gills so can spend a day out of water.
- Comment on [DISC] Isekai Shachuuhaku Monogatari - Outrunner PHEV - Ch. 34 5 weeks ago:
Literally sent th3e last page to my spouse to complain that its so suddenly done, since the storyline seemed very promising.
- Comment on How to propose to short people (by Khyle. (khyleri)) 1 month ago:
Did you check the magazine cover too?
- Comment on Japan can't seem to catch a break 1 month ago:
Oh no, they are all different people, they all just look the same and are named Jenny.
Lore-wise, they are just a huge family that all have the same vocation and look near identical (same with nurse joy). Theory-wise, they are all clones of the original officer jenny/nurse joy and are essentially brainwashed from a young age to be the face of the pokemon world, for unknown reasons.
- Comment on Startup Hack! 1 month ago:
♪Aperture Science~♪
- Comment on Better music management 1 month ago:
I gave up on automating it, I download with slskd, and run musicbrainz Picard (import slskd download folder, and set it to always save to the jellyfin music folder/rename with my preferred sorting method). This has the bonus of downloading the cover art, and rarely has issues.
- Comment on Guys, Real Life Women can look pretty too. 2 months ago:
Nah, huge boobs limit cosplay options far more than small ones - there are tricks to increase visual size, but decreasing is a lot more difficult and can cause discomfort or injury if done wrong.
- Comment on Poor Denji 2 months ago:
I think I finished book 1? But his character was written so self absorbed/conceited/disgusting I couldn’t keep reading.
- Comment on Poor Denji 2 months ago:
Yeah, but that mc deserves it.
Seriously, could not get far in the LN because the character was written with such a shitty personality.
- Comment on Poor Denji 2 months ago:
To be fair, Gojo was killed off because the mangakas wife had the hots for the character, not because it was integral to the story.
- Comment on Poor Denji 2 months ago:
Starting to feel like Tokyo Ghoul with all the kicking the MC when he is down.
- Comment on Fake or Cake 2 months ago:
Power is weird
- Comment on Skype was shut down for good today 2 months ago:
Skype for business was truly awful.
A new convo instance every time I messaged the same person after a few hours of not, taking upwards of 10 minutes to sync convos between my laptop and my phone if it did at all, and the shittiest voice/video functions ever? Glad that shit died, teams seems amazing in comparison.
- Comment on The fact that even 3D games are old now blows my mind on a regular basis. 2 months ago:
I nearly assumed I was looking at sm64, but that one is turning 30 next year…
- Comment on Bunny Girls Evolution 3 months ago:
My favourite part is that the bottom image, while technically is Veldora, but h3 is using rimurus body.
- Comment on US Frites 4 months ago:
Actually, French vanilla is used when actual vanilla bean is used in the flavouring, if t just says vanilla its either artificial or a miniscule amount of extract.
- Comment on Meet the spy 4 months ago:
Apparently they have been going through the last few years of upvote history to ban people now, which is baffling to me.
- Comment on Meet the spy 4 months ago:
You probably upvoted Luigi content.
- Comment on Old photos in real life 4 months ago:
Fake taxi iirc