i_am_not_a_robot
@i_am_not_a_robot@discuss.tchncs.de
- Comment on Setting up local Caddy with Porkbun 19 hours ago:
Porkbun is a registrar that also has DNS hosting, and ACME DNS challenges just need DNS hosting. I also use Porkbun and I am happy with them as a registrar, but their DNS service wasn’t working out for me and I host my DNS records on Desec. It’s working well for me after I increased some timeouts in my ACME client configuration but I can’t recommend it if you’re having problems with Porkbun because the Desec rate limits are strict and their TTLs are high and if you don’t already know what you’re doing you’re likely to spend a lot of time waiting for propagation or rate limits.
- Comment on Setting up local Caddy with Porkbun 19 hours ago:
If they cut the validity time for certificates, I’d expect them to also increase the rate limits by a corresponding amount. It’s not like they have anything to gain by making it so regular users can’t use the service anymore. They can’t upsell you to Lets Encrypt Premium with a higher rate limit.
- Comment on Anubis is now guarding our Lemmy-ui 1 day ago:
Is this why everything has been broken for me recently? I use an RSS reader so my entrypoint into the site is by clicking a link directly to a post. I do not see Anubis when I do that. Firefox was able to load the page content, but the scripts and stylesheets were all coming back with “corrupted content” errors and that made it impossible to comment or vote through the web app. I had to use Interstellar on my phone instead.
I went to the front page to try to find this community to see if other people were having the same problem and I got Anubis, and then the front page loaded successfully with all its styles and scripts. Now when I refresh other pages that I had previously opened from the RSS reader they load correctly as well.
- Comment on Is there a solution to use tailscale (or pangolin) alongside a traditional VPN on grapheneos? 5 days ago:
You can use exit nodes, but at least in my case that would be really stupid of me to do. If you have a router connected to a VPN and you use that router as an exit node, all of your traffic is going from your mobile device to the VPN server to your router back to the VPN server to the destination host and any return traffic takes the same route in reverse, adding additional latency and limiting your bandwidth to the minimum of any link in either direction along the entire chain. You can potentially exclude the mobile to router Tailscale traffic from the VPN tunnel to skip a little bit of latency, but it probably doesn’t help much unless your VPN server is in a third location that is not along the path between your current location and your router. My slow upload speed would become a slow download speed, and when I travel long distances my latency to services at my destination would become half a second.
What I do is I have a travel router that I deploy where I’m staying, and that router has a site-to-site VPN with my home network. That way traffic doesn’t need to travel across continents to reach a server only 20ms away.
I also have a set of services that are exposed directly to the internet and I can reach those servers without Tailscale. I can live with being connected to a different VPN and not having the Tailscale-only services.
It may be possible to just use Wireguard. The main benefit of Tailscale instead of Wireguard is that two Tailscale nodes that are next to each other can connect directly without going through another server, and this is accomplished by continuously reconfiguring Wireguard. If you just want a private network VPN where you have a fixed route to your private network and a fixed route to a public internet VPN, you can do that without Tailscale. If you are traveling with a phone and a laptop, connections from the phone’s VPN IP to the laptop’s VPN IP will be slower as they route through your VPN server, but they will work.
- Comment on Is there a solution to use tailscale (or pangolin) alongside a traditional VPN on grapheneos? 5 days ago:
This is sadly the only way to do it on Android. It’s not supported by Headscale and it only supports Mullvad.
- Comment on Rule 2 Clarifications and New Rule proposal I’ve gotten through (I believe) a 1 week ago:
You can load models for Frigate yourself, and the documentation tells you how to do it, but the recommended Frigate+ models are easier to use. For example, downloading and configuring YOLO-NAS becomes just copying and pasting a
plus://URL when you’re signed in to Frigate+.As another example, I would consider GitLab not to be free because GitLab is a for-profit company, the open source version of GitLab intentionally lacks features that would be particularly useful to business users, and you can pay GitLab to get those features in a special GitLab distribution distributed under difference licensing terms. If GitLab had a plugin model, and unaffiliated developers created paid plugins for those features, then I think GitLab itself could be considered free. But if paid plugins were developed by the same developers, would that make it not free again?
More strange examples:
- Redis, which relicensed to a non-Free license in 2024, but would have still been usable by most people who are self hosting. Redis is available under AGPL since 2025.
- All Hashicorp software, such as Terraform and Vault, which relicensed to a non-Free license in 2023, but is still usable for most people who are self hosting.
- Docker, which is only free on Linux since it relicensed in 2022. Docker Engine only runs on Linux, but the closed-source Docker Desktop runs Docker Engine in a Linux VM and wraps the API to make it almost seamless on Windows and Mac OS, and for that you may need to pay a subscription.
I guess to me it seems like there’s this gray area where you start having to think about intention and whether the software is really intended to be usable for the purposes that people in this community will want to use it for without having to pay the person doing the promoting.
- Comment on Rule 2 Clarifications and New Rule proposal I’ve gotten through (I believe) a 1 week ago:
Are Home Assistant and Frigate exempted? Home Assistant is free and open source and you can self host it, but there is a built-in feature where you can pay a subscription to use Nabu Casa’s ingress server and cloud GPUs, and many of the integrations are only useful if you have paid money for some piece of hardware or have a subscription to a cloud service. Frigate is free and open source, but it has built-in support for specially packaged computer vision models that are offered for a fee that supports the project. I wouldn’t consider either application crippleware, but you can pay money to people who are affiliated with the project for a direct benefit that is related to the software.
- Comment on Security considerations about hosting Immich from home 2 weeks ago:
You’re already doing more than companies that charge people to host their photos.
- Comment on What are your self–hosted alternatives for inter device communication? 3 weeks ago:
KDE Connect can do all three of these.