I might be able to read this on light mode but, on dark mode + that layout it’s hard
not as bad as the 1 word speed reader but still it’s almost impossible to focus on. I’m impressed that you are able to
Just your normal everyday casual software dev. Nothing to see here.
I might be able to read this on light mode but, on dark mode + that layout it’s hard
not as bad as the 1 word speed reader but still it’s almost impossible to focus on. I’m impressed that you are able to
I don’t get the purpose of this, the page isn’t super clear unless I missed it. plus it wants card details?
That’s on you for having your phone at the romantic dinner, my mom’s the same way, like put the phone away, work isn’t going to collapse if you don’t have your phone for an hour
also keep in mind for people not on windows, namecheaps API only functions for business grade, and also is not clearly documented, there is a “dynamic dns setup page” but it isn’t up to date. I find myself trying to use openwrt’s DDNS pages for it but it still isn’t accurate, I am likely going to transfer elsewhere when im closer to the end of my lease. This API restriction also prevents you from easily automating your SSL process using letsencrypt as you are locked down to subdomain based entries instead of wildcard domains.
Lesson learned, they regularly do this if you have a website that one of their crawlers hit as active. If you really care about it check in about a year later, chances are if you havent inquired within a year they’ll release the domain and you can pay normal sale price for it
This is what is supposed to happen with that option, in reality there is a very good chance that it just doesn’t shut itself off afterward. Back when I used the OS I would have it set to auto update and since I shut my computer off nightly I didn’t have a problem with it, but I found that it had a fairly good chance that if it updated when I shut it down my computer would still be running when I woke up in the morning. My work around that I put for it is I put a scheduled shutdown in task scheduler for early in the morning when I knew I was never up so if the system had restarted but failed to power itself back off again it would turn itself off.
I mean if it ain’t broke don’t fix it lmao we manage oil maintenance on our vehicles the same way, we have a wooden board at the back of the garage and we use a Sharpie to draw on that wooden board the mileage of the last oil change for each vehicle
It all depends on your threat model, I own my Hardware as well but I’m still not going to use a software that is shown to me that they don’t take security seriously but I’m also more paranoid than most
I’m currently running proxmox on a 32 gig server running a ryzen 5600 G, it’s going fine the containers don’t actually use all that much RAM and personally I’m actually seeing a better benchmarks than I did when I just ran as a Bare Bones Ubuntu server, my biggest issue has actually been a larger IO strain than anything, because it’s a lot more IO heavy now since everything’s containerized. I think I easily could run it with a lower amount of ram I would just have to turn off some of the more RAM intensive items
As for if I regret changing, no way Jose, I absolutely love the ability of having everything containerized because I can set things up how I want it when I want it and if I end up screwing something up configuration wise or decide that I no longer need that service I can just nuke the container without having to remember well what did I install on this program so I can remove it and do other programs need this dependency to work. Plus while I haven’t tinkered as much in this area, you can hard set what resources you want a lot to each instance, so if you have a program like say a pi hole that you know is never going to use x amount of resources to be able to appropriately work you can restrict what it can do so if something does go wrong with it it doesn’t use all of your system resources
The biggest con out of it is probably having to figure out how to do the networking side because every container is going to have a different IP address, I found using a web dashboard is my friend because I can have heimdel tell me where all my services are and I just have to click the icon to bring me to the right IP address, it took a lot of work to figure out how it’s operational and how to get it working, but the benefits I’ve gotten of having it is amazing. Just make sure you have a spare disk to temporarily clone partitions to because it’s extremly difficult to use existing disks in the machine. I’ve been slowly going one at a time copying it over to an external drive nuking the and then reinitializing the disc as part of the proxmox lvm and then copying the data back over onto their appropriate image file.
I personally will never use nextcloud, it is nice interface side but while I was researching the product I came across concerns with the security of the product. Those concerns have since then been fixed but the way they resolved the issue has made me lose all respect for them as a secure Cloud solution.
Basically when they first introduced encrypting folders, there was a bug in the encryption program, and the only thing that ever would be encrypted was The Parent Directory but any subfolder in that directory would proceed to not be encrypted. The issue with that is that unless you had server-side access to view the files you had no way of knowing that your files weren’t actually being encrypted.
All this is fine it’s a beta feature right? Except for when I read the GitHub issue on the report, they gaslit the reporter who reported the issue saying that despite the fact that it is advertised as feature on their stable branch, the feature was actually in beta status so therefore should not be used in a production environment, and then on top of , the feature was never removed from their features list, and proceeded to take another 3 months before anyone even started working on the issue report.
This might not seem like a big deal to a lot of people, but as someone who is paranoid over security features, the projects inaction over something as critical as that while trying to advertise themselves as being a business grade solution made me flee hardcore
That being said I fully agree with you out of the different Cloud platforms that I’ve had, nextCloud does seem to be the most refined and even has the ability to emulate an office suite which is really nice, I just can’t trust them, I just ended up using syncthing and took the hit on the feature set
Seconding this, I took the plunge a month or two back myself using proxmox for my home lab. Fair warning if you have never operated anything virtualized outside of using virtualbox or Docker like I was you are in for an ice Plunge so if you do go this route prepare for a shock, it is so nice once everything is up and running properly though and it’s real nice being able to delegate what resource uses what and how much, but getting used to the entire system is a very big jump, and it’s definitely going to be a backup existing Drive migrate data over to a new Drive style migration, it is not a fun project to try to do without having a spare drive to be able to use as a transfer Drive
TPM is a good way, Mine is setup to have encryption of / via TPM with luks so it can boot no issues, then actual sensitive data like the /home/my user is encrypted using my password and the backup system + fileserver is standard luks with password.
This setup allows for unassisted boot up of main systems (such as SSH) which let’s you sign in to manually unlock more sensative drives.
I’m surprized as well, like I guess I would understand if it’s a no log DNS server but, what else wouldn’t have sensitive information.
the backup was connected via /media/backups so that’s gone too!
I gave up on matrix, was too complicated of a setup and the site was throughly unhelpful for newcomers. I eventually got it but, the permission system was somehow worse then IRC and due to the federation aspect of it you can’t modify the standard at all because then the other clients/servers can’t recieve you.
I just expanded the existing fail2ban config on the commonly used default ports such as 22, 21 Etc, any requests on those ports get sent into purgatory, so the ip gets blacklisted any connections from it hangs until it times out. It’s a super basic setup iptables logs whenever a request is not in the current firewall (last rule in the chain) and then fail2ban reads the log and handles the block. I don’t count it as part of the normal setup because they’re isolated Because the actual ports the service is on still have the normal rule set but the default port numbers are just an instant if there’s activity on it you’re gone
My security is fairly simplistic but I’m happy with it
software protection
physical protection
things I’ve thought about:
It’s actually quite worrisome, many projects exclusively have their troubleshooting or support on Discord now what’s going to happen years down the road when all those Discord servers have closed or no longer active and the invite links expire this is going to be a vast knowledge base that’s just lost to the world
I think this vastly depends on if there’s malicious intent involved with it, and I mean this on both sides. in the case of what was posted they manipulated the program outside of its normal operating parameters to list a quote for the vehicle. Even if they had stated this AI platform was able to do quotes which for my understanding the explicitly stated it’s not allowed to do, the seller could argue that there is a unilateral mistake involved that the other side of the party knew about and which was not given to the seller or there is very clear fraudulent activity on the buyers side both of which would give the seller the ability to void the contract.
In the case of no buy side manipulation it gets more difficult, but it could be argued that if the price was clearly wrong, the buyer should have known that fact and was being malicious in intent so the seller can withdraw
Of course this is all with the understanding that the program somehow meets the capacity to enter a legally binding agreement of course
also fun fact, Walmart had this happen with their analytical program five or so years ago, and they listed the Roku streaming stick for ~50 less so instead of it being $60 it was listed as 12, all the stores got flooded with online orders for Roku devices because that’s a damn good deal however they got a disclaimer not soon after that any that came in at that price point were to be Auto canceled, which is allowed by the sites TOS
Sorry the typo on there was fully accidental, and a bit ironic concidering the context lmao
and yea if it works it works!