LPL showed us how he beats his one-eyed monster. He even convinced a friend to let him beat theirs on camera too. (gotta say, I’m not a fan of the veins or the puss…)

I will always recommend Borg backup just because of it’s compression+de-duplication algorithms:

550gb of raw data, 20 historical backups going back over a year (10.98tb of data total), only 400gb of disc space used to store them all…

You can backup directly to remote servers via ssh, nfs, or directly between two borg instances, optionally encrypted in transit and at rest.

Borg is a CLI tool normally, but there are a number of GUI frontends you can use if you really want: Vorta, BorgWeb, and BorgWarehouse for example. (I’ve not used any of these, just examples from a google search)

I’m not against it; but I’m curious what blood does to a concrete mix. Can you just substitute water for blood, perhaps there’s a good ratio?

Maybe use it as a paint… That’ll probably look better too.

FileBrowser

Create share links allowing anyone with the link (+ optional password) to browse and download individual files, or whole folder contents.

If someone needs to send me a file, I can create a user for them in a few seconds; so they can upload to that as well.

Blackout curtains in the bedroom, with an exra throw blanket blocking off the gaps on top to ensure 0 light gets in.

That room is usually lit with red LEDs to avoid blue light as I like to lay in bed watching YouTube for a few hours before sleep, and often wake up at night, have a smoke/joint, then go back to bed.

Living room has regular blinds that allow some light, and even get opened on occasion. More often than not though, lit by a pair of table lamps with dimmable smart bulbs in them.

Kinda reminds me of that guy that stole a flatscreen by facing the cameras as he backed out:

https://youtu.be/iHFdYic6vuw

The ad in the window is perfect: ‘LG, the worlds slimmest Television’

“My mom says you need to stop”

She’s your mom, not mine; IDGAF.

I mean; their latest line of cards is plagued with problems, not the least of which is the cards being shipped with less available cores than advertised and different amounts than each other (same card model, different stats, bit of a dice roll as to which you’ll get).

So I’m sure the tariffs are having a bad effect too; but a significant amount of their loss is their own doing.

95% of things I just don’t expose to the net; so I don’t worry about them.

Most of what I do expose doesn’t really have access to any sensitive info; at most an attacker could delete some replaceable media. Big whoop.

The only thing I expose that has the potential for massive damage is OpenVPN, and there’s enough of a community and money invested in that protocol/project that I trust issues will be found and fixed promptly.

Overall I have very little available to attack, and a pretty low public presence. I don’t really host any services for public use, so there’s very little reason to even find my domain/ip, let alone attack it.

Looking at openspeedtests github page, this immediately sticks out to me:

Warning! If you run it behind a Reverse Proxy, you should increase the post-body content length to 35 megabytes.

Follow our NGINX config

/edit;

Decided to spin up this container and play with it a bit myself.

I just used my standard nginx proxy config which enables websockets and https, but I didn’t explicitly set the max_body_size like their example does. I don’t really notice a difference in speed, switching between the proxy and a direct connection.

So, That may be a bit of a red herring.

Here; watch Uri Tuchman build one 2 days go.

https://youtu.be/-fv8wyAzQTM

The guy’s a maker with an incredibly unique style and a knack for bizarre but elegant creations.

DoH on the lan between devices is completely pointless; I’m talking about DoH between the lan and external dns which unbound does NOT do.

This part always confuses me, so I won’t be able to give specifics; just a general direction. Most guides explain how to route traffic from a vpn client to the lan of the vpn host. You need to route traffic from the vpn host/lan to a client of the vpn.

You need to change the routing table on the VPS, adding a static route to route traffic heading for your VPNs subnet to the VPN host instead of out the default gateway.

How exactly to do that I’ll have to leave to someone else unfortunately. Network config confuses the hell out of me.

I prefer cloudflared myself.

While unbound requests its answers from the authoritative servers for each domain; it does so using regular DNS queries, so it’s susceptible to monitoring and modification like any other DNS request. While adding latency by extending that request to several servers, instead of a single trusted provider.

That doesn’t really seem beneficial to me. I’d rather use DOH.

Many people advocate for Cloudflared as a tunneling solution, but it’s not a one-size-fits-all tool. Personally, I avoid it. Your VPS already functions as a firewall for your connection. Using Tailscale is also self-host and avoids reliance on third-party services like Cloudflare while maintaining security and the same functionality.

OPs not using cloudflareds tunneling or services at all; in this application, it’s purely a local tool for translating regular DNS to DOH using the chosen DOH provider. Mullvad in this case.

I can’t remember which ones exactly; but I know I’ve seen a few people mention apps that don’t upvote by default.

I don’t think it’s a conscious effort to remove the automatic upvote.

Though I have on rare occasion realized I said something stupid and just downvoted my post/comment instead of outright deleting it. Maybe someone will learn something from my stupidity.

If you’re being given a ton of ammo and health in a video game; odds are there’s a reason you’ll need it just around the next corner or two…

I’m running ~30 containers, but they don’t typically all get new updates at the same time.

Updates are grabbed nightly, and I think the most I’ve seen update at once is like 6 containers.

Could be a problem for setting up a new system, or experimenting with new toys.

What is the api error (click on the red box)?

Likely unable to reach the host provided.

In paperless’ docker compose, set ‘container_name:’ to ‘paperless’ or similar, then use that same name as the host given to homepage:

   widget:
     type: paperlessngx
     url: "http://paperless:8000/"
     key: [key]

I’ve been pretty lazy with this.

I used to use my hotmail account, but they disabled password auth for smtp and many programs dont support 0auth2.

With that change, I just moved to using gmail. You’ve gotta create an App Password for smtp, but other wise works fine.

I’ve just been too lazy to move out of gmail+hotmail. Maybe one day