Skip Navigation

InitialsDiceBearhttps://github.com/dicebear/dicebearhttps://creativecommons.org/publicdomain/zero/1.0/„Initials” (https://github.com/dicebear/dicebear) by „DiceBear”, licensed under „CC0 1.0” (https://creativecommons.org/publicdomain/zero/1.0/)D
Posts
52
Comments
122
Joined
3 yr. ago

  • For an external VPN like mullvad, I run my own proxy. Again it's only available from my VPN or inside my network.

    It uses socks5 and gluetun docket containers and in apps that support proxies, I can add my proxy to it and it'll route that traffic through the paid VPN.

    Or, a work profile (see shelter) or androids new private spaces. If you have private spaces, it uses a seperate network. So if you have a VPN installed outside the private space, it won't work on apps inside the space. So, what you could do is have a paid VPN inside private spaces, and use it and a web browser or whatever there, and use your server's VPN outside the private space.

    Lmk if you want any of my docker composes

  • I keep it running always. Partly to access stuff at home, and party to get the ad-blocking from pihole.

    Do not expose stuff unless you fully understand the security risks

  • Correct. But also public access should be considered advanced

  • I have setup the same thing as a temp measure, but i believe that something like Authelia or Keycloak should replace and be better than Cloudflare's email OTP.

  • True. I would like to add another authentication.

    I guess my question is how trustworthy is built-in authentication? I'm not really talking about vulnerabilities, but that's a part of this, but how much trust can I put into a small projects login page being secure?

  • USB C to AUX adapters work for me.

    Having a secure and up to date device should likely be more important

  • Yes. Many security updates come from upstream AOSP and then are put into GOS.

    So when a device has stopped getting AOSP updates, it is unreasonable for GOS to continue support it. They can and I believe they have applied more critical security patches to just barely EOL devices, but this isn't promised or expected.

  • https://endoflife.date/pixel This is for googles support. GOS may support a specific device a little longer than google but does not promise to and recomends getting a newer device.

    Pixel 8a looks real good right now.

  • Oh yea I forgot about matrix. Maybe setting up a bridge would work. Thanks for the reminder I'll look into this

  • good question. friends use discord.

  • Huh I'll have to give Kodi a shot. I've already got a bunch of Debian experiance and have jellyfin so leaning kodi shouldn't be too bad.

  • 👀

  • Files won't change and are hundreds of GBs

  • Yup! Just got it installed on my pi. Still gotta wire it in. Any documentation to help? I haven't found out which controller I have yet.

  • Checkout my super recent post history. I'm doing something very very similar.

    Basically I've decided on Debian for OS, docker plus Portainer and dashy for interface, and mdadm for raid 1.

    I've tested a raid 1 failure and rebuild on two thumb drives I have, and have everything well documented. Feel free to ask any questions.

  • Yea I have a fully seperate backup solution

  • Oh cool!

  • Any recomended monitoring solutions? Or just proxmox and grafana?