Old Profile: https://beehaw.org/u/Mikelius
- JumpDeleted
ZeroTrust Your Home
Not an opinion, I have an actual situation with my eyes where they twitch uncontrollably when presented with bright lights for a long period of time. I have tried minimum screen brightness, lowered contrast/colors, auto brightness based on the environment, various software solutions to removing blue light 24/7 from the screen - none of it worked. Went permanently dark theme on everything, magically eyes haven't twitched in years.
Light theme vs dark theme is not just a preference, it's an actual accessibility need for some of us.
I converted my gaming machine into a server as well. I actually took the graphics card out as I couldn't find a major use for it, but kept the 12 core Ryzen and upped it to 128gb memory. It now self host way too many things, including a few game servers my friends and I play... But even with all this, CPU carries along nicely and not even at half memory consumption (yet).
But as others have asked, what's your goal? Don't overkill it if you're only hosting one service or something. If you're doing a lot like I do, then up the RAM. And seriously consider whether the GPU is even useful or needed if you're not using a desktop environment.
For a hardware response, my go to camera company is Amcrest, in case you're looking for someone reliable and trustworthy (cameras don't require dedicated apps or internet and work perfectly with a regular PoE to an unmanaged PoE switch)
Cyberpunk worked out of the box for me, but senua 2 absolutely refuses to start no matter what kind of voodoo I try ("fatal error"). I seem to always be on the opposite spectrum of protondb mint users I swear.
- JumpDeleted
Permanently Deleted
I've had this issue many times as well. I've found changing the MTU would help since it seems some filter specific ranges. Doesn't always work but I've had more success than failure doing so
Glad I looked at this thread. The fact they're cheap and have what sound like reliable PoE hats... Tempted to replace a few old Pis lol. Maybe. But can at least say no future devices will be Pis at this point.
Note: only using them for simple things. Wireguard VPN (no I don't have a fast internet so I don't need more than the 1gb connection speed), pi hole, and a touch panel I installed that connects to home assistant on the wall.
This thread has provided genius ideas I somehow never thought of, and I'm totally stealing them for my sites lol.
Friends and I are in the upper 30s and 40s range so not young not old I guess lol. For the family side, I tend to look for all my closer relatives which range in all ages. While there were many many lines that matched our last names, the entries that were a match didn't have the right phone numbers or addresses (so couldn't really validate if they were us or others with the same name). Or it could always be that they were addresses so old that I don't have a record of them to compare to... Considering a large chunk of the data is apparently old, it's possible that could be a reason I didn't see everyone, too? I'll probably go back and dig a little deeper on the family side since I haven't deleted the data yet.
Fair enough, I should have left with the mention of mileage may vary. I checked for some more friends per request since my posting, and out of the 20-30 families I've now checked, only 1 was compromised... But they were also in a couple of previous ones too. But of course, this doesn't mean it's the same case for everyone else.
The news is kind blowing this up bigger than it really is. But I find this as a good thing because I've noticed a few people FINALLY taking the advice I've been giving for years now, and that's to freeze your credit at the big bureaus and some, if not all, of the smaller ones.
That being said, I checked this data dump for my own data as well as a bunch of friends and family. Not a single person I checked was in it... Which is why I'm not finding this breach to be that frightening personally. The ATT breach was way worse. Also Krebs posted on this today... A good read for anyone interested. Main thing I took from it was a large number of these entries belong to people who have passed away already.
Hey this is pretty nice and simple, I like it. Had to hold down on the app to select the settings to change my server, would be nicer if that settings button was within the app itself... But got it pointing to my self-hosted instance and tested it out. Works perfectly! Thanks for sharing
- JumpDeleted
Permanently Deleted
Thanks for clarifying! Took a deeper look on my computer and I guess I learned that NoScript was misidentifying due to the cors or something. Just had to call it out before, as one can never be too careful these days :D
The security part is the reason I use NoScript to do this. We've all typo squatted sites we visit, I'm sure. But if I typo squat a site I frequently visit and see the JavaScript disabled, it forces me to recheck I'm on the right site. Granted it's only happened once where I didn't realize I typo'd until seeing it was disabled, but it only takes 1 time to lose everything...
Not sure the fingerprint concerns are too major for me either. Hopefully most scenarios, I'm flagged as a bot or crawler and out of some data that would otherwise have been collected. Who knows. I imagine that JavaScript makes up for way more fingerprinting though.
- JumpDeleted
Permanently Deleted
I use iperf3 with Speedtest's servers, personally. But for a browser, yes JavaScript is needed.... But needing JavaScript files from like 20 different domains is typically a red flag for me on any site.
My solution to this question a year or so ago was to take my gaming desktop, which was collecting dust after I moved to my gaming laptop, and gut it down to a 4U server rack case. Best decision I've ever made. 12 core Ryzen and 128gb memory. Got a 10g adapter in the pci express, 8xHDD for data and then 2 mirrored nvme for the OS itself. Only thing I kept out was the video card since I had no use for it (yet)
An equivalent "server" on the market would probably cost a fortune and cost you a ridiculous amount of electricity.
- JumpDeleted
Permanently Deleted
The NoScript list terrifies me a little though... Not sure what's going on there, but that's a lot of JavaScript lol.
I've been doing this for a while now with opnsense being what masks the whole network behind the mullvad VPN.
Pros:
- Even fresh new devices that have all that crap junkware installed get routed through the VPN, meaning no tracking to you immediately (unless they sniff the rest of the network and relay your network AP I guess)
- one device instead of many, leaving extra devices available to use for a single mullvad account (limited to 5 devices, at least for wireguard)
- if using wireguard, you honestly won't be hit with network performance issues. Just don't choose a server across the world from you. I chose one in the same country as myself and get an average 95-97% of my internet speed, and that's because I also have IDS/IPS enabled
Cons:
- as others mentioned, increase captcha annoyances
- some banks may lock your account if you try to log in with the VPN
- if the VPN server goes down, the whole network will. This may be a good thing since your don't want traffic to leak, but just pointing out you now have another single point of failure outside your ISP
- when someone's hoarding the entire VPN server you're connected to, you'll probably witness a slowdown
That all being said, if you're not very technically savvy on the networking side or haven't ever setup a custom router/firewall, this will be a pain. But it you want to learn something new and are up for the challenge, eventually it gets down to almost never having to worry about it. I've been doing it for a long time now, so for me personally, I've gotten to the point of only needing to login to the firewall for a VPN setting update or server change maybe once a month
I'd say anyone wanting to go this deep into a home monitoring setup will likely go with what works best for them instead of reading and following the entirety of this guide... I'm one of those people...
Wrote my own log parsing software to put into a database, display and alert through grafana, which is alerting through a homemade webhook that sends a notification to ntfy based on severity... And I also use uptime Kuma like mentioned, but my notifications channel is ntfy. No cloudflare for my internal services, only wireguard to connect home and use everything. And definitely no telegram.
Plenty of other stuff setup, but my security alerts and monitoring rely heavily on the syslog/grafana server which helps me monitor everything.