Skip Navigation

Shimitar

@ Shimitar @downonthestreet.eu

Posts
13
Comments
712
Joined
1 yr. ago

  • How to Use Local IP for Services when at Home?

    Jump

  • DOH goes over port 443 using https, impossible to block (unless you want to blacklist all possible URLs that might serve DNS) so cannot be redirected at network level, like with classic DNS, and uses SSL encryption so cannot be "sniffed" and redirected.

    In other words: say goodbye to ad blockers based on DNS like pihole or adguard

    While it seems good for your privacy, it's a dream for Google and such, where PiHoles and such DNS blockers will be useless...

  • Best apps for private messaging

    Jump

  • Good to know... Well I am on matrix now, so no need to switch, but will keep in mind.

  • How to Use Local IP for Services when at Home?

    Jump

  • For now yes but the very specifics of DNS over https make that impossible if enforced one day.

  • Anyone have any experience with TubeArchivist?

    Jump

  • I removed health checks because o think they don't work properly with podman how I use it, but I might be wrong.

    Anyway, glad it helped! That's the spirit why I wrote it.

  • Best apps for private messaging

    Jump

  • Because matrix has the bet bridges so I can centralize all other protocols on my matrix server (Continuwuity) and have whatsapp, telegram, Signal all accessible from one single app.

  • How to Use Local IP for Services when at Home?

    Jump

  • Actually I am behind CGNAT so when away I connect to my VPS that has a nginx pointing to a wireguard endpoint to the internal server. Wireguard is also managed by opnSense but that's a choice, not mandatory.

    When home, my VPS ip gets rerouted on port 443 (and 80, mandatory for let's encrypt) to the internal ip of my server.

  • How to Use Local IP for Services when at Home?

    Jump

  • Going the split DNS way is doable but had other issues (android devices bypassing local DNS for example or DNS over HTTPS issues)

    I set up my opnSense to redorect all internal traffic to the external IP on port 443 to my internal server ip.

    Works fine, it's transparent, and doesn't mess with DNS.

  • Anyone have any experience with TubeArchivist?

    Jump

  • I run TA with success since many months. It's fast and responsive, so I guess it's an issue with your setup?

    The metadata bridge to jellyfin alfo works pretty nice, I have no complaints...

    You can check my notes at https://wiki.gardiol.org/doku.php?id=services%3Atubearchivist

    But be advised I am on rootless podman with docker compose

  • Sports tracking (running, swimming, cycling)

    Jump

  • Absutely Endurain. Wanderer has a different focus.

    You want endurain I believe.

    Its under heavy development but its also quite stable and capable.

    Don't give up your Garmin watch, just don't install the garmin app on your phone and download raw data from it like you already do.

  • Best apps for private messaging

    Jump

  • Its the rebirth of Conduit -> Conduwuit -> Continuwuity. Built with rust, it's a community project that is pretty stable and finally free of drama.

  • Best apps for private messaging

    Jump

  • Super heavy, and overkill unless you need to run matrix.org itself.

  • Best apps for private messaging

    Jump

  • Self host your matrix server, use Continuwuity not Synapse, and do not enable federation.

  • Removed

    Why did most of the world got rid of monarchy, if we're going to elect dictators anyway?

    Jump

  • Wrong premise. There are lots of monarchies around the world, in all continents. Thailand, UK, Spain, Sweden, are only the first that come to my mind.

    USA is definitely not most of the world.

    Also, some dictators are the result of failed democracies, some dictators come from places that never had democracy in the first place (Russia, many African countries...) And some dictators have been put in power by democracies (see center and south Amerixa for examples).

  • Your Linux PC is NOT private out of the box

    Jump

  • That's optional and should not be enabled by default. If your distro does that, I would think about switching.

    But when you need it, it's a feature that must be there.... Or debugging is impossible. Think of driver development for example.

    But it needs to be enabled.

  • Your Linux PC is NOT private out of the box

    Jump

  • My favourite is that kernel writes in ram. Kid, do you even know how computers work at all? Where should the kernel write? On paper?

    Anyway, worry about getting your pc compromised and prevent unwanted access both physical and remote, logs will help you detect unwanted access, so there is that: logs keep you safe.

    Do not turn off logging. Or do turn off logging, it's your machine after all and you are free, as in Linux, to do so if you want.

    But your privacy will not be any safer.

  • Your Linux PC is NOT private out of the box

    Jump

  • I think you are just looking for fun or messing with people, what you say is indeed true, but irrelevant as privacy concern.

  • Your Linux PC is NOT private out of the box

    Jump

  • Love this!

    Next time, write with Inkless pen, that would be safer!

    But what if somebody reads your mind? Walk around with tinfoil hat!

    (Lol)

  • Your Linux PC is NOT private out of the box

    Jump

  • Repost.

    FUD or at best idiocy at work here.

    Its your own machine. Like saying your car knows where you live and where you work. It does, you use it, get a grip on reality. Nobody sniffing your Linux and if somebody has your root oassword they have all your data already so point is mooth.

  • OpenCiv3: Open-source, cross-platform reimagining of Civilization III

    Jump

  • So cool.... Hope for an android port since they use Godot.

  • Belkin dropping support for most Wemo devices

    Jump

  • +1 to home assistant and open protocols like ZigBee or Xwave