Goodbye Reddit, Hello Lemmy
My passiv cooled Pi5 (case as radiator) with HA is at 44°C (room is at 33°C). Idk how hot it gets on a regular basis, I just enabled the system monitor integration right now.
I mean with CPU temps, thermal throttling starts usually at 80°C, so nothing to worry.
Doesn't work
Invalid parameter --. I have zero clue where it gets the--. But the issue would be new devices or other ports. I did this manually once, needed to unplug my PC and needed to do this once again. At least there seems to be an option doing this in bulk but it's not optimal.You can configure it. Whats worse, my current PC actually allows every device to wake up my PC. My old PC didn't allowed it and only allowed the power button and WoL. You can turn it off for each device (there is no bulk option, thanks MS), but when you plug in a new device... Recently I forgot to unplug my mouse from charging and my PC started right away.
I have no problem that there is this option. Might be handy in the right situation. I have a problem that you can't configure it easily. But I guess hibernation is something that Devs forget these days. I have a few programs that don't play along nicely.
Here people even "steal" books from public bookcases and sell them.
For people who aren't familiar, let me explain: These public bookcases are a weatherproof shelf, old phone booth or something in the streets. The concept is you can take any book and leave any book. There are no written rules and you can keep a book if you like or just read it and put it back. In recent years people started to scan the barcodes and checked what books they can sell. There is a debate going on if people should mark these books or not, so they can't be sold.
Images are just bytes. Just encode an image via base64 and now you can send it via text. People will find ways.
I use Control Panel for YouTube. Has a lot of features. Don't know how trustworthy it is. It has only 11k Users and 49 ratings on Firefox but I use it for some time now. YouTube rolled that out for me for weeks and when I got it, I didn't found a script to add to uBlock or so, when I got this bs.
Meine Passwörter sind üblicherweise bedeutend kürzer, weil ich es relevant finde, dass man sie zur Not auch in endlicher Zeit auf einem unbekannten Mobilgerät eintippen muss (hoffentlich komm ich nie in eine TSA-Kontrolle mit meinen Ansichten).
Da kannst du froh sein, dass ich ein einfacheres Passwort für mein Gast Wlan genommen habe. Mein WLAN Passwort ist schön komplex und immer eine Freude es ein zu tippen. Hatte es auch so bei meinem Gast WLAN, aber hab es dann auf echte Wörter + Zahlen und einfache Sonderzeichen ersetzt. Und viel Spaß beim Eintippen via einer TV Fernbedienung.
Schon möglich. Aber an einen Passwortmanager bin ich aktuell sowieso gebunden. Sobald mir der mal komplett fehlt, bin ich im Passwort-Blindflug.
Deswegen Open-Source und eine Unterstützung auf mehreren Betriebssystemen und komplett Offline Nutzbar. Hab mittlerweile einige Backups an diversen Orten, wo sie hoffentlich selbst bei einer Beschlagnahmung übersehen werden. Hausdurchsuchungen können wegen dummen Sachen passieren, zb. man teilt ein Meme und die Daten eines Passwortmanagers sind verschlüsselt und ich werde ein Teufel tun und die da rein gucken lassen, um zu beweisen, da steht nichts böses drin. Heißt aber im schlimmsten Fall steht man nur mit seiner Kleidung am Körper da und man kann sich nirgends Einloggen. Ich weiß noch nicht wie man dies optimal lösen könnte.
Für den Fernseher musste ich das Wlanpasswort bereits verkürzen, sonst hätte das Textfeld nicht gereicht (32 Zeichen, glaube ich). Ich halte solche Begrenzungen aber für mittelfristig überwindbar. Google Cast für Passwörter oder so.
Dann ist dein Fernseher scheiße, weil 63 sollten gehen. Steht im Standard. Aber Google Cast ist immerhin was mit Passwörtern funktioniert. Die FireTV Handy Remote mag das einfügen nicht.
Allgemein wird aber mit der Sicherheit gepennt. Beim Thunderbird Export für Mobile, gingen die Hälfte meiner Konten nicht, weil die Passwörter falsch kopiert wurden. Vertretbar. Oder meine Kreditkarte. Da kann ich den Pin nicht ändern. Pins sind ja an sich unproblematisch, wegen den 3 Versuchen, aber wenn man einen Pin bekommt, der sehr einfach ist, könnte man das grobe Muster erkennen. Ist sowieso irgendwie blöd gelaufen. Pin und Karte kam am selben Tag und damit ich meine Karte in Google Pay einbinden konnte und damit zahlen konnte, brauchte ich noch nicht mal mein Pin bzw. Infos aus dem 2. Brief.
Würden Passwörter als Hash mit Salt und Pepper gespeichert werden, wäre das schon ein dickes Plus. Aber selbst das bekommen große Firmen nicht hin hust Telekom Österreich hust. Ich muss auch sagen, ich habe mir damals nur den 1. Tweet angeguckt, aber die Antworten von der Telekom danach...
Aber selbst 2FA wird am laufenden Band verkackt, da es bei einigen erstaunlich einfach ist, 2FA zu löschen, wenn man es "vergessen" hat.
Währenddessen Webseiten: "bitte nur 12 Zeichen und keine komischen Zeichen". Mein Passwort Generator den ich einsetzten will, wäre zwischen 60 und 120 bytes Lang, potentiell Länger als die 100 bis 1400 bytes eines Passkeys. Oft darf mein Passwort gar nicht so komplex sein. Das ist meiner Meinung nach das viel größere Problem.
Der Vorteil eines Passwortes liegt aber auch auf der Hand. Ich bin an nichts gebunden und kann es überall einsetzten. Sag mir bitte wie ich Passkeys auf dem Fernseher einsetzten soll? Natürlich muss ich beim Passwort auch Zeichen zu nutzen, die ich noch eingeben kann.
Natürlich erlauben es Passwörter, dass man sie öfters einsetzt. Passkeys sind aber meiner Meinung nach nur ein Mittel um scheiß Entwickler los zu werden, die nicht richtig mit Passwörtern umgehen können. Gleichzeitig lädt man seine Passkeys in die US Cloud. Na herzlichen Glückwunsch.
To be more specific: Postgresql requires manual steps with major versions. Tutorials I found require you to dump the database in the old version first, then update and then import. You could use a tagged version of postgresql and just auto update there but the main container might require a newer version. I saw containers who try this but none looked production ready.
Yeah I expected that this would happen. They already did this with RAM. They just rebrand RAM, sell it for a way higher price and add a check. When they brought their own branded HDDs, I knew they will pull of the same scam.
Building an own server isn't that more expensive and you don't have to deal with the whole lockout with Synology. For example I had quite the issue to access hardware. I wasn't able to get Home Assistant running on my NAS. The issue was my Zigbee USB Stick. I got it running to the point where I was able to send commands (e.g. turn on or off lights) but the status didn't came back. I threw it on my Pi3 (now Pi5) and zero issues.
The next NAS is self build. Probably Proxmox as base, with truenas or so as main server and the rest depends on what I might need.
Auto updates can cause problems. Some recommend it, some tell you to not do it. My standpoint is, when a container can't work with auto updates, they suck. Sure there are containers who require some additional attention after an update, like gitea with some config changes but I use it in an environment where it can be offline of some time.
If a container uses Postgresql, you can't auto update. So far I didn't found a well maintained container, that can do this. You also should keep an eye on your containers. As I mentioned, Gitea had some config changes, breaking the default theme (nothing major). They even screwed up their tags and I had 3 times an RC in a tag where no RC should get published. With Jellyfin I was on a tag that didn't got any updates anymore and I needed to use a different one.
I don't think there are people attempting to log into HA, because it has zero value to them. HA would log failed login attempts but not bots trying other stuff. When I look into my web statistics for my rented server for march with 404 errors, I got over 750 and they try to access wordpress, find old (and probably not updated) stuff and some config files, like .env files. This kinda makes sense and probably would find everybody in their access logs. Its just automated stuff and they probably run auto exploits. Wordpress sites are interesting and its worth just getting access to a kinda serious email sender or just other stuff. My ssh blocklist currently has 14000 banned IPs. Might not sure how I set it up, but it looks I picked 1 year ban time.
If you know where to look, you would see bots trying to enter your system but you would see they aim big, not small. HA is small. Sure if HA has a serious hole, you would get attacks from pranksters. Still is always a good idea to have proper security procedures for all of your accounts and servers. Most interesting are targets where they could find value within these services or using the hardware but there are always people who just want to mess with someone. There are for example people who search the internet for Minecraft servers, that they can grieve the shit out of it. Doesn't matter if its a big professional server or just a server from 2 kiddos, that play together after school.
Yup, EU is the weight limit 3.5t for a B driving license (regular car) but a C1 (up to 7.5t) or C (semi truck) is possible to make. A coworker has a truck license. He bought an old fire truck and made a camper out of it for his 2 kids and his wife.
But this is just comically large. I do understand it for the US in more rural areas but Europe? They don't fit in parking spots and are just wasteful. 12.8L/100km?! And then they go shopping at Lidl. And people complain about SUVs but compared to US trucks, an SUV is a small car. I really hope that US trucks don't get more common here.
Serious question: are you joking? We have a Doge Ram in my area and it's massive and it sends a lot of small pp vibes and now you are telling me, it isn't even that big.
At least I have the true freedom: no speed limit.
Sexualkunde? Hatten wir mit der verklemmten Lehrerin. Unterm Strich haben wir gelernt, nutzt Kondome um gegen alles mögliche gesichert zu sein, andere um nur gegen Schwangerschaft geschützt zu sein. 100% gibt es nicht. Das war unser Sexualkundeunterricht und nein, ich mache keine Witze. Der ist auch keine 20 Jahre her. Ich glaube Kondome haben wir im Buch gezeigt bekommen. Bei anderen Klassen wussten wir, dass die Kondome gezeigt bekommen haben, weil dann einige rum lagen.
Ich hab dann Jahre später das mit den Größen durchs Internet erfahren.
Auto update. Works like a charm, except PostgreSQL. For me it's good enough and even though works with containers, where they don't recommend it. I do have backups and for my private time, I don't get paid, so it should be as maintenance as possible from my side.
I do check from time to time if something is broken and I noticed a container where they removed a version tag, I was using. The "biggest" thing that was broken, was my gitea server where they changed the config for the default Theme.
Also that's why I hate PostgreSQL. It requires manual labor for updating. Had a recipe Docker and they cut support for previous major version quickly. Not good. That stuff could break, ist an option with every update. This is why backups exist. As a single user, it's not a problem. For a big system, I wouldn't do auto updates, so I can check if everything works.
Yes, they are different. I thing your "IKEA pairing" would be touchlink paring. I would say connecting the device through the controller offers the most flexibility. When you use Zigbee2MQTT, you can take a look at https://www.zigbee2mqtt.io/supported-devices/ what your device exposes. Sometimes you could loose a feature. For example the "VINDSTYRKA air quality and humidity sensor" can be connected directly to the STARKVIND air purifier, so it uses its value for the air quality. I never tried if I could connect it both ways.
On the other hand there is my Paulmann RGB remote control. I could connect the remote directly to lamps. I decided to do the automatons via HA and it has 116 different actions. Obviously its quite the task to do the automations, especially how I need to access the values.
But to not frighten you, its not always complicated. I have a few buttons and they aren't complicated. Connect through Z2M, press every button in each variation (single, double click, hold), add the automation and then what happens.
You can make it more complicated (and fun). My hue dimmer switch could have 5 scenes via the hue hub but not via HA and Z2M. With Node-Red I programmed a small logic, that just counts how often I pressed the on button, within a certain time limit. It then cycles through my selected scenes. I can add as little and as much as I like. Oh and to clarify: Node-Red can be added as Addon to HA. It allows node bases programming. I find it easier then HA Automation, because it looks visually clearer. Also its way cooler, because it has more options.