courts of law.

There are always courts of law! Just somtimes it’s the king in his court making up the law…

Minimum open services is indeed best practice but be careful about making statements that the attack surface is relegated to open inbound ports.

Even Enterprise gear gets hit every now and then with a vulnerability that’s able to bypass closed port blocking from the outside. Cisco had some nasty ones where you could DDOS a firewall to the point the rules engine would let things through. It’s rare but things like that do happen.

You can also have vulnerabilities with clients/services inside your network. Somebody gets someone in your family to click on something or someone slips a mickey inside one of your container updates, all of a sudden you have a rat on the inside. Hell even baby monitors are a liability these days.

I wish all the home hardware was better at zero trust. Keeping crap in isolation networks and setting up firewalls between your garden and your clients can either be prudent or overkill depending on your situation. Personally I think it’s best for stuff that touches the web to only be allowed a minimum amount of network access to internal devices. Keep that Plex server isolated from your document store if you can.

Yeah, a company got toasted because one of their admins was running Plex and had tautulli installed and opened to the outside figuring it was read-only and safe.

Zero day bug in tat exposed his Plex token. They then used another vulnerability in Plex to remote code execute. He was self-hosting a GitHub copy of all the company’s code.

The crypto is decent, it’s electron so it’s source available. If you want to ignore their hosting solution, you can disable the syncing and just take the vault from its config directory and sync it yourself

The real downsides are that it’s not actual open source, so if they decided to screw around with the security or turn the crypto off somebody can’t just fork it.

Especially when they’re already coming from places where there’s classism based bigotry and violence.

I’d vote for anytype or obsidian

Anytype has a learning curve, But it has built-in encryption and IPFS syncing provided by the company. The templating system is really slick and the relational aspect is pretty solid.

Obsidian + syncthing fork is a really solid contender. It’s much easier to work with out of the box but the features are a little more generic.

Neither of these are really self-hosted, so much as they are contained in their own ecosystem. You get some measure of higher availability that you have to really work for if you’re really self-hosting a product.

I use Jellyfin for all my video but I use Plex for my audio. Plex app is just so much better than finamp.

We keep taking more and more money out of the middle class but they don’t have any more children We don’t get it.

I agree, and the school should have been ready for that. There is no way they didn’t know this was going on.

Lol, That’s why I self-host so much crap. The only way I can give it to everybody is to make it a web app, or maintain three separate sets of clients.

I’m kind of apprehensive to open up a really small projects on my home network to the outside world. Kudos for maintaining unraid as a platform though.

I might consider running it at my house but my wife is Mac I’m Linux it would only help my kids.

Could It handle mod packages for Java Minecraft or something?

Cuba gets a hell of a lot of hurricanes. They probably have a hard time keeping a solar farm nailed down. Likely they have some of the same problems if they tried to do a lot of wind. Wave or tidal might not be a miserable choice, But that stuff’s pretty expensive, and they’re still going to have a lot of extreme weather to deal with.

It probably wouldn’t hurt them to have a small nuclear reactor. It would have to be designed very carefully and have a lot of failsafes and redundancies as using diesel for emergency coolant backup is probably not a viable solution for them.

I’m not saying we don’t have a hand in that but Venezuela is having their own governmentak crisis ATM.

Weird kid in a private boarding school, withdrawn, perhaps autistic mostly online.

Reading between the lines there’s a pretty good chance that the other kids were mercilessly picking on him.

The zombie invasion line might well have been an attempt to get out of premeditation that he didn’t go and grab the hammers to kill them.

He’s still squarely in the wrong and definitely needs to be pulled out of society for a very long time and get psychologic help, But I strongly suspect there are some things at play here that aren’t being reported on.

Given I haven’t met a lot of psychopaths, But I have met plenty of children who have been bullied until they snapped.

I simply can’t touch this.

But where do the Mexican Navy seize the elephant?

That sounds like it would make a bigger mess. I think we should gzip them.

Ubisoft makes a beautiful game with an incredibly well-known IP. They flesh out characters and small cities with loads of detail. Then, they make the entire gameplay one repetitive takedown move and hours of driving back and forth between points.

Remote work didn’t do this; underfunding the project did. Bringing people back to the offices will only result in losing their best staff.

I mean, you get a lot of advantages from fluffy pretty systems. But extracting data from df and systemctl and curling it into telegram is going to be like a 10 line bash script called from a one-line cron job.

I pump a lot of complicated metrics through Prometheus / grafana to get graphs and history.

Most of my critical stuff is still in Nagios and instead of using nagios standardized plugins I just query the operating system directly in bash.

Yeah, but they’re not bought like we want to lobby for a pipeline or tax cuts for oil sales. They’re bought like we need to install this new fascist regime, and we need to stick our hands up your collective asses and puppet you for a few years.