Borg / k8s / Docker are not the same thing. Borg is the predecessor of k8s, a serious tool for running production software. Docker is the predecessor of Podman. They all use containers, but Borg / k8s manage complete software deployments (usually featuring processes running in containers) while Docker / Podman only run containers. Docker / Podman are better for development or small temporary deployments. Docker is a company that has moved features from their free software into paid software. Podman is run by RedHat.

There are a lot of publicly available container images out there, and most of them are poorly constructed, obsolete, unreprodicible, unverifiable, vulnerable software, uploaded by some random stranger who at one point wanted to host something.

VLANs are lower than IP so you don’t need a router to have a VLAN, but you will need a router to get packets between the networks. I don’t think a WiFi repeater works. You likely need separate WiFi client and AP devices so you can put your WiFi on a different channel. Otherwise you’re probably halving your WiFi performance when connecting to the other network over the same airwaves.

Unless you can convince the other network to route your IP addresses, this setup will give you another layer of NAT and may cause problems with online games.

The ones on Amazon are intended to run GPUs for crypto farms, but they’re all brands you’ve never heard of with dubious claims and they’ve all got at least one review where either the device was defective or something was installed incorrectly and it caused damages.

I did this but buying these on Amazon is scary. Try to find one that won’t burn your house down.

Does Syncthing actually work with device IDs? It seems to work with encryption keys which should be stored in the user directory, at least if Syncthing is running as a user. Is the problem just that you have two machines with the same name in the same network? You can change the name.

Mediamtx will receive video from the camera using whatever protocol the camera supports and make it accessible over HTTP.

Make sure if you’re using an infinite file HTTP stream instead of DASH or HLS that you configure the timeouts on the reverse proxy appropriately or else your proxy might interrupt the video after some number of seconds. I’ve wasted a lot of troubleshooting time on proxy misconfiguration like that.

This fixes the issue of hosting any nefarious content.

How does removing images change anything? Any file can be transmitted by text, as we used to do with e-mail, and you don’t need to use images to make illegal or just intentionally offensive content.

It may or may not be a concern to you, but if you are hosting it from your home then people will be able to determine your IP and rough physical location.

If you’re on American cable internet and expecting a lot of traffic, your upload speed may become a problem.

Be careful with doing this. X-Real-IP and X-Forwarded-For are good for when the client is a trusted proxy, but can be easily faked if you don’t whitelist who’s allowed to use those headers. Somebody with IPv6 access could send “X-Real-IP: 127.0.0.1” or something and if the server believes it then you’ll see 127.0.0.1 in logs and depending on what you’re running the user may gain special permissions.

Also be careful with the opposite problem. If your server doesn’t trust the proxy, it will show the VPS IP in logs, and if you’re running something like fail2ban you’ll end up blocking your VPS and then nobody will be able to connect over IPv4.

If all you want is to break out the VLANs to NICs using a Linux PC instead of a managed switch, create six bridge interfaces and put in each bridge the VLAN interface and the NIC.

That sounds like Cloudflare is giving you certificates intended only to be used for talking to Cloudflare.

You might be able to do it if Cloudflare sends a different SNI. It’s probably better if you get real certificates from Let’s Encrypt and just use those.

They have been in the process of rolling it out for what must be a decade now, meaning there are still areas where they don’t offer it.

They don’t allocate you a prefix. The website says they give you 5 addresses.

Some bad still ISPs don’t provide IPv6 connectivity. (Verizon)

Don’t laptops with batteries use slightly more energy than equivalent PCs? The battery will drain because it loses charge over time or because the laptop is designed to draw power from the battery during normal operation, and then energy is lost when recharging the battery because battery charging is not 100% efficient.

I don’t know how searxng works, but if it’s making many requests and aggregating the results, you will probably get much worse performance running it on your phone, even if the phone is with you. Instead of making one request over a bad cell connection, you would be making many requests over a bad cell connection.

I have the Aqara G4 doorbell and supposedly it works with WiFi and Frigate (via go2rtc), but I haven’t set up Frigate and I haven’t verified that it fully functions with the internet turned off. It uses Homekit but supposedly will receive Matter via a software update.

New action items have been assigned to you:

• Remedial cybersecurity training (4hr): due by Mar 22

My favorite is when IT deploys software that replaces all the links in your e-mails with https://example.com/phishing/YiCdMdsY so you can’t tell whether the e-mail is phishing or not, frequently sends you very obvious fake phishing e-mails that interrupt your work by going straight to your priority inbox, and punishes anyone caught clicking on phishing e-mails. Then HR sends out e-mails that have all the indicators of low effort phishing and you’re supposed to click on those.

Isn’t puppeteering, aka self botting, a bannable offense one some of these networks?

https://support.discord.com/hc/en-us/articles/115002192352-Automated-user-accounts-self-bots This article is only half true. Bot accounts do not have full access to all API routes, but you can still be banned for botting regular accounts.

They’re competitors.