Oh shit, yes, hosting at-home and with a non-static IP sounds like hard mode, oof.

I am hosting at a server provider (guess I am dependent on them, but at least it’s on their existence, not on a policy-of-the-day), with a static IP. Had no problems with MS/Google, only with T-online, who wanted me to host a website on the domain with clear contact information.

Fair TBH. It is such a critical service to keep working.

But it does feel pretty amazing to free yourself of the whims of a provider 😅 I assume that’s why you have not gone back either? ^^

I’m using Hetzner in Germany. Need to message them to say you want the relevant ports opened (spam protection measures), happens within an hour usually.

I quite like their service, but of course use full disk encryption etc

Selfhosting. (But I recognize that that is not an option for everyone.)

Fail2ban allows you set different actions for different infringements, as well as multiple ones. So in addition to being put in a “local” jail, the offending IP also gets added to the cloudflare rules (? Is that what its called?) via their API. It’s a premade action called “cloudflare-token-multi”

We expose about a dozen services to the open web. Haven’t bothered with something like Authentik yet, just strong passwords.

We use a solid OPNSense Firewall config with rather fine-grained permissions to allow/forbid traffic to the respective VMs, between the VMs, between VMs and the NAS, and so on.

We also have a wireguard tunnel to home for all the services that don’t need to be available on the internet publicly. That one also allows access to the management interface of the firewall.

In OPNSense, you get quite good logging capabilities, should you suspect someone is trying to gain access, you’ll be able to read it from there.

I am also considering setting up Prometheus and Grafana for all our services, which could point out some anomalies, though that would not be the main usecase.

Lastly, I also have a server at a hoster for some stuff that is not practical to host at home. The hoster provided a very rudimentary firewall, so I’m using that to only open necessary ports, and then Fail2Ban to insta-ban IPs for a week on the first offense. Have also set it up so they get banned on Cloudflare’s side, so before another malicious request ever reaches me.

Have not had any issues, ever.

I am using both and this somehow made it to my phone, wtaf

FWIW, Lidarr works the worst out of the arr stack for me too. I don’t know if there’s just not enough well indexed material in my sources or what, but yeah, not great.

If your entire experience with the arr stack has been Lidarr so far, give it another shot! Sonarr and Radarr work absolutely perfectly. It’s just such a nice feeling to open Jellyfin (or I guess Plex) on the TV and go “oh nice new episode is out!”

Matrix does have stickers

As others have said, you can completely disable the stock launcher through ADB commands. At that point, if you hit home, you’ll be asked which app to perform that action with. Select your launcher, click “Always”, and done.

Vikunja seems to check all your boxes

This cannot continue.

Fuck Amazon, fuck Alexa.

But that wall clock is glorious. It’s a decently look clock, but seeing how much time you have left on multiple timers with a single glance is so incredibly useful. Especially when you’re cooking.

I’m currently in the process of migrating away from the shit Alexa ecosystem, but no matter what I end up with, I’ll have to find an alternative for this clock

Did someone say Gemini?

Can you elaborate? Why are people disgusted by Hyprland?

For me personally, there is only two applications of LLMs in programming:

• doing tasks I kinda know how to do, but don’t want to properly learn (recent example: generate pgf plots from csv data in matplotlib. 90% boilerplate, I last had to do it 3 years ago and vaguely remember some pitfalls so can steer the LLM in that direction. Will probably never again have to do this, so not worth the extra couple hours to properly learn
• things I would ordinarily write a script for, but aren’t worth automating because they won’t come up in the future again (example: convert this Lua table to a Nix set)

Essentially, one-off things that you know how to check for correctness.

Ahh those fuckers.

+1 from me.

The Shield is a couple years old, but it handles everything you throw at it perfectly.

• get SmartTubeNext to watch YouTube without ads, and it comes with SponsorBlock
• use Flauncher for a home screen / launcher without any ads
• Jellyfin, obviously
• Steamlink also works perfectly
• plus, the remote is amazing (though I would recommend to either disable or rebind the Netflix button)

Maybe. But there are third options as well - maybe if Adobe acts like you describe, and there is sufficient Linux adoption, that opens the door for an actual crossplatform competitor.

Or maybe they change their mind when not doing so costs them money.