These are really cool, thank you. Added Spook and used it to clean up some broken entities.
TedZanzibar
joined 1 year ago
- Sure but there's no reason to openly advertise that yours has open services behind it.
- Absolutely. There are countries that I'm never going to travel there so why would I need to allow access to my stuff from there? If you think it's nonsense then don't use it, but you do you and I'll do me.
- See point 3.
We all need to decide for ourselves what we're comfortable with and what we're not and then implement appropriate measures to suit. I'm not sure why you're arguing with me over how I setup my own services for my own use.
Yes and no? It's not quite as black and white as that though. Yes, they can technically decrypt anything that's been encrypted with a cert that they've issued. But they can't see through any additional encryption layers applied to that traffic (eg. encrypted password vault blobs) or see any traffic on your LAN that's not specifically passing through the tunnel to or from the outside.
Cloudflare is a massive CDN provider, trusted to do exactly this sort of thing with the private data of equally massive companies, and they're compliant with GDPR and other such regulations. Ultimately, the likelihood that they give the slightest jot about what passes through your tunnel as an individual user is minute, but whether you're comfortable with them handling your data is something only you can decide.
There's a decent question and answer about the same thing here: https://community.cloudflare.com/t/what-data-does-cloudflare-actually-see/28660
Admittedly I'm paranoid, but I'd be looking to:
- Isolate your personal data from any web facing servers as much as possible. I break my own rule here with Immich, but I also...
- Use a Cloudflare tunnel instead of opening ports on your router directly. This gets your IP address out of public record.
- Use Cloudflare's WAF features to limit ingress to trusted countries at a minimum.
- If you can get your head around it, lock things down more with features like Cloudflare device authentication.
- Especially if you don't do step 4: Integrate Crowdsec into your Nginx setup to block probes, known bot IPs, and common attack vectors.
All of the above is free, but past step 2 can be difficult to setup. The peace of mind once it is, however, is worth it to me.
Check out Grip: Combat Racing for a modern take on Rollcage. I haven't played it since early access, though, so I've no idea if it's any good.
Better than using what? All I see is a bunch of stars.
Yeah that's exactly what I'd done but it was insisting on trying to redirect me to the site on port 4443 for some reason.
Fixed it in the end by reverting the NPM config to default (no advanced settings) and instead using Pihole's VIRTUAL_HOST=pihole.mydomain.internal environment variable in the Docker compose file.
Cheers for your help anyway!
Just tried this myself and mine does the same thing but I don't have anything set in the custom locations tab. What did you do to resolve it?
If nothing else is triggering it then my advice would be to cherish the feeling while it lasts! Go on dates that don't involve food for a while or stick to lighter food that doesn't involve sitting in a restaurant to eat. Once things start to feel more normal between you then you can try formal meals again.
If she's suggesting restaurants in the meantime then just be honest with her, she'll likely find it sweet and endearing and it'll help to calm the nerves.
Yeah, OP didn't say how long they'd been together but if it's a new relationship after 3 years of being friends, especially if they're young and/or there's been lingering feelings for some time before becoming "official", then anxiety and nervous excitement is likely to be high!
Synology has Container Manager, which is their GUI frontend for Docker, so if it'll run in Docker it'll run on a Syno NAS. I'm running Pihole on mine just fine.
As for the M.2 drives, you can use non-Synology ones as storage. Don't quote me on it but I've a feeling it "just works" in the EU where they're not allowed to force you to use specific brands, but if it doesn't then there's a script that removes the restriction: https://github.com/007revad/Synology_enable_M2_volume
You should check their repo as they have other useful scripts. I'm using the one that enables dedupe on non-SSD volumes myself.
view more: next ›
First one, on the 3DO. Small selection of exotics and sports cars, realistic (for the time) point-to-point road races with no music to obscure the engine noise, and an annoyingly/amusingly sarcastic rival racer that was obviously just one of the devs.
Each car had its own showcase video followed by a detailed specs sheet with a very enthusiastic voiceover explaining why you should be excited to drive this car. Even the courses had the voiceover treatment.
It truly was a love letter to cars and driving that has never been equalled, and is very telling that it's the only one to have had Road & Track branding. Every subsequent NFS game has been so in name only.