What’s stopping Trump from having a puppet run for President and he as Vice President? The puppet could then step down after Inauguration Day.
The argument I’ve heard being, the Vice President isn’t elected to the office of the President.
Edit:
Does the 12th Amendment negate that argument? The last sentence in the amendment seems to suggest so.
Agreed. They’ll erode everyone else’s right to privacy in order to “protect children”
Parents are free to restrict the content their children view. If the parents choose not to learn how to set up those restrictions, that’s on them.
Our government is broken. First the House of Representatives have to vote to impeach a president. Then the senate has to vote to remove the president from office.
Trump was impeached by the, at the time, left leaning house of representatives in his first term but the right leaning senate didn’t vote to impeach him so he stayed in office.
At the moment, both the house and senate lean right so they aren’t likely to do anything. The supreme court also basically said the president is above the law so they aren’t likely to do anything either.
Permanently Deleted
To go along with that, Telegram doesn't make it easy to set up an encrypted chat. First, you have to set up a regular chat, then tap on the profile image of the person you are messaging, then tap the 3 dot menu, and finally tap "secret chat". It's there but they clearly don't want people using it.
If you know iptables, just stick with that. In my testing, docker containers seem to ignore ufw rules. Supposedly, iptable rules are respected but I haven't learned iptables yet so I can't verify.
I don't know what the fuck is going on. The client app connects to all 4 servers it needs a connection to. I can create a user on the server and all clients can login using it, I just can't get notes to sync.
Official docs here
I found this tutorial1 and this tutorial2
Tutorial2 makes this one port change to the official docker compose file but otherwise is seemingly the same as tutorial1:
undefined
notesnook-s3:
image: minio/minio:RELEASE.2024-07-29T22-14-52Z
ports:
- 9009:9000
- 9090:9090
With that change, and setting the port of the domain to 9090, I can access minio in the browser. But I don't know if that's necessary or not. I'm stumped.
Did you by chance self host the sync server using docker compose? Their instructions aren't great and I was hoping you had some tips.
For anyone else interested, if I figure it out, I'll post what I did here.
Edit 1: I finally got it all setup but syncing isn't working so I guess I did something wrong 🙄 . Troubleshooting now
I'm pretty happy with my Ubuntu, docker, and ZFS with Sanoid/Syncoid server. Nothing against NAS focused distros, I just haven't come across a compelling enough reason to switch.
For hardware, I use a Odroid H4+. Intel N97, 4 SATA ports, Intel quick sync, and low power. It's running my 20ish docker containers with plenty of power to spare. It's been great
9 meals
I'm not familiar with that reference
2 Running Windows or desktop Linux applications with desktop mode + USB-C DisplayPort alt mode on the Pixel 8 and later.
I'd be curious to know what desktop apps people plan on running on their phones. It's cool that it's possible but I'm not sure what I would do with it.
Judge orders Trump to reinstate probationary workers let go in mass firings across multiple agencies
The downward trend on the stock market is still in place 🤷♂️
I'll DM you in a bit but real quick I just wanted to say I thought you improved in this episode. Great work
has some basic monitoring on them.
What monitoring software are you using?
I feel like the other measures you talked about (backups, condom of network traffic, etc) I'm doing ok on. Its really just the monitoring where I'm stuck. There's so many options
I'll look into it, thank you
I've seen a bunch of people recommend Authelia. Do you mind if I ask why you went with it over other software? I only went with authentik because I found a tutorial on it first
- check
- check
- check
- I saw someone else recommend crowdsec. I'll look into it, thanks
if you use one of those 5$/month VPSes, with a VPN tunnel to your backend services, that adds one layer of “if it’s compromised, they’re not in your house”.
I've heard this mentioned before but I don't really understand how this works in practice. If the VPS was compromised, couldn't they use the VPN to then connect to my home?
Caddy only allows private IP ranges
Do you mind telling me more about this? How does that work; a VPN?
will do, thanks
How do you all handle security and monitoring for your publicly accessible services?
This is a continuation of my other post
I now have homeassistant, immich, and authentik docker containers exposed to the open internet. Homeassistant has built in 2FA and authentik is being used as the authentication for immich which supports 2FA. I went ahead and blocked connections from every country except for my own via cloudlfare (I'm aware this does almost nothing but I feel better about it).
At the moment, if my machine became compromised, I wouldn't know. How do I monitor these docker containers? What's a good way to block IPs based on failed login attempts? Is there a tool that could alert me if my machine was compromised? Any recommendations?
EDIT: Oh, and if you have any recommendations for settings I should change in the cloudflare dashboard, that would be great too; there's a ton of options in there and a lot of them are defaulted to "off"
How do you handle SSL certs and internet access in your setup?
tldr: I'd like to set up a reverse proxy with a domain and an SSL cert so my partner and I can access a few selfhosted services on the internet but I'm not sure what the best/safest way to do it is. Asking my partner to use tailscale or wireguard is asking too much unfortunately. I was curious to know what you all recommend.
I have some services running on my LAN that I currently access via tailscale. Some of these services would see some benefit from being accessible on the internet (ex. Immich sharing via a link, switching over from Plex to Jellyfin without requiring my family to learn how to use a VPN, homeassistant voice stuff, etc.) but I'm kind of unsure what the best approach is. Hosting services on the internet has risk and I'd like to reduce that risk as much as possible.
- I know a reverse proxy would be beneficial here so I can put all the services on one box and access them via subdomains but where should I host that proxy? On my LAN using a dynamic DNS service? In the c
Help with understanding throughput of pcie and hard drives
I've been interested in building a DIY NAS out of an SBC for a while now. Not as my main NAS but as a backup I can store offsite at a friend or relative's house. I know any old x86 box will probably do better, this project is just for the fun of it.
The Orange Pi 5 looks pretty decent with its RK3588 chip and M.2 PCIe 3.0 x4 connector. I've seen some adapters that can turn that M.2 slot into a few SATA ports or even a full x16 slot which might let me use an HBA.
Anyway, my question is, assuming the CPU isn't a bottle neck, how do I figure out what kind of throughput this setup could theoretically give me?
After a few google searches:
Cracking/tinny sound on Apple TV 4k after TvOS 17 update
PSA
After updating to TvOS 17, my Sonos Beam sound bar started making weird crackling sounds and music sounded tinny. Turns out, I had to change the audio format in the Apple TV settings from Stereo to Dolby Digital 5.1 for the issue to be fixed.
Not sure what I had that setting set to before but I’m leaning toward the idea that the update reset the audio format back to default settings. If you are having sound issues after updating, that might be the issue.
Heart rate zone training - what percentages do you use?
My garmin has it set up like this:
undefined
Z1 = 50-60% Z2 = 60-70% Z3 = 70-80% Z4 = 80-90% Z5 = 90%+
As of right now, I’m seeing my Z3 improve but improving Z2 is going to take me a while. I can have a conversation in Z3 using the Garmin percentages.
I’ve also seen other forums/websites have different percentages. Ex.
undefined
Z1 = 68-73% Z2 = 73-80% Z3 = 80-87% Z4 = 87-93% Z5 = 93%+
If I used this method, then my Z2 is the one that has been improving this whole time. This one ‘feels’ right to me when I’m running but I’ve only been running for a few months at this point (was running last year but got sick a few times and had to basically start all over) so maybe I just need to stick to it and the garmin method will start to make more sense.
So I was just curious how everyone has their percentages set up. What do you all actually train at?
a_fancy_kiwi
Setting up a Home Assistant as a KVM - resize qcow2 and set up network bridge device
I occasionally find myself reinstalling home assistant and every time I do, I get stuck on two steps because I forgot the commands and didn't write them down from the last time. I'm writing them below mainly for myself but also for anyone else who may get stuck. For future reference, I'm using Ubuntu 23.04 with Virt-Manager.
Before you begin the installation of the provided qcow2 image, you might want to resize that image from 32G to whatever size you want. ex:
qemu-img resize haos_ova-10.3.qcow2 +68G
Next, you might want to make a network bridge device. Navigate to your netplan folder and backup the yaml file that's in there (your file may be named differently)
cd /etc/netplan
cp ./01-network-manager-all.yaml ./01-network-manager-all.yaml.old
Edit the yaml config.
nano ./01-network-manager-all.yaml
Change the renderer to networkd and add the bridge device (br0). Your ethernet device may not be named enp12s0, make sur