It’s definitely not legal, especially if your school is funded by the public. That “free internet and power” is paid by someone, and if it’s the public, it’s kind of a dick move.

They can’t see what’s in your ssh or VPN tunnels necessarily, but they can usually see where the packets are originating from and going to. So if you’re say, accessing it from home directly to the server via VPN or SSH, if you’re not doing so using a full VPN service like Mull, they’ll be able to see the origin IP of your SSH or VPN handshakes, and thus your home IP.

Ah, yeah, OpenBSD would do it. You’d basically be limited to running it in a VM which would have severe overhead. For Linux based stuff, though, it has minimal overhead.

Interesting, what OS are you running? I’ve never ran into one that it doesn’t work on so that’s surprising.

I would counter that disadvantage with this: due to testing constraints, docker containers are usually updated more quickly when there’s a 0 day, and you don’t have to patch your entire OS if one single container has one. It reduces operator overhead greatly, because that’s what it’s designed to do. Even if one of your containers has a vulnerability, because it’s a container, it won’t necessarily affect your entire system, depending on the vulnerability.

I suppose that it adds technical overhead (not sure I would call it severe though), but in my opinion the benefit of docker is how easy it is to spin up a new service, and how easy it is to update and maintain the containers.

You can host remote files via SFTP + cloudflared (or another reverse tunnel provider) without opening any ports. Then you use a file manager to add a network share with your SFTP information.

For the calendar, WebDAV is probably your best bet, which also works with reverse tunneling. You can also use WebDAV in place of SFTP if you prefer to only have one (or two with a reverse tunnel) service configured. Nextcloud is a great option since it has WebDAV and file management built in.

I would use Docker to do it all, but there is a learning curve associated with setting all of this up in a secure way (which is what the reverse tunnel helps with).

Molly White is very bright, and she makes them feel inadequate so they “have to” attack her. It’s truly pathetic.

Bleach doesn’t kill mold, and actually causes it to release spores. Use concrobium (or a similar product) to properly kill it.

Why don’t we just cut to the chase and let Russia into our information systems?

I don’t mean to sound hostile, that’s probably my past demons coming out. Like I said in my last comment, it’s really apt that I hate. It would constantly break or put me into dependency hell and I haven’t had to deal with that (yet) with Fedora.

I haven’t put my finger on it, but Fedora, for whatever reason, also just feels faster.

It’s mostly personal preference, but I have grown to hate apt in general. I used it for over a decade and constantly got in dependency hell. I’ve yet to have anything like that happen on Fedora, especially Silverblue and CoreOS.

My pihole exploded yesterday, all my fault. A couple of years ago, I created a script called via cron to update pihole’s services every other week. This was great, until now when it updated to v6 at 4am. To make matters worse, I neglected to automate raspian updates, meaning it was very out of date, and was no longer compatible with pihole-FTL (thinking back, I thought I automated it too, but I guess not).

I took an image after creating a pihole “teleporter” backup, and began formatting. In my lack of caffeine and focus, I missed that my teleporter file was corrupt after I had successfully wiped the SD card. Thankfully I had that image as I was able to mount it and retrieve my blocklists via sqlite, otherwise I would have had to start from scratch.

One good thing that came out of it (for my taste, anyway) was that I swapped the OS on the pi to fedora. No more debian around here!

Tomorrow, I plan on setting up some backup automation for my pi, as it’s the only machine missing backups at this point.

Yep, pretty much. It used to be doable, but these days it’s very difficult. It’s certainly not impossible, but one slipup and you could get on the deny list forever. It’s just not worth it, since emails are usually pretty mission critical, imo.

It should be noted that email servers, no matter the setup, require you to follow strict standards to achieve proper delivery. It’s very easy to get blacklisted, and it’s next to impossible to get off of said blacklist once you’re on it.

I used to host my own mail server with this, but it got to be too much to get my emails to actually send. I was always wondering if my email was actually delivered or if it was silently bounced or sent to spam. Email is the only thing I’m not willing to self host.

I’m now using Fedora CoreOS which can be deployed from config files. It’s really neat to be able to define everything the way you need it and just start up the VM with no further config necessary. I’m using podman to manage my services.

I use a lot of comments in config files, and in the past I’ve also used bookstack to make documentation (something I should probably do again). You’re right that docker (especially docker compose) has helped with this immensely.

There are many different ways, but personally (and hopefully I don’t get crucified for saying this) I use Plex and Plexamp. Plexamp has got to be the best music app I’ve ever used. I even tied it into Last.fm to get recommendations for new music based on my listening.

You’d need to set up Plex media server to go this route: https://support.plex.tv/articles/200264746-quick-start-step-by-step-guides/

Personally I host via Docker.

It might be a little overkill if you don’t have other media, though, and it’s not fully open source.

Yes, the banks know. Their cut is usually large enough for them to look the other way.

deleted by creator

Yep, a bastion is what you’re looking for. I use an rpi + a Dynamic DNS record in a script on the pi to automatically update firewall and ssh rules if my IP updates. Of course, you may need to do some configuration depending on their network setup.

I have this level1techs KVM which can drive my 5120x1440 @ 120hz monitor (without DSC) AND my 3840x2160 @ 240hz monitor (also without DSC). It’s $450, but Wendell and level1techs are great and it’s well worth the price.

I’m running Fedora on one host and Ubuntu on the other. With Windows, you can use DSC to drive huge resolutions at 240hz.