I guess that depends on how much bigger the moon is than the Grand Canyon.

It does, yeah. If you aren’t averse to cloudflare then it’s a great option.

From memory I think it’s limited to http/https traffic, but that’s normally not an issue, just have all your services behind a reverse proxy.

So this morning I had to go to my mother’s house for IT support as one of her monitors wasn’t working. I plugged the power cable back in to the back of the monitor and the problem was solved.

I’m not sure the level of IT support I provide is high enough to get blamed for anything 😆

I just generally try to avoid letting people know how technically savvy I am. I’d rather not do basic tech support for everyone I know.

Nano say so at bottom but so does vim if it thinks you’re trying to exit.

You sound like you want to go all in on federated services but there are plenty of other things to do.

I love Nextcloud, works well when set up through the Nextcloud All In One docker setup, but it is a little different to other things so it might not be a starting point depending on your experience. Lots of apps to add for extra functionality. But don’t replace your cloud storage with it until you’re confident of your backups (and ability). I ran it for years to use for the apps and minor things before I finally went all in.

I think a wiki is a great thing to have. Use it to document what you’ve done so you can remember.

Then there’s media. With the storage I guess TV/movies might be out, but there’s Audiobookshelf for Audiobooks, Kavita or Calibre Web for eBooks. I like Jellyfin for music (but using the Finamp app not the Jellyfin one), but others like dedicated music setups like Navidrone.

I buy my music from Bandcamp where available and Qobuz where it’s mainstream labels, then I can have my own little Spotify. Finamp even lets you download playlists or your whole library to your device for offline listening. I use Findroid for watching things, which also allows downloading. Last I checked the Jellyfin app didn’t have Netflix-like downloading, just downloading the files to your downloads folder.

I guess you might not fit a whole lot with 300GB storage though, especially after you fit the databases of half a dozen federated services.

If you have space, perhaps a photo service like Immich or Photoprosm.

If you have friends maybe a private sharing forum like Zusam.

If you have family then maybe family tree software like webtrees.

I run so many things, they all get used, and I’m always happy to talk about them!

That’s an interesting proof of concept, but I don’t think it shows it’s different. That’s a server side attack, whoever has control of the server could just have the script download a malicious binary instead and you wouldn’t be able to tell from the script.

Firstly, it is much, much easier to compromise the website hosting than the binary itself, usually. Distributed binaries are usually signed by multiple keys from multiple servers, resulting in them being highly resistant to tampering. Reproducible builds (two users compiling a program get the same output) make it trivial to detect tampering as well.

Yeah this is a fair call.

But at the same time, I have little confidence in my ability to spot these bugs.

This is the key thing for me. I am not likely to spot any issues even if they were there! I’d only be scanning for external connections or obviously malicious code, which I do when I don’t have as much trust in the source.

As a sidenote, docker doesn’t recommend their install script anymore.

Yeah I used it as an example because there are very few times I ever remember piping to bash, but that’s probably the most common one I have done in the past.

You can, but to me it seems weird to say it’s crazy to pipe to bash when people happily run binaries. If anything, the convenience script is lower risk than the binary since people have probably checked it before you.

I wouldn’t pipe a random script to bash though, nothing where I wouldn’t trust the people behind it.

Yeah I get that, but I would install docker, cloudflared, etc by piping a convenience script to bash without hesitation. I’ve already decided to install their binary, I don’t see why the install script is any higher risk.

I know it’s a controversial thing for everyone to make their own call on, I just don’t think the risk for a bash script is any higher than a binary.

Ok but not everyone has that skill. And anyway, how is this different to running a binary where you can’t check the code?

Is it different from running a bash script you downloaded without checking it? E.g. the installer that you get with GOG games?

Genuine question, I’m no expert.

I got a kobo recently and was amazed to find you can sync it with calibre-web to basically run your own book store. Browse and download any books from your server. Pretty cool.

Ah right, that makes sense!

I could have sworn I read this announcement a couple of months ago.

Is that a normal place to put the cooler on intel systems?

If you’re open to it, I’ve seen maintainers go to “maintenance mode”.

Write it high in the readme so people see it, and write what it means: basically that you’re not accepting PRs, you’re not developing new features, but you will do bug fixes and basic maintenance (dependency updates, etc).

In my experience it’s not quite the same. Using webdav through the distro account seems that it’s fully online. And folder access or file access contacts the server.

The virtual file experience is more of a hybrid. All the folders actually exist on disk, as well as shells for every file. If you try to open a virtual file, in the background Windows will seamlessly download it for you. At that point the file is actually on your disk. This way regularly accessed files on on your hard drive and seldom accessed ones are not, saving local hard drive space while providing an experience almost like if all the files were actually on your drive.

On Windows, Nextcloud seems to tap into some Windows function to provide files on demand. Is there any Linux cloud file service that can do it?

I’m sure they will have a new model out soon that blasts the advert at you at excess volume.