https://lemmy.world/post/39025760
wtf? Half the post is nuked even after being locked. I don’t even see how such a small community can be so stuck up about relevancy and purity washing selfhosted as if we all own our own DNS registrars and can do outbound SMTP.
Yeah they use kbdx so it works out of box for both. I think it even technically works for the original Keepass.
Haven’t used KeyPassDX much yet outside of some quick tests, but the autofill is really good because it shows up as a slim popup tab option on your keyboard where the typeing suggestions usually go.
Gonna do this soon as well. Used to use syncthing for auto photo transfers and I’m tired of Bitwarden’s crappy UI and terrible interop with autofill/autogenerate.
It’ll probably never happen due to the nature of KBDX, but I would kill to make a resilient native sync feature so that orgs wouldn’t be locked into proprietary vaults which drags you into vendor lock in when one of them starts to tank.
It’s been downloaded over 20 billion times. It supports 25+ protocols. It’s in cars, refrigerators, TV sets, routers, printers, phones, and every goddamn server on the planet.
Everything except my random podman container I need to test something on, but for some reason will have wget lmao.
Also a good time to mention you can use Ctrl+x Ctrl+e to edit your multi line commands in your default terminal editor so you can keep a clean, line separated command which is easy to read and follow.
Domain for $8 a year and 300Mbps fiber for $45 a month which snake ass AT&T keeps increasing in 5 dollar increments, so thank you for reminding me to call Spectrum for a quote so I can then call AT&T and harass them into giving me the correct price for another year.
I remember feeling extra powerful when Moonshell for the DS shipped with UTF-8 and UTF-16 support because the developer was japenese and wanted to make sure any language would work.
Man past me should have done a better job
//Crappy hack to make this work immediately so management will stop breathing down my neck
Oh wait nevermind lol
Train it exclusively on Linus’s entire mailing list history so that it actively insults poor merge requests and code lol.
Anything that you can shove hardware into (CPU, RAM, HDDs, maybe a PCI slot), so any used workstation is a great start, and don’t bother splurging initially, just follow the quality tool rule and only buy when something becomes inadequate. If you want to jump straight into loud and noisy severs, you can pick up used servers for cheap like R730s which there’s a ton of out there. Just avoid 2.5" drive bays because 3.5" HDDS are way cheaper per Gb.
Would recommend podman over docker as its matured to the point where it has a lot of better features like rootless, quadlets, etc that you might want to take advantage of in the future. OS is whatever linux you prefer, but I recommend you stay away from Ubuntu. If you want something RedHat but not as cutting edge as Fedora, I’ve heard OpenSUSE is pretty nice.
For apps, If you want to do HTTPS via GUI then npmplus is nice option, Otherwise caddy can do the same with text config. Rest is whatever you want to try out :)
EDIT: If you start making an *arr stack, I would recommend recyclarr to handle the quite expansive content filter settings for sonarr and radarr.
I hate to break the news but the issue with Bitwarden is that the client sucks total ass, and there are no drop in 3rd party replacements for the browser plugin.
Been running Vaultwarden for a while now and even though the sync implementation is nice and clean, it’s just not worth the end user experience.
This is really dumb when compared to literally every other password manager, open source and enterprise which does a much better job of actually being a password manager and not a glorified encrypted text file.
I’m eventually going to switch back to KeePassXC and just suggest setting a master password with Firefox’s builtin password manager for everyone else who just wants a painless user experience and not have to deal with syncing vaults.
You can still make a CI/CD pipeline that doesn’t self combust every 5 minutes lol.
Wireguard.
Dunno if Cloudflare does effective auth for the tunnel or if you have to set that up yourself, but I don’t bother trying to expose services to the internet in any way because some of this stuff was just never designed for proper web security (cough Jellyfin).
It’s still worth setting up a wildcard cert with ACME so you get nice https and a real domain.
I’ve been trialing Vaultwarden for a while and while I do like the server sync setup and clean web access, the Bitwarden browser plugin is just okay despite being an “enterprise” solution. It misses probably about 20% of websites when creating a new account, forcing you to grab the password from the generator history and make a new entry manually.
KeepassXC is much better in that regard, and it’s almost as good as the default credential handler of Firefox, and it lets you set up a bunch of custom stuff to extend the functionality if you want. Plus it has some neat kbdx options aside from AES256.
Only downside is syncing, which I’m debating how I’ll deal with something better than syncthing on android (protocol is great, android makes it a PITA to have a background process if its not Google spyware).
Guys its finally the year of the linux desktop
And it should be anything but GNOME
Yeah I’ve said it many times that NTFS’s allocation algorithm is total ass, and the only reason Microsoft never bothered to make a successor FS is because SSDs eliminated the need for avoiding fragmentation.
ext4, ufs, and apple’s FSs all do a vastly superior job on HDDs, with ext4 not even beginning to fragment until you hit like 95% drive capacity.
Ahaha jokes on you, I haven’t updated my dependencies in years so I only have to deal with debilitating CVEs
Still got nothing on Moonshell 2
(I don’t need strong censorship resistance; it just has to work in offices and hotel WiFis.
Wireguard on 443 or OpenVPN + Stunnel on 443
Wireguard is easier to setup because there’s no OpenVPN app that packages stunnel (afaik), so you have to run 2 apps on your phone to make it work.
A server like caddy can also accept HTTPS traffic for some regular websites next to the VPN server.
Wireguard uses UDP, so just run whatever you want on 443 TCP with caddy (unless you want QUIC for some reason?)
Anything beyond that and you’d be looking at using a proper obfuscation solution like Shadowsocks or obfs4, in which case you should look into Amnezia or Tor bridges.
The modern web is an insult to the idea of efficiency at practically every level.
You cannot convince me that isolation and sandboxing requires a fat 4Gb slice of RAM for a measly 4 tabs.
Thst branding reminds me of the extensive complaints of Anubis beeing too weaboo for production applications lol.