I moved from a Backblaze B2 bucket to a Hetzner storagebox and haven’t looked back.

Lower cost and - for me - just easier to use, so, better for restores.

I can’t help with your error messages, but I’m presuming you’re just restoring a backup of data you still have? If so, just upload to Hetzner and start again.

As long as you’re using a slower release cycle, ie something like Debian, then you shouldn’t need to be concerned.

I think anyone riding the crest of the wave with Arch (& esp. the AUR) would likely be aware that things break, so, supply chain attacks are likely to be seen here quicker.

I honestly wouldn’t be surprised if PPAs had similar issues, but might take longer to be noticed.

Personally, I have a lot of Ansible building my stuff, so actually rebuilding things wouldn’t be an issue, but, would I then be installing everything with all the current latest malware…?

Nice. That helped me quickly test my systems, thanks

Seems a bit extreme.

Well, with the script at least you can follow the actions first, so it’s better…just don’t run it blindly because 2 minutes ago the attacker just put an additonal line of code in…

The executable / installer is more of a Windows thing and we’ve seen how that arms race is going… even Microsoft are trying to create a Linux-style repo called Windows Store.

curl | sh is the worst security front door I’ve seen

At least check the script first so it’s understood

Me, an Arch user (btw), watching the NPM chaos on any distro…

DNS… set your system up to use an external DNS provider like OpenDNS where you can select categories to block.

I used this to block adult, gambling, malware, etc at the grandparent’s house when the kids were growing up and starting to search the internet for school homework, etc.

If it’s done in the router you’ll cover all devices and you give someone else the password, so you can’t change it.

“Ask partner out on date, and check their wardrobe to suggest an outfit for the outing”

Yeah, that’s probably about right 😁

Yeah, I’m kinda, open wardrobe door, grab what looks about right for today, done.

But.

I can see another use case here…

• Partner “has nothing to wear”
• Mentions buying more clothes
• I open app, scroll, demonstrate how long the scrolling is still going for.
• Win argument.
• Purchase beer with saved money
• (pass some to devs for assisting)

… because? … or, instead, do…?

Nice wiki

Didn’t know about infCloud… thanks

No, I was referring to a separate DMZ host…

Physically separate firewall connection, with different firewall policies between internet<–> DMZ than DMZ <–> internal network.

Not a VLAN. VLAN Hopping makes it possible to jump between VLANs, so they should only be consided as an administration tool, not a security mechanism.

But, I agree with you, putting a device on the internet isn’t something that anyone should do without understanding the technical issues.

Kinda overlapping other replies, but to answer your question: A = your external IPv4 address

The rest could be empty AAAA = an external IPv6 address NS = a DNS server MX = Mail Server

TXT is just text, but it can be used by, ie Lets Encrypt to prove you own that domain for your SSL certificate

If you open TCP 80 / 443 on the open internet EVERYONE will probe you, but you want to run a Friendica server, so you kinda need that (disclaimer: I do not know how Friendica is setup)

So, you’ll need something (firewall, Fail2Ban, etc) to protect your server whilst also allowing it to federate to other servers.

I’d strongely suggest you put your server on a VPS with a provider that has some level of defense already setup for you.

I wouldn’t run this in your home network with putting it into a DMZ of some kind.

Depends if they have Prime next day delivery…

CGA? RS233?

I can sell them to you for some petrol for my generator…

It’s always good to have a plan…

Getting it up & running is just loading their software onto a Pi SD card, so easy

I recall there was a bit of a faff learning how it creates “feeds” from sensor data - it’s just different, not complex, but took a couple of attempts to get it how I wanted it (which included some calibration of the sensors… I recall it was reporting a few W of solarpower at night)

But… since then it’s been running for years with a few updates, so really stable.

Then HA came along, and there’s an integration that pulls the data in, so I can see grid & solar power…

Perhaps I wasn’t clear at the beginning though - I don’t have batteries (yet…), so I’m not montioring that, but I am presume it would be a similar process. I just didn’t want you to purchase something without checking it fits your exact needs first.

Have a search / post on their forum, they’re really friendly there and someone might have already discussed this…

I don’t recall what we have, but the installer kindly set us up to report our usage to the chinese company so we could use their app.

Needless to say, after commissioning I blocked it’s internet access.

I didn’t bother with trying to read the data from the unit, I just went with the EmonPi which feeds direct into HA, so I’m 100% in control of my data and my energy.

Depending on the capability of the devices, yes, look for existing open standard protocols like MQTT, RS232 / RS485, Modbus, etc

You might need a device between the inverter / battery management system to convert to something that HA can read (ie a serial I/O port)

If you’re only wanting to read the energy, there are other choices like using current clamps with something like EmonPi from OpenEnergyMonitor - this is what I’m doing as my inverter is just not practically accessible.