• 0 Posts
  • 83 Comments
Joined 11 months ago
cake
Cake day: February 1st, 2024

help-circle
  • Immich looks particularly good to me.

    It is! Been running it for a few years now and I love it.

    The local ML and face detection are awesome, and not too resource intensive — i think it took less than a day to go through maybe 20k+ photos and 1k+ videos, and that was on an N100 NUC (16GB).

    Works seamlessly across my iPhone, my android, and desktop.


  • For very simple tasks you can usually blindly log in and run commands. I’ve done this with very simple tasks, e.g., rebooting or bringing up a network interface. It’s maybe not the smartest, but basically, just type root, the root password, and dhclient eth0 or whatever magic you need. No display required, unless you make a typo…

    In your specific case, you could have a shell script that stops VMs and disables passthrough, so you just log in and invoke that script. Bonus points if you create a dedicated user with that script set as their shell (or just put in the appropriate dot rc file).






  • My headcanon for The Matrix’s “humans are batteries” is that it’s the machines’ perverse interpretation of this — killing the humans is off the table, and for whatever reason letting them live with no purpose to serve the machines is also disallowed. But giving their lives “meaning” in the form of a shitty (and thermodynamically dubious) “battery” somehow satisfies the rules.

    It’s a very big stretch, I’ll admit…







  • My method:

    VPS with reverse proxy to my public facing services. This holds SSL certs, and communicates with home network through WireGuard link configured on my router.

    Local computer with reverse proxy for all services. This also has SSL certs, and handles the same services as the VPS, so I can have local/LAN speeds. Additionally, it serves as a reverse proxy for all my private services, such as my router/switches/access point config pages, Jellyfin, etc.

    No complaints, it mostly just works. I also have my router override DNS entries for my FQDN to resolve locally, so I use the same URL for accessing public services on my LAN.


  • It can be daunting to get into the hobby, there are a ton of niches.

    To start: where are you? I’m in the USA, so that’s where my experience is.

    License: required to transmit on the ham bands; you can listen without a license.

    Range: are you looking to talk to people in your city/region? If so, a cheap “walkie-talkie” style (called “HT” in the biz — best avoid “walkie-talkie”) is a good place to start. These VHF/UHF (very/ultra high frequency) radios are affordable — something from Baofeng(~$30) or similar will work just fine, though they are often looked down on (I have one — for the price, it’s great). You will have the most luck if there is an active ham scene in your area, in large part because they may have a repeater, which can greatly extend your range. Many regions will have scheduled “nets” where you just go around and chat.

    If you’re looking for the ability to chat with folks on the other side of the world, you’ll want to look into HF (high frequency). This is much lower frequency, thus longer wavelength, than the handheld VHF/UHF HTs. So…the antennas take up a lot of space. Mine is 52 feet long, in the attic. And the radios are much more expensive (more like $1k new). ICOM 7300, Yaesu FT710 are popular entry level units (but you also need power supply, cables, and antenna).

    That said: if you just want to listen to HF, the antenna doesn’t matter as much at all, and you can use an SDR (RTL-SDR probably works?) for listening. You can probably also find a used shortwave radio that covers some of the HF ham bands.




  • Another fun trick you can play is to use a private IP on your public DNS records. This is useful for Jellyfin on Chromecast for instance — it uses 8.8.8.8 for DNS lookup (and ignores your router settings), so it wants a fully qualified domain name. But it has no problem accessing local hosts, so long as it’s from 8.8.8.8’s record.


  • I have set up local DNS entries (with Pi-Hole) to point to my srrver, but I don’t know if it possible to get certs for that, since it is not a real domain.

    So long as your certs are for your fully qualified domain there’s no problem. I do this, as do many people — mydoman.com is fully qualified, but on my own network I override the DNS to the local address. Not a problem at all — DNS is tied to the hostname, not the IP.



  • I think (?) it’s generally true that the root user should never mess with users’ files.

    Imagine your home directory is shared across many systems on a network (my alma mater did this). It would be really bad if a sysadmin for alpha.university.edu removed a program, and suddenly your personal settings were removed from beta.university.edu — even though that computer still has the program.

    This is one of the “UNIX on the desktop” issues — a lot is designed for a sysadmin/multiuser situation, and it has some gotchas when using it as a desktop machine (I’m used to/really appreciate the directory structure and settings management at this point, but it may take some getting used to).