If your cat is attacking neighbor animals you should not let it outside anymore. Culling wildlife is problematic but “their nature”. But a pet that actively attacks other people’s pets is just a menace and will only end in heartache and legal issues.

Removed by mod

More drives is always better. But you need to understand how you are making it better.

https://en.wikipedia.org/wiki/Standard_RAID_levels is a good breakdown of the different RAID levels. Those are slightly different depending on if you are doing “real”/hardware RAID or software raid (e.g. ZFS) but the principle holds true and the rest is just googling the translation (for example, Unraid is effectively RAID4 with some extra magic to better support mismatched drive sizes)

That actually IS an important thing to understand early on. Because, depending on the RAID model you use, it might not be as easy as adding another drive. Have three 8 TB and want to add a 10? That last 2 TB won’t be used until EVERY drive has at least 10 TB. There are ways to set this up in ZFS and Ceph and the like but it can be a headache.

And the issue isn’t the cloudflare tunnel. The issue is that you would have a publicly accessible service running on your network. If you use the cloudflare access control thing (login page before you can access the site) you mitigate a lot of that (while making it obnoxious for anything that uses an app…) but are still at the mercy of cloudflare.

And understand that these are all very popular tools for a reason. So they are also things hackers REALLY care about getting access to. Just look up all the MANY MANY MANY ransomware attacks that QNAP had (and the hilarity of QNAP silently re-enabling online services with firmware updates…). Because using a botnet to just scan a list of domains and subdomains is pretty trivial and more than pays for itself after one person pays the ransom.

As for paying for that? I would NEVER pay for nextcloud. It is fairly shit software that is overkill for what people use it for (file syncing and document server) and dogshit for what it pretends to be (google docs+drive). If I am going that route, I’ll just use Google Docs or might even check out the Proton Docs I pay for alongside my email and VPN.

But for something self hosted where the only data that matters is backed up to a completely different storage setup? I still don’t like it being “exposed” but it is REALLY nice to have a working shopping list and the like when I head to the store.

A LOT of questions there.

Unraid vs Truenas vs Proxmox+Ceph vs Proxmox+ZFS for NAS: I am not sure if Unraid is ONLY a subscription these days (I think it was going that way?) but for a single machine NAS with a hodgepodge of drives, it is pretty much unbeatable.

That said, it sounds like you are buying dedicated drives. There are a lot of arguments for not having large spinning disk drives (I think general wisdom is 12 TB is the biggest you should go for speed reasons?), but at 3x18 you aren’t going to really be upgrading any time soon. So Truenas or just a ZFS pool in Proxmox seems reasonable. Although, with only three drives you are in a weird spot regarding “raid” options. Seeing as I am already going to antagonize enough people by having an opinion, I’ll let someone else wage the holy war of RAID levels.

I personally run Proxmox+Ceph across three machines (with one specifically set up to use Proxmox+ZFS+Ceph so I can take my essential data with me in an evacuation). It is overkill and Proxmox+ZFS is probably sufficient for your needs. The main difference is that your “NAS” is actually a mount that you expose via SMB and something like Cockpit. Apalrd did a REALLY good video on this that goes step by step and explains everything and it is well worth checking out https://www.youtube.com/watch?v=Hu3t8pcq8O0.

Ceph is always the wrong decision. It is too slow for enterprise and too finicky for home use. That said, I use ceph and love it. Proxmox abstracts away most of the chaos but you still need to understand enough to set up pools and cephfs (at which point it is exactly like the zfs examples above). And I love that I can set redundancy settings for different pools (folders) of data. So my blu ray rips are pretty much YOLO with minimal redundancy. My personal documents have multiple full backups (and then get backed up to a different storage setup entirely). Just understand that you really need at least three nodes (“servers”) for that to make sense. But also? If you are expanding it is very possible to set up the ceph in parallel to your initial ZFS pool (using separate drives/OSDs), copy stuff over, and then cannibalize the old OSDs. Just understand that makes that initial upgrade more expensive because you need to be able to duplicate all of the data you care about.

I know some people want really fancy NASes with twenty million access methods. I want an SMB share that I can see when I am on my local network. So… barebones cockpit exposing an SMB share is nice. And I have syncthing set up to access the same share for the purpose of saves for video games and so forth.

Unraid vs Truenas vs Proxmox for Services: Personally? I prefer to just use Proxmox to set up a crapton of containers/vms. I used Unraid for years but the vast majority of tutorials and wisdom out there are just setting things up via something closer to proxmox. And it is often a struggle to replicate that in the Unraid gui (although I think level1techs have good resources on how to access the real interface which is REALLY good?).

And my general experience is that truenas is mostly a worst of all worlds in every aspect and is really just there if you want something but are afraid of/smart enough not to use proxmox like a sicko.

Processor and Graphics: it really depends on what you are doing. For what you listed? Only frigate will really take advantage and I just bought a Coral accelerator which is a lot cheaper than a GPU and tends to outperform them for the kind of inference that Frigate does. There is an argument for having a proper GPU for transcoding in Plex but… I’ve never seen a point in that.

That said: A buddy of mine does the whole vlogger thing and some day soon we are going to set up a contract for me to sit down and set her up an exporting box (with likely use as a streaming box). But I need to do more research on what she actually needs and how best to handle that and she needs to figure out her budget for both materials and my time (the latter likely just being another case where she pays for my vacation and I am her camera guy for like half of it). But we probably will grab a cheap intel gpu for that.

External access: Don’t do it, that is a great way to get hacked.

That out of the way. My nextcloud is exposed to the outside world via a cloudflare tunnel. It fills me with anxiety but as long as you regularly update everything it is “fine”.

My plex? I have a lifetime plex pass so I just use their services to access it remotely. And I think I pay an annual fee for homeassistant because I genuinely want to support that project.

Everything else? I used to use wireguard (and openvpn before it) but actually switched to tailscale. I like the control that the former provided but much prefer the model where I expose individual services (well, VMs). Because it is nice to have access to my cockpit share when I want to grab a file in a hotel room. There is zero reason that anything needs access to my qbitorrent or calibre or opnsense setup. Let alone even seeing my desktop that I totally forgot to turn off.

But the general idea I use for all my selfhosted services is: The vast majority of interactions should happen when I am at home on my home network. It is a special case if I ever need to access anything remotely and that is where tailscale comes in.

Theoretically you can also do the same via wireguard and subnetting and vlans but I always found that to be a mess to provide access both locally and remotely and the end result is I get lazy. Also, Tailscale is just an app on basically any machine whereas wireguard tends to involve some commands or weird phone interactions.

And now I understand why that weirdo was so hellbent on the corporations of the world supporting this

Really depends on your current tool so RTFM on that.

But when you are activating it in your account? There is a QR code you are supposed to scan. And there is almost always a button like “Having trouble?” or “Show TOTP Key” or whatever. Click that and you get a long alphanumeric string instead. Paste that into the TOTP field for Bitwarden (or Keepass or whatever) and it will generate codes for you.

Once or twice I have had to actually use my phone camera to decode the QR code so that I can manually type in the TOTP code/seed, but I think the last time I did that was in like 2020?

There is.

2FA. No, not the fucking “we’ll send you an SMS” bullshit that is increasingly used to just highlight an active phone number for spam purposes. Proper TOTP with the code backed up to a proper service (bare minimum, Bitwarden)

Someone can steal your password and even your email account (unless you TOTP that too…). They still can’t get into your account unless you are an idiot who gets tricked into providing the 2FA key.

In a perfect world? Have your TOTP credentials in one encrypted database/Bitwarden account and your passwords in another. In reality? Just use a trusted service. I used to be a big fan of Keepass but protecting that with a yubikey (or similar) is a huge mess.

The recent push for passkeys (?) is a nice-ish middle ground. People don’t need to understand how to paste a TOTP code into Bitwarden but they still need to approve a login. That said, I hate it since so much of it is dependent on a single device that can generally be opened by just applying REDACTED to the screen and doing REDACTED to narrow down the lock code significantly.

I mean… It would be nice if they put a nicer message there. But I mostly agree with that.

Look up how people social engineer their way into apple accounts and so forth. The more you put the burden on a (perpetually) underpaid CSR the easier it is to steal an account, Spin a sob story and then harass the CSR until they just reset your password so you will go away. Except there is no guarantee that is YOUR password and now we have yet another stolen account.

The “vibe” doesn’t really matter. You are getting paid to do a job, you are gonna do it. You can’t refuse to write documents because you have to use Word instead of Google Docs or whatever.

No, it really is the training. Because the most obnoxious thing in the work force is an old white guy. They can’t outright say “no”. But they will do everything in their power to talk about how EVERYTHING is a blocker and they can’t get any work done because nobody wanted to teach them something. Or nobody was able to answer the questions that they refuse to ask. And so forth.

Having a database of training videos or even an outsourced consultant goes a long way toward “Hey Jon? Nobody gives a shit. Do your job”. Whereas having to link to just a document or explain something yourself is how they will actively refuse to ever retain any information.

Things get weird as corporations increasingly have power comparable to nation states.

But, generally, I would rather a megacorporation than a government. Because megacorps are at least “smart enough” to pretend they aren’t trying to take over the world. Whereas governments have a tendency to justify a lot of horrible shit for righteous reasons.

But, in a perfect world? I would rather a wide range of different donors and backers but mostly clustering around maybe fortune 500 companies instead of fortune 10?

My buddies and I have worked at companies that went through similar transitions and reversions.

The issue is not the cost or even the ideology. It is the training and support. There are a LOT of really good training resources for MS Office and, at least for millennials, outright education in k-12. So, by switching to libre office or anything similar, you are suddenly putting a large burden on yourself and random enthusiast youtubers who will start advertising nordvpn partway through explaining what a pivot table is. Because the vast majority of people don’t know how to google “how to edit the footer for slides in Libre Office”

And that RAPIDLY adds up to being a lot more expensive than even the full priced licenses from MS. your more technically competent staff suddenly have very large support burdens because “Oh, I just have a quick question” and that increases their burnout.

That said, it is going to be really interesting in the next 5-10 years (… assuming the world doesn’t end in a series of thermonuclear explosions first) since gen-z are very much brought up on Google Docs and the like. So even MS Office will have a significant training overhead for new hires.

At one of my other jobs we had to migrate a codebase from SVN to Git. it… was incredibly overdue and it was making for a greater burden on new hires who had to learn an antiquated toolset to contribute. But it was a genuine concern because most of the existing developers who understood “where the bodies were buried” had already “suffered through giving up on CVS for no good reason”. And we genuinely had to acknowledge that we would lose staff “on both sides” and, while I am not proud to admit it, more or less set up a few underperforming early career staff to be sacrificial lambs. Making it a point to let Old Fuck #5 know that the guy who was struggling to understanding how to write performant kernels was available to work through how to write a commit message. That way the rock stars who we were dependent on would not put in their notice.

And having a government as a significant backer for an open source project is a great recipe for conflicts of interest and general trust erosion.

While “AAA” has lost all meaning: even in that space we have some real bangers already

Yakuza/Like a Dragon 8 is already in the running as one of the all time great JRPGs (and probably a top 50 GOAT in terms of games period). FF7R2 is going to have to REALLY screw up for fans to not feel strongly about it. And Dragon’s Dogma 2 is, somehow, showing all signs of actually being faithful to the incredibly weird original. We also might be seeing Elden Ring DLC sooner than later. Tekken 8 seems to be incredibly well received… accessibility aside. That gets us to the end of March (ER has a mysterious youtube entry but it has for weeks so who knows)? Even if nothing else happens this year, that already is a stacked as hell line-up.

Two months in and, gaming wise, 2024 is shaping up really well. Like most years, people see what they want to see. If you want to say things are a flop, there are flops. If you want to say things are awesome, there are some truly amazing games.

Exactly

We go through cycles of this. People get it in their head that “linux is finally ready for mainstrream desktop usage”. A lot of people “make the change” and then assess it for themselves.

But there is always this crowd of evangelists that insist on either being ridiculously pedantic or downplaying some of the headaches. And this is a perfect example of… both?

On the Windows side? Most people will never notice that. I think MS have reached the point where they don’t even give users a choice after N weeks? You just go down in the middle of watching a naughty video and come up to Cortana turning on all the spyware and telling you to use Edge already.

On “Linux”? It is almost (?) always a series of special commands you provide your package manager and/or upgrade app where it feels like someone is trying to warn you at every step of the way that you WILL destroy your computer. And… it might. I am still not convinced that something didn’t get borked with Fedora and plasma and I probably need to just set aside an hour or two to reformat.

The end result is largely the same (depending on what version and what distro). But it very much goes beyond “numbers are scary” and into “But you said I shouldn’t run random commands I find on the internet with the word ‘sudo’ in them. And now I should?” territory.

Personally? I think this is actually an excellent selling point. I hate that Windows does whatever the hell it wants these days. I like that I am making a conscious effort to update my OS. And, while I dislike them in practice, I think “immutable OSes” are the way to make this palatable for the masses.

Never used it “in anger” but:

I have my firewall plugged into a metered outlet (plugged into a UPS). I have it set up to send me alerts if power draw increases beyond a certain threshold. I’ve tested it and wireguard is measurable (yay) but so are DDOS attacks. If I get that alert, I can choose to turn off that plug and take my whole network offline until I get home and can sort that out.

Gotten a few false positives over the years but mostly that is just texting my partner to ask what they are doing.

It is less about being “lazy” than it is about being understaffed and the ice cream machine having a very labor and time intensive cleaning process.

I know this is The Internet, but could we maybe not shit on overworked and underpaid labor? Since, that is the whole point. Corporate McDonald’s and the companies with contracts to maintenance those machines actively want all of your ire to go to the 19 year old night shift manager rather than actually question the fundamental problems with this setup. And a lot of the issues plaguing this are the same that plague you in your comfortable home.

https://www.ifixit.com/News/80215/whats-inside-that-mcdonalds-ice-cream-machine-broken-copyright-law is a good article on these issues and why it is, like most things, a problem of lobbyists and corporate interests. That you chose to blame on the workers.

Fun story time that, for legal reasons, is a complete fabrication:

Was going food shopping one weekend. No smaller carts inside so walked out and went to one of the drop offs to grab one. On the way back, I see someone put their car into reverse from the “ramp”. Some people stop and wait for them to leave. I just keep walking and pushing my cart while considering my speed “just in case”.

They IMMEDIATELY peel out and smash into the cart. It goes under their tire and rips off most of the bumper and pops their tire (which was fucking terrifying). They get out and start screaming at me and threatening to call the cops and kick my ass. I explain “So… you are going to call the cops and explain to them you didn’t look when backing up from an illegal parking space and hit a pedestrian? I’m in a bit of a rush but I guess I can stick around for that”. Lady who was trying to get her walker out of her car even volunteers to be a witness.

Had a good old laugh and walked to get a new cart. They were still there freaking out when I left the store.

Yeah. I expect basically any publicly available instances to get C&Ds REAL fast.

And a p2p archive.org will basically never work. For the same reasons that the various NSFW lemmy instances get defederated from almost instantly. Because there is room for discussion on sites that highlight nudity in movies. There isn’t much room to discuss when it is nothing but revenge porn, “fappening links”, ripped OF content, and (inevitably) child porn.

Stuff like this… I am sure there are niches but I am not seeing a lot of benefit over either a folder or a notes app that lets me upload PDFs (or even just google drive). But once you try to build a “community” you are going to have the same moderation issues amplified a hundred fold.

Ah, I was not aware of a way to bridge two channels/servers entirely. I know there are bots that people use to bridge their user accounts though.

If it is fully seamless? Sure. But I don’t know why you are bothering then. But if it adds a “Bot” tag or any other hoops, you are still just making a worse experience for everyone. We ran into this back in the IRC days all the time.

So… split the user (and support) base while invariably emphasizing the shortcomings of Matrix?