• 3 Posts
  • 79 Comments
Joined 1 year ago
cake
Cake day: July 3rd, 2023

help-circle

  • Third Plex. It’s a bit baffling as to why it’s got such a bad rep recently because it performs its core function of serving media incredibly well, is super easy (barely an inconvenience) to setup, and there’s apps for every conceivable platform.

    Yes there’s a few features locked behind a subscription (though they still sell lifetime passes, often at good discounts) and they’re trying to “legitimize” with their ad-backed streaming thing, but the core product of local media server is still very much there, and free, and isn’t going anywhere.



  • This shit winds me up so much. It used to be that a game would be full price for 6-12 months before moving onto a budget label at a vastly rexuced price.

    Nowadays games are full price forever, except for the few days a year when they go on “sale” and get reduced to what they should’ve been all along. During which time the publishers get to act like they’re being altruistic and doing us a massive favour.


  • That’s… A lot of storage. I’d say your options are, in no particular order:

    • buy a 12 bay NAS.
    • expansion unit. Do it as a separate volume and shuffle cold data onto there.
    • upgrade the drives.

    Failing that you could just have a bit of a purge? If not straight deleting stuff, move things onto an external drive.

    You could also try deduping. There’s a script that’ll add any drive to the internal “supported” list and also enable dedupe on mechanical drives. The savings were minimal on mine but you might have more luck. https://github.com/007revad/Synology_enable_Deduplication





  • TedZanzibar@feddit.uktoSelfhosted@lemmy.worldHelp me harden my home server
    link
    fedilink
    English
    arrow-up
    2
    arrow-down
    2
    ·
    2 months ago
    1. Sure but there’s no reason to openly advertise that yours has open services behind it.
    2. Absolutely. There are countries that I’m never going to travel there so why would I need to allow access to my stuff from there? If you think it’s nonsense then don’t use it, but you do you and I’ll do me.
    3. See point 3.

    We all need to decide for ourselves what we’re comfortable with and what we’re not and then implement appropriate measures to suit. I’m not sure why you’re arguing with me over how I setup my own services for my own use.


  • TedZanzibar@feddit.uktoSelfhosted@lemmy.worldHelp me harden my home server
    link
    fedilink
    English
    arrow-up
    3
    arrow-down
    1
    ·
    2 months ago

    Yes and no? It’s not quite as black and white as that though. Yes, they can technically decrypt anything that’s been encrypted with a cert that they’ve issued. But they can’t see through any additional encryption layers applied to that traffic (eg. encrypted password vault blobs) or see any traffic on your LAN that’s not specifically passing through the tunnel to or from the outside.

    Cloudflare is a massive CDN provider, trusted to do exactly this sort of thing with the private data of equally massive companies, and they’re compliant with GDPR and other such regulations. Ultimately, the likelihood that they give the slightest jot about what passes through your tunnel as an individual user is minute, but whether you’re comfortable with them handling your data is something only you can decide.

    There’s a decent question and answer about the same thing here: https://community.cloudflare.com/t/what-data-does-cloudflare-actually-see/28660


  • TedZanzibar@feddit.uktoSelfhosted@lemmy.worldHelp me harden my home server
    link
    fedilink
    English
    arrow-up
    16
    arrow-down
    1
    ·
    2 months ago

    Admittedly I’m paranoid, but I’d be looking to:

    1. Isolate your personal data from any web facing servers as much as possible. I break my own rule here with Immich, but I also…
    2. Use a Cloudflare tunnel instead of opening ports on your router directly. This gets your IP address out of public record.
    3. Use Cloudflare’s WAF features to limit ingress to trusted countries at a minimum.
    4. If you can get your head around it, lock things down more with features like Cloudflare device authentication.
    5. Especially if you don’t do step 4: Integrate Crowdsec into your Nginx setup to block probes, known bot IPs, and common attack vectors.

    All of the above is free, but past step 2 can be difficult to setup. The peace of mind once it is, however, is worth it to me.










  • Synology has Container Manager, which is their GUI frontend for Docker, so if it’ll run in Docker it’ll run on a Syno NAS. I’m running Pihole on mine just fine.

    As for the M.2 drives, you can use non-Synology ones as storage. Don’t quote me on it but I’ve a feeling it “just works” in the EU where they’re not allowed to force you to use specific brands, but if it doesn’t then there’s a script that removes the restriction: https://github.com/007revad/Synology_enable_M2_volume

    You should check their repo as they have other useful scripts. I’m using the one that enables dedupe on non-SSD volumes myself.