[-] Deemo@bookwormstory.social 11 points 2 months ago

Who needs AI when you got FungI 🍄

5
submitted 2 months ago* (last edited 2 months ago) by Deemo@bookwormstory.social to c/apple_enthusiast@lemmy.world

Edit: Kinda found a answer

Major versions of iOS are released annually. Apple significantly extended the cycle of updates for iOS-supported devices over the years. Usually, only the latest iOS release is supported by Apple. Starting with iOS 15, Apple started to support 2 major versions of iOS, for a short period of time.

https://endoflife.date/ios

Hi guys this might be a silly question, do ios and iPad OS devices have different number of years of major updates (think ios 16, 17, 18 etc) and years of security updates?

Or do devices that don't make the cut for the latest major update immediately loose access to security updates once a new incompatible major ios update is released?

40
submitted 3 months ago* (last edited 3 months ago) by Deemo@bookwormstory.social to c/selfhosted@lemmy.world

Hi guys for those of you that use pi-hole (or similar solutions like adguard home, etc) and wireguard how far away can you be from your wireguard/pi-hole server before latency becomes a major issue?

Also on a side note how many milliseconds of latency would you guys consider to be to slow?

Edit I meant dns latency sorry for not mentioning

18
submitted 3 months ago* (last edited 3 months ago) by Deemo@bookwormstory.social to c/selfhosted@lemmy.world

Hi guys quick question say you run a a application on your localhost (example lets say couchdb runing directly on localhost:3434 not in docker).

Now you have a docker container (say caddy, ngnix, etc). Is there a way to allow docker container to acess localhost:3434 WITHOUT using the Host network driver (--net=host)

25

Hi guys I recently stumbled upon this website where you can get a eu.org sub domain (example.eu.org for instance).

I noticed though that domains aren't created instantly. I'm curious if there is human review to get domians processed and if it generally takes a long time to make domains using them.

8

#levitation

Image Source Reddit

Couldn't find Artist profile

Good old Bioshock infinite

20
unattended upgrades with caddy (bookwormstory.social)
submitted 4 months ago* (last edited 4 months ago) by Deemo@bookwormstory.social to c/selfhosted@lemmy.world

Edit: credit to exu@feditown.com

Assuming you installed caddy via Debian, Ubuntu, Raspbian method

https://caddyserver.com/docs/install#debian-ubuntu-raspbian

add "cloudsmith/caddy/stable:any-version"; to /etc/apt/apt.conf.d/50unattended-upgrades

Example:

// Automatically upgrade packages from these (origin:archive) pairs
//
// Note that in Ubuntu security updates may pull in new dependencies
// from non-security sources (e.g. chromium). By allowing the release
// pocket these get automatically pulled in.
Unattended-Upgrade::Allowed-Origins {
        "${distro_id}:${distro_codename}";
        "${distro_id}:${distro_codename}-security";
        // Extended Security Maintenance; doesn't necessarily exist for
        // every release and this system may not have it installed, but if
        // available, the policy for updates is such that unattended-upgrades
        // should also install from here by default.
        "${distro_id}ESMApps:${distro_codename}-apps-security";
        "${distro_id}ESM:${distro_codename}-infra-security";
        "${distro_id}:${distro_codename}-updates";
//      "${distro_id}:${distro_codename}-proposed";
//      "${distro_id}:${distro_codename}-backports";
        "cloudsmith/caddy/stable:any-version";
};

Link to comment chain (not sure how to add links in a federated way)

https://feditown.com/comment/1221458

https://bookwormstory.social/post/2100056/4136035

Origional post:

Hi guys anyone know how to use un attended upgrades with caddy.

I have ubuntu server 22.0.4.

The part that stumps me is caddy uses a external repository cloud Smith making ot difficult to setup.

I installed caddy via Debian, Ubuntu, Raspbian

https://caddyserver.com/docs/install#debian-ubuntu-raspbian

The closest example I could find to unattended upgrades with a external repo was this example using docker.

/etc/apt/apt.conf.d/50unattended-upgrades

"Docker:${distro_codename}";

https://blog.coffeebeans.at/archives/1299

I'm not sure if it's as simple as

/etc/apt/apt.conf.d/50unattended-upgrades

"Caddy:${distro_codename}";

Edit:

One more question affect would adding

APT::Unattended-Upgrade::Package-Blacklist "";

/etc/apt/apt.conf.d/20auto-upgrades

have?

Edit2:

I just removed this I only found this from google gemini (which probably isn't the best source of info)

APT::Unattended-Upgrade::Package-Blacklist "";
31
submitted 5 months ago* (last edited 5 months ago) by Deemo@bookwormstory.social to c/selfhosted@lemmy.world

Hi guys do you guys know any selfhosted cloud solution that has a combined sync and filestream option?

Context when you use seafile on macos there is seadrive (mounts external cloud like a drive) and seafile sync which syncs files to local folders. The problem is the two clients sort of act seperatly from one other (you cant make seadrive make files offline for instance neither can you preview files in seafile sync).

By contrast onedrive and google drive both have client apps which can sync on demand (file stream) and optionally make files available offline with a simple right click in context menu.

~~Side note I have tried nextcloud on mac but its experimental mount mode just keeps a placeholder .nextcloud file.~~

Edit:

Nextcloud does have proper virtual file sync. Only limitation is you can't make files availble offline via the context menu and instead need to set up manual folder syncs

Edit 2:

You need to grab the release from https://github.com/nextcloud-releases/desktop/releases/tag/v3.13.0

Specifically the vfs version Nextcloud-3.13.0-macOS-vfs.pkg

16
submitted 5 months ago* (last edited 5 months ago) by Deemo@bookwormstory.social to c/selfhosted@lemmy.world

Edit 2: Fdroid Version 3.0 allows read only acess to files writing to files seems to not work

Edit: Tldr install version 3.0 from fdroid or github. Plastered version out of date.

Hi guys not sure if this is the right place to ask, but anyone having issues using the file browser integration for seafile?

The android app by itself seems to work but the files integration only seems to be broken.

By contrast the ios version of seafile the app and its files app integration both work with no issue. Additionally the webdav, browser, and mac apps (seadrive) have no issues.

Other context:

  • Running Seafile server 11.0.9 on Ubuntu 22.04.4 LTS using tailscale
  • Seafile android app version 2.3.7 running on Android 14
42
submitted 5 months ago* (last edited 5 months ago) by Deemo@bookwormstory.social to c/selfhosted@lemmy.world

Hi guys I was wondering if there is a streamlined way to disable remote acess to a selfhosted service (say at a reverse proxy level) if a published security vunerability is present.

I know, ideally you want to keep all your selfhosted services up to date. However on certain selfhosted service auto updates may not be viable (due to major changes between updates) and you being unavailable 24/7 to respond to vunerabilities.

Curious on your thoughts and suggestions. So far the only middle ground I can find is realying on a vpn wireguard, tailscale, etc.

Page regarding homeassistant remote ui autodisable: https://www.nabucasa.com/config/remote/

1

#levitation #illusion Ah a classic

More info of the origin of the flying toaster: https://en.wikipedia.org/wiki/After_Dark_(software)

Source of image (I don't have a old windows computer to record): https://www.reddit.com/r/gifs/comments/p6p384/old_school_flying_toast_screensaver/

15

Just kinda curious do you guys ever run into issues of lacking imessage (like your friends unwilling to use another app) or is it just a over blown issue.

[-] Deemo@bookwormstory.social 17 points 11 months ago

I do wonder how this compares to current payment processors (Visa, Mastercard, Paypal, etc)

1

A weird cross over.......

[-] Deemo@bookwormstory.social 33 points 1 year ago

Few problems:

  1. Safteynet (play integrity) and root detection

There are magisk tweaks to help combat this but its a annoying game of cat and mouse. Some apps like chase have particularly annoying root detection to deal with. Also regaring safteynet once google fully enforces hardware attestation passing safteynet with tweaks will be borderline impossible (most tweaks try to spoof older phones that don't support safteynet hardware attestation).

  1. Widevine

Many streaming services (Netflix, Hulu, Disney, etc) will downgrade your video quality to 480p-540p due to L3 from unlocking the bootloader (a step thats usually required before you can root).

  1. Physical security (potential risk)

Unlocking the bootloader is the first step to allowing for rooting and custom roms. One pro/con is when you unlock the bootloader you are partially at risk to a evil maid attack (some one with physical acess to your phone can compromise it). While difficult to do automatically (and probably very very rare) some one could hypothetically place a malicious bootloader that could steel data. The risk of this is mostly low but does exist.

[-] Deemo@bookwormstory.social 14 points 1 year ago

Its a 4x price increase Sync pro for reddit was about $4 (USD), sync for lemmy is $22 to remove ads

Reddit Sync Pro Ad removal

Lemmy Sync ad removal

[-] Deemo@bookwormstory.social 17 points 1 year ago

Best reason would be if you were a reddit sync user in the past Lemmy sync would feel familiar.

It analogous to Apollo users feeling voyager similar (to an extent).

[-] Deemo@bookwormstory.social 34 points 1 year ago

Is there a one time payment option to remove ads?

Dev said he will ad a ad removal feature

[-] Deemo@bookwormstory.social 12 points 1 year ago* (last edited 1 year ago)

Glad to hear 👍

Edit image for those who are curious:

[-] Deemo@bookwormstory.social 21 points 1 year ago

Agreed whats more annoying is getting double X posts back to back

[-] Deemo@bookwormstory.social 11 points 1 year ago

Reminds of the 15 million merits episdoe in black mirror

[-] Deemo@bookwormstory.social 21 points 1 year ago* (last edited 1 year ago)

The problem comes down to education institutions. I remember when we got Chromebooks in my highschool (8 years ago) admins forgot to turn of developer mode and half the school unenrolled the Chromebook managing to bypass all restrictions. This went on for half a year until one day our school needed to run a state exam (more for measure of schools performance not as a college entrance exam or anything).

The computerized testing program required deploying a specific chrome app accessible when chrome book is logged out (can't just download from chrome web store). When they tried to push the client since half of Chromebooks were unenrolled it failed. This required the school it to recall pretty much all chrome books to manually re enroll all of them and disable developer mode (prevents unenrolling and prevents sideloading Linux).

Problem is if older Chromebooks are used for Linux in an educational environment there would be nothing stopping a student from whipping up a bootable USB and dumping another distro (bypassing restrictions). I'm also not sure if there is a enrollment mode equivalent Linux (there may be but not sure).

At least that's my two cents (not a school it admin just a memory from the past 😉).

[-] Deemo@bookwormstory.social 11 points 1 year ago

Some of my general programs

  1. Homebrew (https://brew.sh/)
  2. Magnet
  3. Shottr
  4. Velja
  5. Bitwarden
  6. Spark
  7. Firefox Nightly/Chrome
  8. Ferdium
  9. Pdf expert (before the subscription junk happened)/ PDF Studio
  10. Day progress
  11. Horo
  12. Obsidian
  13. Bartender (testing it)
view more: next ›

Deemo

joined 1 year ago
MODERATOR OF