Yeah, I have faith in the people but the leadership definitely puts Canada in the same gross boat as the others…

I was wrong about Germany, the main issue over there is the AfD party, but it seems the public are vehemently opposed to them. Denmark, however, is the current presidential leader of the EU, and is speedrunning Chat Control before their term ends. Normally these kinds of votes must be unanimous, but it wasn’t – yet Denmark is continuing to implement it.

As far as I can tell the USA, Britain, Germany, Denmark, Italy, New Zealand, Russia, Australia and China are fucked. Fascism, nationalism, corporate capitalism, segregation, genocide, history erasure, political extremism and regression… Looking pretty fucking bleak. I’d include Palestine but it was formatted by Britain and replaced with Israel, and it doesn’t technically exist like it used to.

Thank you! Definitely looking into that. That’s another thing I’ve never understood, why I lose connection to a local service when the broadband cuts out.

If I get a router with split DNS, and not need an Internet connection… That would be huge.

So that’s DNSSEC… I do have to occasionally let my browser know it’s okay aha, but that’s how Google (I used to use Chrome) added my old admin password to a list of breached passwords…

Self-hosting be like ^^

I think I had issues similar to that. Perhaps the PiHole is running a conflicting DHCP server? I have my own set of weird issues… Bad connectivity so I need a WiFi range extender, but it’s not a true extender and has its own IP address, acting as a router sometimes and not forwarding DNS queries to the main router… That, a lack of NAT loopback functionality, a lack of changeable DNS settings and the AdGuard Home apparently taking precedent in that side of the house, and I have a cocktail of connection issue bs lol. The main router can DNS perfectly fine, but if I’m connected to the extender I have to add DNS rewrites to AGH… which works for most services…

The journey is largely about overcoming obstacles aha, and the reward for doing so… Hope yours goes well!

Yes! This.

I have one machine for network sharing storage and thus a user for login and r/w powers. The same storage is used by other machines to save the files, and so each autonomous user for CCTV and qBitTorrent needed to have the same UID as the Samba login, so each program had rw permissions.

And those containers had to be privileged iirc in order for each root (UID 0) to access the shared storage properly. I may be wrong though

I have a router given to me by my ISP, which incidentally has less features than their older model, so I was wondering, if you know: Would some ‘aftermarket’ gateways also be a DNS server? Sometimes it’d be great to have the resolution handled completely by the gateway instead of a separate machine - especially as some of my services just don’t seem to declare their names. And my stock router has a terrible downside - no NAT loopback. And - the reason I’m in this pickle - they’ve removed custom DNS settings.

Currently I only have my fiancée on board, but the moment something requires more than setting a custom login domain and user+pass, her patience dwindles. She’s a good baseline for me to know that most people won’t be happy with a manual cryptographic handshake between contacts (Matrix/XMPP) or fucking with IP:port settings. I dont like to damage someone’s feeling of independence but sometimes these things need someone who can blitz through the settings themselves, especially if you have to troubleshoot why it didn’t just work.

Exactly.

On your DNS provider, the domain name must point to the public IP of your router. All devices connected to your network use the same public IP.

On the router, ports 80 and 443 must be forwarded to the (local IP of) the machine running Nginx.

Nginx must have the domain name point to the local IP of the machine running ABS.

Are you using Nginx or Nginx Proxy Manager?

Edit: If Nginx, as they’re on the same docker setup, instead of the Nginx config pointing to ABS’ local IP you can use 172.17.0.1 (iirc) and the port you used, or the container_name from compose.yaml, e.g. audiobookshelf:3748

I use NginX Proxy Manager so my methods may differ slightly.

Note about domains: It’s always good to buy one.

RIP DuckDNS… it used to be a fairly reliable Dynamic DNS (DDNS) and it cost nothing to make an account and five domains… However, apparently, it was shut down without notice under a month ago.

I just want a picture of a god dang hotdog

Coal hurts kids’ brains

Yeah so does American politics, and any country whose government hinders the progression of society.

I can’t really feel the desire to fight a battle that’s been waged longer than my life. Down with corporate capitalism, down with minmaxxing employees.

For inspiration, here’s my list of services:

Here is the overhead for everything. CPU is an i3 6100 and RAM is 2133MHz:

Quick note about my setup, some things threw a permissions hissy fit when in separate containers, so Media actually has Emby, Sonarr, Radarr, Prowlarr and two instances of qBittorrent. A few of my containers do have supplementary programs.

An LXC is isolated, system-wise, by default (unprivileged) and has very low resource requirements.

• Storage also expands when needed, i.e. you can say it can have 40GB but it’ll only use as much as needed and nothing bad will happen if your allocated storage is higher than your actual storage… Until the total usage approaches 100%. So there’s some flexibility. With a VM the storage is definite.
• Usually a Debian 12 container image takes up ~1.5GB.
• LXCs are perfectly good for most use cases. VMs, for me, only come in when necessary, when the desired program has more needs like root privileges, in which case a VM is much safer than giving an LXC access to the Proxmox system. Or when the program is a full OS, in the case of Home Assistant.

Separating each service ensures that if something breaks, there are zero collateral casualties.

You can also disable it by going to Safety > Emergency > Emergency Alerts > Toggle off

Oh, lol I turned them off. We aren’t exactly in a country at risk of any emergency

Some defenders try to split hairs, calling this ephebophilia instead of pedophilia. But ephebophilia isn’t even a recognized clinical diagnosis.

Using language correctly is important when trying to convey a message without it being misunderstood, which is why it’s necessary to specify the difference between paedophilia (prepubescent), hebephilia (early stage adolescent), and ephebophilia (mid-late stage adolescent), and medical guidelines differ among states and countries. There is a clinical differentiation in my country.
Regardless, others prefer the term Minor Attracted Person/s or MAP. This at least solves any quandary regarding terminology.

viewed more than 6 million times

Fucking savage reference

Docker also has its own LAN IP address, in my experience it’s 172.17.0.1 instead of 127.0.0.1. And yes, between containers the container name is used, e.g. plexserver:2736, and it’s good practice to manually give them names.