Oooh thank you!
Can’t believe I missed that
Rootiest
Printing printers.
- 0 Posts
- 52 Comments
Joined 1 year ago
Cake day: July 1st, 2023
You are not logged in. If you use a Fediverse account that is able to follow users, you can follow this user.
Like the other commenter said, typically websites are less locked down.
It’s simpler to sandbox the browser and prevent unauthorized software from running than to block out most of the Internet and deal with complaints all day about the web restrictions
I also use aYubiKey in VaultWarden but the key is not used to generate the encryption keys, only the master password is, so you don’t get that added security and benefit of the encryption keys rotating every time you save the DB.
You sure can.
But that’s not perfect.
Often businesses will lock down their computers to prevent unauthorized software from running at all, not just installing.
Ok that makes more sense lol
Ah, I couldn’t find that option.
I can add custom fields to an entry but I can’t designate them as “protected”
Of course I also thought at first that you couldn’t attach files but I guess you can, they just didn’t seem to transfer over from my KeePass DB
I’ve had some trouble with NextCloud as well. For me it just feels sluggish and bloated.
Someone in another thread here said “NextCloud can do everything, but it doesn’t do anything particularly well” and that seems to mirror my experience with it for the most part.
Of all the self-hosted containers I’ve set up NextCloud gave me the most trouble
I’m using randomly generated 64-character passwords with upper/lower-case letters, numbers, and symbols.
I prefer not to manually enter them every time.
Also someone could find and photograph your notepad and then all your passwords are compromised in one go.
and there even is a „no phoning home“ version that strictly runs locally.
Shouldn’t that be all the versions?
Why would a password manager app that uses a local database need to phone home?
I have both set up right now.
Things I like better about KeePass:
KeePass doesn’t use the cloud, you don’t have to worry about the server getting compromised or going down because there’s nothing public-facing to hack. You always know where your password database is.
KeePass lets you encrypt the database with not only the master password but also using the challenge-response from a YubiKey. That means every time you save your DB the encryption key is rotated and the DB is actually encrypted by two authentication factors.
While both can add custom fields to an entry, I like that KeePass has the option to set fields as protected so their contents are hidden like the passwords.
Things I like better about VaultWarden:
Convenience.
You can log in to your VaultWarden account on any device from the browser. KeePass requires some software to access the DB.
The VaultWarden companion software is just better. It just does autofill better. KeePassXC/DX work well but just not as well as the BitWarden software.
Other thoughts:
Syncing passwords between devices with KeePass requires 3rd party software like SyncThing. If you break/lose/etc your VaultWarden server you could lose all your passwords with it.
Always make/test backups.
Yeah this is probably my biggest.
Device which things can be hosted on a local server and which are best on a vps
4·1 year agoI have some custom scripts which kinda do what the *arr apps do.
I download torrent files into a folder.
But that’s like the main thing the arrs do for you and you are doing it manually.
1·1 year agoIf anyone wants to see your shit they can install something on your telephone pole that can supercede a VPN anyway.
False.
My WireGuard VPN uses pre-verified encryption keys and all data between the nodes is encrypted with them.
Nothing (whether put there by the cell carrier, public wifi provider, or some gang member who climbed the telephone pole) can decrypt that communication except the devices which already have the keys.
I’m not sure what makes you think VPN security is moot, but you are misinformed.
Using a VPN is always more secure than not using one, particularly if you control the server on the other end.
The only time a VPN wouldn’t help is if your device itself is compromised at which point you have other problems than a VPN anyway
Check out tailscale (or headscale)
It lets you connect those devices without necessarily sending all data through your home network when you are remote. (Though that is an option along with many other great features like ssh authentication)
It also uses WireGuard for the backend which is more secure and efficient than openvpn.
…at several vendors, this was just the first one I pulled up.
You’re looking at a month or so wait for delivery at the most if you order now.
Yesterday they still had first batch available so maybe other vendors still do too.
I don’t think the pi5 will suffer the same availability issues the pi4 has
That’s quite an understatement.
It has:
- a new SOC
- a new Southbridge
- 5A USB-PD
- a dedicated fan connector
- a dedicated uart connector
- 2 dual purpose DSI/CSU connectors (you can now use two displays or two cameras instead of one of each)
- A PCIE FPC ribbon connector like the one used for DSI/CSI (you don’t need a hat, just a ribbon) also the pi4 did not have any accessible PCIE lanes, only the cm4 did. Also the pi5 is capable of PCIE Gen3
- More bandwidth for the usb3 connectors
- more bandwidth for Wi-Fi (reports are it gets about double the bandwidth despite using the same Wi-Fi chip)
- Fully SMD board, no through-hole components.
There’s plenty of stuff I would have liked to see that didn’t make it, but there definitely a lot more to it than an RTC and a power button. For $60 this is not a bad SBC at all.
I would have liked to see normal HDMI connectors, 2.5G Ethernet with PoE included, and higher RAM options.
More PCIe lanes would have been nice too but probably unlikely given the price point
Kopia is my favorite by far!
It’s super fast and has tons of great features including cutting-edge encryption and several compression options.
It has a GUI and is cross-platform.
It can do both cloud and local/network backups.
That includes locally mounted disks, SFTP, rsync, or any network share/etc accessible from your machine as well as many cloud options.
The de-duplication stuff is also killer. If you upload the same file (or chunk of data) in different folders or even from different systems it will map them to the same backup storage potentially saving you a ton of storage space.
It also uses a rolling hash system so if you modify just a handful of megabytes from a 25GB file many times, only the megabytes of changes will need to be backed up to store the version history. You do not need to store 25GB every time you modify that file.
There’s a ton of other goodies as well!
And it’s all FOSS!
I use it to backup to an external hard drive, a NAS, and to Amazon S3. You can configure multiple repositories like that and have them all run at the same time (subject to their individual scheduling policies of course)
Relatable.
Except it’s missing:
5b. Try 100 different things, none of which fix it and several of which will create other problems later