do we have pipes from there yet?

would you give hungary the bomb?

but I don’t run a recursive resolver, I use quad9 as upstream. Shouldn’t they return a response even if I was blocked?

dig confirms with EDNS extensions that the response is coming from quad9. the error says “no reachable authority” so it must be at least partly what you say, but I think you ended up blocking a DNS provider.

what’s more, I can’t load this meme normally, my pihole says “no reply received” for the single domain of dubvee.org

why did you disable that for it? genuinely interested

guess what, you don’t need to install 2 foss apps into separate android accounts for that

it just seems like they have no clue how to use their phone. or they created dozens of android user accounts, one for each app they use, which does not make any sense but really thwarts using the clipboard

I heard blue iris can be run with wine on linux

I guess it’s just google sans, they use this placeholder elsewhere too

oh, LXC containers! I see. I never used them because I find LXC setup more complicated, once tried to use a turnkey samba container but couldn’t even figure out where to add the container image to LXC, or how to start if not that way.

but also, I like that this way my random containerized services use a different kernel, not the main proxmox kernel, for isolation.

Additionally, having them as CTs mean that I can run straight on the container itself instead of having to edit a Docker file which by design is meant to be ephemeral.

I don’t understand this point. on docker, it’s rare that you need to touch the Dockerfile (which contains the container image build instructions). did you mean the docker compose file? or a script file that contains a docker run command?

also, you can run commands or open a shell in any container with docker, except if the container image does not contain any shell binary (but even then, copying a busybox or something to a volume of the container would help), but that’s rare too.
you do it like this: docker exec -it containername command. bit lengthy, but bash aliases help

Also for the over committing thing, be aware that your issue you’ve stated there will happen with a Docker setup as well. Docker doesn’t care about the amount of RAM the system is allotted. And when you over-allocate the system, RAM-wise, it will start killing containers potentially leaving them in the same state.

in docker I don’t allocate memory, and it’s not common to do so. it shares the system memory with all containers. docker has a rudimentary resource limit thingy, but what’s better is you can assign containers to a cgroup, and define resource limits or reservations that way. I manage cgroups with systemd “.slice” units, and it’s easier than it sounds

perhaps we should try some kind of conversion therapy on them, if you know what I mean

just know that sometimes their buggy frontend loads the analytics code even if you have opted outm there’s an ages old issue of this on their github repo, closed because they don’t care.

It’s matomo analytics, so not as bad as some big tech, but still.

unless you have zillion gigabytes of RAM, you really don’t want to spin up a VM for each thing you host. the separate OS-es have a huge memory overhead, with all the running services, cache memory, etc. the memory usage of most services can largely vary, so if you could just assign 200 MB RAM to each VM that would be moderate, but you can’t, because when it will need more RAM than that, it will crash, possibly leaving operations in half and leading to corruption. and to assign 2 GB RAM to every VM is waste.

I use proxmox too, but I only have a few VMs, mostly based on how critical a service is.

Honestly, this is the kind of response that actually makes me want to stop self hosting. Community members that have little empathy.

why. it was not telling that they should quit self hosting. it was not condescending either, I think. it was about work.

but truth be told IT is a very wide field, and maybe that generalization is actually not good. still, 15 containers is not much, and as I see it they help with not letting all your hosted software make a total mess on your system.

working with the terminal sometimes feels like working with long tools in a narrow space, not being able to fully use my hands, but UX design is hard, and so making useful GUIs is hard and also takes much more time than making a well organized CLI tool.
in my experience the most important here is to get used to common operations in a terminal text editor, and find an organized directory structure for your services that work for you. Also, using man pages and --help outputs. But when you can afford doing it, you could scp files or complete directories to your desktop for editing with a proper text editor.

What needs more than 1gbe? Are you streaming 8k?

I think they wanted to mean it was a bottleneck while moving to the new hardware

chinese software is way too often shoddy quality. the state does not need to plant backdoors, because most all of their products already include them. nothing is invulnerable, true, but chinese software is just not secure at all.

for an example, just look up chinese iot devices, even popular brands like tplink. lots of unbranded and sometimes noname branded cameras use the same firmware base, connecting to the same cloud service allowing unauthenticated remote access to the devices, their networks, and arbitrary firmware updates.

neither does the something.vercel.app domain

I think copyparty can handle partial transfers both ways

set the fs watcher delay to something small in the advancdd folder settings in syncthing.

https://docs.syncthing.net/users/config?version=v1.29.6#config-option-folder.fswatcherdelays

oh that’s good to know, thanks!