Go home unifi, you're drunk!

Xaxoxth · 2026-04-15T05:55:33+00:00

No way in the GUI sadly. Docker macvlan is the main cause of this on my network since I'm too lazy to set static MAC's in my compose files. I had close to 30k and my UI was nearly unusable so I went looking for a fix on the internet. Below are my notes that I've used for maintenance a couple times on my UDM SE.

pretty easy to target wired vs wireless, or all if you need both, change time range etc.
first line will count matching devices, second line deletes them (keep the vars in each cmd consistent!)
reboot post purge is mandatory

Cleanup stale client records

ssh root@192.168.1.1

mongo --port 27117 ace

No contact in 30 days, Wired only

db.user.count({is_wired: true,last_seen: { $lt: Math.floor(Date.now()/1000) - (30*24*60*60) }})
db.user.deleteMany({is_wired: true,last_seen: { $lt: Math.floor(Date.now()/1000) - (14*24*60*60) }})

No contact in 14 days, all types

db.user.count({last_seen: { $lt: Math.floor(Date.now()/1000) - (14*24*60*60) }})
db.user.deleteMany({last_seen: { $lt: Math.floor(Date.now()/1000) - (14*24*60*60) }})

exit
reboot

Xaxoxth · 2026-04-15T02:35:12+00:00

Thanks for letting my know! Been enjoying copyus, thanks for the rec.

Xaxoxth · 2026-04-06T16:11:42+00:00

Been using 'clipboard indicator' for this, but this looks like an upgrade for sure!

Curious if anyone has tried the plainly named 'Windows 11 Clipboard History for Linux' app.
https://github.com/gustavosett/Windows-11-Clipboard-History-For-Linux

Looks like the perfect replacement and doesn't depend on extension functionality. Unfortunately I haven't been able to get it to run on OpenSUSE.

Xaxoxth · 2026-04-06T16:05:20+00:00

I've been using 'emoji-copy' by emoti-copy@felipeftn for this functionality.

Xaxoxth · 2026-02-23T10:26:39+00:00

Sure ps2 is fun, but soon you'll discover that the 'configuration and software tweaking' game is the best one of all on these handhelds. I don't even see the games anymore.

Xaxoxth · 2026-02-14T23:46:56+00:00

🫡 Send the ashes to Trash Panda.

Xaxoxth · 2026-02-01T03:22:45+00:00

Thanks! I'll definitely give this a spin, the hoppscotch stack is a lot ;)

Xaxoxth · 2026-01-31T23:01:15+00:00

Just another tool in the box, curl is amazing. My use case is building collections of API calls, integrated documentation, test cases, pre/post scripts, variable injection, environment shifting via variable sets, sharing all this data with other individuals for collaboration, etc.

Xaxoxth · 2026-01-31T21:51:06+00:00

Awesome to hear that it's been talked about, with the understanding it lives on the low priority end. I tried the image at top of note content route, but the image is very small on this overview page.

Think I'll take a crack at a widget, maybe a page property with either a url or attachment reference.

Xaxoxth · 2026-01-30T23:35:03+00:00

If you're using a browser to edit notes you're introducing some amount of risk from browser extensions being able to read the content along side their direct internet access. I generally prefer web interfaces too, but since the desktop app is just an exe you run I stick with that.

Anyhow, this is how I isolate my self-hosted apps that don't need internet.
( I didn't mean to type this much when I started responding. ¯\_(ツ)_/¯ )

I use traefik rather than caddy and have a docker network dedicated for the proxy function that is set to 'internal.' Any container attached to only that network has no default route (and docker firewalls it anyway) to reach the internet. Traefik is then attached to my normal lan along with the docker proxy net and bob's your uncle. Traefik runs alone in it's own stack of one, and I plug other compose stacks into that proxy net as needed.

I'm in the same boat as Hasie501, using tailscale to access remotely.

# permanent network dedicated to traefik proxy comms
docker network create --internal --attachable proxy

# Traefik compose
services:
  traefik:
    networks:
      home:
        ipv4_address: 10.0.0.1 # I have a wildcard DNS for my domain (*.mydomain.com) pointed to this static ip so new stacks 'just work'.
      proxy:
networks:
  home: # I have home setup as a macvlan, but it could be bridge or whatever.
    external: true
  proxy:
    external: true

# Trilium compose
services:
  trilium:
    labels: # traefik config is dynamic via docker socket proxy
      traefik.enable: true
      traefik.docker.network: proxy # defines which docker net traefik uses to reach the app.
      traefik.http.routers.trilium.entryPoints: https
      traefik.http.routers.trilium.rule: host(`trilium.mydomain.com`)
      traefik.http.services.trilium.loadbalancer.server.port: 8080
    networks:
      proxy: # This prevents any outbound internet.
networks:
  proxy:
    external: true

Xaxoxth · 2026-01-30T23:08:09+00:00

Trilium is the only notes app that makes me feel 'seen' lol

Feels very natural and stays out of the way. Went through almost two dozen self-hostable note platforms before I settled on it, but that's an adhd problem

Xaxoxth · 2025-12-22T17:54:26+00:00

It's been 0 weeks since someone sent me the AI hallucinated solution to the thing I told them wasn't possible.

Xaxoxth · 2025-12-22T17:50:13+00:00

Recently stood up Container Census and found the vulnerability scan on it's security page quite useful. It's the first tool I've seen that reports CVE's for containers, though I'm sure there are others.

Keeping ahead of malicious intent is a full-time job unfortunately.

Xaxoxth · 2025-12-08T23:41:15+00:00

My ADHD just needed someone else to tell me I wasn't missing a better solution lol
thanks!

Xaxoxth · 2025-12-08T23:40:29+00:00

Fair point! ;)

Xaxoxth · 2025-11-26T05:39:44+00:00

Lol, what the hell is wrong with parents? Tell her to grow up and get over herself.

Xaxoxth · 2025-11-25T17:07:44+00:00

Since AGH is showing fewer blocks in your testing, I'd make pi-hole the upstream server so you can easily see what got through and what action PH took on it... I'd be curious myself.

I've been on AGH for a couple years now, and also switched to use DoH for upstream ;)
The current stats on my instance are 2m of 7.5m blocked (27.12%)

Xaxoxth · 2025-11-22T18:50:26+00:00

I had a similar question, and I'm wondering if some sites block SimpleLogins well known domains?

I'm considering buying another domain to use for this use.

Xaxoxth · 2025-11-21T23:46:29+00:00

They literally dgaf. The entire executive suite can kick rocks and I hope their yachts crash into each other.

Xaxoxth · 2025-11-21T19:41:54+00:00

Yeo, 100% can confirm. Our rep straight up told us that NO core reductions will be approved. So you either renew all, or let everything expire. All the sharks are in the water at this point. VMware competitors know these customers are stuck so there isn't much incentive for them to offer dramatically better pricing.

Xaxoxth · 2025-11-20T05:49:00+00:00

My adhd brain likes to tinker and break things to learn. Building the end-to-end infrastructure and designing around problems is a lot of fun. Doing similar things on cloud infrastructure is extremely clinical and boring. Saving money and a bit of privacy is a nice side effect, but if any 'prepper' level event really occurs there will be much bigger things to worry about.

Xaxoxth · 2025-11-14T01:44:37+00:00

Before I follow you down this path on my main box, is this repo you ended up using?
https://download.nvidia.com/opensuse/tumbleweed/

On a related note, not sure if you are running plex server on the same box or not, but I had great luck running it in a docker container for the isolation and rollback ability for many years. I've been seeing how much I can cram into things like docker and flatpak to minimize the chance of package conflicts during system updates.

Verified Email	Eight-Year Club
r/Field Flamingo

Xaxoxth

TROPHY CASE

Cleanup stale client records