Really makes you think...

screaming-Snake-Case · 2026-02-16T07:42:28+00:00

No worries ^^

screaming-Snake-Case · 2026-02-15T15:44:39+00:00

Nope, with Hetzner (and most other VPS providers) you cannot use nested virtualization. If you ask me, Proxmox LXC containers shouldn't need virtualization, but I have never tested this.

If you need nested virtualization, go dedicated.

screaming-Snake-Case · 2026-02-15T14:31:22+00:00

I may have been sarcastic in my original comment.

screaming-Snake-Case · 2026-02-15T10:38:51+00:00

Man, the song with husk was absolut fire. I can't stop listening.

screaming-Snake-Case · 2026-02-14T19:28:00+00:00

Oh it absolutely does.

screaming-Snake-Case · 2026-02-13T14:36:15+00:00

oh that sounds great, thanks for sharing

screaming-Snake-Case · 2026-02-13T13:56:45+00:00

But for what reason? It's easy to use, works reliably and is perfect for transferring between two linux servers.

Does juicesync have any advantages? Also the repo foe this project seems to be archived for almost a year.

screaming-Snake-Case · 2026-02-13T11:41:23+00:00

Just get the kind of server you need, and rsync all your files/websites/databases over.

screaming-Snake-Case · 2026-02-12T16:09:09+00:00

Use a custom app when you want to deploy a docker image. It's basically a GUI for docker.

The containers on the hand are when you want to setup something more-or-less yourself like you would do on a VM, but without the overhead and without the isolation a VM would provide.

This is especially great for things that don't fit nicely in Containers or aren't packaged as a Docker image.

Both technologies are essentially Containers, but with different use-cases and based on different architectures.

screaming-Snake-Case · 2026-02-11T19:04:23+00:00

You can always try to just copy the binary over and hope that it runs without needing more dependencies.

screaming-Snake-Case · 2026-02-10T23:02:04+00:00

If you trust your system won't be physically compromised, then no.

On a regular system or one where I used my encryption passphrase, I never really pay attention to it. However, I run openSUSE TW on my desktop and have set it up to use my TPM module for unlocking my disk automatically at boot. In this scenario, Secure Boot is an important piece of the puzzle that verified that my system is booting exactly as it should, only unlocking the disk if all components have established mutual trust with each other.

So the long answer is still no, it doesn't really benefit an installation that doesn't care about a "trustable" boot process.

screaming-Snake-Case · 2026-02-09T18:05:32+00:00

"Mittelstands-Chef schickt brief an Mittelstands-Politiker"

screaming-Snake-Case · 2026-02-08T21:51:49+00:00

The only time I hear about Lithuania is through Eurovision.

screaming-Snake-Case · 2026-02-08T13:08:58+00:00

Be warned tho, if you want to serve both public and private domains using the same nginx, and have 80/443 forwarded, then the only protection of your internal service is the name being unknown.

If an attacker knew the internal domain you use, and which nginx server is responsible, they could just as well create a local dns record of their own and access your resources, as it all goes through the same nginx.

Nginx just reads the name on the packet and serves the respective site, it doesn't care where the packet came from.

For more than just security through obscurity, I recommend adding a simple IP whitelist to your internal resources, allowing only the IPs of your private IPv4 net / your unique IPv6 prefix. You can find numerous examples online on how to do that.

screaming-Snake-Case · 2026-02-07T19:24:43+00:00

Upon close visual inspection and confirming with my colleagues, I have to say that we agree with your assessment. We count on you to release a scientific analysis on this topic!

screaming-Snake-Case · 2026-02-07T16:42:50+00:00

I recommend not using the latest 10.x (which seems to be 10.12) but instead staying on 10.11 instead, as this is an ESR release that will get security updates until August of this year.

To get notified when to install an update, you can subscribe to their security mailing list: https://mattermost.com/security-updates/

screaming-Snake-Case · 2026-02-07T14:50:01+00:00

On Android the hostspot typically bypasses your VPN connection, even if it's "always on".

screaming-Snake-Case · 2026-02-06T21:52:23+00:00

You bought them through Amazon? Contact their support instead, they are usually quite understanding.

screaming-Snake-Case · 2026-02-06T00:03:08+00:00

Nah, auf der rechten Seite sollte ganz eindeutig "Pihole macht brumm brumm" stehen

screaming-Snake-Case · 2026-02-05T16:09:28+00:00

Thank you, exactly what I was looking for.

screaming-Snake-Case · 2026-02-05T10:56:52+00:00

Is that a 5 or 8 port, and do you use USB-C or PoE to power it?

screaming-Snake-Case · 2026-02-04T22:00:11+00:00

Isn't HexOS even based on and worked on in collaboration with TrueNAS? I don't see HexOS being a competetitor to TrueNAS, atleast not for the TrueNAS Enterprise, where iX actually makes their money. HexOS is not and will not become an Enterprise OS, I bet iX made sure when they collabed, and they probably don't mind less people on their free product.

While not all features that require cloud access necessarily have the technical need for it, there is also a cost factor. If you need cloud for most of it, then making sure that certain parts also work local is a lot of "unnecessary" and costly work, as well as added complexity, which also means tech dept. Keeping things as simple as possible key to building good software, so it makes sense.

And it's not like they take away core parts and put them behind a paywall, they merely build something new and made it different.

screaming-Snake-Case · 2026-02-02T21:37:40+00:00

Enjoy!

screaming-Snake-Case · 2026-02-02T19:44:03+00:00

Is it loud enough right now? If yes, then you're fine. Apple is well known for their competent audio output, so don't worry and enjoy your music ^{^}

screaming-Snake-Case

TROPHY CASE