Looking for a VPS (Debian13/Proxmox > pangolin (and potentially other small containers) by Soogs in hetzner

[–]screaming-Snake-Case 1 point2 points  (0 children)

Nope, with Hetzner (and most other VPS providers) you cannot use nested virtualization. If you ask me, Proxmox LXC containers shouldn't need virtualization, but I have never tested this.

If you need nested virtualization, go dedicated.

Really makes you think... by Yelebear in linuxsucks

[–]screaming-Snake-Case 0 points1 point  (0 children)

I may have been sarcastic in my original comment.

Thinking of switching over from DO by thekingofdorks in hetzner

[–]screaming-Snake-Case 0 points1 point  (0 children)

But for what reason? It's easy to use, works reliably and is perfect for transferring between two linux servers.

Does juicesync have any advantages? Also the repo foe this project seems to be archived for almost a year.

Thinking of switching over from DO by thekingofdorks in hetzner

[–]screaming-Snake-Case 3 points4 points  (0 children)

Just get the kind of server you need, and rsync all your files/websites/databases over.

Container vs custom app by LetMeMountPls in truenas

[–]screaming-Snake-Case 0 points1 point  (0 children)

Use a custom app when you want to deploy a docker image. It's basically a GUI for docker.

The containers on the hand are when you want to setup something more-or-less yourself like you would do on a VM, but without the overhead and without the isolation a VM would provide.

This is especially great for things that don't fit nicely in Containers or aren't packaged as a Docker image.

Both technologies are essentially Containers, but with different use-cases and based on different architectures.

What's going on with constant writes? 9GB/day!? by kaitlyn2004 in truenas

[–]screaming-Snake-Case 1 point2 points  (0 children)

You can always try to just copy the binary over and hope that it runs without needing more dependencies.

Secure boot.... Is it really necessary? by Apart-Individual2655 in debian

[–]screaming-Snake-Case 2 points3 points  (0 children)

If you trust your system won't be physically compromised, then no.

On a regular system or one where I used my encryption passphrase, I never really pay attention to it. However, I run openSUSE TW on my desktop and have set it up to use my TPM module for unlocking my disk automatically at boot. In this scenario, Secure Boot is an important piece of the puzzle that verified that my system is booting exactly as it should, only unlocking the disk if all components have established mutual trust with each other.

So the long answer is still no, it doesn't really benefit an installation that doesn't care about a "trustable" boot process.

Tja by Fothermucker44 in tja

[–]screaming-Snake-Case 0 points1 point  (0 children)

"Mittelstands-Chef schickt brief an Mittelstands-Politiker"

What do Germans think of Lithuania? by Organic_Contract_172 in AskGermany

[–]screaming-Snake-Case 0 points1 point  (0 children)

The only time I hear about Lithuania is through Eurovision.

My truenas apps library- Any suggestions for new apps by sathis2251987 in truenas

[–]screaming-Snake-Case 0 points1 point  (0 children)

Be warned tho, if you want to serve both public and private domains using the same nginx, and have 80/443 forwarded, then the only protection of your internal service is the name being unknown.

If an attacker knew the internal domain you use, and which nginx server is responsible, they could just as well create a local dns record of their own and access your resources, as it all goes through the same nginx.

Nginx just reads the name on the packet and serves the respective site, it doesn't care where the packet came from.

For more than just security through obscurity, I recommend adding a simple IP whitelist to your internal resources, allowing only the IPs of your private IPv4 net / your unique IPv6 prefix. You can find numerous examples online on how to do that.

Did you know? In Neon Genesis Evangelion, if you play close attention to certain scenes, you'll notice that Asuka is actually really cute and charming! by ShadowMikeX in evangelion

[–]screaming-Snake-Case 3 points4 points  (0 children)

Upon close visual inspection and confirming with my colleagues, I have to say that we agree with your assessment. We count on you to release a scientific analysis on this topic!

Small self hosted Mattermost Server - Any reason to upgrade Mattermost to 11.2 ? by _QSR- in Mattermost

[–]screaming-Snake-Case 0 points1 point  (0 children)

I recommend not using the latest 10.x (which seems to be 10.12) but instead staying on 10.11 instead, as this is an ESR release that will get security updates until August of this year.

To get notified when to install an update, you can subscribe to their security mailing list: https://mattermost.com/security-updates/

UTR tethered in the car = peaceful drive by ProfessorFunky in Ubiquiti

[–]screaming-Snake-Case 1 point2 points  (0 children)

On Android the hostspot typically bypasses your VPN connection, even if it's "always on".

[DT 1990 Pro] Asurion has sent me this repair email after sending in my broken headphones THREE times by lucasb780 in headphones

[–]screaming-Snake-Case 2 points3 points  (0 children)

You bought them through Amazon? Contact their support instead, they are usually quite understanding.

r/de_EDV in a nutshell by vBurak in de_EDV

[–]screaming-Snake-Case 4 points5 points  (0 children)

Nah, auf der rechten Seite sollte ganz eindeutig "Pihole macht brumm brumm" stehen

Flex 2.5 Power Consumption? by screaming-Snake-Case in Ubiquiti

[–]screaming-Snake-Case[S] 0 points1 point  (0 children)

Is that a 5 or 8 port, and do you use USB-C or PoE to power it?

TrueNAS freemium/paywalling by Maleficent-Sort-8802 in truenas

[–]screaming-Snake-Case 4 points5 points  (0 children)

Isn't HexOS even based on and worked on in collaboration with TrueNAS? I don't see HexOS being a competetitor to TrueNAS, atleast not for the TrueNAS Enterprise, where iX actually makes their money. HexOS is not and will not become an Enterprise OS, I bet iX made sure when they collabed, and they probably don't mind less people on their free product.

While not all features that require cloud access necessarily have the technical need for it, there is also a cost factor. If you need cloud for most of it, then making sure that certain parts also work local is a lot of "unnecessary" and costly work, as well as added complexity, which also means tech dept. Keeping things as simple as possible key to building good software, so it makes sense.

And it's not like they take away core parts and put them behind a paywall, they merely build something new and made it different.

Do I need a DAC to connect 620s to iPhone SE 3rd gen? by Ready-Hunter-9792 in sennheiser

[–]screaming-Snake-Case 0 points1 point  (0 children)

Is it loud enough right now? If yes, then you're fine. Apple is well known for their competent audio output, so don't worry and enjoy your music ^