Hi everyone,

As always, every time I look at the AWS Glacier egress fee calculator I get fairly irked at how much they charge. Was wondering if anyone knew of any alternatives for cold storage in the cloud without such egregious charges. I will likely not access it ever because I have another offset backup, but just in case I do, I wouldn't want to fork over thousands, really.

I don't know how reliable Scaleway's service is, and Cloudflare's R2 doesn't have a Archive offering. I would be interested in the Azure if anyone can convince me that I won't go bankrupt trying to retrieve my data from them. I don't want to go with Google with the recent stuff they have been doing with data on their servers.

Thanks!

Hi, I was planning to encrypt my files with GPG for safety before uploading them to the cloud. However, from what I understand GPG doesn't pad files/do much to prevent file fingerprinting. I was looking around for a way to reliably pad files and encrypt metadata for them but couldn't find anything. Haven't found any recommendations on the privacyguides website either. Any help would be appreciated!

Thanks

LocalMonero is shutting down. How do you plan to do fiat<->XMR now? Do you just keep the addresses and accounts of traders on file and keep going? What about people who haven't started exchanging fiat for XMR yet?

Thanks

publication croisée depuis : https://lemmy.world/post/14573897

> I'm asking this because I'm very new to the Yocto project. I'm going through the documentation but it's a bit overwhelming to me, looking at what Fishwaldo has achieved (link embedded in the title). I would like to learn how he did it and how I could create my own image based on a supported kernel with necessary drivers and boot the Star64 board. > > From what I understand, he: > > 1. Forked the kernel tree and created his own branch. > 2. Put in the necessary drivers (including OEM drivers) - I'm not really sure how he did it since I'm new to Linux (any tips would be appreciated!). > 3. I can't quite make out the layers he used to build the minimal image (I will study the guide more to figure this out). > 4. Finally, he compiled it, alongside compiling U-boot, partitioned the SD-card and booted the device. > > Am I right? I'm missing a lot of steps in the middle, would really appreciate any help in understanding this. Thanks!

publication croisée depuis : https://lemmy.world/post/14573897

> I'm asking this because I'm very new to the Yocto project. I'm going through the documentation but it's a bit overwhelming to me, looking at what Fishwaldo has achieved (link embedded in the title). I would like to learn how he did it and how I could create my own image based on a supported kernel with necessary drivers and boot the Star64 board. > > From what I understand, he: > > 1. Forked the kernel tree and created his own branch. > 2. Put in the necessary drivers (including OEM drivers) - I'm not really sure how he did it since I'm new to Linux (any tips would be appreciated!). > 3. I can't quite make out the layers he used to build the minimal image (I will study the guide more to figure this out). > 4. Finally, he compiled it, alongside compiling U-boot, partitioned the SD-card and booted the device. > > Am I right? I'm missing a lot of steps in the middle, would really appreciate any help in understanding this. Thanks!

I'd like to be able to contribute financially to people/communities who run infrastructure, such as nodes, for layers like I2P and Freenet. Where do I find them, and does contributing directly to the projects themselves help in this regard?

Thanks!

Has anyone tried this?

I realise that this question is subject to local trends (and I'm in the US), but I encourage people in other countries to submit their methods!

How do you accept packages/deliveries anonymously? Of course, there are mail redirection services, but a third party which corroborates with different parts of the chain can likely figure out your identity and what you have purchased/have incoming.

I haven't been able to find a good solution to this yet, and I believe the new rule in the US is that the receivers identity must be reported to the government? This (or a variation of this, I don't remember) is a recent event.

Thanks!

Say I purchase a laptop from Amazon/Walmart/any big box store. I assume they note down the unique identifier for the device and link it to the purchase, which has my credit card information.

How would Ebay do this? I'm curious about the extent of information that the marketplace giants have of consumers purchasing electronics from them. Cheap Chinese gizmos might not have unique identifiers but a Dell Laptop certainly has a few.

I'm sure some here can imagine the technical reason for the question. Have a good day ahead!

I remember reading an article where the government and Google were able to read notifications and record them from every android device. I wonder if Graphene might have patched this problem, and if not, do they have any plans to do so?

Thanks!

Hi,

A problem I have been coming up against is that a lot of the newer, budget Windows laptop (which I will immediately replace with my distribution of choice upon receipt) have memory soldered on the motherboard. This is a decision which brings the utmost distate to my mouth; I'm looking for budget laptops around the $300 mark (new) that let me upgrade their parts. Which models should I be looking at?

I am aware that the used market is fairly decent right now but I'd like to take a look at what's coming up alongside looking at used gear. Thanks.

Hi everyone,

I would like to ask your opinions on reliable cloud storage providers for media. I have a media collection that isn't too big (about 2-3TB) that I'd like to store on the cloud since I'll be moving in the future and don't think I can handle multiple hard drives.

What do you suggest? Any issues I should be looking at? I came across Wasabi too, along with the more expensive Scaleway and Cloudflare R2 offerings. For now Backblaze seems fine in terms of reliability, but has anyone come across complaints from them regarding what is stored on their servers?

Thanks!

If someone here doesn't want to use GNU at all, Plan9 is probably the next best thing. Is there anyone here that actually uses it day to day?

Conceptually, it's fairly easy to understand - nftables, relayd, likely some firewall application.

However, is it as simple as configuring the WAN port as the WiFi interface and leaving it at that? Note that I'm not bothered about double NAT since I won't be opening any ports, and the main router cannot be touched.

I do want my own SSIDs, my VLANs, control over the firewall etc. Basically, my own network space. If anyone has done this/has an idea of the problems I might run into, please do comment!

Appreciate the help!

Hi everyone,

Was just going through tower server listings on Ebay. I'm seeing my options decrease mainly due to not being able to fit a standard ATX/SFX PSU into some of these systems.

For example:

1. Dell Precision T3600/T3610/T5810/T7820 series: PSU with a short height, seems to have about the length of a standard PSU.
2. Lenovo ThinkStation P520 - although this looks like a TFX PSU from the outside, it's actually a very different way to connect to the components inside.
3. HP Z440: strange size of the PSU. I don't think an ATX PSU can fit in there.

Now, I have failed in trying to find brackets to place normal PSUs in these configurations. The reason why I don't purchase PSUs on Ebay is because I can't exactly be sure if they are used or not, and I prefer purchasing new PSUs.

With that said, for everyone who purchases these tower workstations - how do you replace your PSUs?

Thanks.

I might not deserve to say this, but I really wish Proxmox GmbH maintained an "official" terraform provider instead of relying on the community completely for it, à la Vates (XCP-ng). To be fair, it was the same with VMWare, so I'm not putting the blame on them.

For example, neither one out of the two well known Terraform providers (Telemate and bpg) support the newer SDN capabilities. Now, of course, it's new so I completely understand that it would take time to write code for said functionality. Especially when it's a community effort. It's just that if Proxmox handled it directly I feel like the community would be able to better support them by supplementing features on top of a base that they create instead of going from scratch.

I believe Proxmox has said that Terraform is not their priority, and I understand. It's a bad economy and companies are looking to downsize anyway. With that said, I hope I do get to see this someday.

Speaking of which, which IaC tool do you use for your Proxmox install/cluster?

For context: I want to automatically enable Intel SGX for every VM and LXC in Proxmox, but it doesn't seem like there's a way to do it using APIs AFAIK (so Terraform is out of the question unless I've missed something) other than editing the template for the individual LXC/VM.

I'd like to know if there's a tool that can automate this. I could potentially write a shell script but I'd like to know if there's something that's mature software before I go do this. I have been reading about Packer, Vagrant and cloud-init but I don't think this is something in their scope of usage.

Thanks!

I am going to intentionally exclude Unifi and Mikrotik along with the vendors like Cisco, Juniper, Aruba etc from this discussion as I don't think they are relevant (especially since you can't run them on your hardware).

1. OPNsense: Considered the superior alternative to PFSense. Great firewall, routing capabilities, IDS and certificate authority, advanced features, can be a DNS server etc. Best option all around for x86, but BSD based - take note of available drivers. Don't even think about running random WiFi antennas unless you confirm good support for them (use a distinct WAP).
2. OpenWRT: built for consumer router + switch + WAP boxes on embedded hardware. Great OS and uses very little resources with many features, but doesn't compete in features with OPNsense if you have x86.
3. VyOS: Debian based router + firewall. Linux makes it easier for people to pick up the CLI but I've heard complaints about it being difficult to follow. Currently CLI only, at least without third-party solutions, but is powerful and competes directly with OPNsense for features for the most part. Edit: I made a mistake - LTS versions also have their source available for free, you'd just need to compile it with the instructions on their website. Seems to be stable.
4. Debian + FRRouting + nftables + heavy SELinux for the paranoid/analogous alternatives on OpenBSD (the latter is considered more secure but YMMV, configuration plays a big part here).
5. Freemium: Sophos free version for home use.

Which one of these do you run, and why? What have been your issues with one or the other, and what have you settled on? Any niche customisations that you might have made? I'm very interested to know!

Cheers

---

Edit: it would seem that OPNsense is a big winner in this space for stability. OpenWRT comes next because of it's very light nature and ability to run on consumer routers.

I'm curious as to why someone would need to do that short of having a bunch of users and a small office at home. Or maybe managing the family's computers is easier that way?

I was considering a domain controller (biased towards linux since most servers/VMs are linux) but right now, for the homelab, it just seems like a shiny new toy to play with rather than something that can make life easier/more secure. There's also the problem of HA and being locked out of your computer if the DC is down.

Tell me why you're running it and the setup you've got that makes having a DC worth it.

Thanks!

As the title says, I want to know the most paranoid security measures you've implemented in your homelab. I can think of SDN solutions with firewalls covering every interface, ACLs, locked-down/hardened OSes etc but not much beyond that. I'm wondering how deep this paranoia can go (and maybe even go down my own route too!).

Thanks!