2xsaiko

Yup!

Never seen this before, but you can enable NFS debugging with ‘rpcdebug -m nfs -s all’ (or nfsd on the server, or rpc for the underlying protocol). It prints to dmesg.

IIRC Keepass2Android does have that feature.

What they suggest sounds like setting up a bridge interface between your LAN and the VPN interface to connect the VPS with your LAN. That’s actually a good idea since it would not need you to have a separate /64 for your local network. In this case I’m pretty sure that your VPN needs to be a layer 2 VPN, i.e. transports whole ethernet frames instead of TCP/UDP only, for this to work correctly. Wireguard doesn’t do this, OpenVPN can for example.

To make the VPS a gateway, you need to configure it to forward packets between networks and then set it as your default route on the clients (with IPv6, default route is usually published using router advertisements, set up radvd service on your VPS for that). That’s pretty much it IIRC except for the firewall rules. Here’s an article that’s some cloud stuff but is also applicable to your situation: https://www.linode.com/docs/guides/linux-router-and-ip-forwarding/#enable-ip-forwarding

Hm, it doesn’t? I’m not behind CGNAT but I’m in a network I don’t control (university dorm) so my gateway is just another device in the local network and I don’t have a public IP which I control, which I feel like should effectively be the same thing as CGNAT, and it works for me. Maybe it isn’t the same.

The easy way is to just use tunnelbroker.net, that is what I currently have (this would use one of their assigned net blocks, not the one from the VPS). Set it up on the Pi, set up IP forwarding with appropriate firewall rules, make the Pi serve RA so clients can assign themselves an IP, done (IIRC).

If you want to set up the v6/v4 gateway yourself, I would do this with a /64 you can fully route to your home network like you would get with tunnelbroker.net because then you don’t have to deal with the network split and essentially two gateways for the same network (your Pi and the VPS), because otherwise your clients would assume the VPS is directly reachable since it’s in the same network when in reality it would have to go through the gateway (you would have to set up an extra route in that case on every client, I think). You’d need a second network from Oracle for this.

But it’s pretty much the same thing I would assume plus the setup on the VPS side, make the VPN route your /64 block (or use 6in4 which is what tunnelbroker.net uses), configure IP forwarding on the Pi and the VPS between the VPN interface and local/WAN respectively.

Don’t use passwords for public SSH in the first place. Disable password authentication and use pubkeys.

Registrars (or DNS providers if you don’t use the one that comes with your registrar) worth using have an API to manage DNS entries. That’s basically all there is to DynDNS.

Same same same. I would love to have one, and I would absolutely be down to have mine preserved.

Also I study CS which is funny considering the “he works in IT” from the OP

Here’s some from my photos library:

Most of these are from tumblr except for the second one which is from telegram and the fifth one which is from lemmy

I don’t think this is at all something leftists in general think and I see a lot of them calling out what’s going on in Venezuela right now as large human rights violations. This is pretty much only something I see said by tankies (which is a small fraction of leftists).

What are these left-wing “delusions” lmao

It offers no practical benefit to small networks at the moment.

The internet is not a “small network”, and I assume your small network is connected to it. You need local IPv6 routing to have access to IPv6-only hosts which are becoming more and more because it’s reasonable in terms of price to get an IPv6 block unlike IPv4 blocks which are being auctioned for tens of thousands of dollars at this point (!!!).

Also restoring global addressing is a huge benefit. P2P communications in IPv4 has become an insane mess of workarounds due to lack of addresses and this becomes worse the more layers of NAT you stick behind each other to try to save your ass from the rising tide.

I’m really sick of hearing these idiotic excuses over and over, “it’s hard” this, “it’s unsafe” that, “it’s expensive”, “understanding the eldritch secrets of IPv6 has driven 5 of my colleagues into madness” skill issue. THERE ARE NO MORE IPV4 ADDRESSES. So unless your network is so fucked that you haven’t managed to fix it in 26 years, since IPv6 has been standardized, or it really is just an internal network with no outward facing services where it doesn’t matter when someone who just has IPv6 can’t access it because they wouldn’t be able to access it anyway, and you’re not some kind of ISP, you have no reason not to have support for it at this point and you absolutely never have a reason to tell people it’s not “useful” because that is straight up wrong in the general case even if it might be true for your situation.

Sometimes. I like :^)

I have a paper for uni due end of this month that I’m procrastinating working on. Not fun because I have low motivation to do it, but otherwise I’m doing fine.

I mean sure, but there’s also a screenshot in the article of him saying he’s against DMCA takedowns specifically

Current copyright law in general goes absurdly far beyond protecting the original creator

Overzealous DMCA is a plague on humanity

Rare Elon Musk W

• I used to do side loading on iOS for a modded YouTube app (uYou+) but now I just use YouTube in the browser with AdGuard and Vinegar extensions. There’s ways to sideload and auto refresh the certificate that don’t need you to connect the phone to a computer which apparently work pretty well (I used AltStore which was pretty annoying because it doesn’t do that).
• Usually I think you just have to enable NSFW on a computer/via the browser for it to work in the app. At least that how it is for Telegram iirc. Generally there shouldn’t be a problem accessing anything.
• No idea, the only thing I play on my phone is Shattered Pixel Dungeon and I bought that

My backup service runs pg_dumpall, then borg create, then deletes the dump.

The Nextcloud Windows client does VFS and there’s an experimental Mac client that does VFS.