I generally just use latest for most services. For critical stuff I pin the major version number. Also anything that doesn’t gracefully handle major version updates like Postgres and similar.
If something breaks I fix it, or restore from the nightly backup if I can’t.
Just wanted to point out that if your client is configured properly it won’t have any connections while the VPN is down.
You don’t absolutely need port forwarding to seed. As long as the other side has a port open you’ll be able to upload to them.
Nextclouds docker setup is an absolute disaster, I don’t blame you for giving up. It’s also slow as molasses to sync anything.
A couple things to look at, I would probably say look at KaraDAV first.
KaraDAV, this is a simple webdav server that’s compatible with the Nextcloud sync clients. Uses SQLite for a DB so setup is super simple. Has a basic web based file browser too.
Owncloud Infinite Scale, still a bit of a setup, but it’s better than what Nextcloud offers.
Syncthing, this is my current setup, just a robust and solid file sync program. You can pair it up on your server with something like SFTPGo or KaraDAV to provide a web file manager and WebDAV server if you need that. Downside is there’s no selective sync or virtual folder support.
No IMO.
Docker is universal, you can easily migrate to any system. If you migrate you’re stuck on TrueNAS.
Also you can use watchtower for auto updates with major version pinning when needed (ie; postgres), or one of the many docker images that notify you when updates are available.
KDE Connect, works pretty well.
For a backups I think QUIK SMS on F-Droid has a backup option.
Its not really a keep replacement. Its a good note taking app though.
You can do that by joining the containers to the same docker network, you don’t need to expose ports even to localhost.
Containers can talk to each other without any ports exposed at all, they just need to be added to the same docker network.
They aren’t on the internet mainly.
My router (opnsense) has a wireguard server which is how I access things when out of the house.
I do have a minecraft server for my friends and I, but that VM is on its own network isolated from everything else.
What do you use TLS inspection for?
Have fun doing that with a TV remote though, I guess you could buy a very short domain name.
Backups are encrypted so it shouldn’t be an issue.
I mean… just back them up like any other file. If you want them and nothing else, then do an exclude all and then include after for those files.
But you also need to backup the rest of the data, so I’m not sure why you’d want to exclude all the other folders.
That would make more sense than not having a PW manager, sometimes you’re just so tired out that you run on autopilot without thinking about things.
Phishing emails are getting pretty good these days, and fairly well targeted too. I get some at work that are fairly convincing, emulating emails from services we actually use.
However…
“Hunt clicked on the phishing email, which led him to enter his credentials and one-time passcode into a hacker-controlled login page.”
Using a password manager should have prevented this, or at least make it a lot more likely you would realize something is wrong, because it will only enter your credentials on the correct domain name.
I also do the whole “don’t click links in emails, go to my bookmark for that service instead” thing as much as I can too. Especially for banking, I never click any link on those messages.
It’s good to be aware of and in general treat anything uploaded to the internet as public, but it also is a bug that the software isn’t working right.
Too much advertising, it just feels off.
Yup, you can do it unprivileged as well but permissions can be funky with any mount points shared with other containers.
Yeah just copy the files to your games folder and run it from there, leave a copy for the torrent client.