It’s a shame, because I tried to support them as long as I could, but I guess I out grew their content over time and stopped subscribing when I had a pile of unread magazines.

But thanks guys, it was a good mag

It varies of course, but most of my torrents are movies and linux ISOs (for real)

I seed any Movies I leech at a 2:1 ratio… most are leeched from Europe, but I’ve had them from Canada, South America, Asia, but weirdly not many from North America.

I like to give back more to the Linux community, so I’m constantly seeding Arch & Mint ISOs (as that’s just what I’m using… maybe something Raspberry-ish) - they go everywhere.

I had a weird instance once where the same Chinese IP address was constantly re-downloading the same ISO. Could’ve been a VPN endpoint, but after I’d shared something like 40:1 there, I started using GeoIP to block it and similar regions I was uncomfortable with… so the world’s becoming smaller for me.

So, I’m a little behind the times here… should I be moving away from torrent search sites to this new fangled spot stuff?

+1 for this.

You need to see all the data flowing through a sensor to be able to map it, so a router / firewall is often the central point.

I run it as an addon for pfSense and it’ll show me all sorts of info.

If you setup the GeoIP you can see which countries your network’s connecting too… interesting for torrents…

Crowdsec will block external, public, IPs

Fail2Ban will block login attempts (ie from anywhere)

I have a similar setup with pfSense, pfBlockerNG, HAProxy, etc, but I keep F2B running on my DMZ server in case something is ever compromised as it’ll block / slow down anyone trying to move around the network.

** SOMETIMES IT IS **

(Sorry, couldn’t resist)

+1 for Ansible

1. Install an application
2. Do all the updates at the same time ( - after automating all the backups of course 😉)
3. Removing games 😈

True, but they’ve answered your question.

Maybe raise a bug report with Firefox (Mozilla) and see if they can look into it further and that might help others too

Does that also include Burial?

His complaint was it was different.

This is the absolute core of everyone’s reluctance… and 99% of (domestic) stuff is browser based…

Yes, I feel your pain.

Encryption drives sound like a good idea until the subject of unlocking them comes up… and automatically unlocking the drive for the OS isn’t really helping.

But, for user data, it can be unlocked automatically during login. The Arch wiki covers this.

But backup your data 😉

It depends on your use-case.

Encryption of data at rest (this discussion) is mostly helpful for physical theft, so a device that never leaves the house, there’s little reason for encryption.

Similarly, on a lower powered mobile device, maybe you only want / need user data to be encrypted, and there’s no need to encrypt the OS, which keeps the performance up.

Maybe you want the whole thing encrypted on your high performance laptop.

So, it’s difficult to define a sane default for everyone, thus making it an option for the end user to decide on.

Linux has more choice than Windows - and the encryption algorithm(s) can be verified - so it’s definitely the better choice.

It’s dumb and inexcusable IMO

No, it’s a choice, because:

1. History… encryption didn’t exist in the beginning. Upgrades won’t enable it.

2. Recovery… try telling the people that didn’t backup the encryption key - outside of the encrypted vault - that their data’s gone.

3. Performance… not such an issue these days, but it does slow your system down (and then everyone complains)

So, please continue to encrypt your data as you choose and be less judgemental on others, esp. anyone new

No excuses.

Whatever you end up with

• test a restore
• consider how to deal with the source data being corrupted / ransomed / etc, ie multiple versions

I replaced Nextcloud with syncthing (files) & radicale (calendar, contacts & todos)

No-one used the calendar on NC, they just used their phones, Outlook, etc

No-one used the photo gallery on NC - that’s now Immich … again, with syncthing.

During the early days, just doing an update would break things.

For a small home setup, NC is too big, too clunky and just not the right tool.

Ok, didn’t think about “unlimited” actually being slower - thanks for the insight.

I’m running a pfSense f/w at the edge, so split horizon DNS and haproxy are already sorted… I’ll check out wireguard - should be straight forward

Thanks

I’m considering going this route - just to hide my (static) home IP.

What’s the rough sizing I’d need for a VPS? I’m guessing the smallest possible, but with the best / unlimited data usage?

+10 for keeping notes.

Yep, even that temporary thing, write it down. Usernames & passwords go in KeePass - with descriptive notes in there too

You should check out Ansible

I run multiple Arch systems at home; laptops, NAS, media, etc. but I’d recommend a Debian based OS for a new starter… unless they’re really, really keen to learn how everything works.