Folks, the docker runtime is open source, and not even the only one of its kind. They won’t charge for that. If they tried to make it closed source, everyone would just laugh and switch to one of several completely free alternatives. They charge for hosting images, build time on their build servers, and various “premium” developer tools you don’t need. In fact, you need none of this, you can do all of it yourself on whatever hardware you deem to be good enough. There are also many other hosted alternatives out there.

Docker thinks they have a monopoly, for some reason. If you use the technology, you are probably already aware that they don’t.

It seems like it would be super easy for them to close this loophole. If you use the model that free tier listeners (real ones) will listen to about the same distribution of songs as the paying listeners, then just stop counting all free tier listeners and multiply the amount paid out for the pay-tier listeners by an appropriate factor to make payouts the same as before.

I dare Elon to sue World Bank.

deleted by creator

Can you tell a guy first, I could have shorted

Well there were repeated, detailed investigations into the election to gather that evidence.

We just need to give the same amount of scrutiny to the question of whether JD Vance fucks couches. Let’s get a senate subcommittee and stuff.

I haven’t deployed Cloudflare but I’ve deployed Tailscale, which has many similarities to the CF tunnel.

• Is the tunnel solution appropriate for Jellyfin?

I assume you’re talking about speed/performance here. The overhead added by establishing the connection is mostly just once at the connection phase, and it’s not much. In the case of Tailscale there’s additional wireguard encryption overhead for active connections, but it remains fast enough for high-bandwidth video streams. (I download torrents over wireguard, and they download much faster than realtime.) Cloudflare’s solution is only adding encryption in the form of TLS to their edge. Everything these days uses TLS, you don’t have to sweat that performance-wise.

(You might want to sweat a little over the fact that cloudflare terminates TLS itself, meaning your data is transiting its network without encryption. Depending on your use case that might be okay.)

• I suppose it’s OK for vaultwarden as there isnt much data being transfered?

Performance wise, vaultwarden won’t care at all. But please note the above caveat about cloudflare and be sure you really want your vaultwarden TLS terminated by Cloudflare.

• Would it be better to run nginx proxy manager for everything or can I run both of the solutions?

There’s no conflict between the two technologies. A reverse proxy like nginx or caddy can run quite happily inside your network, fronting all of your homelab applications; this is how I do it, with caddy. Think of a reverse proxy as just a special website that branches out to every other website. With that model in mind, the tunnel is providing access to the reverse proxy, which is providing access to everything else on its own. This is what I’m doing with tailscale and caddy.

• General recs

Consider tailscale? Especially if you’re using vaultwarden from outside your home network. There are ways to set it up like cloudflare, but the usual way is to install tailscale on the devices you are going to use to access your network. Either way it’s fully encrypted in transit through tailscale’s network.

600 miles? Call me when they make one small enough to fit in a car

heyooooo

ARM looking pretty good too these days

deleted by creator

Weird, I can see the thumbnail (too small to really appreciate this description) but when I click through there’s no image. Did my ad blocker remove it?

(edit: no, turning off the ad blocker didn’t help)

There’s a lesson here for lurkers looking at this conversation :-) Block people all you want. You don’t need a good reason. There’s no Socratic Method Fairy who’s gonna get mad at you for refusing to engage with bad faith arguments, lying, or abuse. Just click on the username, the block button is near the top and pretty big.

About to block a few accounts here myself.

Oops, never mind, you don’t even get the $10.

Home assistant’s main use case is showing you where your house is on a single map, though. Not sure how immich works, but if it’s one tile per photo with location data, that would be a MUCH bigger ask.

1. Seems like a very reasonable objection to me. I’d guess that most of us Immich users are using it in the first place because it improves the privacy of our photos, and a third party seeing our location data certainly undermines that.
2. I would have complained had I noticed, so you might be the first one to notice. Immich’s userbase isn’t huge right now, it’s definitely possible.
3. Featurewise, I’d like: a) a clearly documented way to disable map data leaving my server; b) a set of well-integrated choices (maybe even just two, as long as one of them is something like openstreetmap); c) the current configurability to be well documented.
4. I’d love it if all such outbound data streams are also documented. Many security and privacy-focused products give you a “quiet” mode of some kind, where you can turn off everything that sends your data somewhere else. It’s a requirement in many enterprise installations.

This is exactly why I have a whiteboard in my bathroom for brilliant ideas, and toilet paper in conference rooms for when I wanna take a shit

My Linux servers weren’t affected either. I think it’s because of Windows 3.1

If I’m out in the world around unfriendly cameras I’m probably not on Wifi anyway. And yes, I know all the reasons they’re illegal, this isn’t completely serious.

deleted by creator

Sick, where do I get those jammers?

I’m not gonna rob anyone, I just don’t want cameras working nearby me.