Let’s Encrypt is good practice, but IMO if you’re just serving the same static webpage to all users, it doesn’t really matter.

Given that it’s a tiny raspi, I’d recommend reducing the overhead that WordPress brings and just statically serve a directory with your site. Whether that means using wp static site options, or moving away from wp entirely is up to you.

The worst case scenario would be someone finding a vulnerability in the services that are publicly exposed (Apache), getting persistence on the device, and using that to pivot to other devices on your network. If possible, you may consider putting it in a routing DMZ. Make sure that the pi can only see the internet and whatever device you plan to maintain it with. That way even if someone somehow owns it completely, they won’t be able to find any other devices to hack.

Btw it looks like you accidentally quoted the same sentence twice.

Agreed with using keepass. If you’re one person accessing your passwords, there’s no reason you need a service running all the time to access your password db. It’s just an encrypted file that needs to be synced across devices.

However, if you make frequent use of secure password sharing features of lastpass/bitwarden/etc, then that’s another story. Trying to orchestrate that using separate files would be a headache. Use a service (even if self-hosted).

Ooo I just found out element added support for drop-in/drop-out voice and video rooms. That’s the real killer feature they’ve been lacking I think. Will have to try it out.

Yeah, I saw that element is using jitsi under the hood for its screensharing. If that makes for a seamless user experience, that’s great. It’s been like 10 years since I last tried Jitsi, but it was not smooth.

TBH both disc and slack have their downsides, disc more so, so I’m fine if they just take the best of all worlds.

But yeah, screensharing is the deciding factor for me. As much as all my friends hate discord, we use screensharing all the time (it’s just a bit jankier getting it working on Linux).

This one is clearly made to look like slack, which is great I need to try this out. Just wish someone would make one that looks like disc. And then matrix needs screensharing support.

Does it work now? I tried it around a year ago and couldn’t get voice to work at all. It even had a message saying they were in the process of rewriting their voice streaming backend, and the legacy path may just be broken.

Discord compatible bots run on whatever server you run them on, they’re not owned or run by Discord.

It says the client is compatible with both space-bar and discord.com, so yeah, if you use it with discord, expect all the downsides of discord.

Thanks, good to know!

I think their question is, what do you mean by “secure”? Because as the saying goes for internet services: usually, if you’re not paying, you’re not the customer, you’re the product.

Agreed. Anyone who thinks it’s ok to just expose ssh on 22 to the internet has never looked at their logs. The port will be found in minutes, and be hammered by thousands of login attempts by multiple bots 24/7. Sure you can block repeat failed logins, but that list will just always be growing.

Normal for who? I wouldn’t expose SSH on 22 to the internet unless you have someone whose full time job is monitoring it for security and keeping it up to date. There are a whole lotta downsides and virtually no upsides given that more secure alternatives have almost zero overhead.

As someone who majored in CS and is now in a software engineering position, the people in tech who come from a completely different field are always my favorite. On top of just proving people wrong about the “right” way to get into the field, they’ve been around, they know how to think about problems from other perspectives, and they’re usually better at working with other people.

Honestly, I think more people should minor in CS, or if they did their undergrad in CS, they should have to do their grad work in something else. The ability to compute things is only useful if you’re well versed in a problem worth computing an answer to, most of which lie outside of CS.

I see several Amcrest options that look like they have integrated AI object detection. Frigate on the other hand says you should get a “Google Coral Accelerator”. Do you know if Frigate (or RTSP, I guess) has a way to leverage the built in detection capabilities of a camera (assuming they are built in, and not being offloaded to the cloud)? Or am I better of looking at the “dumb” Amcrest cameras, and just assuming all processing for all cameras will happen on my Frigate hardware?

Hah I had the same thought. Trillian, though. Named after the character from HHGttG.

I feel like this is the perfect place for Right to Repair legislation: the product is broken? And it’s outside your support window? Then give customers what they need to make the fix themselves. It’s not good enough to say “meh, guess you gotta buy one of our newer chips then 🤷”

I forget the order 5 times in the middle of crimping each side, so you’re doing better than me.

Should I not be able to use the software if I’m donating?

You should be able to use it fully regardless of whether you’re donating.

I’m not going to pay for the mere possibility of it being useful at some undetermined point in the future.

That’s fine, by definition, a donation means you’re not paying for anything.

Immich has demonstrated it has no intention of ever becoming a useful project

I take it you haven’t been in the self-hosted photo space long. Even despite their alpha status and frequent breaking of backwards compatibility, it’s still the best experience I’ve had (comparing to Plex, Nextcloud, and Photoprism). But if you can find something better, I’m all ears.

What I don’t get is what would compel me to get a license.

Ideally nothing. Maybe a sticker or a theme, but nothing important to the function of the tool. If the personal gratification that comes with offering financial support to a FOSS project (along with the resulting product itself) isn’t enough, then this “license” (or whatever they end up calling it) isn’t for you…ideally.