|
Vaultwarden is an excellent password manager that is about as feature-rich as 1Password but is open source and free. It is based on Bitwarden, who offer free apps for iOS, Android, Windows, MacOS, and browser extensions for all major browsers.
|
#
¿
Nov 17, 2021 04:17
|
|
|
|
| # ¿ May 18, 2025 17:54 |
|
|
If you do that, you might as well mention self-hosting Wireguard as being the easiest way to VPN in to access services that should not be exposed to the internet.
|
|
#
¿
Nov 17, 2021 21:59
|
|
|
To explain that idea even more, you can set up Nginx Proxy Manager to grab your LetsEncrypt wildcard certs for your domain, create a proxy host that redirects subdomain.yourdomain.com to whatever internal service you are self-hosting, and then set your router to do a DNS host override to redirect traffic from subdomain.yourdomain.com to the host running Nginx Proxy Manager. Voilà - valid LetsEncrypt certs on any internal service you care to run.
|
|
#
¿
Nov 24, 2021 19:37
|
|
|
Neslepaks posted:I guess you could do that yeah. For my part I just have a wildcard cert for *.internal.mydomain.com that I use internally and then I just provision normal LE certs for anything external like https://www.mydomain.com. I think we’re talking about the same thing. I merely described one way to use a wildcard LE cert to secure services that are only available on the LAN.
|
|
#
¿
Nov 24, 2021 20:14
|
|
|
If you self-host a UniFi controller, version 6.5.54 has the log4j mitigation. Update your machines! For self-hosting UniFi controller, one could use this script if you carefully audit it every time you want to execute it (see BSD's post below). However, one would be better served setting up the controller in Docker, for example, using linuxserver's script. Note that if you use the docker-compose code as is, you may run into issues with your new instance of UniFi Controller failing to adopt your APs. To solve this, you may have to revert to the old interface (Settings > System > uncheck New User Interface), then go to Settings > Network Application and change 'Console Hostname/IP' to the controller's IP address and also check 'Override inform host with the UniFi OS Console’s hostname/IP.' Restart the controller and your APs should adopt. bobfather fucked around with this message at 17:19 on Dec 13, 2021 |
|
#
¿
Dec 13, 2021 14:44
|
|
|
BlankSystemDaemon posted:It should go without saying, but BE VERY CAREFUL about curling a bash script into your shell (which is effectively what these instructions involve), as it's essentially the same as giving someone remote code execution privileges on your shell, with the added option of enabling privilege escalation for them for free if sudo or doas is involved. Thanks for this, and yeah, sorry. I will edit my post with caveats.
|
|
#
¿
Dec 13, 2021 16:17
|
|
|
odiv posted:Anyone get into PBX? Just installed the Asterisk add-on in home assistant and thinking about getting into a small home phone system. I rolled a PBX using FreePBX with CallCentric as the VOIP provider. I think newer PBX softwares are simpler to setup and use than FreePBX, with the caveat that most are not free for multiple users. If I had to do it all over again, I wouldn't do it again, because like SamDabbers said, cellphones.
|
|
#
¿
Nov 22, 2022 19:08
|
|
|
TraderStav posted:Think I have those but not redacted. No idea how many are used regularly or not. Sounds like there's been some institutionalization occurring. Some of these sites don’t like to be named in public forums.
|
|
#
¿
Jan 13, 2024 05:23
|
|
|
Cyril Sneer posted:Can I ask a stupid n00b question? If you own a domain, #2 is as easy as setting an A record for your IP address to your domain or subdomain. This can be automated via software if your IP address is prone to changing. Cloudflare is a domain name registrar (among other things), but you also may have heard of their services like Zero Trust, which basically lets you tunnel traffic through Cloudflare without opening any ports. It is more secure in terms of peeps infiltrating an open port in your firewall, but you give Cloudflare the ability to man in the middle all of your tunneled traffic.
|
|
#
¿
Apr 15, 2024 23:10
|
|
|
Combat Pretzel posted:Anyone here using Adguard Home and is having very occasional SSL or resolving issues? Every once so often, for instance arstechnica.com won't resolve to the proper IP and break. My local post's tracking app also frequently complains about bad SSL certs and lists random domains in the error message. I'm using opportunistic caching, but I don't expect both services to change their IPs frequently. I just switched from Quad9 to Cloudflare as upstream, hoping that it may be them, but it's just strange. I was using opportunistic caching and experienced the same. I then realized that I’m served fine just by using unbound in opnsense so I switched back and have not had the same issues.
|
|
#
¿
Oct 28, 2024 20:53
|
|
|
Well Played Mauer posted:Is it ok to talk YouTube downloaders here? Google finally decided I’m not in Ukraine and at this point I’d rather just sub to the channels I like and have them show up as a plex library. If you have a VPN, Albania doesn’t allow ads by law. NordVPN has an Albanian endpoint.
|
|
#
¿
Nov 12, 2024 01:40
|
|
|
|
| # ¿ May 18, 2025 17:54 |
|
|
Warbird posted:Bummer that it’s Android only. I wish the iOS app could do app based split tunneling. Just set up Tailscale. It uses Wireguard as its foundation and is, in my opinion, much easier to administrate than a basic WG install. It will do split tunneling on an iOS device and automatically connect and disconnect the tunnel based on rules you set (e.g., if home WiFi disconnects, establish tunnel, and auto disconnect tunnel when back on home WiFi).
|
|
#
¿
Feb 15, 2025 17:22
|
|