I just started using some docker containers I found on Docker Hub designed for DB backups (e.g. prodrigestivill/postgres-backup-local) to automatically dump from the databases into a set folder, which is included in the restic backup. I know you could come up with scripts but this way, I could easily copy the compose code to other containers with different databases (and different passwords etc).

I would recommend it as it is fairly easy to understand and most Foss services give you an example to use. You can also convert docker run examples to compose (search docker composeriser) although it doesn’t always work.

I found composer files easier when learning it, to digest what is going on (ports, networks, depends_on etc) and can compare with other services to see what is missing (container name, restart schedule etc). I can then easily backup the compose files, env files and data directories to be able to very quickly get a service up again (although DBs are trickier but found a docker image that I can stick on the compose files which backups the DB dumps regularly)

I am born and raised in England to Indian parents so always had some internal tension. Sometimes, I don’t understand my patents culture and sometimes I don’t understand English culture. However, I’ve realised I am who I am, and can take the best bits from both. There are some bits I don’t like so I’m the better for being / having that mix. I married an Irish person who moved over several years ago. Irish used to be the “other” and were screwed over, but now are sometimes considered “white”, so just shows the target moves.

There has always been racism in British society and unfortunately I have felt it pick up since the Brexit vote and Trump’s election (I think it empowered them). However, it is from a small minority of people. In some areas it comes from ignorance, which I can kind of forgive. Others will always see us as outsiders with our foreign names (and my brown skin) no matter what we do. I just think, screw them. I mean, can they trace themselves back before the Normans, the Romans or the Vikings etc? Where do you draw the line exactly?!? England has always been a mix of people and culture so they’re the ones missing out. I’m happy driving my Korean car to a German store to buy ingredients for a Thai green curry. Oh, I’ll grab a French pastry for breakfast, Chilean wine for the weekend and well, you get the idea! Let’s make the most of this multicultural place and ideas, and who cares about bigots who you can guarantee, like a cheeky korma and Belgian beer…

Been using Duckduckgo for a few years now and found it very good, although it’s also on the downward SEO ruined path. Have tried Google occasionally and wow is it juat completely full of crap.

Surely, they are not mutually exclusive and some form of this scheme has been in place for some countries (albeit mainly white commonwealth countries) for many years, even when the UK was in the EU.

Holy shit though, I just looked up the UK’s scheme and you have to pay almost a grand in fees (mostly NHS surcharge) and have over £2,500 in savings. I don’t want rich a-holes coming over for an extended holiday instead of normal people from more different cultures. Let’s vote for better and fairer immigration polices

Capitalists

I use authentik but believe it’s similar. You can create accounts for people and give them passwords, or send a welcome email asking them to register to create one. I would warn you though, not every service has the ability to use it and it does take quite some effort to get it working! It’s interesting to learn about though

I tried the readarr and other options. They work sometimes but not enough to rely on it. As others mention, there’s no standard naming and also, lots of people use their library card for Libby access. I also think there’s a bit more of a direct link to authors so I’d prefer to buy the book unless theyre super well off anyway. To be honest, I can’t see the arr’s working with LibGen having looked at the open issues on integrating it, it just doesn’t allow for scraping in the same way.

For me, I self host openbooks (uses IRC) and select a download straight away, which to be fair, is about the same time as searching / finding a TV show if you are after one book. I have exposed it behind an SSO so can access it on my phone and download the book straight away when someone gives me a recommendation. Most of the time I just add to a running note on phone and go through it every few months when I need more books.

It’s fairly quick for multiple books but not sonarr levels of ease. The downloads go into a calibre monitored folder which then does the automation (naming, conversion if needed etc). I bulk email the new books to my kindle with one click. Calibre-web is on read only for a nice browsing experience and to read on other devices if I need to (althogh no page sync). It’s a bit of manual work but I find it is not too bad and in 10 minutes I can load up enough books for months.

Occasionally IRC does not have the book so try manually searching on prowlarr, and download on sab or transmission. The downloads are almost instant so I then just wait and copy them to my downloads folder (I could probably automate this step too with tags but it’s so infrequent).

I just tried it out on a couple of random questions (one on docker, the other on proxmox networking) and it looks very promising. I didn’t even have to login, it showed the sources, it gave step by step instructions, and suggested follow up questions that were helpful. Thanks for sharing!

I have dynamic IP and there are several ways around it. I use Cloudflared (updates DNS records regularly) and a script I found to update duck DNS as a backup. Both very simple.

Accessing the services is not the problem, the problem is keeping them safe. I’ve tried lots of different ways (although not tailscale yet) and have a few services exposed directly to the internet behind authentik \ NPM \ Cloudflare \ fail2ban \ ufw. Others, I access through my router openvpn server, with keys for my laptop and phone as clients. There are so many guides online for all VPN types. Its just finding the right approach between ease of use vs safety

I’m hesitant about it too for the same reason but not sure if I’m being unreasonable given that I rely on so many other free services. However, this is one that would potentially have access to everything I do.

I’m watching headscale with interest until its safe enough for me to try breaking it!

Would you trust rsync.net to be around for a long time? They’re doing a $540 lifetime 1TB offer which is interesting as I’m luckily in a position to do but would take 6 years plus to “pay off”.

Very interesting, thank you for sharing!

Some of these are exactly what I was thinking so will join or see how they can help. However, I do get the sense they have no real say in local politics here given what I’ve seen in proposals and plans from the local and county councils. I noticed new caveats to some of the 20mph and LTN type plans (which are far behind other areas already) with “depending on the wishes of actual residents in that area”, or something along those lines added that sounds like full on NIMBYISM or anti-woke to me. I do reply to consultations with my concerns as a local cyclist but don’t see much changing. Perhaps doing so as part of a group will be better.

Unfortunately I’m just outside London in Surrey where the infrastructure is awful. There is a noticeable drop in quality as soon as you cross the invisible border. It’s worse for cyclists and pedestrians.

For example, the behaviour of car drivers outside my child’s primary school is terrible and they school constantly asks people to be more careful but the council doesn’t seem to care. They have yellow lines on the smallest stretch you can imagine and not even on both sides of a small road, which are ignored anyway. The road is still 30mph, there are no ped crossings, let alone crossing guards. I even requested parking enforcement to come. They said would add it to their list but have seen them once in 6 months.

Sorry, turned into a bit of a rant towards the end!

I think one of the main points in the article is that there is no group of cyclists able to come together to lobby and tbh, I don’t see how it’s really possible. It’s something I’ve been thinking for a while.

I am a cyclist and a driver. I am not personally in a lobbying group for either. However, like another poster said, oil companies and car manufacturers have the money and reasoning to come together to lobby on behalf of drivers regardless of my actual wishes but they’ve got lots of my money from having bought and maintained a car. Cyclist manufacturers aren’t exactly large, have much money or are as combined into a few multinationals. There is no fuel industry either.

I don’t really know any other cyclists like me who are more casual, and use it for local journeys. I want better segregated lanes, better and more secure parking (my bike got stolen recently), the police to actually care about bike thefts, and more considered routes/junctions. There are social groups of long distance weekend cyclists but tbh, they have completely different priorities and interests to me. Even when I used to commute my cycling habits were completely different so my requests would be different.

I’d much rather see this than any of the commercial adverts.

It is useful information too. Most people won’t interrupt or help, and partly because they are not sure how. I saw this recently and it did make me think, if I did see something happening I have a better idea of how I can help.

It also creates an environment where you cannot justify not acting because you don’t think you can help, and that we as a society are saying it is not acceptable. If one person challenges harassment that would not have done so before seeing that, I’d count it as a success.

A stack of 15 floppy disks for one program. Please insert the next disk to continue (I can’t remember the exact wording). Command prompt to A:\ and having to see what the install program might be called. Bring amazed that CDs could autorun programs.

Don’t provide services to others, including your own family, actually especially your own family, until you are quite comfortable with what is going on and what might be causing issues. Focus on helping yourself or keeping whatever other services you were using before just in case.

Trying to fix something at night, with a fuming partner who’s already put up with a difficult to use service, because of your want for privacy even though they don’t care care, whilst saying “it should work, I don’t know what’s wrong”, is not a great place to be 😁.

Overall though, I found it so interesting that I am doing a part time degree in computer science in my 30s, purely to learn more (whilst being forced to do it to timelines and having paid for it).

I have a very comfortable and ‘forget about it’ setup my family are now using. Every now and then I add new services for myself, and if it works out, will give access to others to use, keep it just for me or just delete it and move on.

They serve two different purposes. You can have one, both or neither. Sorry if you already know all this below but thought it might be good to explain in detail.

NPM is a proxy provider so passes subdomains to the right service (e.g. service1.url.com passes to service 1 at IP x.x.x.x on port 5050). This allows you to only open one port to NPM but access other services through subdomains. I have NPM in front of myexternal apps so I can access each through a subdomain (e.g. service1.url.com). You could also use it for accessing internally if you setup your internal DNS to pass (e.g. service1.internal) to the IP address and port of your service, and set NPM only to allow access from internal IPs.

Authentik provides single sign on so instead of having different usernames and passwords for every user on every service, you have one set of users and it manages the passwords.

There are at a high level two levels of using it.

Some services have proper SSO integration so you setup Authentik to replace it’s own login system. For instance, with Nextcloud you are going to the Nextcloud homepage but it then goes out to Authentik to do the login process and once passed, Authentik will tell Nextcloud user B has successfully logged in, I vouch for them and here are their details. You can do this for internal and external access. Obviously with Nextcloud you need to login either through it’s own login system or via SSO so even if I go directly to the internal IP and port (and therefore don’t need NPM to access it), I still need Authentik to login so it knows it’s me and not my partner trying to access her account

Some services don’t have SSO integration or have no login required. For instance, I have Stirling PDF which doesn’t need user details or login. However, you don’t want to just allow anyone to access so I have setup NPM to use Authentik as a proxy pass. If I go to stirlingpdf.url.com then it sends me to Authentik to login. You can only ever get to the Stirling app if you successfully log in. You can also set Authentik so that only certain users or groups of users can access certain apps but that’s more than I need.

It does take some effort to get SSO working correctly for each service and it’s only really worth it if you do have multiple users or services that need logins.

You don’t want just NPM unless you trust the service to have a secure login.

Others will probably say, you shouldn’t have anything facing externally. You can setup Tailscale or Wireguard tunnels so you always appear to be on the local network. That way, you don’t need NPM to be open externally. However you might still want it so you can type the address service1.internal instead of 192.168.1.1:8063 each time. You probably also want Authentik to make the login shared.

In terms of network access to get them working, NPM needs to be able to access Authentik internally on your network. You could either put them on the same shared Docker network or in my case, they are both on the same server so share an internal IP. I have opened the individual ports on Docker so they can access each other internally just like I can access both from my laptop. If I’m accessing away from home, I have my domain pointing my home external network ID, port 443 open on my router pointing to my home server with NPM. NPM then “talks” to Authentik through the home network so I login through that but I don’t have to open the Authentik port externally.

In my case, in the NPM settings, instead of using the docker created network for Authentik (like 172.3.1.1 or something that might change), I use the internal IP of the machine (like 192.168.1.1:4443 {if 4443 is the Authentik port}). I also have an NPM entry auth.url.com that points to Authentik which some apps need instead of the internal address. It took some playing around to get it right but once you do, it’s essentially copy and paste for new services.