thelittleblackbird @ thelittleblackbird @lemmy.world

Posts

4

Comments

97

Joined

2 yr. ago

Yeah, but even if they seems to be contradictory messages, they are not.

RAM is always the first resource that is depleted is a nas/homeserver built, more ram or the possibility of expanding the ram is always a safe bet. But for a nas or a non Realtime system ddr4 is also not mandatory.

Reduce the cooling goes into the direction that the system is not going to be under high cpu load, so no need to dissipate, you can even reduce the cpu.

SSD is not necessary for a nas but it will make you VMs or containers snappier.

So coming back to the subject, your cpu is overkill, and therefore your mother board too (it has even support for sli!), having more ram is always good but my opinion is with 16gb you are good to go for a good amount of time (my server runs on 8gb and I don't experience any problem yet), obviously, your cooling needs to pair your cpu tdp.

SSD or m2 memories are cheap additions, and like somebody else suggested, it is good to have many pci slots even if they don't go full speed (x16) but will give you the flexibility to add more sata ports or Ethernet connections on the 10gb.

Honestly, if budget is not a concern you can not be mistaken with this built, but I can see potential to spare like 100 bucks in hw and another 100 in bills in next years

Honestly, I have the impression your setup is oversized (knowing nothing about what you want to run)

NAS systems set on idle like 90% of the time unless your are doing really crazy things with de duplication and distributed iscsi for super big volumes, that I have the impression your are not going to do.

You can probably cut the performance/specs to the half and still being good for the following 10 years and the extra that you will save on electricity too.

As a comparison I checked this built against your synology and in the multicore setup is x10 more powerful (https://www.cpu-monkey.com/en/compare_cpu-intel_celeron_j4025-vs-amd_ryzen_5_5600x)

Just my two cents

In Europe there is the penal recognition to criminal inducement, you may not be the real committer but the one who has been pushing and convincing people to do it.

And yes, if the person commits suicide, it falls in this category

Lol.

I honestly the paranoia path is something we all have walked until the descent to Dante infernos. Once you are there you realized this is not a place to live and then get a bit more practical. :)

I any case it is good mental exercise to check to what extend your threat model is not covering those situations. At least you know where your defence perimeter ends.

For everything else, selfhosting! ;)

Your problem is that the chain of untrust has not hit the ground yet.

At some point, you need to trust some technology or system.

You can continue until you are in comfortable ground and then build you trust chain. But honestly following your line of thoughts you will probably end up in a non digital area.

In my case I followed a similar path, but I am totally aware that I can not put resistance to a well funded and well manned intelligence agency, so the high quality industrial level is probably fine for me.

I have several copies on f my backups and all of them are encrypted and signed with rsa, the so are all of them open sources and well audited versions. The only point I relaxed is my phone and I try not have sensitive information on it but vpn and proxies just in case I need them.

I almost don't use cloud services anymore and the one that I use he a nice record for keeping privacy.

My objective is not to stop Cia, but industry, scammers and all other nasty guys in the wild.

It is tiring, uncomfortable and sometimes cumbersome. But I think it is worthy

Because the modification of that computer is order of magnitudes more difficult than a mechanical modification of a moving part. The humanity / regular human is able to understand much better the interactions of the mechanical parts that usually are always local and well defined.

This does not exist in the Sw, FW and digital hw, the interactions are not local and are millions timesmore complex to understand and properly modify.

It would be an utterly irresponsability to modify (blindly) the Sw of an xray machine that could make it unsafe and ultimately it could kill humans, and it is the same concept with the car. It is irresponsable to make a modification that can make the system unsafe.

For the rest? Regulations, free software foundation and good selfhosting Cheers

Then don't buy tesla, or force legislation about introducing such feature.

But make yourself a favor and don't play Russian roulette with something that you can not understandbecause there are not data available.

And for final tip, if you really cares about that then enforce the fsf (fsf.org)

It is not comparable, not even by far.

Assuming your are not a psycho, to safely drive a car is orders of magnitude (in plural) easier than modifying the Sw in a safe and deterministic way.

It is not only that bad people exists, it is about that making a small mistake can kill you

First, second and third most important point is : Tesla needs to allow the connection to an alternative server.

The fourth should be access to the api and data that are exchanged.

You shouldn't mess with the FW of your own car even for some innocent feature like this one, you don't know/understand the interactions that may happen between different Sw components and the hw layer, you can not provide a similar of level of testing, including some worst case scenarios, that can make your car unsafe during some problems or unforeseen conditions. And perhaps also, the car could loose its license for driving....

If tesla allows that, then we can start speaking about it. But last time I check on that was not possible

Not good, you are going to lose a lot of stuff, from personal relations, connections to your wife and even your health.

I hope (really) your are not in a compromised financial situation and this is really temporary. If so, it is OK but you need to have a plan to reduce the hours in the foresable future.

If this is not the situation, then learn how to disconnect from the work in the spare time and spent quality time when possible, also do cardio. It helps. A lot.

When you are young you can really chew everything it is throwed at you, but it is not true anymore when you are past the 40s.

Take care of yourself, nobody else is going to do it.

You will need to explain a bit further this statement to mild knowledged internet stranger....

Because the point of waf is exactly about reducing the exposed surface....

Dealing with a Ds-lite connection for a fiber optic provider in latest opnsense.

It is excruciating how difficult is to run it reliable

Some clarifications :

The 3 2 1 rule applies only for the data. Not the backup, in my case I have the real/live data, then a daily snapshot in the same volume /pool and a external off-site backup

For the databases you got misleading information, you can copy the files as they are BUT you need to be sure that the database is not running (you could copy the data and n the middle of a transaction leading to some future problems) AND when you restore it, you need to restore to the exact same database version.

Using the export functionality you ensure that the data is not corrupted (the database ensure the correctness of the data) and the possibility to restore to another database version.

My suggestion, use borgbackup or any other backup system with de duplication, stop the docker to ensure no corruptions and save everything. Having a downtime of a minute every day is usually not a deal breaker for home users

Well, I don't know how many online interactions you have. But has you ever imagined that perhaps the feedback you received here is actually the average of the people?

In these days is quite difficult to calibrate the crowd feeling for the insane amounts of echo chambers, the mass media crating opinion instead of informing and personal biases.

Usually, everybody of us is quite biased by our own interactions and knowledge of how the world worked around us. But those interactions are mainly defined by your social status, place of birth or simply where we live. By the specific details of people who debate in internet (probably accommodate urban person) it is possible that those ideas lean into a specific direction. But once again, it could be that you are simple realizing you are not with the majority

Of you already have a will the most secure, proof idiot way I'd to add that key + instructions to the will. Get some lawyers on board for that and it will work.

If you still have concerns about having the full key on a single place, add a topt or second way of identification and distribute it between your heirs.

Sometime, the old fahion way is the best one by far.

Try with kasm.

Honestly, you don't feel the lag of the connection (unless is a severe limited one) it also allows multiuser simultaneous connections.

Check and come back to ith yiur feedback!!!

I would recommend an LDAP sever for user Auth.

There you can create/authenticate user with a central repo in a machine independent fashion. Also having the possibility to allow /egate specific services from the central database is a big plus.

It seems difficult at the very beginning but it quickly pays off. Give it a try

Yes, definitely you will get a better deal going with a home made solution here.

Buuuut, there is an important point to highlight: The probability of synology fucking your data up is much lower than the average selfhoster. Unless you already know almost perfectly pros, cons, and how to solve problems without a data loss, you are not better than the average.

As an example, I went with a synology box even if I consider myself better than the average because the data in my nas is extremely (but really extremely) important to me and my wife. And the price was a reasonable fine in order to keep that data safe.

So, evaluate yourself : if. The data is really important and you are not a really good sysadmin then go with a professional solution. If not then go in DIY solution and learn in the process.

Just my two cents

Me, as a person coming from an area with a large tradition about seefood and food in general I feel irritated that this pictures is able to get the status of foodporn. :D

I mean, OP, with all the due respect, but if you enjoy that type of food you can not lose the opportunity to try it in a fisher traditional area prepared in the traditional way.

Hope you like it even more!!!

As it must be