We would need more info to help confirm, but watching ids traffic will show you lots of misconfigurations as well as actually suspicious traffic, so this might be a POS device doing stupid stuff.

Is suricata listening on an internal subnet interface? If you are listening on a public interface, your job sorting through the trash traffic will be difficult because determining source is nearly pointless and your external interface should not know anything about the internal subnet.

I think wallabag is the self-hosted go-to for this, but I’m not sure of the extensions for it.

I used to use pocket because it allowed me to sync to my Kobo reader. Kobo have struck a deal with Instapaper and it works in a similar way.

The official instapaper plugin doesn’t do what In My Pocket does, unfortunately.

mkvmake pulls the Forced flag from its source, so it’s likely that your DVDs have a set flag for certain subs. You can use mediainfo to check this on your mkv files.

Mkv is simply a container format, which means you can probably unset the forced flag with mkvmake directly without having to unpack all the streams and remux them.

Handbrake is amazing, but it does have a LOT of controls, so there’s only so much hand-holding it can do when you start looking behind the curtain of how av files work.

For video encoding, I run an 8th gen Intel i5 8500t. The quicksync is good enough for nearly anything 1080p.

Not sure what you mean by the “scaling”.

Nice work. I would read more articles like these.

“Pleb” is generally used as a pejorative and is roughly equivalent to calling someone a peasant.

I don’t know… I’m skeptical of its bandwidth.

I love alpine, and I use it where I can. And it has many advantages over other distros and setups. But a declarative, ram-only distro that boots over the network doesn’t help manage non-conformant machines.

I still need to manage Debian, old centos boxes, Ubuntu machines, and a couple old-as-time sun machines. Nixos isn’t the tool for that job. Ansible has two dependencies: ssh and python, and there are ways around the 2nd one. Ansible works really well here.

Not trying to bash nixos, here, but I’m not sure why so many users on Lemmy compare ansible and nix, they don’t really operate in the same spaces.

Can you manage a Debian server with nix?

Definitely possible, and there is already some tech with the kinks worked out like wimax that could wirelessly serve a whole town. There are also folks who have created their own isps to fill in where the big players don’t bother. It is apparently regulatory hell to get up and running.

The problem isn’t technology, it’s people.

If you’re not fond of manipulating config files manually, just use nmcli (from your link):

You can get an idea of NetworkManager’s settings by running nmcli on the command line.

It is a bunch simpler. The days of just raw-dogging resolve.conf and nsswitch are long behind us.

Aren’t these docs an admission that it’s a clusterfuck?

The Debian wiki admittedly needs work, but it is a wiki, so make an account and update what you think is lacking or unclear.

Where did Nero live again?

Where, indeed.

Weird take, bruv.

Says someone who responded to an article about GDPR digital rights by interjecting that Europe should stop mocking the us and forcing everyone to use UBI.

Thank you, Henry Kissinger. Your input into geopolitical workings outside Nero’s burning city are noted.

Also, “outside US” means Europe. Got it.

I “document” everything by forcing myself to create ansible runbooks for new services and configs. I have some gaps, definitely, but the more of them I create, the easier new services are to deploy.

I’m getting errors

It would help if you shared what errors you’re getting.

The hyphen removes that option of intended meaning.

General rule of thumb is “don’t eat things that eat things”. Obviously, there are exceptions for survival cases, but the range of pathogens, parasites, and prions one can contract from eating a predator is much, much wider than that from eating vegetarian animals.

APIs. Or the ends are achieved by sharing data between apps in common data storage. But I prefer to be a tourist in my infrastructure, I no longer hand-bomb changes to systems.

My design pattern is essentially to integrate more and more of the container creation into config. Right now I’m using ansible and it’s nice. More automation means troubleshooting has fewer variables.

I had issues yesterday with a package upgrade across several containers, and it ended up being two config changes. I cycle the apps and done. That’s it.

Kodak said “we don’t believe digital photography will take over” and iRobot is like “we’ve tried nothing and we’re all out of ideas”

I didn’t know Jellyfin could search torrents. Do you mean radarr/sonarr?