I’d love to but all the logistics are overwhelming for me. What made your sabbatical so good? Was it easy to finance?

:3

I mean he killed himself while sober. Some people will go through struggles that you and I will never understand. Maybe we could have a little compassion?

Im at the compose2nix phase of this pipeline. Ive got a bunch or sevices in Docker compose files and all of my systems have been running Nix for over a year now. Ive gotten the hang of my repo and made a couple modules for my specific uses and im hooked.

What would you suggest to migrate all my compose files into a nix friendly environment? I use flakes as well.

Ahhh interesting video! I appreciate the post. I see the mTLS is more about authenticating who the client is outside the application.

Don’t worry, Im not just exposing thing willy nilly 🤣 For client-side authentication I use Authentik combined with 2FA, Duo, and fail2ban. Authentik provides identity management through LDAP to jellyfin and any sign in request goes to MFA and you get a Duo notification to approve. You can do other MFA, i just havent set it up.

Ive got a lot of family who use my server. Asking them to install a TSL cert on every machine would be impossible. My method also monitors all sign in requests. Setting up Authentik was a hugggeee game changer for me.

Well ya know this is a forum and I was trying to engage in a friendly conversation to learn about something you brought up.

But yeah I know how to fucking Google lol

Oooo ya know I actually don’t know about these. I’ve done both A and B for my homelab and C for work.

Any good resources / insight into mTLS? I appreciate the response btw!

Ya got three options.

Option A is to create your own certificate that is self-signed. You will then have to load the certificate into any client you want to use. Easier than people realize, just a couple terminal commands. Give this a go if you want to learn how they work.

Option B is to generate a certificate with Let’s Encrypt via an application like certbot. I suggest you use a DNS challenge to create a wildcard certificate.

Option C is to buy a certificate from your DNS provider aka something like cloudflare.

IMO the best is Option B. Takes a bit to figure it out but its free and rotates automatically which I like.

I like helping and fixing stuff, if you’d like to know anything just ask :D

( ͡° ͜ʖ ͡°)

Most people don’t know but you can get the best of both. You can push for what called “community care” through the VA. If the VA admits there isnt a VA doctor close enough to you, they will send you to a private doctor of your choosing and pay for the whole thing.

I was able to get back surgery by the best doctor in the region this way. I refused to work with the VA doctor due to a bad appointment. I waited weeks to see this doctor and he spent 5 minutes looking at my chart to say I was too young to be helped. Could’ve just told me over the phone. Went back to my primary and complained and they signed me up for community care since they were the only other in the area.

Naw you just end up getting rejected twice as much ಥ_ಥ

Might not be exactly vintage but it is getting close to 20 years old (ouch my age).

The Halo 3 advertising campaign.

And specifically this “Believe” video.

I cannot describe the emotions of excitement I felt for this game to be released. Waiting for the midnight release for this game is still one of my favorite memories haha. And once we got the game, the hours and hours of fun with friends… really was something looking back on it.

I use a smart watch for contact less payments ¯\_(ツ)_/¯

I hope you’re okay! (っ˘̩╭╮˘̩)っ

I wish I had setup an identity management system sooner. Been self-hosting for years and about a year ago took the full plunge into setting up all my services behind Authentik. Its a game changer not having to deal with all the usernames and passwords.

In a similar vein, before Authentik, I used Vaultwarden to manage all my credentials. That was also a huge game changer with my significant other. Being able to have them setup their own account and then share credentials as an organization is super handy.

Yeah its awful. Ive had the BV situation happen with two different partners. And God forbid, you bring up anything thats considered outside the heterosexual spectrum in an educational setting. Could you imagine if men were taught about the possibilities of the prostate in a judgement free environment?

Ive just recently grown my hair out for the first time and you really articulated how I’ve been feeling about it, thank you 😭

After a year and a half with no cut I feel like I can finally start doing some cute styles. This entire time through the awkward phase I’ve felt like “metal-ish” without being able to put a label on it.

In my opinion, most metal cuts are left down or put up in a single pony. Its almost like an effort to show lack of effort lol cute styles usually have a bit more complexity.

Id say what’s cute is trying new things like buns / clips / ways of putting it up. I want to braid my hair sooo badly but its still not long enough 😒

Thats just how IPv6 works. You get a delegate address from your ISP for your router and then any device within that gets it own unique address. Considering how large the pool is, all address are unique. No NAT means no port forwarding needed!

Have you tried Ombi or Overseearr?

More like your states registration is by weight and your company ain’t trying to pay that shit lol