Suzune

A domain with DNS access costs around 2€ a year. Just buy your own and generate certificates with Acme.

I honestly have no idea if the iOS app works properly.

I’ve got Wireguard running. As soon I am on wifi, my phone uploads the new pictures.

I tried Photoprism, Ente and Immich.

Immich is by far the best. It has got an app that really does what it should do, has an AI that actually works and is easy to host and to update.

First layer is done by Postscreen (by Postfix). It watches bots misbehaving, check blackhole DNS and disconnects them. Fail2ban takes care of bots who cause errors and warnings in logs and bans them. Third layer is SPF and DKIM. If it does not match, it’s getting flagged.

If someone conforms to protocols and passes the tests, there is still rspamd on the fourth layer. It does zillions of checks on the metadata and additionally learns via bayes. Dovecot moves all the crap to Junk and inserts the valid mails into their proper folders.

The fifth layer is me. If some junk mail arrives in the inbox, I move it to Junk manually and Dovecot tells rspamd to learn it as spam.

I use Rustdesk to access PCs and embedded devices from other PCs and embedded devices. Mostly doing remote support to avoid driving.

It’s easy to set up with a container-based server.

I don’t have to care about licenses and crap like that. It just works.

https://matrix.org/docs/matrix-concepts/end-to-end-encryption/

Key sharing When an event cannot be decrypted due to missing keys, a client may want to request them from other clients which may have them.

If you have forgejo or gitea ssh running on port 222, you need to specify it somewhere. Or else git could connect to port 22, which is default for ssh.

So sshd is running. The first question is: is it running on the port you expect it to run? The main host can have sshd too and maybe you connect to the wrong port? Did you use a ~/.ssh/config for your forgejo connection?

It would help if you explain “it does not work” further. It’s a bad desciption of the situation and we cannot look directly at your installation.

If users cannot do anything because all encryption keys are lost, then they need to know that and also how to avoid the situation in the future.

I think it’s not a bug. It’s simply no one online who can share a decryption key.

This is quite annoying. When will devs learn to tell people to resolve the problem instead of just showing a pointless error messages?

Not really. Postfix is very robust against attackers and knows to how to deal with bots by default. It makes sense to also configure SPF, DKIM and DMARC for your own safety.

If you want to stop the attackers from hammering, you can also add fail2ban.

If you want to avoid spam, you can attach a spamfilter to the delivery agent and let Sieve do the rest.

I’ve been running my postfix/dovecot combo using 4 mail domains for over 5 years without any problems. It’s simply fantastic.

At the moment I’m trying out Ampache. It seems to have more features than Gonic.

Nothing special. Radicale is fine, too. As far as I see it also supports sharing of CardDAV among multiple users which Baikal does not.

One thing I needed after I migrated away from Nextcloud is the birthday calendar. There is a script for that on Baikal.

Baikal (CalDAV server), DAVx5 for sync, Tasks.org for Android UI, Thunderbird on PC.

Dynamic IPs are filtered out, even on my server. This is done by using scores provided by Spamhaus. The majority of connects from such IPs are botnets.

You can run a private server on your dynamic IP. It should not connect to public servers though.

I’ve got Unifi Network installed in a container on my home server. I have also an custom-built router, because it is much more powerful than any appliance and does not cost as much.

Many governments want to decrypt chats. You better learn how to selfhost.

Just a remark from someone who runs ZFS since the beginning. Many people don’t like the deduplication feature because of its memory footprint.

It’s also nice to have this feature without relying on a certain filesystem.