TarantulaFudge

I’ve got mine accessible with SSL proxy. I would say make sure you use an alternative port to help reduce exposure during scans.

I thought it was funny when it came out, but it hasn’t aged well at all. Very cringey and stereotypical, with a slight tinge of homophobia.

It’s perfectly fine to host jellyfin online. Use a proxy server to enable TLS and do not use default ports 80/443. Use letsencrypt for free certificates. No need for VPN to access here either. Do not expose any other ports such as SSH on default ports. Lock down your jellyfin server and any other related services behind a VPN service and block access to Internet through other interfaces (except for port forwards on your ISP for jelly). Go high on port ranges since they typically aren’t scanned or blocked. Go dual stack for best results and don’t use your router address for IPv6 more than likely you have your own /64 choose a different address for port forwards. Do not assign this address to your internal servers. Use a reserved unrouted IPv6 range internally and do NAT6. Do not allow any raw IPv6 internet access

This happens on slower USB devices the data is buffered and the write won’t be complete right away. You can use the “sync” command and wait until it completes to make sure it’s done before you unmount the device. These days KDE shouldn’t let you unmount before it’s done though.

I stopped using gnome after they removed the ability to edit the menu without going through a bunch of hoops. Their idea of removing complexity involved removing choice and customization. KDE has had superior multi monitor support for a long time.

I’d still be using Ubuntu sometimes if it weren’t for the snaps thing. They only make sense for proprietary software… but snaps still suck. I don’t like packaged software. They contain all kinds of things that can’t be updated. The app store was getting better before all that changed. Now Debian seems better, but I still prefer source based distros like Gentoo because the ingredients come with recipes.

+1 for decentralized or federalized services gonna plug matrix here I’ve used it for 5 years avoid using matrix.org homeserver

It doesn’t matter if it is a business entity operating under a government then you can never really know because gag orders. Centralized servers can be blocked. Telegram and Signal apps could have a back door. This is why open stack is important. And not just the code. Also encryption is default for p2p one on one conversations. It’s not in channels by default because it can complicate public use.

Yeah the main thing is that the ports and addresses can change and it’s nbd. From a firewall perspective, it’s impossible to block them all. Especially when the clients are doing mundane https requests. Even if the server goes down or partial connectivity, the channel can still be used.

It cannot be easily blocked especially if you use your own homeserver every homeserver replicates the channel and it can operate without the original server! That’s why signal and telegram are inherently flawed.

I can answer this! All matrix calls are over https APIs. Ports and addresses are stored in a text file on the base domain or in DNS txt entry.