ZeroTrust Your Home
🔐 Securing Your Digital Sanctuary, Trust None, Protect Everything. - lucadibello/zerotrust-your-home
This is a decent writeup on applying "Zero Tust" principles to a home lab using mostly open source tools. I'm not the author, but thought it was worth sharing.
I thought it needed to be connected to the internet in order to send prints to it? Does it work fine if never connected?
You've already received some great suggestions. Another one is Netdata. Personally, I use glances to collect the data and Home Assistant to display the dashboard. But I only do this because I already had Home Assistant running.
Video version of this review: https://www.youtube.com/watch?v=dfFpXEY1Y1U
The AMD FW13 RAM compatibility guide was updated
Framework Laptop 13 (AMD Ryzen 7040 Series) supports two slots of DDR5 SO-DIMM memory at up to DDR5-5600 speeds.
I just started using it but I made a mistake on one of my submissions. Is there any way to undo or edit a submission made in the app?
Edit: There is an undo button on the bottom left in the app.
Dell Optiplex XE3 for Home Server
I recently got a Dell Optiplex XE3 second hand and set it up as a home server. It's working great and I wanted to share some info on it in case it's a helpful reference for other people's home labs.
The Dell Optiplex XE3 tower is configured with a i7-8700 (6c, 12t), 32 GiB DDR4 RAM (2 sticks), 2 2.5" SSDs, and 1 M.2 NVMe SSD. I installed Debian 12 minimal and services are deployed via Docker. I'm currently running 20+ containers, with some of the heavier containers being Jellyfin, Nextcloud, Paperless NGX, Home Assistant, and Immich. I haven't performed any software power optimization; it's just a standard Debian install. When idle with no significant load on the containers, power consumption is 14-15W measured with a Shelly Plug. While not fantastic (my previous server had 6W with similar loads), it is lower than I expected and is quite reasonable.
Overall, I'm impressed with this system. It currently has 4 unused PCIe slots, 2 unused SATA connectors, and 2 unused DIMM slots so it has solid future expansion. I have it laying on its side on a rack shelf and it takes up about 3.5U of space in my rack. While I wish it was smaller, fanless, had lower idle power, and had 2.5G Ethernet it has better idle power than I expected for its configuration and options for future expansion.
For RAM, I would preorder without memory. I would wait until Framework updates their knowledge article on memory compatibility before buying RAM from a 3rd party (https://knowledgebase.frame.work/en_us/what-dram-memory-is-supported-by-framework-laptop-16-ryS2Xr3ch). Since the FW13 is also a 7040 series chip, I expect them to update this FW16 article well before the FW16 ships.
I think the charger is pretty cool and will be one of the first of it's kind. I would have no issues ordering that since it's fairly priced and will be useful for almost all USB-C devices in the foreseeable future.
I didn't find anything concrete, but it seems that a package is automatically marked insecure if it has a dependency that has a known CVE. I wonder how that is done.
How are packages marked as insecure? I assume that's from some sort of automatic build process? Is that done in Hydra (https://hydra.nixos.org/)? Or is that from manual, or a lack of manual review?
Who makes Nix packages?
I'm new to Nix and wanted to get my feet wet by using the Nix package manager. However, I wasn't sure how these packages were made. Are these packaged by the community? Who do I need to "trust" when installing these packages? In general, I was looking for info on how nix packages are made and maintained.
I'm glad they included the thickness (18mm, 0.7in), but I was hoping they'd share the other dimensions as well.