Skip Navigation
InitialsDiceBearhttps://github.com/dicebear/dicebearhttps://creativecommons.org/publicdomain/zero/1.0/„Initials” (https://github.com/dicebear/dicebear) by „DiceBear”, licensed under „CC0 1.0” (https://creativecommons.org/publicdomain/zero/1.0/)BL
bladewdr @infosec.pub
Posts 0
Comments 37
[Solved] AdGuard Home only showing router IP address in client list
  • You can set up firewall rules to redirect the traffic destined for public DNS servers to your internal DNS server.

    Not sure how to construct that rule in the unifi firewall but it comes down to "any outbound traffic on port 53 that's not destined for the adguard server, redirect it."

  • Why Personal Cloud Storage is so bad on Linux?
  • This is the one I'm using as well. I use it to keep my work laptop running Linux in sync with the various Windows desktops I use in our offices. Works great for keeping my work keepass vault in sync.

  • What types of services are you not willing to self-host?
  • Mail server, but mostly because deliverability in this day and age is a nightmare. If you're some one off running your own mail server in 2023 be prepared to deal with many headaches around IP reputation.

  • Advice for tiny NAS to store backups?
  • If you've got a copy of the data that's local, why are you opening up ports? Just run the backup job internally.

    I'm also not fond of using SBCs as a NAS, by nature their I/O is extremely limited. It will probably work as a backup, but man do I not trust a USB interface at all.

    I also recommend not relying on email for notifications - too unreliable. I use the healthchecks.io docker image and have it send me notifications via Pushover when something fails.

  • Ubuntu 23.10’s New Software App Will Demote DEBs (Apparently)
  • All the servers I've spun up in the past few years have been Debian instead of my usual Ubuntu.

    The last straw was kinda when I learned that installing docker via the install menu gives you the snap version instead of the normal one, with no indication that this is the case.

  • What is the best antivirus?
  • Depends on your needs and your threat surface.

    Are you just an individual? Use Windows defender and ublock origin in the browser.

    If you're setting this up for some older folks create a separate non-administrator id for them to use day to day.

    As a business if you need antivirus your really want something with an EDR team behind it looking for anomalies - not just virus signatures. Something like bitdefender EDR or Huntress.

  • Opinion - What are your thoughts on password managers? Do you use one? Would you recommend it to others?
  • As others have said, bitwarden. I've also heard good things about roboform.

    I really love that bitwarden is not only open source but has been professionally code reviewed, and can be self hosted if you've got the knowledge to do so.

    Of course, if you're self hosting it make sure you have a solid backup strategy for your vault.

  • If you want to host something on a Raspberry Pi, you should consider using literally any other piece of hardware
  • Doesn't come with a power adapter and has weird power requirements. Wouldn't power up at all with a standard 5V 1A wall plug, needed 5V 4A.

    Apart from that it's been perfectly fine. I wish other OS than the armbian they provide supported this CPU.

  • Which kind of command/apps you always wanted to self-host but you never bothered doing so because it's "overkill"?
  • Nothing is really too much.

    I have too much hardware to swap out to go 10G networking or I totally would.

    The point of my homelab is for me to learn and break stuff in a safe environment, so if that leads me down a Kubernetes rabbit hole at some point so be it.