agile_squirrel

joined 4 years ago
sorted by: new top controversial old
Screek presence sensor in c/homeassistant@lemmy.world
[–] agile_squirrel@lemmy.ml 1 points 1 week ago

TIL what a tankie is and that lemmy.ml is politically biased. I pretty much just keep to my subscribed communities.

38
Vaultwarden vs KeePassXC for extreme security (lemmy.ml)
 

I was thinking about how all of my passwords are compromised if I have malware on my system. It made me wonder, does Vaultwarden or KeePassXC/KeePassDX offer better protection on a malware infected system?

Vaultwarden

  • Only accessed locally via LAN/VPN
  • Set up for 2 factor authentication using WebAuthn (FIDO)

KeePasssXC/KeePassDX

  • Synced locally via syncthing
  • Set up for 2 factor authentication using HMAC-SHA1 Challenge-Response
  • All clients blocked from internet access

I don't use browser extensions and I manually copy/paste my passwords to fill in entries.

KeePass has good memory protection, but the 2FA can be read from USB and doesn't change every time the database is decrypted. Vaultwarden enables the more secure FIDO2 2FA, but to my knowledge has less secure memory management as the entire entire database is decrypted on unlock.

Screek presence sensor in c/homeassistant@lemmy.world
[–] agile_squirrel@lemmy.ml 3 points 1 week ago* (last edited 1 week ago) (2 children)

I'm using a mm wave sensor for a similar purpose and it works well. I don't use it as an on trigger. I use it to help decide when to turn lights off.

Screek presence sensor in c/homeassistant@lemmy.world
[–] agile_squirrel@lemmy.ml 3 points 1 week ago (4 children)

For a cheap or free solution, you could detect when your TV is on (Chromecast integration, home kit TV integration, etc. or power monitoring smart plug) and don't turn off the lights if the TV is on.

Music service that works well with VPN and Music Assistant in c/homeassistant@lemmy.world
[–] agile_squirrel@lemmy.ml 2 points 2 weeks ago

The VPN part is tough to answer since it depends on the music service and VPN exit IP. You may find the VPN is fine if you use another exit node.

Do I really need a firewall for my server? in c/selfhosted@lemmy.world
[–] agile_squirrel@lemmy.ml 1 points 2 weeks ago (1 children)

My server is only available on my LAN and via a VPN. Is fail2ban applicable? Or is it mainly for public facing servers?

Sanity check: am I crazy for wanting to wipe everything and do/learn from scratch? in c/selfhosted@lemmy.world
[–] agile_squirrel@lemmy.ml 3 points 2 weeks ago* (last edited 2 weeks ago) (1 children)

I view podman as a mostly drop in replacement for docker but it doesn't have a daemon (for better and worse). I wouldn't recommend using podman for you right now. I'd strongly recommend docker-compose (not docker run).

If you're ever stuck trying to convert a docker run command to a compose.yml file, composerize.com is helpful.

Do I really need a firewall for my server? in c/selfhosted@lemmy.world
[–] agile_squirrel@lemmy.ml 2 points 2 weeks ago (9 children)

I have about 20 services on my machine so I'm going to need to open a ton of ports (ssh, SSL, multiple higher number ports since some services require several ports). At that point, what is the point of a firewall if so many ports are open? With so many ports open, it seems like a firewall doesn't add much security vs the complexity it adds.

Sanity check: am I crazy for wanting to wipe everything and do/learn from scratch? in c/selfhosted@lemmy.world
[–] agile_squirrel@lemmy.ml 8 points 2 weeks ago (3 children)

I had a similar journey and recommend it. I started with Open Media Vault with docker containers configured via a GUI, then to Debian + docker compose, then to Debian deployed with Ansible + docker compose, and now I'm with NixOS + podman compose. The first jump to Debian was the most intimidating for me learning CLI commands for the first time and not having defaults chosen for me, but it was liberating to finally learn the actual tools and not just learn a GUI abstraction for tools.

Selfhosted chromecast audio (multiroom)? in c/selfhosted@lemmy.world
[–] agile_squirrel@lemmy.ml 4 points 1 month ago (3 children)

I've seen some interesting development with Music Assistant but I haven't personally used it. It's not sure if it can be commanded using the cast button.

1
What access points do you use? (lemmy.ml)
submitted 4 months ago* (last edited 4 months ago) by agile_squirrel@lemmy.ml to c/selfhosted@lemmy.world
0 comments fedilink
 

I'm thinking about upgrading my W-Fi and I was curious what wireless access points (WAP) people are using. I'm currently using a Netgear R7800 running OpenWRT.