schmurnan

joined 1 year ago
[–] [email protected] 4 points 6 months ago

Yeah I had SearXNG running via a Docker container and it was pretty good. I didn’t like having to use a domain name and expose it over the internet though, because Docker is running on my NAS. I guess I could give it another try using Cloudflare tunnels so I don’t have to open anything up.

Or else go back to Startpage.

[–] [email protected] 14 points 6 months ago* (last edited 6 months ago) (5 children)

My 100-search trial expired this week and I was literally planning on subscribing later tonight. This has made me think twice.

But it takes me back to why I tried Kagi in the first place: What else can I use that respects privacy?

I don’t think any of them do completely. DuckDuckGo uses Bing, so is Microsoft; Google is… well, Google; Brave is apparently really shady; I’ve never thought much of the results from Bing directly. Startpage seemed ok but apparently uses Google.

What else?

I also like something to be integrated into the browser. As a Mac user, I can’t add new search engines to Safari (and have actually switched to Orion, but may now switch to Firefox or back to Safari).

[–] [email protected] 2 points 7 months ago

Yep, makes more sense and gives me more options. Thanks.

[–] [email protected] 1 points 7 months ago

To be fair that’s probably a much better option given how few HK lamps I can find. And I have a spare Eve Energy plug. Thanks!

 

Pretty much as the title states, really.

Just rearranged my home office and I’m looking for a decent HomeKit enabled desk lamp. I used to use a Benq light bar on my old monitor, but now I have a Studio Display I’m not sure I want to use it on there (unless people tell me it’s fine?)

Thanks in advance.

[–] [email protected] 1 points 7 months ago

Exactly! I saw the App Store version was ripped of a few features and subscription-based so was a no-no. Hence trying to get it from Panic.

When I traded in the MBA I had the option of bank transfer or Apple credit and I (foolishly) chose credit because, at the time, my wife was going to trade her iPad and get a new one, so figured the credit would come in handy. She then changed her mind. So at the moment it’s just paying my subscriptions (Apple One, etc.) I guess until it runs out or I buy something.

[–] [email protected] 1 points 7 months ago

Sorry, I wasn’t classing Chrome and Chromium as the same thing. I’m a software developer of 20 years so I understand they’re not the same thing. I guess I just took that opportunity to state that I don’t use Google services/products if I can help it.

In work we’re a Windows house, but I’ve managed to get my hands on an M2 MacBook Pro. For now I’m still using Edge but would like to get my iCloud exemption so I can use some of the apps on my personal MBP for work, and I’m wondering whether I should continue using Edge for work and A. N. Other browser for personal (and mirror this on my iPhone); or whether to use profiles, for example, on Safari and split it that way. I might be limited to what I can download on the work machine, but I’d like to synergies everything as much as I can where possible rather than having two completely different Mac experiences with my iPhone sort of thrown in the middle of both.

Which browser do you prefer? I assume a Chromium-based derivative?

[–] [email protected] 1 points 7 months ago

I have/had a ProtonMail account, and whilst it was great, I believe it was only end-to-end encrypted when sending emails to other people using ProtonMail…? Or at least that was my understanding at the time.

The apps back then weren’t particularly polished, so I ended up migrating everything back to iCloud.

To be honest, I don’t seem to have any issues with iCloud and everything just works. But that’s the problem with Apple, and how they “get” you.

[–] [email protected] 2 points 7 months ago

Yeah figured as much. Thanks anyway.

[–] [email protected] 2 points 7 months ago

Ah, bummer. Ok thanks for the article!

[–] [email protected] 4 points 7 months ago (4 children)

No, we don’t have Apple Cash here in the UK for some reason.

If I go to the App Store on either my iPhone or Mac and click on my profile pic, I can see I have a balance. Because I selected Apple Store credit when I traded in my Mac it just credited my Apple ID with money.

If possible I’d like to transfer it out of there, to buy software directly from the respective websites for Swish and Transmit.

[–] [email protected] 2 points 7 months ago (2 children)

And this, my friend, is exactly what I came here for. Very insightful, informative and measured answer. Thank you for taking the time 👍🏻

[–] [email protected] 0 points 7 months ago

Fair enough 👍🏻

 

I know “best” is subjective, but as someone who’s entrenched in the Apple ecosystem I always used to use the stock apps: Reminders, Calendar, Mail, Podcasts and, of course, Safari.

But over time I’ve moved away from some of those apps, towards things that work better than the stock apps but also still sync with my other Apple devices (iPhone, iPad, Watch): Things and Todoist (because I can’t decide on one over the other), Fantastical, Mail (still), Overcast… but I tend to hover between browsers.

I mainly use Safari, and try to use profiles to separate personal and work stuff. But over the years I’ve also tried Firefox, I’ve tried Brave and more recently I’ve tried Arc. But I just can’t make my mind up.

So I was curious what your browser of choice is (and also, if you have any other views on the best stock app replacements - including alternatives to the ones I listed above for GTD, calendars, email and podcasts (don’t get me started on the “best” search engine!), I’d be interested to get your opinions.

 

This probably isn’t possible, but I traded in an old MacBook Air and chose to get the cash added to my Apple account. However, at the minute it just pays some of my subscriptions automatically, and I was wondering if I can withdraw it somehow?

I was looking to buy a few apps (Swish, Transmit) and figured I could get them off the Mac App Store. But Swish isn’t on there and the App Store version of Transmit doesn’t seem worth it compared to getting it directly from their website.

So wondered if I could somehow transfer the cash from my Apple account but guessing the answer is “no”?

 

This probably isn’t possible, but I traded in an old MacBook Air and chose to get the cash added to my Apple account. However, at the minute it just pays some of my subscriptions automatically, and I was wondering if I can withdraw it somehow?

I was looking to buy a few apps (Swish, Transmit) and figured I could get them off the Mac App Store. But Swish isn’t on there and the App Store version of Transmit doesn’t seem worth it compared to getting it directly from their website.

So wondered if I could somehow transfer the cash from my Apple account but guessing the answer is “no”?

 

This probably isn’t possible, but I traded in an old MacBook Air and chose to get the cash added to my Apple account. However, at the minute it just pays some of my subscriptions automatically, and I was wondering if I can withdraw it somehow?

I was looking to buy a few apps (Swish, Transmit) and figured I could get them off the Mac App Store. But Swish isn’t on there and the App Store version of Transmit doesn’t seem worth it compared to getting it directly from their website.

So wondered if I could somehow transfer the cash from my Apple account but guessing the answer is “no”?

 

Pretty much as the title says, just wondered if it was possible for me to stop listening to a playlist on my Mac and seamlessly pick it up on my iPhone, rather than starting the playlist again?

 

I'm pretty sure this has happened to me several times over the years, but it hasn't happened for a while so I can't remember the fix.

But for some reason, the notifications for Mail on my Apple Watch are square instead of circular. As you know, circular notifications are interactive and can be replied to, actioned, etc. whereas square ones are literally notifications and you can't do anything with them.

Any ideas how to fix?

 

Apologies in advance - I've tried searching but couldn't find anything in here.

I've joined a community that provide updates and documentation via Google Sheets, Docs, etc. but when I try to open them on the browser on my iPhone (either Safari or Brave), I can't edit them. As soon as I click on the Edit icon, I get a prompt to download the app.

I don't have a Google account, nor do I use any of their services (consciously), so would like a way to open the documents in the MS Office equivalent (Word, Excel, etc.) so I can edit the documents successfully.

TIA.

 

TL;DR - which privacy-focused search engine do people recommend, preferably one that can also easily be used as a default option in Safari?

I ditched Google in about 2016ish I would guess, and since then have used DDG as my default search engine.

As someone entrenched in the Apple ecosystem, it’s always seemed like a sound choice, as it’s one of the search engines built in to Safari on both iOS and macOS.

After spending a bit more time recently playing around with and updating my Docker containers, I started hosting a Whoogle container, which seemed to work pretty well, but I don’t see many out there talking about it, so not sure how good it actually is. I then tried a SearXNG container, but either had it misconfigured or just wasn’t getting many search results back.

At the moment I’m trying out Startpage, but I know there are potential privacy concerns since they were part-bought in 2019 by a US ad-tech company.

I’m also playing around with different browsers at the moment, flicking between Safari, Firefox and Brave. At which point I stumbled across Brave Search, which seems pretty promising.

So, which search engines do you all recommend?

UPDATE: Probably should’ve done a poll! But latest (if I’ve captured everything correctly) is:

  • DuckDuckGo - 10
  • Qwant / SearXNG / Kagi / Brave - 4
  • Startpage / Ecosia - 2
  • Google - 1

As to my other questions around browsers:

  • Majority seem to use Firefox
  • Some mentions of Brave
  • One mention of Arc
27
submitted 1 year ago* (last edited 1 year ago) by [email protected] to c/[email protected]
 

I'm trying to access my Pi-hole container from pihole.mydomain.com without any ports or /admin, and I swear the multitude of posts on the internet make this seem really straightforward. Perhaps it is and I'm being dumb, but I cannot get it to work.

Below is my current docker-compose for both Traefik and Pi-hole:

version: "3.7"

services:
  traefik:
    container_name: traefik
    image: traefik:latest
    restart: unless-stopped
    security_opt:
      - no-new-privileges:true
    networks:
      - medianet
    ports:
      - 80:80
      - 443:443
    environment:
      - CF_API_EMAIL=${CF_API_EMAIL}
      - CF_DNS_API_TOKEN=${CF_DNS_API_TOKEN}
      - TZ=${TZ}
      - PUID=${PUID}
      - PGID=${PGID}
    volumes:
      - /etc/localtime:/etc/localtime:ro
      - /var/run/docker.sock:/var/run/docker.sock:ro
      - /path/to/traefik:/etc/traefik
      - /path/to/shared:/shared
      - /path/to/traefik/logs/traefik.log:/etc/traefik/logs/traefik.log
      - /path/to/traefik/logs/access.log:/etc/traefik/logs/access.log
    labels:
      - traefik.enable=true
      - traefik.http.routers.traefik.entrypoints=http
      - traefik.http.routers.traefik.rule=Host(`${TRAEFIK_DASHBOARD_HOST}`)
      - traefik.http.middlewares.traefik-auth.basicauth.users=${TRAEFIK_USER_PASS}
      - traefik.http.middlewares.traefik-https-redirect.redirectscheme.scheme=https
      - traefik.http.middlewares.sslheader.headers.customrequestheaders.X-Forwarded-Proto=https
      - traefik.http.routers.traefik.middlewares=traefik-https-redirect
      - traefik.http.routers.traefik-secure.entrypoints=https
      - traefik.http.routers.traefik-secure.rule=Host(`${TRAEFIK_DASHBOARD_HOST}`)
      - traefik.http.routers.traefik-secure.middlewares=traefik-auth
      - traefik.http.routers.traefik-secure.tls=true
      - traefik.http.routers.traefik-secure.tls.certresolver=cloudflare
      - traefik.http.routers.traefik-secure.tls.domains[0].main=${TRAEFIK_BASE_DNS}
      - traefik.http.routers.traefik-secure.tls.domains[0].sans=*.${TRAEFIK_BASE_DNS}
      - traefik.http.routers.traefik-secure.service=api@internal

  pihole:
    container_name: pihole
    image: pihole/pihole:latest
    restart: unless-stopped
    networks:
      - medianet
      - npm_network
    domainname: mydomain.com
    hostname: pihole
    ports:
      - 53:53/tcp
      - 53:53/udp
    environment:
      - TZ=${TZ}
      - WEBPASSWORD=${WEBPASSWORD}
      - FTLCONF_LOCAL_IPV4=192.168.1.116
      - WEBTHEME=default-auto
      - DNSMASQ_LISTENING=ALL
      - VIRTUAL_HOST=pihole.mydomain.com
    volumes:
      - /path/to/pihole:/etc/pihole
      - /path/to/pihole/dnsmasq.d:/etc/dnsmasq.d
    cap_add:
      - NET_ADMIN
    labels:
      - traefik.enable=true
      - traefik.http.routers.pihole.rule=Host(`pihole.mydomain.com`)
      - traefik.http.routers.pihole.entrypoints=https
      - traefik.http.routers.pihole.tls=true
      - traefik.http.routers.pihole.service=pihole
      - traefik.http.services.pihole.loadbalancer.server.port=80

The Pi-hole one will load the login page and, upon entering the password and logging in, it will simply bring me back to the login page. So just keeps looping around.

The Traefik config is working with lots of other containers, all of which are using SSL certificates, so I'm pretty sure my Traefik config is okay.

I've tried middlewares to addprefix=/admin, which just ends up looping round with multiple /admin prefixes and also doesn't work.

Anybody got any ideas?

I'm aware I don't have to put Pi-hole behind SSL as I'm not exposing any of this stuff to the open internet (ports 80 and 443 are not forwarded on my router, and I'm using local DNS records in Pi-hole to access via subdomains).

Happy to post my traefik.yml and config.yml files if needed.

UPDATE: I seem to have figured it out! Below is my final Pi-hole docker-compose - the Traefik one remains unchanged from the original post:

  pihole:
    container_name: pihole
    image: pihole/pihole:latest
    restart: unless-stopped
    networks:
      - medianet
      - npm_network
    domainname: mydomain.com
    hostname: pihole
    ports:
      - 53:53/tcp
      - 53:53/udp
    environment:
      - TZ=${TZ}
      - WEBPASSWORD=${WEBPASSWORD}
      - FTLCONF_LOCAL_IPV4=192.168.1.116
      - WEBTHEME=default-auto
      - DNSMASQ_LISTENING=ALL
      - VIRTUAL_HOST=pihole.mydomain.com
    volumes:
      - /path/to/pihole:/etc/pihole
      - /path/to/pihole/dnsmasq.d:/etc/dnsmasq.d
    cap_add:
      - NET_ADMIN
    labels:
      - traefik.enable=true
      - traefik.http.routers.pihole.entrypoints=http
      - traefik.http.routers.pihole.rule=Host(`pihole.mydomain.com`)
      - traefik.http.middlewares.pihole-https-redirect.redirectscheme.scheme=https
      - traefik.http.routers.pihole.middlewares=pihole-https-redirect
      - traefik.http.routers.pihole.service=pihole
      - traefik.http.routers.pihole-secure.entrypoints=https
      - traefik.http.routers.pihole-secure.rule=Host(`pihole.mydomain.com`)
      - traefik.http.routers.pihole-secure.tls=true
      - traefik.http.routers.pihole-secure.service=pihole
      - traefik.http.services.pihole.loadbalancer.server.port=80
 

I'm sure I'm massively overthinking this, but any help would be greatly appreciated.

I have a domain name that I bought through NameCheap and I've pointed it to Cloudflare (i.e. updated the name servers). I have a Synology NAS on which I run Docker and a few containers. Up until now I've done this using IP addresses and ports to access everything (I have a Homepage container running and just link to everything from there).

But I want to setup SSL and start running Vaultwarden, hence purchasing a domain name to make it all easier.

I tried creating an A record in Cloudflare to point to the internal IP of my NAS (and obviously, this couldn't be orange-clouded through CF because it's internal to my LAN). I'm very reluctant to point the A record to the external IP of my NAS (which, for added headache is dynamic, so I'd need to get some kind of DDNS) because I don't want to expose everything on my NAS to the Internet. In actual fact, I'm not precious about accessing any of this stuff over the internet - if I need remote access I have a Tailscale container running that I can connect to (more on that later in the post). The domain name was purely for ease of setting up SSL and Vaultwarden.

So I guess my questions are:

  • What is the best way to go about this - do I create a DDNS on the NAS and point that external IP address to my domain in Cloudflare, then use Traefik to just expose the containers I want to have access to using subdomains?
  • If so, then how do I know that all other ports aren't accessible (I assume because I'm only going to expose ports 80 and 443 in Traefik?)
  • What do other people see (i.e. outside my network) if they go to my domain? How do I ensure they can't access my NAS and see some kind of page?
  • Is there a benefit to using Cloudflare?
  • How would Pi-hole and local DNS fit into this? I guess I could point my router at Pi-hole for DNS and create my A records on Pi-hole for all my subdomains - but what do I need to setup initially in Cloudflare?
  • I also have a RPi that has a (very basic) website on it - how do I setup an A record to have Cloudflare point a sub-domain to the Pi's IP address?
  • Going back to the Tailscale thing - is it possible to point the domain to the IP address of the Tailscale container, so that the domain is only accessible when I switch on the Tailscale VPN? Is this a good idea/bad idea? Is there a better way to do it?

I'm sure these are all noob-type questions, but for the past 6-7 years I've purely used this internally using IP:port combinations, so never had to worry about domain names and external exposure, etc.

Many thanks in advance!

 

I’ve got my library just as I want it, and have made a couple of changes to the in my movies’ .nfo files.

This is fine for a day or so, and then Jellyfin decides to overwrite my .nfo files.

I have them set to “lock” via tinyMediaManager but it doesn’t seem to make any difference. Every day it’ll reorder some movies in my library.

Pretty sure I’ve also disabled the image plug-ins in the library so it shouldn’t be pulling any metadata from anywhere.

Not a huge deal but incredibly frustrating — I want my library showing movies in a certain order and it’s driving me nuts when they’re rearranged 🤣

Any ideas?

TIA.

view more: next ›