• 2 Posts
  • 41 Comments
Joined 3 years ago
cake
Cake day: July 21st, 2023

help-circle
  • I have self hosted for years using Authentik and have 50 + services. Postiz has been one of the most challenging to spin up and maintain. The documentation is not up to date, the software is constantly changing and I had to tweak lots to get it to work. Even now, it seems to crash after a few days and haven’t had the chance to investigate. All these posts I set up didn’t go through and now if I turn it back on, it’ll release them all in one go before I can get in to stop it, or have to revert to a fresh install…

    The vast majority of services and not like this so don’t get disheartened! Try some other ones first them come back to this when more experienced. I recommend Bento PDF, ConvertX, outline wiki, vikunja and immich (if you have the storage space).

    At first, try to stick to software on Authentik’s guides (https://integrations.goauthentik.io/). Once you do a few OIDC and forward proxy services you’ll get the hang of it.

    When I get a chance I’ll share my docker compose SSO settings and authentik redirect uri that worked for me with the caveat that the software crashes for some reason.


  • We’re all fine with piracy because of enshittification and the spread of shows/films across too many services. Happily paid for Netflix when it was good but it slowly got worse and worse. If there was one fairly priced single (maybe max across 3) source(s), I’d switch back.

    In terms of stream vs arr’s. Quality of video and sound matters to us but not for everything we watch. I actually use Stremio with Debrid for most items, especially my family choosing what to watch. When I want top quality I will use my arr stack. When stremio fails I’ll use my arr stack. For TV shows we watch regularly we use the arr stack, partly to remind us when they’re released. For TV shows we regularly re-watch I use the arr stack.



  • South Africa’s sports minister has said his nation was “being made to look like fools” after its football team was delayed travelling to Mexico ahead of the World Cup due to visa issues.

    Gayton McKenzie demanded an explanation from South Africa’s football association (Safa) as to why this had happened, adding: “Action must be taken against those responsible for this mess.”

    Safa admitted the team had “experienced challenges regarding visas for some players and officials” but did not give further details.

    McKenzie later confirmed all the players had received permission to travel and would be leaving for the international tournament on Monday.

    National broadcaster SABC described what happened as an “administrative bungle”.

    The team, nicknamed Bafana Bafana, are due to face Jamaica in a friendly in Mexico on Friday.

    They will then play in the World Cup opening match against Mexico, which is co-hosting the competition alongside the US and Canada, on 11 June.

    “This Safa travel & visa debacle is embarrassing & grossly unfair towards the players & coaching staff,” McKenzie had written on X earlier on Sunday.

    Shortly after the minister’s comments, a brief statement from Safa said it was “working around the clock to ensure that the team travels to Mexico City as soon as possible ahead of the opening match”.

    Efforts were made on Sunday to get the team US visas, according to South African news site TimesLive.

    The Bafana Bafana squad and staff need permission to enter the US as they play their second World Cup game against the Czech Republic in Atlanta, in the US state of Georgia.

    The government’s international relations department was also involved.

    It seems that the efforts paid off, with McKenzie saying on Sunday evening that a chartered flight would be leaving on Monday with all the players onboard.

    However visas had not yet been secured for the “assistant coach, team doctor, head of security and one analyst”, he said.

    South Africa is one of 10 African nations taking part in the expanded 48-team World Cup.

    The game against Jamaica will be Bafana Bafana’s last chance to get ready for the tournament, which they last appeared at when South Africa hosted the finals in 2010.

    Their final home match on Friday - a 0-0 draw against Nicaragua that included a missed South African penalty - was described in some reports as “disappointing” and extended their winless run to four games.







  • Just to clarify for my simple brain - vps1 has just 80/443 open, vps2 just has a wireguard port open (51825 or whichever). Vps2 has no domain pointing to it’s public IP, vps has your domain pointing to it. Vps1 and home server have wireguard configs pointing to the vps2 public IP, so punch through automatically. Is that all correct?

    I think I have the same setup but with vps1 + 2 combined but that means it’s public IP is easily found by the domain (one includes a public business website) and has WG ports open (although my understanding is this in itself is not an issue as WG gives no reply)

    Have you opened an SSH port on both vps1 and vps2 for backup or happy to rely on wireguard? Thinking about it, you could open up the port on the vps but use the providers firewall to block the port - if needed can login to their site, open the port and then SSH in - would this work? They have KVMs for emergencies but just trying to think of worst case scenarios.


  • Good point, Romm can integrate well with MuOS, Playnite and other client side software you and others can install onto their actual devices. I’ve used Playnite on my devices to manage the emulator side and download the ROMs from the ROMs server.

    In theory, you could also try a sunshine server and moonshine client to steam the games from you’re server but guessing it would only work well over a local network, not over the internet to friends








  • 79% of smart dash cams we tested had security issues Out of 28, only six didn’t have any concerns. Find out what problems we uncovered and how to keep your dash cam secure Callum Pears Researcher & writer

    Callum pushes tech to its limits and has spent nearly three years bombarding antivirus with malware, taxing routers and inspecting computer monitors

    Which? dash cam tests found security flaws and concerns in the majority of smart models we tested, and in some cases they were breaking the law.

    Smart dash cams have wireless connectivity and features that use the internet. This could be tracking technologies, motion detection, voice assistant controls and voice alerts, as well as more advanced features such as automatic cloud backup, real-time alerts and remote viewing.

    You’re also able to transfer footage wirelessly to the companion app on your smartphone, which is much quicker and more straightforward than traditional dash cams, where you’d need to remove the SD or micro-SD card and copy the files over to your computer.

    Although these features make a dash cam a more useful tool for drivers, they also expose you to potential security risks.

    Our testing found numerous dash cams with multiple security vulnerabilities. In fact, of the 28 smart dash cams we tested, only six lacked security concerns.

    Find out what problems we encountered, which manufacturers took action to fix the problems we uncovered, and what you can do to keep your dash cam secure.

    Best dash cams: compare dash cams from Garmin, Nextbase, Road Angel and more What were the issues we found? A person watching dash cam footage on their smartphone

    Of all the issues we found, weak default wi-fi passwords were the most concerning security vulnerability because they mean that nearby hackers could connect to the devices and access data such as journey information, saved recordings and other personal information.

    Since 2024, manufacturers have been obliged to ensure that default passwords aren’t easily guessable. This can be resolved by enforcing a mandatory password change or by assigning unique default passwords.

    We contacted each manufacturer to share our findings and gave them an opportunity to comment and resolve our concerns.

    Road Angel successfully addressed the issue with its dash cams, which now require changing the default password.

    Miofive initially responded and released a firmware patch that fixed some of our other concerns, but didn’t resolve the default password issue. Miofive didn’t respond to our follow-up messages, and we received no response from Kitvison and Orskey.

    In addition to weak passwords, we also found mediocre encryption on some dash cams. There were several exploitable security weaknesses that made it possible to intercept data, access, and potentially modify stored video files.

    To do this would be difficult for hackers. In most cases, they would need to be very close to the dash cam to exploit it – but it’s not impossible. Many of these issues are also exacerbated by the poor default wi-fi passwords.

    Nextbase resolved our concerns with firmware patches. Miofive and Road Angel fixed some issues but not others, and we’re continuing to work with Road Angel to get remaining concerns resolved.

    Garmin reviewed our findings but stated that it believes that numerous factors 'limit the exploitability of any purported vulnerabilities such that there is no practical risk to our customers’. Kitvision and Orskey did not respond.

    In an age of growing cyberattacks and sophistication among hackers, dash cam manufacturers should be placing the greatest emphasis on their devices’ security, even if they think it’s difficult to exploit or a niche weakness.
    Why is PSTI important? Dash cam showing the road ahead

    The Product Security and Telecommunications Infrastructure (PSTI) Act came into effect in April 2024. It mandates that manufacturers, importers and distributors (such as retailers) have a duty to protect devices that can connect to the internet or other networks.

    It states ‘UK consumers should be able to trust that these products are designed and built with security in mind’.

    The PSTI Act specifies the publication of information on how to report security issues, details on how long manufacturers will ensure security patches are released and the banning of universal default and easily guessable passwords.

    These factors are important for strengthening security defences and ensuring that manufacturers release updates to keep products safe from new threats.

    Although the Act gives manufacturers time to bring their products in line with its standards, they’re now duty bound to investigate compliance failures and take action if required.

    If manufacturers fail to act, then the Office for Product Safety and Standards (OPSS) will intervene. The OPSS is an enforcement authority responsible for ensuring compliance.

    Strong legal protections and vigilant enforcement mean UK consumers can use smart devices – including dash cams – with confidence, knowing that non-compliance by manufacturers will have consequences.

    Which? takes this seriously too, and we’ve already informed the OPSS about our findings, the responses we received from manufacturers and the concerns we still have.

    3 steps to keep your dash cam safe and secure A person installing a dash cam in a car

    There are some simple steps you can take to boost your dash cam’s security, regardless of what manufacturers do or don’t do.

    1. Update wi-fi passwords

    The most important thing we would encourage every smart dash cam owner to do right now is to update the wi-fi password.

    This is used to connect to paired smartphones and transfer footage wirelessly to them. A weak or easily guessable password could, under the right circumstances, allow others access to your dash cam and its library of footage.

    As our testing has found many manufacturers still fail to either enforce a mandatory change, or provide a unique default password – it’s highly recommended that users update them independently to a strong, but memorable, alternative. Check out our guide to creating secure passwords for help with this. 2. Install firmware updates

    In addition to resolving software bugs and performance issues, firmware updates also provide important security updates.

    It’s important to update both the dash cam itself and any companion app. These updates ensure both are equipped to deal with newly discovered or recently resolved security vulnerabilities. 3. Keep footage backed up elsewhere

    It’s good practice to ensure that captured video footage – particularly important footage (such as that showing an incident, accident, or crash) – is backed up securely and separately from internal storage and any subscription-based cloud storage you may be using.

    The risk to footage located exclusively on the internal SD or micro-SD card is that it could become corrupted, damaged, lost or stolen.

    Cloud-based storage is typically part of a subscription service (either from the dash cam manufacturer or a third party). The risk here is ending the subscription and losing access to the stored footage, which the provider may later delete after you’ve unsubscribed.

    Back up footage on your computer or smartphone to keep it safe. Alternatively, for additional peace of mind, consider investing in a USB storage device or external hard drive to store your backed-up dash cam footage. Make sure to pick a model with a healthy amount of storage, as video files tend to be large.

    The latest dash cams we’ve tested BlackVue DR970X-2CH Plus BlackVue DR970X-2CH Plus dash cam BlackVue DR970X-2CH Plus Amazon Marketplace UK £529.95 Amazon UK £529.95

    The DR970X-2CH Plus is a forward-facing and rear-facing dash cam with a 4K camera for the front windscreen and a Full HD camera for the back.

    It has a range of smart features and functionality, and you can review footage using the companion BlackVue app or the BlackVue Viewer web software.

    You can also follow footage on a virtual map using the collected GPS data, helping you identify where key events occurred.

    Through the BlackVue Cloud service you can access more advanced features such as push notifications to your smartphone, live view and cloud storage. Some of these features require a subscription at an additional cost.

    Read our BlackVue DR970X-2CH Plus review to find out how it fared in our tough tests. Garmin Dash Cam X210 Garmin Dash Cam X210

    Available from Garmin (£260)

    The X210’s 2K camera is an upgrade of the earlier X110. It’s comparatively small, making its footprint on the windscreen minimal, especially compared with some models.

    Motion detection, GPS tracking and voice controls are all notable smart features.

    The Vault Subscription Plan Advance grants you access to Garmin’s secure cloud-based storage feature. This is accessed through the Garmin Drive app.

    Take a look at our Garmin Dash Cam X210 review to see how it compares to others we’ve tested. Nextbase Piqo 1K Nextbase Piqo 1K dash cam

    Available from Halfords (£99), Nextbase (£99)

    The Piqo 1K is one of the more affordable dash cams we’ve tested, but it doesn’t come with a supplied SD card, which can easily catch you out.

    It has a solid array of additional smart features, including GPS tracking, motion detection and the ability to access footage via the companion Nextbase app.

    Footage is listed with thumbnails in the app, making it a doddle to cycle through them.

    Check out the Nextbase Piqo 1K review to see if it’s the right dash cam for you.



  • Depending on your download speed, you can manually download a TV show episode in seconds to minutes. By the time you watch that episode, at least the next one will be ready. It is quite rare to have to do this though, me and my family mostly add shows on Seer when we find them (recommendations, adverts, etc) and by the time we’ve sat down to watch it’ll be ready.

    I did the whole lists thing others have mentioned but to be honest, we found there was too much choice, lots of crap and quickly ran out of space. Taking an active role in choosing shows and films works better for us and I’ll have a short list at any time to watch.


  • I’m an accountant and tax professional but have always been into computers. I had a social media account breached although it was no issue as hadn’t used it did years. I used a terrible password as thought it did not matter but made me realise I needed to be better generally so started using a password manager.

    Then Netflix stopped account sharing. I had just got a 4k TV and only their top level with 4 screens supported it so was pissed off. The fragmentation across services had started so was getting annoyed anyway. This led me to the arr’s.

    I decided I could no longer trust Microsoft and hated their pricing structure so was interested in Nextcloud. By then I found the self hosted community (on reddit), bought a desktop PC and after getting the hang of it plus many mistakes I loved my services so will never look back.

    Joined the migration to Lemmy. Am based in the UK and joined the anti-US feelings so am setting up more storage, better redundancy and more services for my family. A few family members are interested in helping so can share backups.