Lower-end cars keep getting more and more expensive in the USA, meanwhile they're getting cheaper in some other countries due to competition from Chinese cars.
dan
joined 2 years ago
That's interesting... It used to be a lot heavier.
Authelia is definitely the lightest in terms of RAM, but it's also the lightest in terms of features. As far as I can remember, they only added OIDC support fairly recently - previously it only supported proxying.
That and email protocols are outdated and aren't too secure. For example:
- Neither SMTP nor IMAP have no way to use two factor authentication.
- Spam blocking is so hard because SMTP was not designed with it in mind.
- SMTP has no way to do end-to-end encryption which is why you need to layer things like GPG on top.
IMAP has a modern replacement in JMAP, but it's not widespread. SMTP is practically impossible to replace since it's how email servers communicate with each other.
The "solution" has been for companies to make their own proprietary protocols and apps, for example the Gmail and Outlook apps combined with a Gmail or Microsoft 365 account respectively.
I'm not the person you're replying to, but Authentik:
- Has a UI for configuring it, including adding users.
- Supports LDAP if you need it. Authelia needs a separate LDAP server.
- Supports practically every two factor auth protocol you'd need: OIDC (OpenID Connect), OAuth2, SCIM, SAML, RADIUS, LDAP, and proxying for apps that don't support any of them (which is getting rarer).
- Supports permissions and permission groups, i.e. only allow certain users to access particular apps.
- Can be used as the source of truth for Google Workspace and Microsoft Entra. Maybe not as relevant for home use.
I haven't tried Keycloak but I hear it's pretty good, albeit a heavier app to deploy.
I have tried Authelia, and it's much less powerful than Authentik. Authelia requires you to manually modify config files rather than using a web UI. It also only supports OIDC (which is in beta) and proxying. Proxying is not recommended and has several issues since it's not "true" single sign-on.
I self-host my email using Mailcow, and use a VPS for it. I don't trust my home server to be reliable enough, and the VPS providers have nicer equipment (modern AMD EPYC CPUs, enterprise SSDs, datacenter-grade 10Gbps or 40Gbps connections, etc). I use a separate VPS just for my emails - it's the one thing I want to ensure is secure, so I didn't want any other random software (that could potentially have security issues) running on it..
I also use an outbound SMTP relay to avoid having to deal with IP reputation. Very easy to configure this in Mailcow. SMTP2Go has a free plan for sending <1000 emails per month.
You could probably use Hoarder and tag the links with "read later".
Yeah this is the part I don't understand. Does the remote not have onboard storage?
At work, quite a few people use Logitech mice, but the IT security team had to block Logitech Options because Logitech added some sort of AI functionality to it without adding a killswitch for enterprise customers... On the positive side, people learnt about alternative apps to reconfigure the mice that don't have any of Logitech's bloat.
iTerm added AI stuff but at least they added a killswitch (a setting in a plist file I think) to force it to be disabled.
Nvidia has been open-sourcing their drivers, but it’s been taking forever.
It's been taking forever because they're moving a lot of code into the firmware to keep it closed source. It's essentially a brand new driver that takes advantage of newer firmware.
That's one of the reasons the open-source driver only works with Turing (2000 series) and newer cards - they don't want to spend the time updating older firmware to handle the open-source driver.
This makes me wonder how much they've gotten away with in other countries. Who knows if the sales numbers they've been reporting are even accurate?
The documentation is kinda lacking, but if you could figure out how to set up Synapse then you can probably figure out Conduit too. https://conduit.rs/
I have a 10Gbps internet connection. On a system with a 10Gbps Ethernet card, I can get ~8Gbps down and ~6Gbps up:
I'd expect this to easily max out a 2.5Gbps network connection. However, while the upload is maxed (or close to it), I can only ever get ~1.0 to 1.5Gbps down:
Both tests were performed on the same system. The only difference is that the first one uses a TRENDnet 10Gbps PCIe network card (which uses an Aquantia AQC107 chipset) whereas the second one uses the onboard NIC on my motherboard (Intel I225-V chipset).
This is consistent across two devices that have 10Gbps ports and two devices that have 2.5Gbps ports.
I'm using an AdTran 622v ONT provided by my internet provider, a TP-Link ER8411 router, and a MikroTik CRS312-4C+8XG-RM switch. I'm using CAT6 cabling, except for the connection between the router and the switch which uses an SFP+ DAC cable.
I haven't been able to figure it out. The 'slower' speeds are still great, I just don't understand why it can't achieve more than 1.5Gbps down over a 2.5Gbps network connection.
Any ideas?
I couldn't find a "Home Networking" community, so this seemed like the best place to post :)
My house has this small closet in the hallway and thought it'd make a perfect place to put networking equipment. I got an electrician to install power outlets in it, ran some CAT6 myself (through the wall, down into the crawlspace, to several rooms), and now I finally have a proper networking setup that isn't just cables running across the floor.
The rack is a basic StarTech two-post rack (https://www.amazon.com/gp/product/B001U14MO8/) and the shelving unit is an AmazonBasics one that ended up perfectly fitting the space (https://www.amazon.com/gp/product/B09W2X5Y8F/).
In the rack, from top to bottom (prices in US dollars):
- TP-Link ER8411 10Gbps router. My main complaint about it is that the eight 'RJ45' ports are all Gigabit, and there's only two 10Gbps ports (one SFP+ for WAN, and one SFP+ for LAN). It can definitely reach 10Gbps NAT throughput though. $350
- Wiitek SFP+ to RJ45 module for connecting Sonic's ONT (which only has an RJ45 port), and 10Gtek SFP+ DAC cable to connect router to switch.
- MikroTik CRS312-4C+8XG-RM managed switch (runs RouterOS). 12 x 10Gbps ports. I bought it online from Europe, so it ended up being ~$520 all-in, including shipping.
- Cable Matters 24-port keystone patch panel.
- TP-Link TL-SG1218MPE 16-port Gigabit PoE switch. 250 W PoE power budget. Used for security cameras - three cameras installed so far.
- Tripp Lite 14 outlet PDU.
Other stuff:
- AdTran 622v ONT provided by my internet provider (Sonic), mounted to the wall.
- HP ProDesk 600 G5 SFF PC with Core i5-9500. Using it for a home server running Home Assistant, Blue Iris, Node-RED, Zigbee2MQTT, and a few other things. Bought it off eBay for $200.
- Sonoff Zigbee dongle plugged in to the front USB port
- (next to the PC) Raspberry Pi 4B with SATA SSD plugged in to it. Not doing anything at the moment, as I migrated everything to the PC.
- (not pictured) Wireless access point is just a basic Netgear one I bought from Costco a few years ago. It's sitting on the top shelf. I'm going to replace it with a TP-Link Omada ceiling-mounted one once their wifi 7 access points have been released.
Speed test: https://www.speedtest.net/my-result/d/3740ce8b-bba5-486f-9aad-beb187bd1cdc
Edit: Sorry, I don't know why the image is rotated :/ The file looks fine on my computer.
view more: next ›
Is it just you that uses it, or do friends and family use it too?
The best way to secure it is to use a VPN like Tailscale, which avoids having to expose it to the public internet.