Gamefreak used an additional hardcoded RSA public key auth in Pokémon Black/White because for some reason they didn’t trust OpenSSL to not fail for their HTTPS API connections, and yet here we are in 2026 with unauthenticated API endpoints.
Was ChatGPT unable to generate swagger docs they could have lazily plugged into an API scanner bruh
Or better yet notice the big fat “unathenticated” label when you look at the endpoint list.
No sweat, try mirroring a private tracker and you’ll very quickly run out lol. You need a couple of petabytes worth.
The real problem is the price of HDDs not going down due to lower production in light of SSDs.
I fully expect WD to drop this as some stupidly expensive SAS drives that almost no consumer will buy. They should at least apply the dual heads for speed tech so we get faster HDDs for the same price.
Very critical. GNOME and KDE have two very different UX paradigms.
Usually people used to Windows opt for KDE, and Mac or older Ubuntu users opt for GNOME.
The thing is though, a golden standard DE can easily be setup to act as both. XFCE is so customizable that I’ve seen both DE types setup as UNIX like or Windows like workflow.
I’m not sure if KDE or GNOME can do the same because I’m pretty sure they focus on a target audience.
What are your issues with KDE exactly? I always hated GNOME’s lack of standard window buttons and handling multiple windows in a Mac like fashion. Also the app menu which gives me flashbacks of ChromeOS.
Been on it permanently for years now. Only complaint is that I found XFS to be better than BTRFS, though most people probably wouldn’t notice.
Only other “complaint” is Fedora doesn’t have a lot of support for embedded arm devices, so you’re on your own if you want an RPM style distro on something like an Orange Pi.
How I sleep knowing Fedora + podman actually uses safe firewalld zones out of box instead of expecting the user to hack around with the clown show that is ufw.
I could be wrong here but I feel like the answer is in the docs itself:
If you are running Docker with the iptables or ip6tables options set to true, and firewalld is enabled on your system, in addition to its usual iptables or nftables rules, Docker creates a firewalld zone called docker, with target ACCEPT.
All bridge network interfaces created by Docker (for example, docker0) are inserted into the docker zone.
Docker also creates a forwarding policy called docker-forwarding that allows forwarding from ANY zone to the docker zone.
Modify the zone to your security needs? Or does Docker reset the zone rules ever startup? If this is the same as podman, the docker zone should actually accept traffic from your public zone which has your physical NIC, which would mean you don’t have to do anything since public default is to DROP.
Couldn’t you just lazy build your own images if you don’t trust the source?
Even then most of these containerized apps can be run perfectly fine as a host binary, you just have to make your own start script and a systemd unit which isn’t that bad.
You could then build a completely custom image if you’d like, or move it into a VM if you don’t like the idea of running it baremetal.
How does it compare to Photoprism? Been on that solution for a while and I really like it, but have seen lots of people suggest Immich as well.
Ubuntu and Docker.
Really? Netplan alone disqualifies Ubuntu as a “friendly stable starter distro”, and I can guarantee you that your guide will somehow become outdated with a single new Ubuntu release, or some poor soul who accidentally selected an LTS release.
Docker doesn’t matter as much, but there’s a reason beyond just FOSS licensing why podman exists.
Would highly recommend Debian instead.
I started on Ubuntu similar to this many years ago and both the server and desktop experience was not fun at all.
HEVC support is enabled for Firefox 134
Cool for anyone not using AV1 which I assume is a big chunk of the userbase because not everyone has good AV1 hardware acceleration lol
“No”
– everyone using compose to orchestrate software deployments
Yes it is, and there’s a age old joke about docker being used for configuration management, which doesn’t require a container system.
I kinda hate to agree with the other suggestions here, but entry level and even dedicated NAS products are pretty expensive for providing something you can very easily DIY for significantly cheaper even with the latest hardware.
Was in a similar boat and just ended up taking an old HP desktop and added some cheap HDDs. I ended up playing around with proper Fedora for some LVM cache tricks and running some other services, but the common suggestion for this is SnapRAID and Nextcloud.
There’s more *arr tools that aren’t aggregator automation tools than there are aggregator automation tools.
Also It was only funny when using an existing words like "sonar, “radar”, “lidar”. Jellyseerr is dumb, even Jackett was pushing it.
I guess it makes it somewhat easier to associate them as part of a group of software, but now we have stuff like Homarr that is entirely unrelated, but still a useful tool.
Proxmox or even just lazy old KVM GUI for anything that needs to be deployed manually in a VM (Home Assistant, WIndows VM, etc.). Otherwise you can even just spin up whatever manual service you want to run on an LXC container or bare metal host with the correct security settings with systemd and selinux if you want to be extra careful.
Docker/Podman (the superior one lol) is just an automated deployment system in container form (like Ansible). It great for automated deployment without having to manually configure the installation process and worry about upgrades, changes, etc. You can even easily create your own images on the fly just for the purpose of having it run a single service inside a container.
Proxmox equivalent would be like using Terraform/OpenTofu to deploy VMs to do the same thing. Its possible, but just not that common because of the reduced overhead with containers, and well supported deployment images with docker/podman specifically.
Generally speaking, I’ve seen proxmox used more in lab environments were you want to emulate something like a complete network of machines whereas docker/podman has become the defacto server deployment platform.
You’re just much more likely to find software with a published docker container and default docker compose script than the same thing in Terraform or even K8s/K3s.
Does jellyfin do untranscoded video/audio?
Haven’t used it in years but finally building up my media server again and I remember it had some funky settings for hardware encoding back then which I didn’t need because I was connecting to it via a repurposed gaming laptop that could easily handle 4k content and surround sound by itself.
Ubuntu, and the experience was crap lol.
Then I got to try Debian on a server and it was much nicer.
Then I saw Torvalds uses Fedora, and given that he also disliked Debian and Ubuntu for their lack of end user ease, I switched and have been happy ever since.
Seriously though, GNOME 40 really should not be the default DE. It made me think Linux UI was years behind Windows when it was actually the opposite with proven DEs like XFCE, KDE, and GNOME 3/2 etc.
Xfce 4.20
On my way to attempt an upgrade from Xfce + Compiz to Xfce + Wayfire lol
Probably since it’s the main redhat upstream and they want the advantage of already widespread usage.
Although at that point why not OpenSUSE for the same reason you mentioned.
Lol I’ve locked myself out of so many random cloud and remote instances like this that now I always make a sleep chain or a kill timer with tmux/screen.
Usually like:
./risky_dumb_script.sh ; sleep 30 ; ./undo.sh
Or
./risky_dumb.script.sh
Which starts with a 30 second sleep, and:
(tmux) sleep 300 ; kill PID
You might want to check what the actual hardware is first. You’ll probably be fine, but client 802.11 hardware can sometimes be underwhelming for hosting because they don’t have good stuff like beefed up MuMIMO.
Although that’s assuming you will have a lot of traffic going through it, so you could always just test throughput and latency with iperf to see how well it functions.
Still less annoying than trying to build something from source in which the dev claims has like 3 dependencies but in reality requires 500mb of random packages you’ve never even heard of, all while their build system doesn’t do any pre comp checking so the build fails after a solid hours of compilation.