AFAIK, yes. Though I haven’t tried it with WPA3.

While WEP is dead, you can still use it to capture the WPA/2 handshake and run it through something like John the Ripper to try to recover the passphrase.

Admittedly, I haven’t messed with it in years.

Either way, you still need a wireless adapter that’s capable of promiscuous mode as well as a driver for it that supports packet injection (not sure how rare that is nowadays).

When I was in college, I rented a house just outside my budget and found I couldn’t afford things like cable internet.

I had a wifi->ethernet bridge that was originally to connect my OG Xbox to a wifi network. I also had neighbors with Wifi using WEP encryption. An idea was born.

Was able to use aircrack-ng on my laptop to crack their WEP key in about 15 minutes. Plugged that key into my wifi->ethernet bridge, and then hooked that into my router. Bam, my whole house was online.

That worked for probably a year and a half.

Can confirm, but depending on the VPS, your traffic may only be metered in one direction. Mine only meters egress, not ingress, so it’s not too bad if I want to use my media server.

All of mine use bind mounts so I can just tar-gz the whole deploy folder for backups and migrations. For volumes that connect to remote shares (SMB, NFS, etc) I use named volumes and let Docker take care of their lifecycle.

If named docker volumes would let me specify the local filesystem location, I’d use them. As-is, I rarely do.

Then you really should list all of the secondary functions you plan to add to it, make sure they understand what those are, and agree to each of them: full disclosure.

If you do something on it that could get them in trouble, it’s their ass on the line, not yours.

Are you friends okay with you doing that? I would not be, especially if my so-called friend didn’t disclose the secondary operations of the device that’s in my home, on my internet connection, under my name.

Yeah, I saw the steps for VLC and they’re similar. I tend to prefer CLI, so that’s what I did / wrote up.

I use SnappyMail. It’s a fork of Rainloop that’s actually maintained.

https://github.com/the-djmaze/snappymail

And unlike Rainloop, the Sieve filter editor actually works.

I have a single Nginx setup which is the frontend for all my web services. So I only need to deploy it there (and to its HA partner). My renewal script just scp’s it to the secondary and does an nginx -s reload on both.

I do generate separate certs/keys for my non-web servers, but there’s only two of those.

You could also, if you wanted, just generate one cert and distribute it and its key to everything with a script or other automation tool (Ansible is what I used to use).

Is there a way I can get Let’s Encrypt to dole out a wildcard certificate

Yep. Just specify the domains yourdomain.com and *.yourdomain.com in the certbot request. Wildcard domains require the DNS-based challenge, but you’ve said you’re already good there. You don’t technically need the apex domain (yourdomain.com) but I always add it since I do have services running there.

Any subdomains under the wildcard can use internal DNS or internal IPs on the public DNS (I do the former, but the latter works too).

I used to run an internal CA, and it wasn’t too hard to setup a CA and distribute my root cert. Except on mobile devices. On Android it was easy, but there was a persistent warning that my network traffic could be intercepted (which is true when there’s a custom root cert installed), but it since it was my cert, it got annoying seeing that all the time. Not sure if Apple devices can even do that, but regardless, it wasn’t practical for friends who wanted to use my self-hosted services to install a custom cert when they were over.

Is there EV support?

Looks like it, yeah:

The UI still shows Fuel, but it seems like you can enter the kWh and it should calculate. Maybe plug some values into the demo to be sure. If you do, let us know!

I use Fireflyiii for my money and budgeting.

I don’t see why not. I haven’t stood it up yet, but I’ve played with the demo. It does have a section for parts/repairs/upgrades.

Give the demo a try, and let us know.

Yeah, building a simpler version of something like that was on my ever-growing “to do” list but came across this today. Probably going to deploy it this evening or maybe this weekend (whichever day it’s supposed to rain lol).

Depends on what I’m transferring and to/from where:

• scp is my go-to since I’m a Linux household and have SSH keys setup and LDAP SSO as a fallback
• sshfs if I’m too lazy to connect via SMB/NFS (or I don’t feel like installing the tools for them) or I’m traversing a WAN
• rsync for bulk transfer and backups
• Snapdrop/Pairdrop for one-off file/text shares between devices with GUIs (mostly phone <–> PC)
• SMB if I’m on a client PC and need to work with the files directly from the fileserver
• NFS between servers
• To get bulk data to my phone (e.g. updating my music library), I connect via USB in MTP mode and copy from the server via SMB or sshfs.

Excellent. I just use the CLI executable directly and update it as it breaks. Wasn’t even aware there were Docker versions of it lol.

Weird. I did a test download before replying, and it worked. Though I’m just using vanilla yt-dlp and am unfamiliar with the other two variants you listed.

Try updating. I got that a few days ago using an old version, and updating fixed it.

I’ve always thought the firewall color codes were arbitrary, though I might just have not paid attention all these years lol.

Just to clarify: I meant connect your OpenWRT device to your hotspot instead of the AP you’ve been working with. Just to rule out multiple MACs being blocked on the AP.

Beyond that, I’m not really able to help troubleshoot further, but worst case and if all you need is internet, you can set your OpenWRT device up so that it just NATs your downstream connections. Double-NAT, in most cases, is fine.

Hmm. Is the upstream AP some kind of fancy deal or a run of the mill consumer router?

I’ve seen some Cisco APs configured to not allow multiple MAC addresses from the same station. Caused problems when trying to do VMs on my laptop that had the network in bridge mode.

Are you able to put your phone into hotspot, connect to that instead of the upstream AP, and see if it works?