You’ll have to scroll down a bit and maybe view it in reader mode but NY Times is reporting differently

https://www.nytimes.com/live/2025/09/11/us/charlie-kirk-shooting-news/investigators-eye-a-hunting-rifle-for-clues-to-the-gunmans-identity-and-motive

This isn’t exactly what you asked for but just in case it might interest you; I ordered this Aoostar WTR Pro recently to replace an Odroid that died on me. It has an intel N150 and lets you install whatever OS you want. I’m pretty happy with it so far.

Paperless-ngx - it allows you to upload important documents like receipts, contracts, etc. and uses OCR so you can search them

2018 - adds digital wellbeing features to help you disengage from your device

2025 - makes the entire interface more engaging to help keep you engaged

It looks nice. It’s like having a casino in your pocket.

Have you seen the price of McDonalds recently? I’d rather miss a meal than get scammed like that. Fuck them.

To go along with that, Telegram doesn’t make it easy to set up an encrypted chat. First, you have to set up a regular chat, then tap on the profile image of the person you are messaging, then tap the 3 dot menu, and finally tap “secret chat”. It’s there but they clearly don’t want people using it.

If you know iptables, just stick with that. In my testing, docker containers seem to ignore ufw rules. Supposedly, iptable rules are respected but I haven’t learned iptables yet so I can’t verify.

I don’t know what the fuck is going on. The client app connects to all 4 servers it needs a connection to. I can create a user on the server and all clients can login using it, I just can’t get notes to sync.

Official docs here

I found this tutorial1 and this tutorial2

Tutorial2 makes this one port change to the official docker compose file but otherwise is seemingly the same as tutorial1:

  notesnook-s3:
    image: minio/minio:RELEASE.2024-07-29T22-14-52Z
    ports:
      - 9009:9000
      - 9090:9090

With that change, and setting the port of the domain to 9090, I can access minio in the browser. But I don’t know if that’s necessary or not. I’m stumped.

Did you by chance self host the sync server using docker compose? Their instructions aren’t great and I was hoping you had some tips.

For anyone else interested, if I figure it out, I’ll post what I did here.

Edit 1: I finally got it all setup but syncing isn’t working so I guess I did something wrong 🙄 . Troubleshooting now

I’m pretty happy with my Ubuntu, docker, and ZFS with Sanoid/Syncoid server. Nothing against NAS focused distros, I just haven’t come across a compelling enough reason to switch.

For hardware, I use a Odroid H4+. Intel N97, 4 SATA ports, Intel quick sync, and low power. It’s running my 20ish docker containers with plenty of power to spare. It’s been great

The downward trend on the stock market is still in place 🤷‍♂️

I’ll DM you in a bit but real quick I just wanted to say I thought you improved in this episode. Great work

has some basic monitoring on them.

What monitoring software are you using?

I feel like the other measures you talked about (backups, condom of network traffic, etc) I’m doing ok on. Its really just the monitoring where I’m stuck. There’s so many options

I’ll look into it, thank you

I’ve seen a bunch of people recommend Authelia. Do you mind if I ask why you went with it over other software? I only went with authentik because I found a tutorial on it first

1. check

2. check

3. check

4. I saw someone else recommend crowdsec. I’ll look into it, thanks

if you use one of those 5$/month VPSes, with a VPN tunnel to your backend services, that adds one layer of “if it’s compromised, they’re not in your house”.

I’ve heard this mentioned before but I don’t really understand how this works in practice. If the VPS was compromised, couldn’t they use the VPN to then connect to my home?

Caddy only allows private IP ranges

Do you mind telling me more about this? How does that work; a VPN?

will do, thanks