Exactly. I’m already thinking about pulling my pension pot out of any US investments. It’s a tiny amount but maybe we can start a movement to keep pension investments in countries and systems you believe in, not whatever mix are typically used
From a UK or German IP address, Google maps has it as Gulf of Mexico (Gulf of America).
We’re being dragged into this mess so will look to report it
Oh Ok. Sorry, it just can’t across really negative rather than pointing out a potential flaw. I can see difficulties enforcing it by the workers like you mention
Thanks for taking the time to reply. Will have to reconsider my choices here!
Im curious about your argument because this would justify not putting any rules at any time. No cigarettes for under age in shops (might attack a shop keeper), no alcohol in pubs (might attack a bartender), no fines for speeding (might attack cameras or police), no parking restrictions (might attack ticket wardens), etc.
Maybe the threat of fines are not enough to change this behaviour (which I can understand in India after spending a lot of time there) so they are trying a novel approach. One thing Indian police will take more seriously is attacking a worker for applying the rules compared to risking your own life.
Why is it shitty? I am not trying to deny it, just really curious what it is about
After some research on here and reddit about 6 months so, I settled on Borgbase and its been pretty good. I also manually save occasionally to proton drive but you’re right to give up on that as a solution!
The hardest part was choosing the backup method and properly setting up Borg or restic on my machine properly, especially with docker and databases. I have ended up with adding db backup images to each container with an important db, saving to a specific folder. Then that and all the files are backed up by restic to an attached external drive at well as borgbase. This happens at a specific time in the morning and found a restic action to stop all docker containers first, back them up, then spin them back up. I am find the guides that I used if it’s helpful to you.
I also checked my backups a few times and found a few small problems I had to fix. I got the message from order users several times that your backups are useless unless you regularly test them.
Theres a lot of different things going on here although it sounds simple, you’re actually touching many different technologies. I started a few years ago to self host and it took me a while to get my head around these and still have issues so don’t worry too much!
Im not familiar with caddy but the ports look wrong. It would be looking for 80 and 443 presumably on the docker host (right hand side / “RHS Ports”. You could use any ports on the left hand side (“LHS Ports”).
The section “DOMAIN}:1443” might be telling caddy to be looking on port 1443 inside docker, which means the port need to be flipped around. The RHS Ports are what the service inside docker is looking to use (often these are set by the developer but they can be changed in settings, it’s easier to leave these as default and only change the LHS Ports). The LHS Ports are what you choose to expose on the actual server itself. https://docs.docker.com/get-started/docker-concepts/running-containers/publishing-ports/
Theres no mention of the router settings so the problem might be there. Are you forwarding the right ports through? You would need to forward ports 80 and 443 to the LHS Ports you choose for caddy. These port forwards would also need to point to your servers internal address. (Search “<your router name> port forward settings”)
What do you have on port 80 as I would recommend to change that to something else and have caddy on ports 80 and 443. I would also suggest trying nginx proxy manager which is available on docker, has a nice web interface to add reverse proxy’s, and can handle your SSL certificates (inc automatic renewals). This would replace caddy and would use ports 80 and 443 on your server. https://nginxproxymanager.com/
Also, just to mention, your safest option is not to expose vaultwarden to the internet unless your very sure you need to and add other protections (firewalls, fail2ban etc). If it’s just you/a few people, look into using a VPN like tailscale (easiest but relies on external party) or Wireguard (fully yours to control but pretty complicated).
You would still need an SSL cert but your can do this through DuckDNS using https://github.com/maksimstojkovic/docker-letsencrypt. You could also buy a cheap domain and never have to expose anything, as they would give you a certificate to download (cloudflare or porkbun are good - https://kb.porkbun.com/article/71-how-your-free-ssl-certificates-work) and you manually upload it to caddy or nginx proxy manager. the best option is to use nginx proxy manager or certbot to handle these as the certificates expire. You can set up “DNS challenge” in your SSL certificate manager which needs details from your DNS to obtain the SSL certificates on your behalf.
If I was you, I would search for online guides and setup in this order: nginx proxy manager, SSL cert (buying your own cheap domain from cloudflare and setting up DNS challenge in nginx proxy manager), tailscale, then vaultwarden.
As someone who used to cycle, walk or ride a bus across these bridges, please don’t blow them up. In fact, I think all the central London bridges have bus lanes, plenty of walking space and some have cycle lanes. Theres one bridge for people only. I know im taking this too seriously but it’s a very scary thought
Im using a free Mailgun account for all my self hosted services. Happy with it so far.
Proton only has SMTP on it’s business accounts, and you have to apply for one with a good reason (ie not for spam)
I think most of the “underground”, at least the older lines are operated by TFL. The TFL also operates some of the “overground” lines as a franchise owner. This line runs on national rail lines out to Reading so maybe it if more like “overground” than “underground”. I thought this project would fall under TFL regardless so it is just a joke really.
By the way, for national rail trains, private companies also own most of the rolling stock which the franchise owners lease. The whole British railway system is an absolute mess…
Why the hell is such a massive publicly funded project being pimped out to multiple overseas corporations?! I know a public body that has train drivers, engineering staff, ticket staff etc called the TFL… Oh right yeah, I forgot, it’s all about the £££. Privatise the profits, socialise the investment/risks
Hopefully this works and you can see the compose file. I’ve put a few things in [square brackets] to hide some stuff, probably overly cautiously. I have an external network linked to NPM and in that, I use nextcloud-server for IP address and 80 for the port (it’s the inside container port, not 8080 on the system - that took me a long time to figure out!). Add a .env file with everything referenced in the compose file, then (hopefully!) Away you go
RIP from England. Those scripts helped me through some tough times when first trying proxmox, I remember being so happy to find them. I wouldn’t have stayed on proxmox without them
Not sure if it makes a difference and not quite your question but I’ve just switched away from nextcloud-aio to just having my own docker compose, so I have better control and know what’s going on more. I always found it funny and when installing on a new VPS decided to try. It was surprisingly straightforward and Ive been able to install everything I need.
Let me know if my docker compose would help. I still need to add the backup solution but it’s going to be straightforward as well.
I like my free healthcare, ambulances, fire fighters, roads, drivers requiring licences, drivers requiring insurance, police, trains, buses, general security, employee regulation, safety regulation, building codes, industry regulation, help overseas from consulates, so would prefer to pay a bit in taxes to get a lot back. It might not all be “perfect” but the idea of aiming for a happy and equal society is good.
Very investing! I think I would pay specifically to have SSO open ID implemented on different software where the developers have said it’s not a focus so definitely interested! Will check it out
To be honest, there are so many articles about Chrome over the last several months, I don’t get why anybody is staying with them if they care about things like this. Am I being naive or unaware?
We have much tougher GDPR laws so I am more worried about American companies stealing my data than any based in the EU. I use different passmails for every account hoping to find a company breaching GDPR but (luckily?) unluckily, no hits so far.
Every company I have worked for, including a major bank, takes GDPR extremely seriously. So much so I often thought they went to far but understand their caution.
Reminds me of the group limit attribute in nextcloud. You could try looking at the ‘Custom profile scope’ section of https://docs.goauthentik.io/integrations/services/nextcloud/ to see if it helps to work out what to do