fail2ban is mandatory equipment for any ssh server accessible to the public especially on its default port. It’s highly configurable, but the default settings will do fine at making it statistically impossible for any user or password to be brute forced.
Well, in my hypothetical scenario, “gamipedia” is not going to have an article about “the sky is”, that’s not really its purpose. Ideally you’d only have one encyclopedia wiki, or multiple that are willing to work together and not duplicate each other’s content. If another competing supposed-encyclopedia instance called “assholepedia” does have an article about “the sky is: a liberal delusion”, then you block and defederate that asshole instance. No big deal.
Maybe I’m misunderstanding how it’s designed but I don’t think I am, and I don’t think that’s how this works.
A topic definition on the wiki includes the instance it’s hosted on. All links to that topic will go to that same instance and all the content for that topic will be served by the one instance as the authoritative source for “That-topic@that-instance” which is the link everyone will use. The federated part is specifically that you can link to topics on other instances and view them through your local instance.
For example, hypothetically, if you are a “fedipedia” author and you are writing a “fedipedia” article about a video game, and you mention a particular feature of the video game, you can include in your “fedipedia” article a link to a topic about that particular feature on “wikia-gamipedia” or even “the-games-own-wiki.site” and interact with and maybe even edit that content without needing to make accounts on all these other wikis. It’s like it’s all hosted on one centralized wiki, but it’s hosted on different servers that are all talking to each other.
Of course, it’s possible both our hypothetical “wikia-gamipedia” AND “the-games-own-wiki.site” will have their OWN, completely SEPARATE topics about the video game feature in question. The topics might even have exactly the same name. That’s allowed. In that case, you’ll have to decide for yourself which one is more credible and useful, and which one you want to link to and interact with, because yes, two different federated wikis can have different topics with totally different content.
Just like on Lemmy you can have two different communities with the same name but totally different people and content because they’re on different instances. That’s not really the general intention of how communities are supposed to work though. The intention is that you can pick the one community that is the “right” one for you, or the largest, and use that and hopefully other people will do the same. You can all pick that same instance/community, no matter which account you live on, even if it’s not hosted on your local instance. You don’t have to use the one from your local instance, or from any particular instance. That’s what the federation does.
Sometimes doing something illegal is anti-social behavior. Sometimes it’s anti-authoritarian behavior. These are not the same thing.
Back in the old days, a lot of people went through the “Linux From Scratch” process to literally build up the OS from absolute scratch. No distro, no packages, no precompiled kernel, nothing but the raw ingredients. It is a good way to really understand the fundamentals not just of Linux but of the whole computing paradigm our systems are built on. It is not as hard as it probably sounds, but it’s an investment. It takes some time and you need to put your brain in gear to actually learn.
Yeah, that’s all it is. Calibre Portable. In a folder on Nextcloud.
Kobo has a great balance of good hardware, good price, and good openness. It’s not perfect on any of those categories, it just strikes a nice middle ground balance to make it an extremely popular ereader for people who require the kind of openness people like us do. There’s really nothing locked down about them, they don’t do anything in particular to make it easy, but they don’t do anything to make it hard either. “koreader” installs very nicely on Kobo devices, and then you just load your books from Calibre (or right through USB if you’re hardcore for some reason) and you’re basically off to the races.
All the choices for “ebook stores” and ereader ecosystems are proprietary vendor-locked services with no self-hosting options. While Calibre is primarily a “local” tool it is a true alternative to all these proprietary services and I think it’s at least in the spirit of self hosting, if not strictly the letter.
For what it’s worth, I self-host a Calibre Portable library on Nextcloud, which enables me to access all my ebooks anywhere, and to upload new ones to my ereader from anywhere, as long as I have access to my Nextcloud. And I also share the same library through Calibre Web for when I don’t. I retain control of all my books, I remove all the DRM and convert them to epub. Calibre isn’t a hosted service on its own, but it fits nicely into the self-hosting ecosystem, and for that I am grateful.
Nextcloud AIO via docker is super simple and has clear instructions.
Install docker through whatever tools Fedora has to install packages/rpms/whatever. Then follow steps 2, 3 and 4 at least. 5 if you need it.
Discord is a completely proprietary walled-garden that bans third-party clients to maintain full control AND (soon) has Wall-Street-ownership.
Jitsi is open-source built with multiple open protocols BUT has Wall-Street-ownership.
Neither is great, but these are two distinctly different situations.
Personally I find the complete opposite, I’ve [email protected] everything I can with open source services, to keep control of my personal data but access it from anywhere. I know where all my critical data is and I know nobody is selling it out behind the scenes.
On my local machine, I have no concerns about running proprietary software because I can easily sandbox it and make sure it’s not going to touch anything it’s not supposed to or phone home with things I don’t want it to. Running shit like discord doesn’t really bother me because I’ve got it sandboxed away from anything valuable.
I suppose the reason we’ve probably had such different experiences is I suspect we have different strategies for where to keep our most precious “crown jewels”. For me, I want everything on SAAS, but because I’m putting my most valuable data there it has to be MY SAAS and thus open-source and heavily secured. I suspect you on the other hand probably minimize your data’s exposure to SAAS providers which you view as potentially suspect, and keep everything valuable strictly local if you possibly can. I don’t think one way is necessarily better than the other, and I’ve definitely made my choice, but this would explain our different perspectives at least.
Maybe it’s just their way of restricting the beta, but I really hope they’re not moving towards an enshittified open-source business model, “we’re still technically open source if you use the *retch* community version… but it’s out of date, difficult to use, broken, has no useful features, and we’re only adding new stuff to the paid version, so just pay us already.”
I don’t use arch (shocking I know), so I can’t help you directly, but I will recommend instead that you invest some effort in learning about the Linux networking stack. It’s very powerful and can be very complicated, but usually the only thing you need to do to get it working is something very simple. Basically all distributions use the Linux kernel networking stack under the hood, usually with only a few user-interface sprinkles on top. Sometimes that can get in your way, but usually it doesn’t. All the basic tools you need should be accessible through the terminal.
The most basic things you can check are ip a which should show a bunch of interfaces, the one you’re particularly interested in is obviously the wired interface. This will tell you if it’s considered <UP> and whether it has an “inet” address (among other things). If it doesn’t, you need to get the interface configured and brought up somehow, usually by a DHCP broadcast. Network Manager is usually responsible for this in most distributions. Arch seems to have some information here.
If those things look good, next step is to look at ip r which will tell you the routes available. The most important one is the default route, this will tell your system where to send traffic when it isn’t local, and usually sends traffic to an internet gateway, which should’ve been provided by DHCP and is usually your router, but could also be a firewall, the internet modem itself, or something else. The route will tell it what IP the gateway has, and what interface it can be found on.
Assuming that looks good, see if you can ping the gateway IP. If your packets aren’t getting through (and back) that suggests something is wrong on a lower level, the kernel firewall might be dropping the packets (configuring the kernel firewall is a whole topic in itself) or one of the IPs is not valid and is not registered properly on the network, or the physical (wiring) or the hardware on either end is not functioning or misconfigured.
If you can ping the gateway successfully, the next step is to see if you can ping the internet itself by IP. ping 8.8.8.8 will reach out to one of Google’s DNS servers which is what I usually use as a quick test. If you get no response then it’s either not forwarding your traffic out to the internet, or the internet is not able to get responses back to it, and ultimately back to you. Or Google is down, but that’s not very likely.
If you’ve gotten this far and 8.8.8.8 is responding to you, then congratulations, you HAVE internet access! What you might NOT have is DNS service, which is what translates names into IP addresses. A quick test for DNS is simply to ping google.com and like before, if that fails either your DNS is broken or Google is down, which is still not very likely.
Hopefully this will help you at least start to find out where things are going wrong. From there, hopefully you can at least steer your investigation in the right direction. Good luck!
Screw them! We’ll build our own peertube, with blackjack, and hookers
Most aggregation services are also aggravation services, so this really makes sense either way.
That means Bedrock unless you use the Geyser tool someone else mentioned to allow Bedrock to connect to Java but I have no experience with that and am not sure how reliably it would actually work as they are quite different versions of the game. I have no idea how it would handle mods that are not supported by the Bedrock clients for example.
First you need to understand the difference between Bedrock edition and Java edition. Bedrock is for consoles, phones and Windows, it’s the default version that Microsoft pushes now. It’s not compatible with Java clients or Java servers. So if you’re planning to have the kid play on Switch or something like that, it’s not going to work.
Assuming you’re clear on all that, you have a few options for Java servers, you can run a plain jane vanilla server (the one that Microsoft provides) fairly easily but it has some limitations, and it’s not the most manageable solution. Modded servers are much more capable and flexible but also can be a little more complex in some cases. Overall, I’ve found Purpur the easiest and most sustainable choice at least a few years ago when I was looking for the right choice it seemed like most people agreed this was the best option. Fabric is another great option, especially if you want to use mods! Fabric has a huge modding ecosystem, second only to Forge.
However I also need to mention that I’ve got a heavily modded Forge-based server running right now and I really didn’t find that any more difficult to set up than any of the others. Even though people usually complain about forge being “difficult” somehow. So take that for what it’s worth. I think it doesn’t really matter THAT much which server software you use unless you have specific requirements around things like mods, spawn protection, and other kinds of configuration that are probably most useful for large, public servers.
If you do want to run a bedrock server, it gets a little more complicated as you might have to break some things out of the walled garden. I haven’t had a lot of success with that but I understand it is possible.
I don’t agree with your premise that the performance and functionality is so far below every competitor. That is not my experience. What are you basing your claim on?
They are well made machines with high quality components and are in most cases perfectly capable of going as fast as the plastic allows. And if they don’t, a few minor upgrades to the hardware will get them flying as they’re typically mostly going to be hotend-limited. Are you competing the actual realistic maximum acceptable performance of comparable machines that have been independently tested by an experienced reviewer, or are you comparing numbers someone copied from marketing? Because these are not the same thing and only one of them actually reflects reality.
As far as functionality, the only feature I see wanting in Prusa’s lineup is IDEX, which I prefer over toolswitchers for making large numbers of small parts. I keep hoping their next model will be a spiffy little IDEX model, but no luck so far.
Prusa is tuned for reliability and consistency. They occupy a weird and illogical niche, for people who don’t want to have to tinker with their machines AT ALL but want to have the ability to. I personally fit in this niche, and I love my Prusa, but they really don’t make a ton of sense for most people I think, and there are probably better choices if you don’t fall into this niche.
Nextcloud Notes or Joplin (nevermind all the other features Nextcloud provides) tick most of your boxes. They’re more productivity focused than privacy focused, it doesn’t do “zero knowledge” encryption the way you’re describing, but I don’t really understand the point of that when you’re self-hosting and the server host belongs to you anyway. The federation may leave you wanting more and the collaboration might not be “real time” enough for you either, though. If you can build something better by all means go for it.