a lot of stuff:

• owncloud
• paperless
• immich
• jellyfin
• jellyseerr
• traefik

than i have stuff only accessible from local, like the *arr stack.

i’m not using cloudflare or anything, should I?

the only exposed ports i have are http / https and a random port for ssh.

i also don’t use any sso… maybe i should set one up.

this is the way.

also fail2ban to ensure that nobody bruteforce it’s way in.

i think nsfw as content warning is ok. after that, we need tags.

with tags you have, then the ability to filter them.

since tags are not standard, you can have as many as you want.

i got one from GoDaddy, but i regret the choice…

i think they added the ability to force upload a photo in one of the latest releases, see it that helps.

otherwise yes, you have to delete that record from the db…

they are, post and comments are mirrored on all federated instances.

what is wikidata?

they said angle brackets <>

add fail2ban, so they cannot brute force the web interface.

interesting, even if they got access to the plex service, how they could have escaped the plex docker container?

i run pretty much the same stack as OP, but also run immich and paperless. i very much care if someone else have a way to access those…

ugreen is Chinese, but one of the good ones.

right it still require root privileges…

well if you boot from a usb key and you have a btrfs file system, you could manually restore the snapshot. this would bypass the password

how this compare to jellyseerr?

you don’t need to be surprised, in their ToS is written pretty big that anything you write to chatGPT will be used to train it.

nothing you write in that chat is private.

are you using kube? or docker-compose?

of you are using docker compose, and in the compose file there is restart: always the container will be restarted if it disappears.

to remove it do docker compose down

are you a bot?

how do i summon the auto tldr bot?

i have a firestick with jellyfin, it has some ads on the menu but i watch stuff from my own server so no ads there.

it should support most encodings and most of the stuff is in direct stream. this means you could run jellyfin on a raspberry pi and would work.

every time there is an update, they create a post on the forum.

90% of the time you will not be affected by whatever broke and you can just hit update.

i still advice anyone that uses manjaro to set up timeshift.

that would be useful.

and also, if communities have hashtags in their description, one could aggregate them by hashtag. thus solving the problem of duplicates communities across multiple instances.