Guessing, millions of people will feel obligated to share their ID. Not everyone can be saved

wagner territorial gains in russia dramatically faster than in ukraine.

If you want regular automatic hdd checks and don’t need a WebUI I recommend https://github.com/smartmontools

It depends a bit on what you want to accomplish, the threat model, the devices in use, and other topics. I think this is a good read: https://avoidthehack.com/best-pihole-blocklists

Some specific social blocklists: https://github.com/d43m0nhLInt3r/socialblocklists

If I'm understanding you correctly, you could make use of a shell script for this. Use WGET to download lists, then combine them into a single large file, and finally create a new file with no duplicates by using “awk '!visited[$0]++'”

wget URL1 URL2 URL3
cat *.txt > all.txt (This overwrites all.txt)
awk '!visited[$0]++' all.txt > no_duplicates.txt

Thanks for sharing the guide. Collecting German/English movies/shows too.
Not many trackers available though.
But there are some decent one-click hosting websites out there for such content. And Usenet has a good german movie community.

Define which data is from value. I got 68TB of data but realistically only 3 TB are from such value I maintain several copies (Raspi + SSD) and online backup. The rest of data is stored on a cheap server build at a family member and synchronized twice a year. Make sure your systems and drives are all encrypted. And test your backups and redeployment strategy.

https://www.home-assistant.io

Possibly Home Assistant is able to cover your devices and needs.

Rotating passwords only for web services. Vaultwarden does make it easy. Not all services allow 2FA.

I’m somewhat paranoid therefore running several isolated servers. And it’s still not bulletproof and will never be!

• only the isolated server, ie. no internet access, can fetch data from the other servers but not vice versa.
• SSH access key based only
• Firewall dropping all but non-standard ports on dedicated subnets
• Fail2ban drops after 2 attempts
• Password length min 24 characters, 2FA, password rotation every 6 months
• Guest network for friends, can’t access any internal subnet
• Reverse proxy (https;443 port only)
• Any service is accessed by a non-privileged user
• Isolated docker services/databases and dedicated docker networks
• every drive + system Luks-encrypted w/ passphrase only
• Dedicated server for home automation only
• Dedicated server for docker services and reverse proxy only
• Isolated data/backup server sharing data to a tv box and audio system without network access via nfs
• Offsite data/backup server via SSH tunnel hosted by a friend

I can recommend mopidy and snapcast.
This will allow for a Sonos like setup you are looking for.

Movie/shows download via pyload since one-click hoster is cheaper than Usenet. And I collect them in german/english. Torrents are not so wide spread for that combination.
Kodi for tagging.
Music per Lidarr/Jackett/Deluge/nzbget/OpenVPN primarily Usenet + occasionally torrent.
Tagging by beets because of its discogs plug-in since it is much better than musicbrainz on obscure music.

I set up custom bash scripts collecting information (df, docker json, smartCTL etc) Either parse existing json info or assemble json strings and push it to Homeassistant REST api (cron) In Homeassistant data is turned into sensors and displayed. HA sends messages of sensors fail.
Info served in HA:

• HDD/SSD (size, smartCTL errors, spin up/down, temperature etc)
• Availability/health of docker services
• CPU usage/RAM/temperature
• Network interface/throughput/speed/connections
• fail2ban jails

Trying to keep my servers as barebones as possible. Additional services/apps put strain on CPU/RAM etc. Found out most of data necessary for monitoring is either available (docker json, smartCTL json) or can be easily caught, e.g.

df -Pht ext4 | tail -n +2 | awk '{ print $1}

It was fun learning and defining what must be monitored or not, and building a custom interface in HA.

Beets is my favorite tagger since I prefer CLI. Match making policy can be adjusted and discogs plugin can be added I recommend the folder structure /artist/album/track

Had for years airsonic, later airsonic advanced. The overhead is huge compared to Navidrome.
Had never an issue with Navidrome and it is much snappier. No even starting to talk about the modern interface compared to Airsonic.

If your data is such valuable, I’m sure you took the time to setup a complete encrypted system (LUKS).

Original link:

https://technomagnus.vercel.app/posts/ultimate-privacy-list/

Some fancy case options depending on your needs: Shop Inux3d
Added passive cooling for PI running HA and never encountered any issues.

Meanwhile in Russia: it's all going according to plan, then we'll see.

https://twitter.com/Gerashchenko_en/status/1672562164870139906

Jason Jay Smart on Twitter: "BELARUS 🇧🇾 REBELLION Belarussian soldiers, who are supporting Ukraine 🇺🇦, have called on Belarussian citizens to unite behind what is transpiring with Wagner, to liberate Belarus of Russia 🇷🇺. https://t.co/nEPulH3jeC" / Twitter

https://hd-world.cc/

Active, links are valid for a long time and they post good quality imho

Thanks. Now I have to buy a new device!

beets music library management and tagging for geeks

I can recommend Navidrome. Organizing of library with Lidarr and (Beets)[https://beets.io]
I’m using Beets for tagging because of the Discogs plugin.
Lidarr for visual overview of the library.

Lidarr can be used for tagging too and it does have a web interface.
Cleaning a messed up library with Beets is tough and depends on how the individual files are sorted. Start importing/organizing a small part or some albums to find out how it works. And a backup of data is always recommend!

Your friends will comment on interface when you share music to them :)
Hardly using the UI myself ;)

At last we keep it simple ;)

SMART value monitoring helped me finding faulty drives, not only once. And drives are tested before adding to a production system.
Certainly system drives are separate from data drives. The latter can be perfectly monitored by SMART values.

I think you can’t track data corruption either because you will find out only when it occurred. Same is valid for SMART values as you correctly state. I believe it is a mix of using zfs, ECC and SMART monitoring.
https://phoenixnap.com/blog/data-corruption

Thanks for clarifying the intricacies connected to SMART monitoring.

Make sure the SQL server is not writing/blocking any files: docker-compose stop vaultwarden

Backup that specific folder to another destination and restart docker-compose up -d

Check if Lidarr adds an artist* image in artist folder or add an integration for fetching images.

https://www.navidrome.org/docs/usage/artwork/#artists

https://www.navidrome.org/docs/usage/external-integrations/

You can configure multiple zones on a server snap with multiple hosts
A client can assign to one host only.

Personally I use Raspi 2 and Zero for that purpose. HATS for digital connection or if you want connecting speakers directly consider AMP2 HAT.
Homeassistant controls grouping, volume etc.

Guessing it is more a habit from back in time when ssl certification wasn’t common. Panic of MITM attacks, friends sharing their trusted access to other friends, etc. all contributed to my actual status of paranoia.
Don’t make me reconsider my cybersec approach ;)

Utmost appreciated! Thanks

I agree on the horrible experience. However h264 rips in Usenet lack in quality from my perspective. Data rates for 1080 are often too low and close to 720 rips. For me rips 8-12GB in size deliver the best ratio for my screen solution, and are efficient for storing.
H265 would be better but my hardware lacks in decoding capability (raspberry 3).
Everyone has different requirements driven by storage, hardware etc. One click Hoster costs 50 EUR/year for 170GB per day. Usenet indexer 5Eur/Month + 25EUR for 150GB

Glad if you can advice on cheaper solutions. And good private trackers!

Add VPN and you made the best out of it :)

Why would you expose SSH on a home production server?
Hosting several dockerized apps for friends since years. Only 80/443 proxy ports are open. Apps are secured with 2FA and monitored by fail2ban + kept up-to-date. Never had any issue.

Breaking
„Ukraine runs out of popcorn“

https://twitter.com/war__online/status/1672535209038827521?s=20

Just put all commands into a bash file. Starting with ‘’docker tag’’ changing tag to something else in case I need to revert and than pull, compose up. All run by crontab weekly. In case something breaks the latest working container is still there.