But that means that someone else’s server is used whenever you leave your home network.

I’m pretty sure syncthing does NAT hole punching, so someone else’s server is only used for initial connection, after that, your data goes directly to your devices.

Maybe it was used as some sort of privilege escalation? E.g. NP++ downloads an XML file to %TEMP%, some already present malware modifies it, then GUP downloads a payload and executes it with administrator permissions.

It’s easy enough to add your own secure boot keys, you can even remove the Microsoft keys so that only your OS will boot.

windows server edition which not possible to get if u are not business client and it cost 800$

It probably depends on your uni, but students can get Windows Server licenses for free on Azure Education.

It does DNS already, so why do I need an external DNS server?

You need an external DNS server to access it externally. If you’re happy with internal access only, you can probably set some sort of DNS override in UniFi.

This isn’t about Firefox, and there are zero mentions of Firefox in the article. This is about Mozilla screwing over their volunteers by replacing their human written translations, with inaccurate machine translations written by a closed source LLM.

It doesn’t really matter how you setup dynamic DNS and SSL. I prefer to handle dynamic DNS on the router, incase it’s smart enough to refresh the IP after DHCP renews it. I do SSL on a seperate nginx instance, but I run a few other sites; it might be easier to configure it directly on home assistant, but I haven’t tried.

If you want some extra security, I’d look into mTLS, as that establishes some cert based authentication at the TLS layer before HTTP, but it can be complicated to configure.

You’re going to have a hard time trying to get that working over the WAN (if that’s even possible).

Wake on LAN is still encapsulated in an IP packet, so you can send it over the internet, and most WOL clients let you specify an IP. However your router will need to DNAT it to a broadcast address. Some routers have a check box for this (e.g. An ISP provided Technicolor router I have), some let you port forward to broadcast (e.g. Many routers, sometimes with workarounds), and some let you manually configure NAT (e.g. MikroTik routers).

So it is possible, but forwarding public internet traffic to a broadcast address seems like a bad idea, and I wouldn’t recommend it. Why I know this: I used to do this in middle school, and it does work quite well.

Depending on your BIOS and with fast boot, you might need to just hold one of the keys while booting instead of spamming it on boot.

If you just want an IPv6 prefix and don’t need the encryption a VPN provides, you can use an IPv6 broker. Hurricane Electric’s broker is a popular one.

That’s the OPs reply, not the AI.

I don’t know what fedora 43 ships, but version 3.2.0 of nvtop should also give you stats, although it may need sudo for some stuff.

Funny thing, time.is uses Cloudflare, and I only found out because of the outage.

Yeah thats fair enough. The ACS override patch should still have better isolation and speed than anything else you can do without native ACS, the security implications are just it’s theoretically possible to intercept another PCIe device’s traffic through the NIC; you can read more here.

SR-IOV works by presenting one device as many, which you can passthrough one of those to your VM. Meaning SR-IOV only works through PCIe passthrough, so you’d have to figure that out first. The GPU guides should get you most of the way there.

Some distros include an ACS patch into their kernel (e.g. Proxmox, and I think CachyOS), which lets you passthrough devices without hardware support (but lacking some security features).

I believe it might be possible to ‘passthrough’ the VF from the host without PCIe passthrough (I’ve only done this with containers though), but performance is often worse than just using a bridge.

Fun fact: there actually is an IP version 5, and the reason we went from v4 to v6.

You can also play the Android release fine with Waydroid.

The browser extension also lets you scan the page for QR codes for the TOTP key.

I’ve always wondered, why do we put the GPU drivers and their firmware into the initramfs? Can’t we just rely on the framebuffer drivers until the root partition is mounted? Since most of the firmware size is from GPUs, that should reduce initramfs size, and speed up booting as there’s less to load into memory.

And I feel like it’s not a good idea to have a modem directly attached to the pc directly unless you’re using it as a router?

Yeah I feel like this is the issue. The modem/router would be firewalling between the networks hiding the PC behind it.

Also from the description, does OP have a router at all? Is their ISP somehow just allocating public IPs to everything? Do your IPs start with 192.168 or something else?