Symfony Profiler

null

Proxies\__CG__\App\Entity\Entry {#1576
  +user: Proxies\__CG__\App\Entity\User {#2031 …}
  +magazine: Proxies\__CG__\App\Entity\Magazine {#1567 …}
  +image: null
  +domain: Proxies\__CG__\App\Entity\Domain {#1909 …}
  +slug: "When-do-I-actually-need-a-firewall"
  +title: "When do I actually need a firewall?"
  +url: null
  +body: """
    I’ve spent some time searching this question, but I have yet to find a satisfying answer. The majority of answers that I have seen state something along the lines of the following:\n
    \n
    1. “It’s just good security practice.”\n
    2. “You need it if you are running a server.”\n
    3. “You need it if you don’t trust the other devices on the network.”\n
    4. “You need it if you are not behind a NAT.”\n
    5. “You need it if you don’t trust the software running on your computer.”\n
    \n
    The only answer that makes any sense to me is #5. #1 leaves a lot to be desired, as it advocates for doing something without thinking about why you’re doing it – it is essentially a non-answer. #2 is strange – why does it matter? If one is hosting a webserver on port 80, for example, they are going to poke a hole in their router’s NAT at port 80 to open that server’s port to the public. What difference does it make to then have another firewall that needs to be port forwarded? #3 is a strange one – what sort of malicious behaviour could even be done to a device with no firewall? If you have no applications listening on any port, then there’s nothing to access. #4 feels like an extension of #3 – only, in this case, it is most likely a larger group that the device is exposed to. #5 is the only one that makes some sense; if you install a program that you do not trust (you don’t know how it works), you don’t want it to be able to readily communicate with the outside world unless you explicitly grant it permission to do so. Such an unknown program could be the door to get into your device, or a spy on your device’s actions.\n
    \n
    If anything, a firewall only seems to provide extra precautions against mistakes made by the user, rather than actively preventing bad actors from getting in. People seem to treat it as if it’s acting like the front door to a house, but this analogy doesn’t make much sense to me – without a house (a service listening on a port), what good is a door?
    """
  +type: "article"
  +lang: "en"
  +isOc: false
  +hasEmbed: false
  +commentCount: 40
  +favouriteCount: 91
  +score: 0
  +isAdult: false
  +sticky: false
  +lastActive: DateTime @1729354440 {#2012
    date: 2024-10-19 18:14:00.0 +02:00
  }
  +ip: null
  +adaAmount: 0
  +tags: null
  +mentions: null
  +comments: Doctrine\ORM\PersistentCollection {#2037 …}
  +votes: Doctrine\ORM\PersistentCollection {#2075 …}
  +reports: Doctrine\ORM\PersistentCollection {#2079 …}
  +favourites: Doctrine\ORM\PersistentCollection {#2078 …}
  +notifications: Doctrine\ORM\PersistentCollection {#2097 …}
  +badges: Doctrine\ORM\PersistentCollection {#2082 …}
  +children: [
    App\Entity\EntryComment {#1641
      +user: App\Entity\User {#264 …}
      +entry: Proxies\__CG__\App\Entity\Entry {#1576 …2}
      +magazine: Proxies\__CG__\App\Entity\Magazine {#1567 …}
      +image: null
      +parent: Proxies\__CG__\App\Entity\EntryComment {#1589 …}
      +root: Proxies\__CG__\App\Entity\EntryComment {#1593 …}
      +body: """
        > In my case I have a number of sockets from spotify, and steam listening on port 0.0.0.0. I would assume, that these are only available to connections from the LAN?\n
        \n
        That’s exactly the kind of thing I meant :)\n
        \n
        These are likely for things like in-house streaming, LAN game downloads and remote music playing, so you may even want to consider explicitly allowing them through the firewall but they’re also potential security holes of applications running under your user that you have largely no control over.
        """
      +lang: "en"
      +isAdult: false
      +favouriteCount: 0
      +score: 0
      +lastActive: DateTime @1706518140 {#1696
        date: 2024-01-29 09:49:00.0 +01:00
      }
      +ip: null
      +tags: null
      +mentions: [
        "@Kalcifer@sh.itjust.works"
        "@Atemu@lemmy.ml"
      ]
      +children: Doctrine\ORM\PersistentCollection {#1592 …}
      +nested: Doctrine\ORM\PersistentCollection {#1552 …}
      +votes: Doctrine\ORM\PersistentCollection {#1663 …}
      +reports: Doctrine\ORM\PersistentCollection {#1661 …}
      +favourites: Doctrine\ORM\PersistentCollection {#1562 …}
      +notifications: Doctrine\ORM\PersistentCollection {#1548 …}
      -id: 349293
      -bodyTs: "'0.0.0.0':17 'allow':65 'also':73 'applic':78 'assum':20 'avail':25 'case':3 'connect':27 'consid':63 'control':88 'download':52 'even':60 'exact':33 'explicit':64 'firewal':69 'game':51 'hole':76 'hous':48 'in-hous':46 'kind':35 'lan':30,50 'larg':86 'like':42,45 'listen':14 'may':59 'meant':39 'music':55 'number':7 'play':56 'port':16 'potenti':74 're':72 'remot':54 'run':79 'secur':75 'socket':9 'spotifi':11 'steam':13 'stream':49 'thing':37,44 'user':82 'want':61 'would':19"
      +ranking: 0
      +commentCount: 0
      +upVotes: 0
      +downVotes: 0
      +visibility: "visible             "
      +apId: "https://lemmy.ml/comment/7844402"
      +editedAt: null
      +createdAt: DateTimeImmutable @1706518140 {#1606
        date: 2024-01-29 09:49:00.0 +01:00
      }
      +"title": 349293
    }
  ]
  -id: 32961
  -titleTs: "'actual':4 'firewal':7 'need':5"
  -bodyTs: "'1':34,103 '2':41,131 '3':51,189,230 '4':66,224 '5':77,102,248 '80':146,163 'abl':281 'access':223 'act':353 'action':318 'activ':337 'actor':340 'advoc':112 'along':28 'analog':363 'anoth':181 'answer':17,21,94,130 'anyth':320 'applic':213 'bad':339 'behaviour':198 'behind':74 'case':234 'communic':284 'comput':91 'could':199,302 'desir':109 'devic':62,205,244,310,316 'differ':174 'doesn':364 'done':202 'door':305,357,384 'essenti':126 'even':200 'exampl':148 'explicit':291 'expos':246 'extens':228 'extra':327 'feel':225 'find':14 'firewal':182,208,322 'follow':33 'forward':188 'front':356 'get':307,342 'go':151 'good':38,381 'grant':292 'group':241 'hole':155 'host':141 'hous':360,373 'instal':259 'know':270 'larger':240 'leav':104 'like':226,238,354 'line':30 'listen':214,376 'lot':106 'made':331 'major':19 'make':96,177,254,366 'malici':197 'matter':137 'mistak':330 'much':367 'nat':76,160 'need':43,53,68,79,184 'network':65 'non':129 'non-answ':128 'noth':221 'one':139,193,252 'open':165 'outsid':287 'peopl':344 'permiss':294 'poke':153 'port':145,162,169,187,217,379 'practic':40 'precaut':328 'prevent':338 'program':261,301 'provid':326 'public':172 'question':8 'rather':335 're':121 'readili':283 'router':158 'run':48,88 'satisfi':16 'search':6 'secur':39 'seem':324,345 'seen':25 'sens':98,256,368 'server':50,167 'servic':375 'softwar':87 'someth':27,115 'sort':195 'spent':3 'spi':313 'state':26 'strang':133,192 'think':117 'time':5 'treat':347 'trust':59,85,266 'unknown':300 'unless':289 'user':334 've':2 'want':277 'webserv':143 'without':116,371 'work':273 'world':288 'yet':12"
  +cross: false
  +upVotes: 0
  +downVotes: 0
  +ranking: 1706257325
  +visibility: "visible             "
  +apId: "https://sh.itjust.works/post/13453975"
  +editedAt: DateTimeImmutable @1728528893 {#2011
    date: 2024-10-10 04:54:53.0 +02:00
  }
  +createdAt: DateTimeImmutable @1706170925 {#1717
    date: 2024-01-25 09:22:05.0 +01:00
  }
  +__isInitialized__: true
   …2
}

Proxies\__CG__\App\Entity\Entry {#1576
  +user: Proxies\__CG__\App\Entity\User {#2031 …}
  +magazine: Proxies\__CG__\App\Entity\Magazine {#1567 …}
  +image: null
  +domain: Proxies\__CG__\App\Entity\Domain {#1909 …}
  +slug: "When-do-I-actually-need-a-firewall"
  +title: "When do I actually need a firewall?"
  +url: null
  +body: """
    I’ve spent some time searching this question, but I have yet to find a satisfying answer. The majority of answers that I have seen state something along the lines of the following:\n
    \n
    1. “It’s just good security practice.”\n
    2. “You need it if you are running a server.”\n
    3. “You need it if you don’t trust the other devices on the network.”\n
    4. “You need it if you are not behind a NAT.”\n
    5. “You need it if you don’t trust the software running on your computer.”\n
    \n
    The only answer that makes any sense to me is #5. #1 leaves a lot to be desired, as it advocates for doing something without thinking about why you’re doing it – it is essentially a non-answer. #2 is strange – why does it matter? If one is hosting a webserver on port 80, for example, they are going to poke a hole in their router’s NAT at port 80 to open that server’s port to the public. What difference does it make to then have another firewall that needs to be port forwarded? #3 is a strange one – what sort of malicious behaviour could even be done to a device with no firewall? If you have no applications listening on any port, then there’s nothing to access. #4 feels like an extension of #3 – only, in this case, it is most likely a larger group that the device is exposed to. #5 is the only one that makes some sense; if you install a program that you do not trust (you don’t know how it works), you don’t want it to be able to readily communicate with the outside world unless you explicitly grant it permission to do so. Such an unknown program could be the door to get into your device, or a spy on your device’s actions.\n
    \n
    If anything, a firewall only seems to provide extra precautions against mistakes made by the user, rather than actively preventing bad actors from getting in. People seem to treat it as if it’s acting like the front door to a house, but this analogy doesn’t make much sense to me – without a house (a service listening on a port), what good is a door?
    """
  +type: "article"
  +lang: "en"
  +isOc: false
  +hasEmbed: false
  +commentCount: 40
  +favouriteCount: 91
  +score: 0
  +isAdult: false
  +sticky: false
  +lastActive: DateTime @1729354440 {#2012
    date: 2024-10-19 18:14:00.0 +02:00
  }
  +ip: null
  +adaAmount: 0
  +tags: null
  +mentions: null
  +comments: Doctrine\ORM\PersistentCollection {#2037 …}
  +votes: Doctrine\ORM\PersistentCollection {#2075 …}
  +reports: Doctrine\ORM\PersistentCollection {#2079 …}
  +favourites: Doctrine\ORM\PersistentCollection {#2078 …}
  +notifications: Doctrine\ORM\PersistentCollection {#2097 …}
  +badges: Doctrine\ORM\PersistentCollection {#2082 …}
  +children: [
    App\Entity\EntryComment {#1641
      +user: App\Entity\User {#264 …}
      +entry: Proxies\__CG__\App\Entity\Entry {#1576 …2}
      +magazine: Proxies\__CG__\App\Entity\Magazine {#1567 …}
      +image: null
      +parent: Proxies\__CG__\App\Entity\EntryComment {#1589 …}
      +root: Proxies\__CG__\App\Entity\EntryComment {#1593 …}
      +body: """
        > In my case I have a number of sockets from spotify, and steam listening on port 0.0.0.0. I would assume, that these are only available to connections from the LAN?\n
        \n
        That’s exactly the kind of thing I meant :)\n
        \n
        These are likely for things like in-house streaming, LAN game downloads and remote music playing, so you may even want to consider explicitly allowing them through the firewall but they’re also potential security holes of applications running under your user that you have largely no control over.
        """
      +lang: "en"
      +isAdult: false
      +favouriteCount: 0
      +score: 0
      +lastActive: DateTime @1706518140 {#1696
        date: 2024-01-29 09:49:00.0 +01:00
      }
      +ip: null
      +tags: null
      +mentions: [
        "@Kalcifer@sh.itjust.works"
        "@Atemu@lemmy.ml"
      ]
      +children: Doctrine\ORM\PersistentCollection {#1592 …}
      +nested: Doctrine\ORM\PersistentCollection {#1552 …}
      +votes: Doctrine\ORM\PersistentCollection {#1663 …}
      +reports: Doctrine\ORM\PersistentCollection {#1661 …}
      +favourites: Doctrine\ORM\PersistentCollection {#1562 …}
      +notifications: Doctrine\ORM\PersistentCollection {#1548 …}
      -id: 349293
      -bodyTs: "'0.0.0.0':17 'allow':65 'also':73 'applic':78 'assum':20 'avail':25 'case':3 'connect':27 'consid':63 'control':88 'download':52 'even':60 'exact':33 'explicit':64 'firewal':69 'game':51 'hole':76 'hous':48 'in-hous':46 'kind':35 'lan':30,50 'larg':86 'like':42,45 'listen':14 'may':59 'meant':39 'music':55 'number':7 'play':56 'port':16 'potenti':74 're':72 'remot':54 'run':79 'secur':75 'socket':9 'spotifi':11 'steam':13 'stream':49 'thing':37,44 'user':82 'want':61 'would':19"
      +ranking: 0
      +commentCount: 0
      +upVotes: 0
      +downVotes: 0
      +visibility: "visible             "
      +apId: "https://lemmy.ml/comment/7844402"
      +editedAt: null
      +createdAt: DateTimeImmutable @1706518140 {#1606
        date: 2024-01-29 09:49:00.0 +01:00
      }
      +"title": 349293
    }
  ]
  -id: 32961
  -titleTs: "'actual':4 'firewal':7 'need':5"
  -bodyTs: "'1':34,103 '2':41,131 '3':51,189,230 '4':66,224 '5':77,102,248 '80':146,163 'abl':281 'access':223 'act':353 'action':318 'activ':337 'actor':340 'advoc':112 'along':28 'analog':363 'anoth':181 'answer':17,21,94,130 'anyth':320 'applic':213 'bad':339 'behaviour':198 'behind':74 'case':234 'communic':284 'comput':91 'could':199,302 'desir':109 'devic':62,205,244,310,316 'differ':174 'doesn':364 'done':202 'door':305,357,384 'essenti':126 'even':200 'exampl':148 'explicit':291 'expos':246 'extens':228 'extra':327 'feel':225 'find':14 'firewal':182,208,322 'follow':33 'forward':188 'front':356 'get':307,342 'go':151 'good':38,381 'grant':292 'group':241 'hole':155 'host':141 'hous':360,373 'instal':259 'know':270 'larger':240 'leav':104 'like':226,238,354 'line':30 'listen':214,376 'lot':106 'made':331 'major':19 'make':96,177,254,366 'malici':197 'matter':137 'mistak':330 'much':367 'nat':76,160 'need':43,53,68,79,184 'network':65 'non':129 'non-answ':128 'noth':221 'one':139,193,252 'open':165 'outsid':287 'peopl':344 'permiss':294 'poke':153 'port':145,162,169,187,217,379 'practic':40 'precaut':328 'prevent':338 'program':261,301 'provid':326 'public':172 'question':8 'rather':335 're':121 'readili':283 'router':158 'run':48,88 'satisfi':16 'search':6 'secur':39 'seem':324,345 'seen':25 'sens':98,256,368 'server':50,167 'servic':375 'softwar':87 'someth':27,115 'sort':195 'spent':3 'spi':313 'state':26 'strang':133,192 'think':117 'time':5 'treat':347 'trust':59,85,266 'unknown':300 'unless':289 'user':334 've':2 'want':277 'webserv':143 'without':116,371 'work':273 'world':288 'yet':12"
  +cross: false
  +upVotes: 0
  +downVotes: 0
  +ranking: 1706257325
  +visibility: "visible             "
  +apId: "https://sh.itjust.works/post/13453975"
  +editedAt: DateTimeImmutable @1728528893 {#2011
    date: 2024-10-10 04:54:53.0 +02:00
  }
  +createdAt: DateTimeImmutable @1706170925 {#1717
    date: 2024-01-25 09:22:05.0 +01:00
  }
  +__isInitialized__: true
   …2
}

Proxies\__CG__\App\Entity\Entry {#1576
  +user: Proxies\__CG__\App\Entity\User {#2031 …}
  +magazine: Proxies\__CG__\App\Entity\Magazine {#1567 …}
  +image: null
  +domain: Proxies\__CG__\App\Entity\Domain {#1909 …}
  +slug: "When-do-I-actually-need-a-firewall"
  +title: "When do I actually need a firewall?"
  +url: null
  +body: """
    I’ve spent some time searching this question, but I have yet to find a satisfying answer. The majority of answers that I have seen state something along the lines of the following:\n
    \n
    1. “It’s just good security practice.”\n
    2. “You need it if you are running a server.”\n
    3. “You need it if you don’t trust the other devices on the network.”\n
    4. “You need it if you are not behind a NAT.”\n
    5. “You need it if you don’t trust the software running on your computer.”\n
    \n
    The only answer that makes any sense to me is #5. #1 leaves a lot to be desired, as it advocates for doing something without thinking about why you’re doing it – it is essentially a non-answer. #2 is strange – why does it matter? If one is hosting a webserver on port 80, for example, they are going to poke a hole in their router’s NAT at port 80 to open that server’s port to the public. What difference does it make to then have another firewall that needs to be port forwarded? #3 is a strange one – what sort of malicious behaviour could even be done to a device with no firewall? If you have no applications listening on any port, then there’s nothing to access. #4 feels like an extension of #3 – only, in this case, it is most likely a larger group that the device is exposed to. #5 is the only one that makes some sense; if you install a program that you do not trust (you don’t know how it works), you don’t want it to be able to readily communicate with the outside world unless you explicitly grant it permission to do so. Such an unknown program could be the door to get into your device, or a spy on your device’s actions.\n
    \n
    If anything, a firewall only seems to provide extra precautions against mistakes made by the user, rather than actively preventing bad actors from getting in. People seem to treat it as if it’s acting like the front door to a house, but this analogy doesn’t make much sense to me – without a house (a service listening on a port), what good is a door?
    """
  +type: "article"
  +lang: "en"
  +isOc: false
  +hasEmbed: false
  +commentCount: 40
  +favouriteCount: 91
  +score: 0
  +isAdult: false
  +sticky: false
  +lastActive: DateTime @1729354440 {#2012
    date: 2024-10-19 18:14:00.0 +02:00
  }
  +ip: null
  +adaAmount: 0
  +tags: null
  +mentions: null
  +comments: Doctrine\ORM\PersistentCollection {#2037 …}
  +votes: Doctrine\ORM\PersistentCollection {#2075 …}
  +reports: Doctrine\ORM\PersistentCollection {#2079 …}
  +favourites: Doctrine\ORM\PersistentCollection {#2078 …}
  +notifications: Doctrine\ORM\PersistentCollection {#2097 …}
  +badges: Doctrine\ORM\PersistentCollection {#2082 …}
  +children: [
    App\Entity\EntryComment {#1641
      +user: App\Entity\User {#264 …}
      +entry: Proxies\__CG__\App\Entity\Entry {#1576 …2}
      +magazine: Proxies\__CG__\App\Entity\Magazine {#1567 …}
      +image: null
      +parent: Proxies\__CG__\App\Entity\EntryComment {#1589 …}
      +root: Proxies\__CG__\App\Entity\EntryComment {#1593 …}
      +body: """
        > In my case I have a number of sockets from spotify, and steam listening on port 0.0.0.0. I would assume, that these are only available to connections from the LAN?\n
        \n
        That’s exactly the kind of thing I meant :)\n
        \n
        These are likely for things like in-house streaming, LAN game downloads and remote music playing, so you may even want to consider explicitly allowing them through the firewall but they’re also potential security holes of applications running under your user that you have largely no control over.
        """
      +lang: "en"
      +isAdult: false
      +favouriteCount: 0
      +score: 0
      +lastActive: DateTime @1706518140 {#1696
        date: 2024-01-29 09:49:00.0 +01:00
      }
      +ip: null
      +tags: null
      +mentions: [
        "@Kalcifer@sh.itjust.works"
        "@Atemu@lemmy.ml"
      ]
      +children: Doctrine\ORM\PersistentCollection {#1592 …}
      +nested: Doctrine\ORM\PersistentCollection {#1552 …}
      +votes: Doctrine\ORM\PersistentCollection {#1663 …}
      +reports: Doctrine\ORM\PersistentCollection {#1661 …}
      +favourites: Doctrine\ORM\PersistentCollection {#1562 …}
      +notifications: Doctrine\ORM\PersistentCollection {#1548 …}
      -id: 349293
      -bodyTs: "'0.0.0.0':17 'allow':65 'also':73 'applic':78 'assum':20 'avail':25 'case':3 'connect':27 'consid':63 'control':88 'download':52 'even':60 'exact':33 'explicit':64 'firewal':69 'game':51 'hole':76 'hous':48 'in-hous':46 'kind':35 'lan':30,50 'larg':86 'like':42,45 'listen':14 'may':59 'meant':39 'music':55 'number':7 'play':56 'port':16 'potenti':74 're':72 'remot':54 'run':79 'secur':75 'socket':9 'spotifi':11 'steam':13 'stream':49 'thing':37,44 'user':82 'want':61 'would':19"
      +ranking: 0
      +commentCount: 0
      +upVotes: 0
      +downVotes: 0
      +visibility: "visible             "
      +apId: "https://lemmy.ml/comment/7844402"
      +editedAt: null
      +createdAt: DateTimeImmutable @1706518140 {#1606
        date: 2024-01-29 09:49:00.0 +01:00
      }
      +"title": 349293
    }
  ]
  -id: 32961
  -titleTs: "'actual':4 'firewal':7 'need':5"
  -bodyTs: "'1':34,103 '2':41,131 '3':51,189,230 '4':66,224 '5':77,102,248 '80':146,163 'abl':281 'access':223 'act':353 'action':318 'activ':337 'actor':340 'advoc':112 'along':28 'analog':363 'anoth':181 'answer':17,21,94,130 'anyth':320 'applic':213 'bad':339 'behaviour':198 'behind':74 'case':234 'communic':284 'comput':91 'could':199,302 'desir':109 'devic':62,205,244,310,316 'differ':174 'doesn':364 'done':202 'door':305,357,384 'essenti':126 'even':200 'exampl':148 'explicit':291 'expos':246 'extens':228 'extra':327 'feel':225 'find':14 'firewal':182,208,322 'follow':33 'forward':188 'front':356 'get':307,342 'go':151 'good':38,381 'grant':292 'group':241 'hole':155 'host':141 'hous':360,373 'instal':259 'know':270 'larger':240 'leav':104 'like':226,238,354 'line':30 'listen':214,376 'lot':106 'made':331 'major':19 'make':96,177,254,366 'malici':197 'matter':137 'mistak':330 'much':367 'nat':76,160 'need':43,53,68,79,184 'network':65 'non':129 'non-answ':128 'noth':221 'one':139,193,252 'open':165 'outsid':287 'peopl':344 'permiss':294 'poke':153 'port':145,162,169,187,217,379 'practic':40 'precaut':328 'prevent':338 'program':261,301 'provid':326 'public':172 'question':8 'rather':335 're':121 'readili':283 'router':158 'run':48,88 'satisfi':16 'search':6 'secur':39 'seem':324,345 'seen':25 'sens':98,256,368 'server':50,167 'servic':375 'softwar':87 'someth':27,115 'sort':195 'spent':3 'spi':313 'state':26 'strang':133,192 'think':117 'time':5 'treat':347 'trust':59,85,266 'unknown':300 'unless':289 'user':334 've':2 'want':277 'webserv':143 'without':116,371 'work':273 'world':288 'yet':12"
  +cross: false
  +upVotes: 0
  +downVotes: 0
  +ranking: 1706257325
  +visibility: "visible             "
  +apId: "https://sh.itjust.works/post/13453975"
  +editedAt: DateTimeImmutable @1728528893 {#2011
    date: 2024-10-10 04:54:53.0 +02:00
  }
  +createdAt: DateTimeImmutable @1706170925 {#1717
    date: 2024-01-25 09:22:05.0 +01:00
  }
  +__isInitialized__: true
   …2
}

null

App\Entity\EntryComment {#1641
  +user: App\Entity\User {#264 …}
  +entry: Proxies\__CG__\App\Entity\Entry {#1576
    +user: Proxies\__CG__\App\Entity\User {#2031 …}
    +magazine: Proxies\__CG__\App\Entity\Magazine {#1567 …}
    +image: null
    +domain: Proxies\__CG__\App\Entity\Domain {#1909 …}
    +slug: "When-do-I-actually-need-a-firewall"
    +title: "When do I actually need a firewall?"
    +url: null
    +body: """
      I’ve spent some time searching this question, but I have yet to find a satisfying answer. The majority of answers that I have seen state something along the lines of the following:\n
      \n
      1. “It’s just good security practice.”\n
      2. “You need it if you are running a server.”\n
      3. “You need it if you don’t trust the other devices on the network.”\n
      4. “You need it if you are not behind a NAT.”\n
      5. “You need it if you don’t trust the software running on your computer.”\n
      \n
      The only answer that makes any sense to me is #5. #1 leaves a lot to be desired, as it advocates for doing something without thinking about why you’re doing it – it is essentially a non-answer. #2 is strange – why does it matter? If one is hosting a webserver on port 80, for example, they are going to poke a hole in their router’s NAT at port 80 to open that server’s port to the public. What difference does it make to then have another firewall that needs to be port forwarded? #3 is a strange one – what sort of malicious behaviour could even be done to a device with no firewall? If you have no applications listening on any port, then there’s nothing to access. #4 feels like an extension of #3 – only, in this case, it is most likely a larger group that the device is exposed to. #5 is the only one that makes some sense; if you install a program that you do not trust (you don’t know how it works), you don’t want it to be able to readily communicate with the outside world unless you explicitly grant it permission to do so. Such an unknown program could be the door to get into your device, or a spy on your device’s actions.\n
      \n
      If anything, a firewall only seems to provide extra precautions against mistakes made by the user, rather than actively preventing bad actors from getting in. People seem to treat it as if it’s acting like the front door to a house, but this analogy doesn’t make much sense to me – without a house (a service listening on a port), what good is a door?
      """
    +type: "article"
    +lang: "en"
    +isOc: false
    +hasEmbed: false
    +commentCount: 40
    +favouriteCount: 91
    +score: 0
    +isAdult: false
    +sticky: false
    +lastActive: DateTime @1729354440 {#2012
      date: 2024-10-19 18:14:00.0 +02:00
    }
    +ip: null
    +adaAmount: 0
    +tags: null
    +mentions: null
    +comments: Doctrine\ORM\PersistentCollection {#2037 …}
    +votes: Doctrine\ORM\PersistentCollection {#2075 …}
    +reports: Doctrine\ORM\PersistentCollection {#2079 …}
    +favourites: Doctrine\ORM\PersistentCollection {#2078 …}
    +notifications: Doctrine\ORM\PersistentCollection {#2097 …}
    +badges: Doctrine\ORM\PersistentCollection {#2082 …}
    +children: [
      App\Entity\EntryComment {#1641}
    ]
    -id: 32961
    -titleTs: "'actual':4 'firewal':7 'need':5"
    -bodyTs: "'1':34,103 '2':41,131 '3':51,189,230 '4':66,224 '5':77,102,248 '80':146,163 'abl':281 'access':223 'act':353 'action':318 'activ':337 'actor':340 'advoc':112 'along':28 'analog':363 'anoth':181 'answer':17,21,94,130 'anyth':320 'applic':213 'bad':339 'behaviour':198 'behind':74 'case':234 'communic':284 'comput':91 'could':199,302 'desir':109 'devic':62,205,244,310,316 'differ':174 'doesn':364 'done':202 'door':305,357,384 'essenti':126 'even':200 'exampl':148 'explicit':291 'expos':246 'extens':228 'extra':327 'feel':225 'find':14 'firewal':182,208,322 'follow':33 'forward':188 'front':356 'get':307,342 'go':151 'good':38,381 'grant':292 'group':241 'hole':155 'host':141 'hous':360,373 'instal':259 'know':270 'larger':240 'leav':104 'like':226,238,354 'line':30 'listen':214,376 'lot':106 'made':331 'major':19 'make':96,177,254,366 'malici':197 'matter':137 'mistak':330 'much':367 'nat':76,160 'need':43,53,68,79,184 'network':65 'non':129 'non-answ':128 'noth':221 'one':139,193,252 'open':165 'outsid':287 'peopl':344 'permiss':294 'poke':153 'port':145,162,169,187,217,379 'practic':40 'precaut':328 'prevent':338 'program':261,301 'provid':326 'public':172 'question':8 'rather':335 're':121 'readili':283 'router':158 'run':48,88 'satisfi':16 'search':6 'secur':39 'seem':324,345 'seen':25 'sens':98,256,368 'server':50,167 'servic':375 'softwar':87 'someth':27,115 'sort':195 'spent':3 'spi':313 'state':26 'strang':133,192 'think':117 'time':5 'treat':347 'trust':59,85,266 'unknown':300 'unless':289 'user':334 've':2 'want':277 'webserv':143 'without':116,371 'work':273 'world':288 'yet':12"
    +cross: false
    +upVotes: 0
    +downVotes: 0
    +ranking: 1706257325
    +visibility: "visible             "
    +apId: "https://sh.itjust.works/post/13453975"
    +editedAt: DateTimeImmutable @1728528893 {#2011
      date: 2024-10-10 04:54:53.0 +02:00
    }
    +createdAt: DateTimeImmutable @1706170925 {#1717
      date: 2024-01-25 09:22:05.0 +01:00
    }
    +__isInitialized__: true
     …2
  }
  +magazine: Proxies\__CG__\App\Entity\Magazine {#1567 …}
  +image: null
  +parent: Proxies\__CG__\App\Entity\EntryComment {#1589 …}
  +root: Proxies\__CG__\App\Entity\EntryComment {#1593 …}
  +body: """
    > In my case I have a number of sockets from spotify, and steam listening on port 0.0.0.0. I would assume, that these are only available to connections from the LAN?\n
    \n
    That’s exactly the kind of thing I meant :)\n
    \n
    These are likely for things like in-house streaming, LAN game downloads and remote music playing, so you may even want to consider explicitly allowing them through the firewall but they’re also potential security holes of applications running under your user that you have largely no control over.
    """
  +lang: "en"
  +isAdult: false
  +favouriteCount: 0
  +score: 0
  +lastActive: DateTime @1706518140 {#1696
    date: 2024-01-29 09:49:00.0 +01:00
  }
  +ip: null
  +tags: null
  +mentions: [
    "@Kalcifer@sh.itjust.works"
    "@Atemu@lemmy.ml"
  ]
  +children: Doctrine\ORM\PersistentCollection {#1592 …}
  +nested: Doctrine\ORM\PersistentCollection {#1552 …}
  +votes: Doctrine\ORM\PersistentCollection {#1663 …}
  +reports: Doctrine\ORM\PersistentCollection {#1661 …}
  +favourites: Doctrine\ORM\PersistentCollection {#1562 …}
  +notifications: Doctrine\ORM\PersistentCollection {#1548 …}
  -id: 349293
  -bodyTs: "'0.0.0.0':17 'allow':65 'also':73 'applic':78 'assum':20 'avail':25 'case':3 'connect':27 'consid':63 'control':88 'download':52 'even':60 'exact':33 'explicit':64 'firewal':69 'game':51 'hole':76 'hous':48 'in-hous':46 'kind':35 'lan':30,50 'larg':86 'like':42,45 'listen':14 'may':59 'meant':39 'music':55 'number':7 'play':56 'port':16 'potenti':74 're':72 'remot':54 'run':79 'secur':75 'socket':9 'spotifi':11 'steam':13 'stream':49 'thing':37,44 'user':82 'want':61 'would':19"
  +ranking: 0
  +commentCount: 0
  +upVotes: 0
  +downVotes: 0
  +visibility: "visible             "
  +apId: "https://lemmy.ml/comment/7844402"
  +editedAt: null
  +createdAt: DateTimeImmutable @1706518140 {#1606
    date: 2024-01-29 09:49:00.0 +01:00
  }
  +"title": 349293
}

App\Entity\EntryComment {#1641
  +user: App\Entity\User {#264 …}
  +entry: Proxies\__CG__\App\Entity\Entry {#1576
    +user: Proxies\__CG__\App\Entity\User {#2031 …}
    +magazine: Proxies\__CG__\App\Entity\Magazine {#1567 …}
    +image: null
    +domain: Proxies\__CG__\App\Entity\Domain {#1909 …}
    +slug: "When-do-I-actually-need-a-firewall"
    +title: "When do I actually need a firewall?"
    +url: null
    +body: """
      I’ve spent some time searching this question, but I have yet to find a satisfying answer. The majority of answers that I have seen state something along the lines of the following:\n
      \n
      1. “It’s just good security practice.”\n
      2. “You need it if you are running a server.”\n
      3. “You need it if you don’t trust the other devices on the network.”\n
      4. “You need it if you are not behind a NAT.”\n
      5. “You need it if you don’t trust the software running on your computer.”\n
      \n
      The only answer that makes any sense to me is #5. #1 leaves a lot to be desired, as it advocates for doing something without thinking about why you’re doing it – it is essentially a non-answer. #2 is strange – why does it matter? If one is hosting a webserver on port 80, for example, they are going to poke a hole in their router’s NAT at port 80 to open that server’s port to the public. What difference does it make to then have another firewall that needs to be port forwarded? #3 is a strange one – what sort of malicious behaviour could even be done to a device with no firewall? If you have no applications listening on any port, then there’s nothing to access. #4 feels like an extension of #3 – only, in this case, it is most likely a larger group that the device is exposed to. #5 is the only one that makes some sense; if you install a program that you do not trust (you don’t know how it works), you don’t want it to be able to readily communicate with the outside world unless you explicitly grant it permission to do so. Such an unknown program could be the door to get into your device, or a spy on your device’s actions.\n
      \n
      If anything, a firewall only seems to provide extra precautions against mistakes made by the user, rather than actively preventing bad actors from getting in. People seem to treat it as if it’s acting like the front door to a house, but this analogy doesn’t make much sense to me – without a house (a service listening on a port), what good is a door?
      """
    +type: "article"
    +lang: "en"
    +isOc: false
    +hasEmbed: false
    +commentCount: 40
    +favouriteCount: 91
    +score: 0
    +isAdult: false
    +sticky: false
    +lastActive: DateTime @1729354440 {#2012
      date: 2024-10-19 18:14:00.0 +02:00
    }
    +ip: null
    +adaAmount: 0
    +tags: null
    +mentions: null
    +comments: Doctrine\ORM\PersistentCollection {#2037 …}
    +votes: Doctrine\ORM\PersistentCollection {#2075 …}
    +reports: Doctrine\ORM\PersistentCollection {#2079 …}
    +favourites: Doctrine\ORM\PersistentCollection {#2078 …}
    +notifications: Doctrine\ORM\PersistentCollection {#2097 …}
    +badges: Doctrine\ORM\PersistentCollection {#2082 …}
    +children: [
      App\Entity\EntryComment {#1641}
    ]
    -id: 32961
    -titleTs: "'actual':4 'firewal':7 'need':5"
    -bodyTs: "'1':34,103 '2':41,131 '3':51,189,230 '4':66,224 '5':77,102,248 '80':146,163 'abl':281 'access':223 'act':353 'action':318 'activ':337 'actor':340 'advoc':112 'along':28 'analog':363 'anoth':181 'answer':17,21,94,130 'anyth':320 'applic':213 'bad':339 'behaviour':198 'behind':74 'case':234 'communic':284 'comput':91 'could':199,302 'desir':109 'devic':62,205,244,310,316 'differ':174 'doesn':364 'done':202 'door':305,357,384 'essenti':126 'even':200 'exampl':148 'explicit':291 'expos':246 'extens':228 'extra':327 'feel':225 'find':14 'firewal':182,208,322 'follow':33 'forward':188 'front':356 'get':307,342 'go':151 'good':38,381 'grant':292 'group':241 'hole':155 'host':141 'hous':360,373 'instal':259 'know':270 'larger':240 'leav':104 'like':226,238,354 'line':30 'listen':214,376 'lot':106 'made':331 'major':19 'make':96,177,254,366 'malici':197 'matter':137 'mistak':330 'much':367 'nat':76,160 'need':43,53,68,79,184 'network':65 'non':129 'non-answ':128 'noth':221 'one':139,193,252 'open':165 'outsid':287 'peopl':344 'permiss':294 'poke':153 'port':145,162,169,187,217,379 'practic':40 'precaut':328 'prevent':338 'program':261,301 'provid':326 'public':172 'question':8 'rather':335 're':121 'readili':283 'router':158 'run':48,88 'satisfi':16 'search':6 'secur':39 'seem':324,345 'seen':25 'sens':98,256,368 'server':50,167 'servic':375 'softwar':87 'someth':27,115 'sort':195 'spent':3 'spi':313 'state':26 'strang':133,192 'think':117 'time':5 'treat':347 'trust':59,85,266 'unknown':300 'unless':289 'user':334 've':2 'want':277 'webserv':143 'without':116,371 'work':273 'world':288 'yet':12"
    +cross: false
    +upVotes: 0
    +downVotes: 0
    +ranking: 1706257325
    +visibility: "visible             "
    +apId: "https://sh.itjust.works/post/13453975"
    +editedAt: DateTimeImmutable @1728528893 {#2011
      date: 2024-10-10 04:54:53.0 +02:00
    }
    +createdAt: DateTimeImmutable @1706170925 {#1717
      date: 2024-01-25 09:22:05.0 +01:00
    }
    +__isInitialized__: true
     …2
  }
  +magazine: Proxies\__CG__\App\Entity\Magazine {#1567 …}
  +image: null
  +parent: Proxies\__CG__\App\Entity\EntryComment {#1589 …}
  +root: Proxies\__CG__\App\Entity\EntryComment {#1593 …}
  +body: """
    > In my case I have a number of sockets from spotify, and steam listening on port 0.0.0.0. I would assume, that these are only available to connections from the LAN?\n
    \n
    That’s exactly the kind of thing I meant :)\n
    \n
    These are likely for things like in-house streaming, LAN game downloads and remote music playing, so you may even want to consider explicitly allowing them through the firewall but they’re also potential security holes of applications running under your user that you have largely no control over.
    """
  +lang: "en"
  +isAdult: false
  +favouriteCount: 0
  +score: 0
  +lastActive: DateTime @1706518140 {#1696
    date: 2024-01-29 09:49:00.0 +01:00
  }
  +ip: null
  +tags: null
  +mentions: [
    "@Kalcifer@sh.itjust.works"
    "@Atemu@lemmy.ml"
  ]
  +children: Doctrine\ORM\PersistentCollection {#1592 …}
  +nested: Doctrine\ORM\PersistentCollection {#1552 …}
  +votes: Doctrine\ORM\PersistentCollection {#1663 …}
  +reports: Doctrine\ORM\PersistentCollection {#1661 …}
  +favourites: Doctrine\ORM\PersistentCollection {#1562 …}
  +notifications: Doctrine\ORM\PersistentCollection {#1548 …}
  -id: 349293
  -bodyTs: "'0.0.0.0':17 'allow':65 'also':73 'applic':78 'assum':20 'avail':25 'case':3 'connect':27 'consid':63 'control':88 'download':52 'even':60 'exact':33 'explicit':64 'firewal':69 'game':51 'hole':76 'hous':48 'in-hous':46 'kind':35 'lan':30,50 'larg':86 'like':42,45 'listen':14 'may':59 'meant':39 'music':55 'number':7 'play':56 'port':16 'potenti':74 're':72 'remot':54 'run':79 'secur':75 'socket':9 'spotifi':11 'steam':13 'stream':49 'thing':37,44 'user':82 'want':61 'would':19"
  +ranking: 0
  +commentCount: 0
  +upVotes: 0
  +downVotes: 0
  +visibility: "visible             "
  +apId: "https://lemmy.ml/comment/7844402"
  +editedAt: null
  +createdAt: DateTimeImmutable @1706518140 {#1606
    date: 2024-01-29 09:49:00.0 +01:00
  }
  +"title": 349293
}

App\Entity\EntryComment {#1641
  +user: App\Entity\User {#264 …}
  +entry: Proxies\__CG__\App\Entity\Entry {#1576
    +user: Proxies\__CG__\App\Entity\User {#2031 …}
    +magazine: Proxies\__CG__\App\Entity\Magazine {#1567 …}
    +image: null
    +domain: Proxies\__CG__\App\Entity\Domain {#1909 …}
    +slug: "When-do-I-actually-need-a-firewall"
    +title: "When do I actually need a firewall?"
    +url: null
    +body: """
      I’ve spent some time searching this question, but I have yet to find a satisfying answer. The majority of answers that I have seen state something along the lines of the following:\n
      \n
      1. “It’s just good security practice.”\n
      2. “You need it if you are running a server.”\n
      3. “You need it if you don’t trust the other devices on the network.”\n
      4. “You need it if you are not behind a NAT.”\n
      5. “You need it if you don’t trust the software running on your computer.”\n
      \n
      The only answer that makes any sense to me is #5. #1 leaves a lot to be desired, as it advocates for doing something without thinking about why you’re doing it – it is essentially a non-answer. #2 is strange – why does it matter? If one is hosting a webserver on port 80, for example, they are going to poke a hole in their router’s NAT at port 80 to open that server’s port to the public. What difference does it make to then have another firewall that needs to be port forwarded? #3 is a strange one – what sort of malicious behaviour could even be done to a device with no firewall? If you have no applications listening on any port, then there’s nothing to access. #4 feels like an extension of #3 – only, in this case, it is most likely a larger group that the device is exposed to. #5 is the only one that makes some sense; if you install a program that you do not trust (you don’t know how it works), you don’t want it to be able to readily communicate with the outside world unless you explicitly grant it permission to do so. Such an unknown program could be the door to get into your device, or a spy on your device’s actions.\n
      \n
      If anything, a firewall only seems to provide extra precautions against mistakes made by the user, rather than actively preventing bad actors from getting in. People seem to treat it as if it’s acting like the front door to a house, but this analogy doesn’t make much sense to me – without a house (a service listening on a port), what good is a door?
      """
    +type: "article"
    +lang: "en"
    +isOc: false
    +hasEmbed: false
    +commentCount: 40
    +favouriteCount: 91
    +score: 0
    +isAdult: false
    +sticky: false
    +lastActive: DateTime @1729354440 {#2012
      date: 2024-10-19 18:14:00.0 +02:00
    }
    +ip: null
    +adaAmount: 0
    +tags: null
    +mentions: null
    +comments: Doctrine\ORM\PersistentCollection {#2037 …}
    +votes: Doctrine\ORM\PersistentCollection {#2075 …}
    +reports: Doctrine\ORM\PersistentCollection {#2079 …}
    +favourites: Doctrine\ORM\PersistentCollection {#2078 …}
    +notifications: Doctrine\ORM\PersistentCollection {#2097 …}
    +badges: Doctrine\ORM\PersistentCollection {#2082 …}
    +children: [
      App\Entity\EntryComment {#1641}
    ]
    -id: 32961
    -titleTs: "'actual':4 'firewal':7 'need':5"
    -bodyTs: "'1':34,103 '2':41,131 '3':51,189,230 '4':66,224 '5':77,102,248 '80':146,163 'abl':281 'access':223 'act':353 'action':318 'activ':337 'actor':340 'advoc':112 'along':28 'analog':363 'anoth':181 'answer':17,21,94,130 'anyth':320 'applic':213 'bad':339 'behaviour':198 'behind':74 'case':234 'communic':284 'comput':91 'could':199,302 'desir':109 'devic':62,205,244,310,316 'differ':174 'doesn':364 'done':202 'door':305,357,384 'essenti':126 'even':200 'exampl':148 'explicit':291 'expos':246 'extens':228 'extra':327 'feel':225 'find':14 'firewal':182,208,322 'follow':33 'forward':188 'front':356 'get':307,342 'go':151 'good':38,381 'grant':292 'group':241 'hole':155 'host':141 'hous':360,373 'instal':259 'know':270 'larger':240 'leav':104 'like':226,238,354 'line':30 'listen':214,376 'lot':106 'made':331 'major':19 'make':96,177,254,366 'malici':197 'matter':137 'mistak':330 'much':367 'nat':76,160 'need':43,53,68,79,184 'network':65 'non':129 'non-answ':128 'noth':221 'one':139,193,252 'open':165 'outsid':287 'peopl':344 'permiss':294 'poke':153 'port':145,162,169,187,217,379 'practic':40 'precaut':328 'prevent':338 'program':261,301 'provid':326 'public':172 'question':8 'rather':335 're':121 'readili':283 'router':158 'run':48,88 'satisfi':16 'search':6 'secur':39 'seem':324,345 'seen':25 'sens':98,256,368 'server':50,167 'servic':375 'softwar':87 'someth':27,115 'sort':195 'spent':3 'spi':313 'state':26 'strang':133,192 'think':117 'time':5 'treat':347 'trust':59,85,266 'unknown':300 'unless':289 'user':334 've':2 'want':277 'webserv':143 'without':116,371 'work':273 'world':288 'yet':12"
    +cross: false
    +upVotes: 0
    +downVotes: 0
    +ranking: 1706257325
    +visibility: "visible             "
    +apId: "https://sh.itjust.works/post/13453975"
    +editedAt: DateTimeImmutable @1728528893 {#2011
      date: 2024-10-10 04:54:53.0 +02:00
    }
    +createdAt: DateTimeImmutable @1706170925 {#1717
      date: 2024-01-25 09:22:05.0 +01:00
    }
    +__isInitialized__: true
     …2
  }
  +magazine: Proxies\__CG__\App\Entity\Magazine {#1567 …}
  +image: null
  +parent: Proxies\__CG__\App\Entity\EntryComment {#1589 …}
  +root: Proxies\__CG__\App\Entity\EntryComment {#1593 …}
  +body: """
    > In my case I have a number of sockets from spotify, and steam listening on port 0.0.0.0. I would assume, that these are only available to connections from the LAN?\n
    \n
    That’s exactly the kind of thing I meant :)\n
    \n
    These are likely for things like in-house streaming, LAN game downloads and remote music playing, so you may even want to consider explicitly allowing them through the firewall but they’re also potential security holes of applications running under your user that you have largely no control over.
    """
  +lang: "en"
  +isAdult: false
  +favouriteCount: 0
  +score: 0
  +lastActive: DateTime @1706518140 {#1696
    date: 2024-01-29 09:49:00.0 +01:00
  }
  +ip: null
  +tags: null
  +mentions: [
    "@Kalcifer@sh.itjust.works"
    "@Atemu@lemmy.ml"
  ]
  +children: Doctrine\ORM\PersistentCollection {#1592 …}
  +nested: Doctrine\ORM\PersistentCollection {#1552 …}
  +votes: Doctrine\ORM\PersistentCollection {#1663 …}
  +reports: Doctrine\ORM\PersistentCollection {#1661 …}
  +favourites: Doctrine\ORM\PersistentCollection {#1562 …}
  +notifications: Doctrine\ORM\PersistentCollection {#1548 …}
  -id: 349293
  -bodyTs: "'0.0.0.0':17 'allow':65 'also':73 'applic':78 'assum':20 'avail':25 'case':3 'connect':27 'consid':63 'control':88 'download':52 'even':60 'exact':33 'explicit':64 'firewal':69 'game':51 'hole':76 'hous':48 'in-hous':46 'kind':35 'lan':30,50 'larg':86 'like':42,45 'listen':14 'may':59 'meant':39 'music':55 'number':7 'play':56 'port':16 'potenti':74 're':72 'remot':54 'run':79 'secur':75 'socket':9 'spotifi':11 'steam':13 'stream':49 'thing':37,44 'user':82 'want':61 'would':19"
  +ranking: 0
  +commentCount: 0
  +upVotes: 0
  +downVotes: 0
  +visibility: "visible             "
  +apId: "https://lemmy.ml/comment/7844402"
  +editedAt: null
  +createdAt: DateTimeImmutable @1706518140 {#1606
    date: 2024-01-29 09:49:00.0 +01:00
  }
  +"title": 349293
}

null

Proxies\__CG__\App\Entity\Entry {#1604
  +user: Proxies\__CG__\App\Entity\User {#1404 …}
  +magazine: Proxies\__CG__\App\Entity\Magazine {#1621 …}
  +image: null
  +domain: Proxies\__CG__\App\Entity\Domain {#1909 …}
  +slug: "The-safest-way-of-self-hosting"
  +title: "The "safest" way of self hosting"
  +url: null
  +body: """
    Hello peoples,\n
    \n
    I am looking for tips on how to make my self-hosted setup as safe as possible.\n
    \n
    Some background: I started self-hosting some services about a year ago, using an old lenovo thin client. It’s plenty powerful for what I’m asking it to do, and it’s not too loud. Hardware wise I am not expecting to change things up any time soon.\n
    \n
    I am not expecting anyone to take the time to baby me through the process, I will be more than happy with some links to good articles and the like. My main problem is that there’s so much information out there, I just don’t know where to start or what to trust.\n
    \n
    Anyways, thank you for reading.\n
    \n
    N
    """
  +type: "article"
  +lang: "en"
  +isOc: false
  +hasEmbed: false
  +commentCount: 22
  +favouriteCount: 32
  +score: 0
  +isAdult: false
  +sticky: false
  +lastActive: DateTime @1729526106 {#1727
    date: 2024-10-21 17:55:06.0 +02:00
  }
  +ip: null
  +adaAmount: 0
  +tags: null
  +mentions: null
  +comments: Doctrine\ORM\PersistentCollection {#1708 …}
  +votes: Doctrine\ORM\PersistentCollection {#1410 …}
  +reports: Doctrine\ORM\PersistentCollection {#1908 …}
  +favourites: Doctrine\ORM\PersistentCollection {#2454 …}
  +notifications: Doctrine\ORM\PersistentCollection {#2470 …}
  +badges: Doctrine\ORM\PersistentCollection {#2463 …}
  +children: [
    App\Entity\EntryComment {#1619
      +user: App\Entity\User {#264 …}
      +entry: Proxies\__CG__\App\Entity\Entry {#1604 …2}
      +magazine: Proxies\__CG__\App\Entity\Magazine {#1621 …}
      +image: null
      +parent: null
      +root: null
      +body: """
        One “hammer” mitigation to most threats could conceivably face when self-hosting is to never expose your services to the internet using a firewall. “Securing” your services against a small circle of guests/friends/family members in your home network is a lot simpler than securing against the entire world.  \n
        If you need to access your services remotely, there are ways to achieve that without permanently opening a single port to the internet such as Tailscale or ZeroTier.\n
        \n
        Otherwise, commonly used tools in self-hosting such as Docker or VMs usually offer quite decent separation even if a service is compromised.\n
        \n
        Nothing replaces good security hygiene though. Keep your stuff up-to-date. Use secure methods of authentication such as hard to guess passwords or better. Make frequent backups (3-2-1). The usual.
        """
      +lang: "en"
      +isAdult: false
      +favouriteCount: 0
      +score: 0
      +lastActive: DateTime @1706540369 {#1526
        date: 2024-01-29 15:59:29.0 +01:00
      }
      +ip: null
      +tags: null
      +mentions: [
        "@Nester@feddit.uk"
      ]
      +children: Doctrine\ORM\PersistentCollection {#1620 …}
      +nested: Doctrine\ORM\PersistentCollection {#1701 …}
      +votes: Doctrine\ORM\PersistentCollection {#1687 …}
      +reports: Doctrine\ORM\PersistentCollection {#1689 …}
      +favourites: Doctrine\ORM\PersistentCollection {#1691 …}
      +notifications: Doctrine\ORM\PersistentCollection {#1795 …}
      -id: 349918
      -bodyTs: "'-1':133 '-2':132 '3':131 'access':54 'achiev':62 'authent':119 'backup':130 'better':127 'circl':32 'common':79 'compromis':101 'conceiv':8 'could':7 'date':114 'decent':94 'docker':88 'entir':48 'even':96 'expos':17 'face':9 'firewal':25 'frequent':129 'good':104 'guess':124 'guests/friends/family':34 'hammer':2 'hard':122 'home':38 'host':13,85 'hygien':106 'internet':22,72 'keep':108 'lot':42 'make':128 'member':35 'method':117 'mitig':3 'need':52 'network':39 'never':16 'noth':102 'offer':92 'one':1 'open':66 'otherwis':78 'password':125 'perman':65 'port':69 'quit':93 'remot':57 'replac':103 'secur':26,45,105,116 'self':12,84 'self-host':11,83 'separ':95 'servic':19,28,56,99 'simpler':43 'singl':68 'small':31 'stuff':110 'tailscal':75 'though':107 'threat':6 'tool':81 'up-to-d':111 'use':23,80,115 'usual':91,135 'vms':90 'way':60 'without':64 'world':49 'zeroti':77"
      +ranking: 0
      +commentCount: 0
      +upVotes: 0
      +downVotes: 0
      +visibility: "visible             "
      +apId: "https://lemmy.ml/comment/7850439"
      +editedAt: null
      +createdAt: DateTimeImmutable @1706540369 {#1596
        date: 2024-01-29 15:59:29.0 +01:00
      }
      +"title": 349918
    }
  ]
  -id: 33831
  -titleTs: "'host':6 'safest':2 'self':5 'way':3"
  -bodyTs: "'ago':33 'anyon':75 'anyway':125 'articl':97 'ask':48 'babi':81 'background':22 'chang':65 'client':39 'expect':63,74 'good':96 'happi':91 'hardwar':58 'hello':1 'host':15,27 'inform':110 'know':117 'lenovo':37 'like':100 'link':94 'look':5 'loud':57 'm':47 'main':102 'make':11 'much':109 'n':130 'old':36 'peopl':2 'plenti':42 'possibl':20 'power':43 'problem':103 'process':85 'read':129 'safe':18 'self':14,26 'self-host':13,25 'servic':29 'setup':16 'soon':70 'start':24,120 'take':77 'thank':126 'thin':38 'thing':66 'time':69,79 'tip':7 'trust':124 'use':34 'wise':59 'year':32"
  +cross: false
  +upVotes: 0
  +downVotes: 0
  +ranking: 1706625633
  +visibility: "visible             "
  +apId: "https://feddit.uk/post/7247106"
  +editedAt: null
  +createdAt: DateTimeImmutable @1706539233 {#1736
    date: 2024-01-29 15:40:33.0 +01:00
  }
  +__isInitialized__: true
   …2
}

Proxies\__CG__\App\Entity\Entry {#1604
  +user: Proxies\__CG__\App\Entity\User {#1404 …}
  +magazine: Proxies\__CG__\App\Entity\Magazine {#1621 …}
  +image: null
  +domain: Proxies\__CG__\App\Entity\Domain {#1909 …}
  +slug: "The-safest-way-of-self-hosting"
  +title: "The "safest" way of self hosting"
  +url: null
  +body: """
    Hello peoples,\n
    \n
    I am looking for tips on how to make my self-hosted setup as safe as possible.\n
    \n
    Some background: I started self-hosting some services about a year ago, using an old lenovo thin client. It’s plenty powerful for what I’m asking it to do, and it’s not too loud. Hardware wise I am not expecting to change things up any time soon.\n
    \n
    I am not expecting anyone to take the time to baby me through the process, I will be more than happy with some links to good articles and the like. My main problem is that there’s so much information out there, I just don’t know where to start or what to trust.\n
    \n
    Anyways, thank you for reading.\n
    \n
    N
    """
  +type: "article"
  +lang: "en"
  +isOc: false
  +hasEmbed: false
  +commentCount: 22
  +favouriteCount: 32
  +score: 0
  +isAdult: false
  +sticky: false
  +lastActive: DateTime @1729526106 {#1727
    date: 2024-10-21 17:55:06.0 +02:00
  }
  +ip: null
  +adaAmount: 0
  +tags: null
  +mentions: null
  +comments: Doctrine\ORM\PersistentCollection {#1708 …}
  +votes: Doctrine\ORM\PersistentCollection {#1410 …}
  +reports: Doctrine\ORM\PersistentCollection {#1908 …}
  +favourites: Doctrine\ORM\PersistentCollection {#2454 …}
  +notifications: Doctrine\ORM\PersistentCollection {#2470 …}
  +badges: Doctrine\ORM\PersistentCollection {#2463 …}
  +children: [
    App\Entity\EntryComment {#1619
      +user: App\Entity\User {#264 …}
      +entry: Proxies\__CG__\App\Entity\Entry {#1604 …2}
      +magazine: Proxies\__CG__\App\Entity\Magazine {#1621 …}
      +image: null
      +parent: null
      +root: null
      +body: """
        One “hammer” mitigation to most threats could conceivably face when self-hosting is to never expose your services to the internet using a firewall. “Securing” your services against a small circle of guests/friends/family members in your home network is a lot simpler than securing against the entire world.  \n
        If you need to access your services remotely, there are ways to achieve that without permanently opening a single port to the internet such as Tailscale or ZeroTier.\n
        \n
        Otherwise, commonly used tools in self-hosting such as Docker or VMs usually offer quite decent separation even if a service is compromised.\n
        \n
        Nothing replaces good security hygiene though. Keep your stuff up-to-date. Use secure methods of authentication such as hard to guess passwords or better. Make frequent backups (3-2-1). The usual.
        """
      +lang: "en"
      +isAdult: false
      +favouriteCount: 0
      +score: 0
      +lastActive: DateTime @1706540369 {#1526
        date: 2024-01-29 15:59:29.0 +01:00
      }
      +ip: null
      +tags: null
      +mentions: [
        "@Nester@feddit.uk"
      ]
      +children: Doctrine\ORM\PersistentCollection {#1620 …}
      +nested: Doctrine\ORM\PersistentCollection {#1701 …}
      +votes: Doctrine\ORM\PersistentCollection {#1687 …}
      +reports: Doctrine\ORM\PersistentCollection {#1689 …}
      +favourites: Doctrine\ORM\PersistentCollection {#1691 …}
      +notifications: Doctrine\ORM\PersistentCollection {#1795 …}
      -id: 349918
      -bodyTs: "'-1':133 '-2':132 '3':131 'access':54 'achiev':62 'authent':119 'backup':130 'better':127 'circl':32 'common':79 'compromis':101 'conceiv':8 'could':7 'date':114 'decent':94 'docker':88 'entir':48 'even':96 'expos':17 'face':9 'firewal':25 'frequent':129 'good':104 'guess':124 'guests/friends/family':34 'hammer':2 'hard':122 'home':38 'host':13,85 'hygien':106 'internet':22,72 'keep':108 'lot':42 'make':128 'member':35 'method':117 'mitig':3 'need':52 'network':39 'never':16 'noth':102 'offer':92 'one':1 'open':66 'otherwis':78 'password':125 'perman':65 'port':69 'quit':93 'remot':57 'replac':103 'secur':26,45,105,116 'self':12,84 'self-host':11,83 'separ':95 'servic':19,28,56,99 'simpler':43 'singl':68 'small':31 'stuff':110 'tailscal':75 'though':107 'threat':6 'tool':81 'up-to-d':111 'use':23,80,115 'usual':91,135 'vms':90 'way':60 'without':64 'world':49 'zeroti':77"
      +ranking: 0
      +commentCount: 0
      +upVotes: 0
      +downVotes: 0
      +visibility: "visible             "
      +apId: "https://lemmy.ml/comment/7850439"
      +editedAt: null
      +createdAt: DateTimeImmutable @1706540369 {#1596
        date: 2024-01-29 15:59:29.0 +01:00
      }
      +"title": 349918
    }
  ]
  -id: 33831
  -titleTs: "'host':6 'safest':2 'self':5 'way':3"
  -bodyTs: "'ago':33 'anyon':75 'anyway':125 'articl':97 'ask':48 'babi':81 'background':22 'chang':65 'client':39 'expect':63,74 'good':96 'happi':91 'hardwar':58 'hello':1 'host':15,27 'inform':110 'know':117 'lenovo':37 'like':100 'link':94 'look':5 'loud':57 'm':47 'main':102 'make':11 'much':109 'n':130 'old':36 'peopl':2 'plenti':42 'possibl':20 'power':43 'problem':103 'process':85 'read':129 'safe':18 'self':14,26 'self-host':13,25 'servic':29 'setup':16 'soon':70 'start':24,120 'take':77 'thank':126 'thin':38 'thing':66 'time':69,79 'tip':7 'trust':124 'use':34 'wise':59 'year':32"
  +cross: false
  +upVotes: 0
  +downVotes: 0
  +ranking: 1706625633
  +visibility: "visible             "
  +apId: "https://feddit.uk/post/7247106"
  +editedAt: null
  +createdAt: DateTimeImmutable @1706539233 {#1736
    date: 2024-01-29 15:40:33.0 +01:00
  }
  +__isInitialized__: true
   …2
}

Proxies\__CG__\App\Entity\Entry {#1604
  +user: Proxies\__CG__\App\Entity\User {#1404 …}
  +magazine: Proxies\__CG__\App\Entity\Magazine {#1621 …}
  +image: null
  +domain: Proxies\__CG__\App\Entity\Domain {#1909 …}
  +slug: "The-safest-way-of-self-hosting"
  +title: "The "safest" way of self hosting"
  +url: null
  +body: """
    Hello peoples,\n
    \n
    I am looking for tips on how to make my self-hosted setup as safe as possible.\n
    \n
    Some background: I started self-hosting some services about a year ago, using an old lenovo thin client. It’s plenty powerful for what I’m asking it to do, and it’s not too loud. Hardware wise I am not expecting to change things up any time soon.\n
    \n
    I am not expecting anyone to take the time to baby me through the process, I will be more than happy with some links to good articles and the like. My main problem is that there’s so much information out there, I just don’t know where to start or what to trust.\n
    \n
    Anyways, thank you for reading.\n
    \n
    N
    """
  +type: "article"
  +lang: "en"
  +isOc: false
  +hasEmbed: false
  +commentCount: 22
  +favouriteCount: 32
  +score: 0
  +isAdult: false
  +sticky: false
  +lastActive: DateTime @1729526106 {#1727
    date: 2024-10-21 17:55:06.0 +02:00
  }
  +ip: null
  +adaAmount: 0
  +tags: null
  +mentions: null
  +comments: Doctrine\ORM\PersistentCollection {#1708 …}
  +votes: Doctrine\ORM\PersistentCollection {#1410 …}
  +reports: Doctrine\ORM\PersistentCollection {#1908 …}
  +favourites: Doctrine\ORM\PersistentCollection {#2454 …}
  +notifications: Doctrine\ORM\PersistentCollection {#2470 …}
  +badges: Doctrine\ORM\PersistentCollection {#2463 …}
  +children: [
    App\Entity\EntryComment {#1619
      +user: App\Entity\User {#264 …}
      +entry: Proxies\__CG__\App\Entity\Entry {#1604 …2}
      +magazine: Proxies\__CG__\App\Entity\Magazine {#1621 …}
      +image: null
      +parent: null
      +root: null
      +body: """
        One “hammer” mitigation to most threats could conceivably face when self-hosting is to never expose your services to the internet using a firewall. “Securing” your services against a small circle of guests/friends/family members in your home network is a lot simpler than securing against the entire world.  \n
        If you need to access your services remotely, there are ways to achieve that without permanently opening a single port to the internet such as Tailscale or ZeroTier.\n
        \n
        Otherwise, commonly used tools in self-hosting such as Docker or VMs usually offer quite decent separation even if a service is compromised.\n
        \n
        Nothing replaces good security hygiene though. Keep your stuff up-to-date. Use secure methods of authentication such as hard to guess passwords or better. Make frequent backups (3-2-1). The usual.
        """
      +lang: "en"
      +isAdult: false
      +favouriteCount: 0
      +score: 0
      +lastActive: DateTime @1706540369 {#1526
        date: 2024-01-29 15:59:29.0 +01:00
      }
      +ip: null
      +tags: null
      +mentions: [
        "@Nester@feddit.uk"
      ]
      +children: Doctrine\ORM\PersistentCollection {#1620 …}
      +nested: Doctrine\ORM\PersistentCollection {#1701 …}
      +votes: Doctrine\ORM\PersistentCollection {#1687 …}
      +reports: Doctrine\ORM\PersistentCollection {#1689 …}
      +favourites: Doctrine\ORM\PersistentCollection {#1691 …}
      +notifications: Doctrine\ORM\PersistentCollection {#1795 …}
      -id: 349918
      -bodyTs: "'-1':133 '-2':132 '3':131 'access':54 'achiev':62 'authent':119 'backup':130 'better':127 'circl':32 'common':79 'compromis':101 'conceiv':8 'could':7 'date':114 'decent':94 'docker':88 'entir':48 'even':96 'expos':17 'face':9 'firewal':25 'frequent':129 'good':104 'guess':124 'guests/friends/family':34 'hammer':2 'hard':122 'home':38 'host':13,85 'hygien':106 'internet':22,72 'keep':108 'lot':42 'make':128 'member':35 'method':117 'mitig':3 'need':52 'network':39 'never':16 'noth':102 'offer':92 'one':1 'open':66 'otherwis':78 'password':125 'perman':65 'port':69 'quit':93 'remot':57 'replac':103 'secur':26,45,105,116 'self':12,84 'self-host':11,83 'separ':95 'servic':19,28,56,99 'simpler':43 'singl':68 'small':31 'stuff':110 'tailscal':75 'though':107 'threat':6 'tool':81 'up-to-d':111 'use':23,80,115 'usual':91,135 'vms':90 'way':60 'without':64 'world':49 'zeroti':77"
      +ranking: 0
      +commentCount: 0
      +upVotes: 0
      +downVotes: 0
      +visibility: "visible             "
      +apId: "https://lemmy.ml/comment/7850439"
      +editedAt: null
      +createdAt: DateTimeImmutable @1706540369 {#1596
        date: 2024-01-29 15:59:29.0 +01:00
      }
      +"title": 349918
    }
  ]
  -id: 33831
  -titleTs: "'host':6 'safest':2 'self':5 'way':3"
  -bodyTs: "'ago':33 'anyon':75 'anyway':125 'articl':97 'ask':48 'babi':81 'background':22 'chang':65 'client':39 'expect':63,74 'good':96 'happi':91 'hardwar':58 'hello':1 'host':15,27 'inform':110 'know':117 'lenovo':37 'like':100 'link':94 'look':5 'loud':57 'm':47 'main':102 'make':11 'much':109 'n':130 'old':36 'peopl':2 'plenti':42 'possibl':20 'power':43 'problem':103 'process':85 'read':129 'safe':18 'self':14,26 'self-host':13,25 'servic':29 'setup':16 'soon':70 'start':24,120 'take':77 'thank':126 'thin':38 'thing':66 'time':69,79 'tip':7 'trust':124 'use':34 'wise':59 'year':32"
  +cross: false
  +upVotes: 0
  +downVotes: 0
  +ranking: 1706625633
  +visibility: "visible             "
  +apId: "https://feddit.uk/post/7247106"
  +editedAt: null
  +createdAt: DateTimeImmutable @1706539233 {#1736
    date: 2024-01-29 15:40:33.0 +01:00
  }
  +__isInitialized__: true
   …2
}

null

App\Entity\EntryComment {#1619
  +user: App\Entity\User {#264 …}
  +entry: Proxies\__CG__\App\Entity\Entry {#1604
    +user: Proxies\__CG__\App\Entity\User {#1404 …}
    +magazine: Proxies\__CG__\App\Entity\Magazine {#1621 …}
    +image: null
    +domain: Proxies\__CG__\App\Entity\Domain {#1909 …}
    +slug: "The-safest-way-of-self-hosting"
    +title: "The "safest" way of self hosting"
    +url: null
    +body: """
      Hello peoples,\n
      \n
      I am looking for tips on how to make my self-hosted setup as safe as possible.\n
      \n
      Some background: I started self-hosting some services about a year ago, using an old lenovo thin client. It’s plenty powerful for what I’m asking it to do, and it’s not too loud. Hardware wise I am not expecting to change things up any time soon.\n
      \n
      I am not expecting anyone to take the time to baby me through the process, I will be more than happy with some links to good articles and the like. My main problem is that there’s so much information out there, I just don’t know where to start or what to trust.\n
      \n
      Anyways, thank you for reading.\n
      \n
      N
      """
    +type: "article"
    +lang: "en"
    +isOc: false
    +hasEmbed: false
    +commentCount: 22
    +favouriteCount: 32
    +score: 0
    +isAdult: false
    +sticky: false
    +lastActive: DateTime @1729526106 {#1727
      date: 2024-10-21 17:55:06.0 +02:00
    }
    +ip: null
    +adaAmount: 0
    +tags: null
    +mentions: null
    +comments: Doctrine\ORM\PersistentCollection {#1708 …}
    +votes: Doctrine\ORM\PersistentCollection {#1410 …}
    +reports: Doctrine\ORM\PersistentCollection {#1908 …}
    +favourites: Doctrine\ORM\PersistentCollection {#2454 …}
    +notifications: Doctrine\ORM\PersistentCollection {#2470 …}
    +badges: Doctrine\ORM\PersistentCollection {#2463 …}
    +children: [
      App\Entity\EntryComment {#1619}
    ]
    -id: 33831
    -titleTs: "'host':6 'safest':2 'self':5 'way':3"
    -bodyTs: "'ago':33 'anyon':75 'anyway':125 'articl':97 'ask':48 'babi':81 'background':22 'chang':65 'client':39 'expect':63,74 'good':96 'happi':91 'hardwar':58 'hello':1 'host':15,27 'inform':110 'know':117 'lenovo':37 'like':100 'link':94 'look':5 'loud':57 'm':47 'main':102 'make':11 'much':109 'n':130 'old':36 'peopl':2 'plenti':42 'possibl':20 'power':43 'problem':103 'process':85 'read':129 'safe':18 'self':14,26 'self-host':13,25 'servic':29 'setup':16 'soon':70 'start':24,120 'take':77 'thank':126 'thin':38 'thing':66 'time':69,79 'tip':7 'trust':124 'use':34 'wise':59 'year':32"
    +cross: false
    +upVotes: 0
    +downVotes: 0
    +ranking: 1706625633
    +visibility: "visible             "
    +apId: "https://feddit.uk/post/7247106"
    +editedAt: null
    +createdAt: DateTimeImmutable @1706539233 {#1736
      date: 2024-01-29 15:40:33.0 +01:00
    }
    +__isInitialized__: true
     …2
  }
  +magazine: Proxies\__CG__\App\Entity\Magazine {#1621 …}
  +image: null
  +parent: null
  +root: null
  +body: """
    One “hammer” mitigation to most threats could conceivably face when self-hosting is to never expose your services to the internet using a firewall. “Securing” your services against a small circle of guests/friends/family members in your home network is a lot simpler than securing against the entire world.  \n
    If you need to access your services remotely, there are ways to achieve that without permanently opening a single port to the internet such as Tailscale or ZeroTier.\n
    \n
    Otherwise, commonly used tools in self-hosting such as Docker or VMs usually offer quite decent separation even if a service is compromised.\n
    \n
    Nothing replaces good security hygiene though. Keep your stuff up-to-date. Use secure methods of authentication such as hard to guess passwords or better. Make frequent backups (3-2-1). The usual.
    """
  +lang: "en"
  +isAdult: false
  +favouriteCount: 0
  +score: 0
  +lastActive: DateTime @1706540369 {#1526
    date: 2024-01-29 15:59:29.0 +01:00
  }
  +ip: null
  +tags: null
  +mentions: [
    "@Nester@feddit.uk"
  ]
  +children: Doctrine\ORM\PersistentCollection {#1620 …}
  +nested: Doctrine\ORM\PersistentCollection {#1701 …}
  +votes: Doctrine\ORM\PersistentCollection {#1687 …}
  +reports: Doctrine\ORM\PersistentCollection {#1689 …}
  +favourites: Doctrine\ORM\PersistentCollection {#1691 …}
  +notifications: Doctrine\ORM\PersistentCollection {#1795 …}
  -id: 349918
  -bodyTs: "'-1':133 '-2':132 '3':131 'access':54 'achiev':62 'authent':119 'backup':130 'better':127 'circl':32 'common':79 'compromis':101 'conceiv':8 'could':7 'date':114 'decent':94 'docker':88 'entir':48 'even':96 'expos':17 'face':9 'firewal':25 'frequent':129 'good':104 'guess':124 'guests/friends/family':34 'hammer':2 'hard':122 'home':38 'host':13,85 'hygien':106 'internet':22,72 'keep':108 'lot':42 'make':128 'member':35 'method':117 'mitig':3 'need':52 'network':39 'never':16 'noth':102 'offer':92 'one':1 'open':66 'otherwis':78 'password':125 'perman':65 'port':69 'quit':93 'remot':57 'replac':103 'secur':26,45,105,116 'self':12,84 'self-host':11,83 'separ':95 'servic':19,28,56,99 'simpler':43 'singl':68 'small':31 'stuff':110 'tailscal':75 'though':107 'threat':6 'tool':81 'up-to-d':111 'use':23,80,115 'usual':91,135 'vms':90 'way':60 'without':64 'world':49 'zeroti':77"
  +ranking: 0
  +commentCount: 0
  +upVotes: 0
  +downVotes: 0
  +visibility: "visible             "
  +apId: "https://lemmy.ml/comment/7850439"
  +editedAt: null
  +createdAt: DateTimeImmutable @1706540369 {#1596
    date: 2024-01-29 15:59:29.0 +01:00
  }
  +"title": 349918
}

App\Entity\EntryComment {#1619
  +user: App\Entity\User {#264 …}
  +entry: Proxies\__CG__\App\Entity\Entry {#1604
    +user: Proxies\__CG__\App\Entity\User {#1404 …}
    +magazine: Proxies\__CG__\App\Entity\Magazine {#1621 …}
    +image: null
    +domain: Proxies\__CG__\App\Entity\Domain {#1909 …}
    +slug: "The-safest-way-of-self-hosting"
    +title: "The "safest" way of self hosting"
    +url: null
    +body: """
      Hello peoples,\n
      \n
      I am looking for tips on how to make my self-hosted setup as safe as possible.\n
      \n
      Some background: I started self-hosting some services about a year ago, using an old lenovo thin client. It’s plenty powerful for what I’m asking it to do, and it’s not too loud. Hardware wise I am not expecting to change things up any time soon.\n
      \n
      I am not expecting anyone to take the time to baby me through the process, I will be more than happy with some links to good articles and the like. My main problem is that there’s so much information out there, I just don’t know where to start or what to trust.\n
      \n
      Anyways, thank you for reading.\n
      \n
      N
      """
    +type: "article"
    +lang: "en"
    +isOc: false
    +hasEmbed: false
    +commentCount: 22
    +favouriteCount: 32
    +score: 0
    +isAdult: false
    +sticky: false
    +lastActive: DateTime @1729526106 {#1727
      date: 2024-10-21 17:55:06.0 +02:00
    }
    +ip: null
    +adaAmount: 0
    +tags: null
    +mentions: null
    +comments: Doctrine\ORM\PersistentCollection {#1708 …}
    +votes: Doctrine\ORM\PersistentCollection {#1410 …}
    +reports: Doctrine\ORM\PersistentCollection {#1908 …}
    +favourites: Doctrine\ORM\PersistentCollection {#2454 …}
    +notifications: Doctrine\ORM\PersistentCollection {#2470 …}
    +badges: Doctrine\ORM\PersistentCollection {#2463 …}
    +children: [
      App\Entity\EntryComment {#1619}
    ]
    -id: 33831
    -titleTs: "'host':6 'safest':2 'self':5 'way':3"
    -bodyTs: "'ago':33 'anyon':75 'anyway':125 'articl':97 'ask':48 'babi':81 'background':22 'chang':65 'client':39 'expect':63,74 'good':96 'happi':91 'hardwar':58 'hello':1 'host':15,27 'inform':110 'know':117 'lenovo':37 'like':100 'link':94 'look':5 'loud':57 'm':47 'main':102 'make':11 'much':109 'n':130 'old':36 'peopl':2 'plenti':42 'possibl':20 'power':43 'problem':103 'process':85 'read':129 'safe':18 'self':14,26 'self-host':13,25 'servic':29 'setup':16 'soon':70 'start':24,120 'take':77 'thank':126 'thin':38 'thing':66 'time':69,79 'tip':7 'trust':124 'use':34 'wise':59 'year':32"
    +cross: false
    +upVotes: 0
    +downVotes: 0
    +ranking: 1706625633
    +visibility: "visible             "
    +apId: "https://feddit.uk/post/7247106"
    +editedAt: null
    +createdAt: DateTimeImmutable @1706539233 {#1736
      date: 2024-01-29 15:40:33.0 +01:00
    }
    +__isInitialized__: true
     …2
  }
  +magazine: Proxies\__CG__\App\Entity\Magazine {#1621 …}
  +image: null
  +parent: null
  +root: null
  +body: """
    One “hammer” mitigation to most threats could conceivably face when self-hosting is to never expose your services to the internet using a firewall. “Securing” your services against a small circle of guests/friends/family members in your home network is a lot simpler than securing against the entire world.  \n
    If you need to access your services remotely, there are ways to achieve that without permanently opening a single port to the internet such as Tailscale or ZeroTier.\n
    \n
    Otherwise, commonly used tools in self-hosting such as Docker or VMs usually offer quite decent separation even if a service is compromised.\n
    \n
    Nothing replaces good security hygiene though. Keep your stuff up-to-date. Use secure methods of authentication such as hard to guess passwords or better. Make frequent backups (3-2-1). The usual.
    """
  +lang: "en"
  +isAdult: false
  +favouriteCount: 0
  +score: 0
  +lastActive: DateTime @1706540369 {#1526
    date: 2024-01-29 15:59:29.0 +01:00
  }
  +ip: null
  +tags: null
  +mentions: [
    "@Nester@feddit.uk"
  ]
  +children: Doctrine\ORM\PersistentCollection {#1620 …}
  +nested: Doctrine\ORM\PersistentCollection {#1701 …}
  +votes: Doctrine\ORM\PersistentCollection {#1687 …}
  +reports: Doctrine\ORM\PersistentCollection {#1689 …}
  +favourites: Doctrine\ORM\PersistentCollection {#1691 …}
  +notifications: Doctrine\ORM\PersistentCollection {#1795 …}
  -id: 349918
  -bodyTs: "'-1':133 '-2':132 '3':131 'access':54 'achiev':62 'authent':119 'backup':130 'better':127 'circl':32 'common':79 'compromis':101 'conceiv':8 'could':7 'date':114 'decent':94 'docker':88 'entir':48 'even':96 'expos':17 'face':9 'firewal':25 'frequent':129 'good':104 'guess':124 'guests/friends/family':34 'hammer':2 'hard':122 'home':38 'host':13,85 'hygien':106 'internet':22,72 'keep':108 'lot':42 'make':128 'member':35 'method':117 'mitig':3 'need':52 'network':39 'never':16 'noth':102 'offer':92 'one':1 'open':66 'otherwis':78 'password':125 'perman':65 'port':69 'quit':93 'remot':57 'replac':103 'secur':26,45,105,116 'self':12,84 'self-host':11,83 'separ':95 'servic':19,28,56,99 'simpler':43 'singl':68 'small':31 'stuff':110 'tailscal':75 'though':107 'threat':6 'tool':81 'up-to-d':111 'use':23,80,115 'usual':91,135 'vms':90 'way':60 'without':64 'world':49 'zeroti':77"
  +ranking: 0
  +commentCount: 0
  +upVotes: 0
  +downVotes: 0
  +visibility: "visible             "
  +apId: "https://lemmy.ml/comment/7850439"
  +editedAt: null
  +createdAt: DateTimeImmutable @1706540369 {#1596
    date: 2024-01-29 15:59:29.0 +01:00
  }
  +"title": 349918
}

App\Entity\EntryComment {#1619
  +user: App\Entity\User {#264 …}
  +entry: Proxies\__CG__\App\Entity\Entry {#1604
    +user: Proxies\__CG__\App\Entity\User {#1404 …}
    +magazine: Proxies\__CG__\App\Entity\Magazine {#1621 …}
    +image: null
    +domain: Proxies\__CG__\App\Entity\Domain {#1909 …}
    +slug: "The-safest-way-of-self-hosting"
    +title: "The "safest" way of self hosting"
    +url: null
    +body: """
      Hello peoples,\n
      \n
      I am looking for tips on how to make my self-hosted setup as safe as possible.\n
      \n
      Some background: I started self-hosting some services about a year ago, using an old lenovo thin client. It’s plenty powerful for what I’m asking it to do, and it’s not too loud. Hardware wise I am not expecting to change things up any time soon.\n
      \n
      I am not expecting anyone to take the time to baby me through the process, I will be more than happy with some links to good articles and the like. My main problem is that there’s so much information out there, I just don’t know where to start or what to trust.\n
      \n
      Anyways, thank you for reading.\n
      \n
      N
      """
    +type: "article"
    +lang: "en"
    +isOc: false
    +hasEmbed: false
    +commentCount: 22
    +favouriteCount: 32
    +score: 0
    +isAdult: false
    +sticky: false
    +lastActive: DateTime @1729526106 {#1727
      date: 2024-10-21 17:55:06.0 +02:00
    }
    +ip: null
    +adaAmount: 0
    +tags: null
    +mentions: null
    +comments: Doctrine\ORM\PersistentCollection {#1708 …}
    +votes: Doctrine\ORM\PersistentCollection {#1410 …}
    +reports: Doctrine\ORM\PersistentCollection {#1908 …}
    +favourites: Doctrine\ORM\PersistentCollection {#2454 …}
    +notifications: Doctrine\ORM\PersistentCollection {#2470 …}
    +badges: Doctrine\ORM\PersistentCollection {#2463 …}
    +children: [
      App\Entity\EntryComment {#1619}
    ]
    -id: 33831
    -titleTs: "'host':6 'safest':2 'self':5 'way':3"
    -bodyTs: "'ago':33 'anyon':75 'anyway':125 'articl':97 'ask':48 'babi':81 'background':22 'chang':65 'client':39 'expect':63,74 'good':96 'happi':91 'hardwar':58 'hello':1 'host':15,27 'inform':110 'know':117 'lenovo':37 'like':100 'link':94 'look':5 'loud':57 'm':47 'main':102 'make':11 'much':109 'n':130 'old':36 'peopl':2 'plenti':42 'possibl':20 'power':43 'problem':103 'process':85 'read':129 'safe':18 'self':14,26 'self-host':13,25 'servic':29 'setup':16 'soon':70 'start':24,120 'take':77 'thank':126 'thin':38 'thing':66 'time':69,79 'tip':7 'trust':124 'use':34 'wise':59 'year':32"
    +cross: false
    +upVotes: 0
    +downVotes: 0
    +ranking: 1706625633
    +visibility: "visible             "
    +apId: "https://feddit.uk/post/7247106"
    +editedAt: null
    +createdAt: DateTimeImmutable @1706539233 {#1736
      date: 2024-01-29 15:40:33.0 +01:00
    }
    +__isInitialized__: true
     …2
  }
  +magazine: Proxies\__CG__\App\Entity\Magazine {#1621 …}
  +image: null
  +parent: null
  +root: null
  +body: """
    One “hammer” mitigation to most threats could conceivably face when self-hosting is to never expose your services to the internet using a firewall. “Securing” your services against a small circle of guests/friends/family members in your home network is a lot simpler than securing against the entire world.  \n
    If you need to access your services remotely, there are ways to achieve that without permanently opening a single port to the internet such as Tailscale or ZeroTier.\n
    \n
    Otherwise, commonly used tools in self-hosting such as Docker or VMs usually offer quite decent separation even if a service is compromised.\n
    \n
    Nothing replaces good security hygiene though. Keep your stuff up-to-date. Use secure methods of authentication such as hard to guess passwords or better. Make frequent backups (3-2-1). The usual.
    """
  +lang: "en"
  +isAdult: false
  +favouriteCount: 0
  +score: 0
  +lastActive: DateTime @1706540369 {#1526
    date: 2024-01-29 15:59:29.0 +01:00
  }
  +ip: null
  +tags: null
  +mentions: [
    "@Nester@feddit.uk"
  ]
  +children: Doctrine\ORM\PersistentCollection {#1620 …}
  +nested: Doctrine\ORM\PersistentCollection {#1701 …}
  +votes: Doctrine\ORM\PersistentCollection {#1687 …}
  +reports: Doctrine\ORM\PersistentCollection {#1689 …}
  +favourites: Doctrine\ORM\PersistentCollection {#1691 …}
  +notifications: Doctrine\ORM\PersistentCollection {#1795 …}
  -id: 349918
  -bodyTs: "'-1':133 '-2':132 '3':131 'access':54 'achiev':62 'authent':119 'backup':130 'better':127 'circl':32 'common':79 'compromis':101 'conceiv':8 'could':7 'date':114 'decent':94 'docker':88 'entir':48 'even':96 'expos':17 'face':9 'firewal':25 'frequent':129 'good':104 'guess':124 'guests/friends/family':34 'hammer':2 'hard':122 'home':38 'host':13,85 'hygien':106 'internet':22,72 'keep':108 'lot':42 'make':128 'member':35 'method':117 'mitig':3 'need':52 'network':39 'never':16 'noth':102 'offer':92 'one':1 'open':66 'otherwis':78 'password':125 'perman':65 'port':69 'quit':93 'remot':57 'replac':103 'secur':26,45,105,116 'self':12,84 'self-host':11,83 'separ':95 'servic':19,28,56,99 'simpler':43 'singl':68 'small':31 'stuff':110 'tailscal':75 'though':107 'threat':6 'tool':81 'up-to-d':111 'use':23,80,115 'usual':91,135 'vms':90 'way':60 'without':64 'world':49 'zeroti':77"
  +ranking: 0
  +commentCount: 0
  +upVotes: 0
  +downVotes: 0
  +visibility: "visible             "
  +apId: "https://lemmy.ml/comment/7850439"
  +editedAt: null
  +createdAt: DateTimeImmutable @1706540369 {#1596
    date: 2024-01-29 15:59:29.0 +01:00
  }
  +"title": 349918
}

null

Proxies\__CG__\App\Entity\Entry {#1598
  +user: App\Entity\User {#264 …}
  +magazine: Proxies\__CG__\App\Entity\Magazine {#1621 …}
  +image: null
  +domain: Proxies\__CG__\App\Entity\Domain {#1909 …}
  +slug: "Actual-How-to-import-data-with-proper-readable-payee"
  +title: "Actual: How to import data with proper readable payee?"
  +url: null
  +body: """
    cross-posted from: [lemmy.ml/post/11150038](https://lemmy.ml/post/11150038)\n
    \n
    > I’m trying out Actual and have imported my bank’s (Sparkasse) data for my checking account via CSV. In the CSV import, I obviously had to set the correct fields and was a bit confused because Actual only has the “Payee” field while my CSVs have IBAN, BIC and a free text name (i.e. “Employer GmbH”.)\n
    > \n
    > IBAN is preferable because it’s a unique ID while the free text name can be empty or possibly even change(?). (Don’t know how that works.)  \n
    > OTOH, the free text name is preferable because I (as a human) can use it to infer the actual payee while the IBANs are just a bunch of numbers.\n
    > \n
    > Is it possible to use IBAN aswell as the free text name or have a mapping between IBAN and a display name?\n
    > \n
    > How do you handle that?
    """
  +type: "article"
  +lang: "en"
  +isOc: false
  +hasEmbed: false
  +commentCount: 3
  +favouriteCount: 8
  +score: 0
  +isAdult: false
  +sticky: false
  +lastActive: DateTime @1729396942 {#2447
    date: 2024-10-20 06:02:22.0 +02:00
  }
  +ip: null
  +adaAmount: 0
  +tags: null
  +mentions: null
  +comments: Doctrine\ORM\PersistentCollection {#1715 …}
  +votes: Doctrine\ORM\PersistentCollection {#2025 …}
  +reports: Doctrine\ORM\PersistentCollection {#2030 …}
  +favourites: Doctrine\ORM\PersistentCollection {#2021 …}
  +notifications: Doctrine\ORM\PersistentCollection {#2026 …}
  +badges: Doctrine\ORM\PersistentCollection {#2022 …}
  +children: [
    App\Entity\EntryComment {#1611
      +user: App\Entity\User {#264 …}
      +entry: Proxies\__CG__\App\Entity\Entry {#1598 …2}
      +magazine: Proxies\__CG__\App\Entity\Magazine {#1621 …}
      +image: null
      +parent: Proxies\__CG__\App\Entity\EntryComment {#1630 …}
      +root: Proxies\__CG__\App\Entity\EntryComment {#1630 …}
      +body: "Yeah, I’ve noticed the PayPal issue aswell."
      +lang: "en"
      +isAdult: false
      +favouriteCount: 0
      +score: 0
      +lastActive: DateTime @1706540434 {#1711
        date: 2024-01-29 16:00:34.0 +01:00
      }
      +ip: null
      +tags: null
      +mentions: [
        "@Atemu@lemmy.ml"
        "@Piatro@programming.dev"
      ]
      +children: Doctrine\ORM\PersistentCollection {#1629 …}
      +nested: Doctrine\ORM\PersistentCollection {#1626 …}
      +votes: Doctrine\ORM\PersistentCollection {#1618 …}
      +reports: Doctrine\ORM\PersistentCollection {#1597 …}
      +favourites: Doctrine\ORM\PersistentCollection {#1731 …}
      +notifications: Doctrine\ORM\PersistentCollection {#1723 …}
      -id: 349925
      -bodyTs: "'aswel':8 'issu':7 'notic':4 'paypal':6 've':3 'yeah':1"
      +ranking: 0
      +commentCount: 0
      +upVotes: 0
      +downVotes: 0
      +visibility: "visible             "
      +apId: "https://lemmy.ml/comment/7850458"
      +editedAt: null
      +createdAt: DateTimeImmutable @1706540434 {#1616
        date: 2024-01-29 16:00:34.0 +01:00
      }
      +"title": 349925
    }
  ]
  -id: 33601
  -titleTs: "'actual':1 'data':5 'import':4 'paye':9 'proper':7 'readabl':8"
  -bodyTs: "'/post/11150038](https://lemmy.ml/post/11150038)':7 'account':24 'actual':12,45,110 'aswel':127 'bank':17 'bic':56 'bit':42 'bunch':118 'chang':85 'check':23 'confus':43 'correct':37 'cross':2 'cross-post':1 'csv':26,29 'csvs':53 'data':20 'display':141 'employ':63 'empti':81 'even':84 'field':38,50 'free':59,76,94,130 'gmbh':64 'handl':146 'human':103 'i.e':62 'iban':55,65,114,126,138 'id':73 'import':15,30 'infer':108 'know':88 'lemmy.ml':6 'lemmy.ml/post/11150038](https://lemmy.ml/post/11150038)':5 'm':9 'map':136 'name':61,78,96,132,142 'number':120 'obvious':32 'otoh':92 'paye':49,111 'possibl':83,123 'post':3 'prefer':67,98 'set':35 'sparkass':19 'text':60,77,95,131 'tri':10 'uniqu':72 'use':105,125 'via':25 'work':91"
  +cross: false
  +upVotes: 0
  +downVotes: 0
  +ranking: 1706476852
  +visibility: "visible             "
  +apId: "https://lemmy.ml/post/11150775"
  +editedAt: null
  +createdAt: DateTimeImmutable @1706439352 {#1740
    date: 2024-01-28 11:55:52.0 +01:00
  }
  +__isInitialized__: true
   …2
}

Proxies\__CG__\App\Entity\Entry {#1598
  +user: App\Entity\User {#264 …}
  +magazine: Proxies\__CG__\App\Entity\Magazine {#1621 …}
  +image: null
  +domain: Proxies\__CG__\App\Entity\Domain {#1909 …}
  +slug: "Actual-How-to-import-data-with-proper-readable-payee"
  +title: "Actual: How to import data with proper readable payee?"
  +url: null
  +body: """
    cross-posted from: [lemmy.ml/post/11150038](https://lemmy.ml/post/11150038)\n
    \n
    > I’m trying out Actual and have imported my bank’s (Sparkasse) data for my checking account via CSV. In the CSV import, I obviously had to set the correct fields and was a bit confused because Actual only has the “Payee” field while my CSVs have IBAN, BIC and a free text name (i.e. “Employer GmbH”.)\n
    > \n
    > IBAN is preferable because it’s a unique ID while the free text name can be empty or possibly even change(?). (Don’t know how that works.)  \n
    > OTOH, the free text name is preferable because I (as a human) can use it to infer the actual payee while the IBANs are just a bunch of numbers.\n
    > \n
    > Is it possible to use IBAN aswell as the free text name or have a mapping between IBAN and a display name?\n
    > \n
    > How do you handle that?
    """
  +type: "article"
  +lang: "en"
  +isOc: false
  +hasEmbed: false
  +commentCount: 3
  +favouriteCount: 8
  +score: 0
  +isAdult: false
  +sticky: false
  +lastActive: DateTime @1729396942 {#2447
    date: 2024-10-20 06:02:22.0 +02:00
  }
  +ip: null
  +adaAmount: 0
  +tags: null
  +mentions: null
  +comments: Doctrine\ORM\PersistentCollection {#1715 …}
  +votes: Doctrine\ORM\PersistentCollection {#2025 …}
  +reports: Doctrine\ORM\PersistentCollection {#2030 …}
  +favourites: Doctrine\ORM\PersistentCollection {#2021 …}
  +notifications: Doctrine\ORM\PersistentCollection {#2026 …}
  +badges: Doctrine\ORM\PersistentCollection {#2022 …}
  +children: [
    App\Entity\EntryComment {#1611
      +user: App\Entity\User {#264 …}
      +entry: Proxies\__CG__\App\Entity\Entry {#1598 …2}
      +magazine: Proxies\__CG__\App\Entity\Magazine {#1621 …}
      +image: null
      +parent: Proxies\__CG__\App\Entity\EntryComment {#1630 …}
      +root: Proxies\__CG__\App\Entity\EntryComment {#1630 …}
      +body: "Yeah, I’ve noticed the PayPal issue aswell."
      +lang: "en"
      +isAdult: false
      +favouriteCount: 0
      +score: 0
      +lastActive: DateTime @1706540434 {#1711
        date: 2024-01-29 16:00:34.0 +01:00
      }
      +ip: null
      +tags: null
      +mentions: [
        "@Atemu@lemmy.ml"
        "@Piatro@programming.dev"
      ]
      +children: Doctrine\ORM\PersistentCollection {#1629 …}
      +nested: Doctrine\ORM\PersistentCollection {#1626 …}
      +votes: Doctrine\ORM\PersistentCollection {#1618 …}
      +reports: Doctrine\ORM\PersistentCollection {#1597 …}
      +favourites: Doctrine\ORM\PersistentCollection {#1731 …}
      +notifications: Doctrine\ORM\PersistentCollection {#1723 …}
      -id: 349925
      -bodyTs: "'aswel':8 'issu':7 'notic':4 'paypal':6 've':3 'yeah':1"
      +ranking: 0
      +commentCount: 0
      +upVotes: 0
      +downVotes: 0
      +visibility: "visible             "
      +apId: "https://lemmy.ml/comment/7850458"
      +editedAt: null
      +createdAt: DateTimeImmutable @1706540434 {#1616
        date: 2024-01-29 16:00:34.0 +01:00
      }
      +"title": 349925
    }
  ]
  -id: 33601
  -titleTs: "'actual':1 'data':5 'import':4 'paye':9 'proper':7 'readabl':8"
  -bodyTs: "'/post/11150038](https://lemmy.ml/post/11150038)':7 'account':24 'actual':12,45,110 'aswel':127 'bank':17 'bic':56 'bit':42 'bunch':118 'chang':85 'check':23 'confus':43 'correct':37 'cross':2 'cross-post':1 'csv':26,29 'csvs':53 'data':20 'display':141 'employ':63 'empti':81 'even':84 'field':38,50 'free':59,76,94,130 'gmbh':64 'handl':146 'human':103 'i.e':62 'iban':55,65,114,126,138 'id':73 'import':15,30 'infer':108 'know':88 'lemmy.ml':6 'lemmy.ml/post/11150038](https://lemmy.ml/post/11150038)':5 'm':9 'map':136 'name':61,78,96,132,142 'number':120 'obvious':32 'otoh':92 'paye':49,111 'possibl':83,123 'post':3 'prefer':67,98 'set':35 'sparkass':19 'text':60,77,95,131 'tri':10 'uniqu':72 'use':105,125 'via':25 'work':91"
  +cross: false
  +upVotes: 0
  +downVotes: 0
  +ranking: 1706476852
  +visibility: "visible             "
  +apId: "https://lemmy.ml/post/11150775"
  +editedAt: null
  +createdAt: DateTimeImmutable @1706439352 {#1740
    date: 2024-01-28 11:55:52.0 +01:00
  }
  +__isInitialized__: true
   …2
}

Proxies\__CG__\App\Entity\Entry {#1598
  +user: App\Entity\User {#264 …}
  +magazine: Proxies\__CG__\App\Entity\Magazine {#1621 …}
  +image: null
  +domain: Proxies\__CG__\App\Entity\Domain {#1909 …}
  +slug: "Actual-How-to-import-data-with-proper-readable-payee"
  +title: "Actual: How to import data with proper readable payee?"
  +url: null
  +body: """
    cross-posted from: [lemmy.ml/post/11150038](https://lemmy.ml/post/11150038)\n
    \n
    > I’m trying out Actual and have imported my bank’s (Sparkasse) data for my checking account via CSV. In the CSV import, I obviously had to set the correct fields and was a bit confused because Actual only has the “Payee” field while my CSVs have IBAN, BIC and a free text name (i.e. “Employer GmbH”.)\n
    > \n
    > IBAN is preferable because it’s a unique ID while the free text name can be empty or possibly even change(?). (Don’t know how that works.)  \n
    > OTOH, the free text name is preferable because I (as a human) can use it to infer the actual payee while the IBANs are just a bunch of numbers.\n
    > \n
    > Is it possible to use IBAN aswell as the free text name or have a mapping between IBAN and a display name?\n
    > \n
    > How do you handle that?
    """
  +type: "article"
  +lang: "en"
  +isOc: false
  +hasEmbed: false
  +commentCount: 3
  +favouriteCount: 8
  +score: 0
  +isAdult: false
  +sticky: false
  +lastActive: DateTime @1729396942 {#2447
    date: 2024-10-20 06:02:22.0 +02:00
  }
  +ip: null
  +adaAmount: 0
  +tags: null
  +mentions: null
  +comments: Doctrine\ORM\PersistentCollection {#1715 …}
  +votes: Doctrine\ORM\PersistentCollection {#2025 …}
  +reports: Doctrine\ORM\PersistentCollection {#2030 …}
  +favourites: Doctrine\ORM\PersistentCollection {#2021 …}
  +notifications: Doctrine\ORM\PersistentCollection {#2026 …}
  +badges: Doctrine\ORM\PersistentCollection {#2022 …}
  +children: [
    App\Entity\EntryComment {#1611
      +user: App\Entity\User {#264 …}
      +entry: Proxies\__CG__\App\Entity\Entry {#1598 …2}
      +magazine: Proxies\__CG__\App\Entity\Magazine {#1621 …}
      +image: null
      +parent: Proxies\__CG__\App\Entity\EntryComment {#1630 …}
      +root: Proxies\__CG__\App\Entity\EntryComment {#1630 …}
      +body: "Yeah, I’ve noticed the PayPal issue aswell."
      +lang: "en"
      +isAdult: false
      +favouriteCount: 0
      +score: 0
      +lastActive: DateTime @1706540434 {#1711
        date: 2024-01-29 16:00:34.0 +01:00
      }
      +ip: null
      +tags: null
      +mentions: [
        "@Atemu@lemmy.ml"
        "@Piatro@programming.dev"
      ]
      +children: Doctrine\ORM\PersistentCollection {#1629 …}
      +nested: Doctrine\ORM\PersistentCollection {#1626 …}
      +votes: Doctrine\ORM\PersistentCollection {#1618 …}
      +reports: Doctrine\ORM\PersistentCollection {#1597 …}
      +favourites: Doctrine\ORM\PersistentCollection {#1731 …}
      +notifications: Doctrine\ORM\PersistentCollection {#1723 …}
      -id: 349925
      -bodyTs: "'aswel':8 'issu':7 'notic':4 'paypal':6 've':3 'yeah':1"
      +ranking: 0
      +commentCount: 0
      +upVotes: 0
      +downVotes: 0
      +visibility: "visible             "
      +apId: "https://lemmy.ml/comment/7850458"
      +editedAt: null
      +createdAt: DateTimeImmutable @1706540434 {#1616
        date: 2024-01-29 16:00:34.0 +01:00
      }
      +"title": 349925
    }
  ]
  -id: 33601
  -titleTs: "'actual':1 'data':5 'import':4 'paye':9 'proper':7 'readabl':8"
  -bodyTs: "'/post/11150038](https://lemmy.ml/post/11150038)':7 'account':24 'actual':12,45,110 'aswel':127 'bank':17 'bic':56 'bit':42 'bunch':118 'chang':85 'check':23 'confus':43 'correct':37 'cross':2 'cross-post':1 'csv':26,29 'csvs':53 'data':20 'display':141 'employ':63 'empti':81 'even':84 'field':38,50 'free':59,76,94,130 'gmbh':64 'handl':146 'human':103 'i.e':62 'iban':55,65,114,126,138 'id':73 'import':15,30 'infer':108 'know':88 'lemmy.ml':6 'lemmy.ml/post/11150038](https://lemmy.ml/post/11150038)':5 'm':9 'map':136 'name':61,78,96,132,142 'number':120 'obvious':32 'otoh':92 'paye':49,111 'possibl':83,123 'post':3 'prefer':67,98 'set':35 'sparkass':19 'text':60,77,95,131 'tri':10 'uniqu':72 'use':105,125 'via':25 'work':91"
  +cross: false
  +upVotes: 0
  +downVotes: 0
  +ranking: 1706476852
  +visibility: "visible             "
  +apId: "https://lemmy.ml/post/11150775"
  +editedAt: null
  +createdAt: DateTimeImmutable @1706439352 {#1740
    date: 2024-01-28 11:55:52.0 +01:00
  }
  +__isInitialized__: true
   …2
}

null

App\Entity\EntryComment {#1611
  +user: App\Entity\User {#264 …}
  +entry: Proxies\__CG__\App\Entity\Entry {#1598
    +user: App\Entity\User {#264 …}
    +magazine: Proxies\__CG__\App\Entity\Magazine {#1621 …}
    +image: null
    +domain: Proxies\__CG__\App\Entity\Domain {#1909 …}
    +slug: "Actual-How-to-import-data-with-proper-readable-payee"
    +title: "Actual: How to import data with proper readable payee?"
    +url: null
    +body: """
      cross-posted from: [lemmy.ml/post/11150038](https://lemmy.ml/post/11150038)\n
      \n
      > I’m trying out Actual and have imported my bank’s (Sparkasse) data for my checking account via CSV. In the CSV import, I obviously had to set the correct fields and was a bit confused because Actual only has the “Payee” field while my CSVs have IBAN, BIC and a free text name (i.e. “Employer GmbH”.)\n
      > \n
      > IBAN is preferable because it’s a unique ID while the free text name can be empty or possibly even change(?). (Don’t know how that works.)  \n
      > OTOH, the free text name is preferable because I (as a human) can use it to infer the actual payee while the IBANs are just a bunch of numbers.\n
      > \n
      > Is it possible to use IBAN aswell as the free text name or have a mapping between IBAN and a display name?\n
      > \n
      > How do you handle that?
      """
    +type: "article"
    +lang: "en"
    +isOc: false
    +hasEmbed: false
    +commentCount: 3
    +favouriteCount: 8
    +score: 0
    +isAdult: false
    +sticky: false
    +lastActive: DateTime @1729396942 {#2447
      date: 2024-10-20 06:02:22.0 +02:00
    }
    +ip: null
    +adaAmount: 0
    +tags: null
    +mentions: null
    +comments: Doctrine\ORM\PersistentCollection {#1715 …}
    +votes: Doctrine\ORM\PersistentCollection {#2025 …}
    +reports: Doctrine\ORM\PersistentCollection {#2030 …}
    +favourites: Doctrine\ORM\PersistentCollection {#2021 …}
    +notifications: Doctrine\ORM\PersistentCollection {#2026 …}
    +badges: Doctrine\ORM\PersistentCollection {#2022 …}
    +children: [
      App\Entity\EntryComment {#1611}
    ]
    -id: 33601
    -titleTs: "'actual':1 'data':5 'import':4 'paye':9 'proper':7 'readabl':8"
    -bodyTs: "'/post/11150038](https://lemmy.ml/post/11150038)':7 'account':24 'actual':12,45,110 'aswel':127 'bank':17 'bic':56 'bit':42 'bunch':118 'chang':85 'check':23 'confus':43 'correct':37 'cross':2 'cross-post':1 'csv':26,29 'csvs':53 'data':20 'display':141 'employ':63 'empti':81 'even':84 'field':38,50 'free':59,76,94,130 'gmbh':64 'handl':146 'human':103 'i.e':62 'iban':55,65,114,126,138 'id':73 'import':15,30 'infer':108 'know':88 'lemmy.ml':6 'lemmy.ml/post/11150038](https://lemmy.ml/post/11150038)':5 'm':9 'map':136 'name':61,78,96,132,142 'number':120 'obvious':32 'otoh':92 'paye':49,111 'possibl':83,123 'post':3 'prefer':67,98 'set':35 'sparkass':19 'text':60,77,95,131 'tri':10 'uniqu':72 'use':105,125 'via':25 'work':91"
    +cross: false
    +upVotes: 0
    +downVotes: 0
    +ranking: 1706476852
    +visibility: "visible             "
    +apId: "https://lemmy.ml/post/11150775"
    +editedAt: null
    +createdAt: DateTimeImmutable @1706439352 {#1740
      date: 2024-01-28 11:55:52.0 +01:00
    }
    +__isInitialized__: true
     …2
  }
  +magazine: Proxies\__CG__\App\Entity\Magazine {#1621 …}
  +image: null
  +parent: Proxies\__CG__\App\Entity\EntryComment {#1630 …}
  +root: Proxies\__CG__\App\Entity\EntryComment {#1630 …}
  +body: "Yeah, I’ve noticed the PayPal issue aswell."
  +lang: "en"
  +isAdult: false
  +favouriteCount: 0
  +score: 0
  +lastActive: DateTime @1706540434 {#1711
    date: 2024-01-29 16:00:34.0 +01:00
  }
  +ip: null
  +tags: null
  +mentions: [
    "@Atemu@lemmy.ml"
    "@Piatro@programming.dev"
  ]
  +children: Doctrine\ORM\PersistentCollection {#1629 …}
  +nested: Doctrine\ORM\PersistentCollection {#1626 …}
  +votes: Doctrine\ORM\PersistentCollection {#1618 …}
  +reports: Doctrine\ORM\PersistentCollection {#1597 …}
  +favourites: Doctrine\ORM\PersistentCollection {#1731 …}
  +notifications: Doctrine\ORM\PersistentCollection {#1723 …}
  -id: 349925
  -bodyTs: "'aswel':8 'issu':7 'notic':4 'paypal':6 've':3 'yeah':1"
  +ranking: 0
  +commentCount: 0
  +upVotes: 0
  +downVotes: 0
  +visibility: "visible             "
  +apId: "https://lemmy.ml/comment/7850458"
  +editedAt: null
  +createdAt: DateTimeImmutable @1706540434 {#1616
    date: 2024-01-29 16:00:34.0 +01:00
  }
  +"title": 349925
}

App\Entity\EntryComment {#1611
  +user: App\Entity\User {#264 …}
  +entry: Proxies\__CG__\App\Entity\Entry {#1598
    +user: App\Entity\User {#264 …}
    +magazine: Proxies\__CG__\App\Entity\Magazine {#1621 …}
    +image: null
    +domain: Proxies\__CG__\App\Entity\Domain {#1909 …}
    +slug: "Actual-How-to-import-data-with-proper-readable-payee"
    +title: "Actual: How to import data with proper readable payee?"
    +url: null
    +body: """
      cross-posted from: [lemmy.ml/post/11150038](https://lemmy.ml/post/11150038)\n
      \n
      > I’m trying out Actual and have imported my bank’s (Sparkasse) data for my checking account via CSV. In the CSV import, I obviously had to set the correct fields and was a bit confused because Actual only has the “Payee” field while my CSVs have IBAN, BIC and a free text name (i.e. “Employer GmbH”.)\n
      > \n
      > IBAN is preferable because it’s a unique ID while the free text name can be empty or possibly even change(?). (Don’t know how that works.)  \n
      > OTOH, the free text name is preferable because I (as a human) can use it to infer the actual payee while the IBANs are just a bunch of numbers.\n
      > \n
      > Is it possible to use IBAN aswell as the free text name or have a mapping between IBAN and a display name?\n
      > \n
      > How do you handle that?
      """
    +type: "article"
    +lang: "en"
    +isOc: false
    +hasEmbed: false
    +commentCount: 3
    +favouriteCount: 8
    +score: 0
    +isAdult: false
    +sticky: false
    +lastActive: DateTime @1729396942 {#2447
      date: 2024-10-20 06:02:22.0 +02:00
    }
    +ip: null
    +adaAmount: 0
    +tags: null
    +mentions: null
    +comments: Doctrine\ORM\PersistentCollection {#1715 …}
    +votes: Doctrine\ORM\PersistentCollection {#2025 …}
    +reports: Doctrine\ORM\PersistentCollection {#2030 …}
    +favourites: Doctrine\ORM\PersistentCollection {#2021 …}
    +notifications: Doctrine\ORM\PersistentCollection {#2026 …}
    +badges: Doctrine\ORM\PersistentCollection {#2022 …}
    +children: [
      App\Entity\EntryComment {#1611}
    ]
    -id: 33601
    -titleTs: "'actual':1 'data':5 'import':4 'paye':9 'proper':7 'readabl':8"
    -bodyTs: "'/post/11150038](https://lemmy.ml/post/11150038)':7 'account':24 'actual':12,45,110 'aswel':127 'bank':17 'bic':56 'bit':42 'bunch':118 'chang':85 'check':23 'confus':43 'correct':37 'cross':2 'cross-post':1 'csv':26,29 'csvs':53 'data':20 'display':141 'employ':63 'empti':81 'even':84 'field':38,50 'free':59,76,94,130 'gmbh':64 'handl':146 'human':103 'i.e':62 'iban':55,65,114,126,138 'id':73 'import':15,30 'infer':108 'know':88 'lemmy.ml':6 'lemmy.ml/post/11150038](https://lemmy.ml/post/11150038)':5 'm':9 'map':136 'name':61,78,96,132,142 'number':120 'obvious':32 'otoh':92 'paye':49,111 'possibl':83,123 'post':3 'prefer':67,98 'set':35 'sparkass':19 'text':60,77,95,131 'tri':10 'uniqu':72 'use':105,125 'via':25 'work':91"
    +cross: false
    +upVotes: 0
    +downVotes: 0
    +ranking: 1706476852
    +visibility: "visible             "
    +apId: "https://lemmy.ml/post/11150775"
    +editedAt: null
    +createdAt: DateTimeImmutable @1706439352 {#1740
      date: 2024-01-28 11:55:52.0 +01:00
    }
    +__isInitialized__: true
     …2
  }
  +magazine: Proxies\__CG__\App\Entity\Magazine {#1621 …}
  +image: null
  +parent: Proxies\__CG__\App\Entity\EntryComment {#1630 …}
  +root: Proxies\__CG__\App\Entity\EntryComment {#1630 …}
  +body: "Yeah, I’ve noticed the PayPal issue aswell."
  +lang: "en"
  +isAdult: false
  +favouriteCount: 0
  +score: 0
  +lastActive: DateTime @1706540434 {#1711
    date: 2024-01-29 16:00:34.0 +01:00
  }
  +ip: null
  +tags: null
  +mentions: [
    "@Atemu@lemmy.ml"
    "@Piatro@programming.dev"
  ]
  +children: Doctrine\ORM\PersistentCollection {#1629 …}
  +nested: Doctrine\ORM\PersistentCollection {#1626 …}
  +votes: Doctrine\ORM\PersistentCollection {#1618 …}
  +reports: Doctrine\ORM\PersistentCollection {#1597 …}
  +favourites: Doctrine\ORM\PersistentCollection {#1731 …}
  +notifications: Doctrine\ORM\PersistentCollection {#1723 …}
  -id: 349925
  -bodyTs: "'aswel':8 'issu':7 'notic':4 'paypal':6 've':3 'yeah':1"
  +ranking: 0
  +commentCount: 0
  +upVotes: 0
  +downVotes: 0
  +visibility: "visible             "
  +apId: "https://lemmy.ml/comment/7850458"
  +editedAt: null
  +createdAt: DateTimeImmutable @1706540434 {#1616
    date: 2024-01-29 16:00:34.0 +01:00
  }
  +"title": 349925
}

App\Entity\EntryComment {#1611
  +user: App\Entity\User {#264 …}
  +entry: Proxies\__CG__\App\Entity\Entry {#1598
    +user: App\Entity\User {#264 …}
    +magazine: Proxies\__CG__\App\Entity\Magazine {#1621 …}
    +image: null
    +domain: Proxies\__CG__\App\Entity\Domain {#1909 …}
    +slug: "Actual-How-to-import-data-with-proper-readable-payee"
    +title: "Actual: How to import data with proper readable payee?"
    +url: null
    +body: """
      cross-posted from: [lemmy.ml/post/11150038](https://lemmy.ml/post/11150038)\n
      \n
      > I’m trying out Actual and have imported my bank’s (Sparkasse) data for my checking account via CSV. In the CSV import, I obviously had to set the correct fields and was a bit confused because Actual only has the “Payee” field while my CSVs have IBAN, BIC and a free text name (i.e. “Employer GmbH”.)\n
      > \n
      > IBAN is preferable because it’s a unique ID while the free text name can be empty or possibly even change(?). (Don’t know how that works.)  \n
      > OTOH, the free text name is preferable because I (as a human) can use it to infer the actual payee while the IBANs are just a bunch of numbers.\n
      > \n
      > Is it possible to use IBAN aswell as the free text name or have a mapping between IBAN and a display name?\n
      > \n
      > How do you handle that?
      """
    +type: "article"
    +lang: "en"
    +isOc: false
    +hasEmbed: false
    +commentCount: 3
    +favouriteCount: 8
    +score: 0
    +isAdult: false
    +sticky: false
    +lastActive: DateTime @1729396942 {#2447
      date: 2024-10-20 06:02:22.0 +02:00
    }
    +ip: null
    +adaAmount: 0
    +tags: null
    +mentions: null
    +comments: Doctrine\ORM\PersistentCollection {#1715 …}
    +votes: Doctrine\ORM\PersistentCollection {#2025 …}
    +reports: Doctrine\ORM\PersistentCollection {#2030 …}
    +favourites: Doctrine\ORM\PersistentCollection {#2021 …}
    +notifications: Doctrine\ORM\PersistentCollection {#2026 …}
    +badges: Doctrine\ORM\PersistentCollection {#2022 …}
    +children: [
      App\Entity\EntryComment {#1611}
    ]
    -id: 33601
    -titleTs: "'actual':1 'data':5 'import':4 'paye':9 'proper':7 'readabl':8"
    -bodyTs: "'/post/11150038](https://lemmy.ml/post/11150038)':7 'account':24 'actual':12,45,110 'aswel':127 'bank':17 'bic':56 'bit':42 'bunch':118 'chang':85 'check':23 'confus':43 'correct':37 'cross':2 'cross-post':1 'csv':26,29 'csvs':53 'data':20 'display':141 'employ':63 'empti':81 'even':84 'field':38,50 'free':59,76,94,130 'gmbh':64 'handl':146 'human':103 'i.e':62 'iban':55,65,114,126,138 'id':73 'import':15,30 'infer':108 'know':88 'lemmy.ml':6 'lemmy.ml/post/11150038](https://lemmy.ml/post/11150038)':5 'm':9 'map':136 'name':61,78,96,132,142 'number':120 'obvious':32 'otoh':92 'paye':49,111 'possibl':83,123 'post':3 'prefer':67,98 'set':35 'sparkass':19 'text':60,77,95,131 'tri':10 'uniqu':72 'use':105,125 'via':25 'work':91"
    +cross: false
    +upVotes: 0
    +downVotes: 0
    +ranking: 1706476852
    +visibility: "visible             "
    +apId: "https://lemmy.ml/post/11150775"
    +editedAt: null
    +createdAt: DateTimeImmutable @1706439352 {#1740
      date: 2024-01-28 11:55:52.0 +01:00
    }
    +__isInitialized__: true
     …2
  }
  +magazine: Proxies\__CG__\App\Entity\Magazine {#1621 …}
  +image: null
  +parent: Proxies\__CG__\App\Entity\EntryComment {#1630 …}
  +root: Proxies\__CG__\App\Entity\EntryComment {#1630 …}
  +body: "Yeah, I’ve noticed the PayPal issue aswell."
  +lang: "en"
  +isAdult: false
  +favouriteCount: 0
  +score: 0
  +lastActive: DateTime @1706540434 {#1711
    date: 2024-01-29 16:00:34.0 +01:00
  }
  +ip: null
  +tags: null
  +mentions: [
    "@Atemu@lemmy.ml"
    "@Piatro@programming.dev"
  ]
  +children: Doctrine\ORM\PersistentCollection {#1629 …}
  +nested: Doctrine\ORM\PersistentCollection {#1626 …}
  +votes: Doctrine\ORM\PersistentCollection {#1618 …}
  +reports: Doctrine\ORM\PersistentCollection {#1597 …}
  +favourites: Doctrine\ORM\PersistentCollection {#1731 …}
  +notifications: Doctrine\ORM\PersistentCollection {#1723 …}
  -id: 349925
  -bodyTs: "'aswel':8 'issu':7 'notic':4 'paypal':6 've':3 'yeah':1"
  +ranking: 0
  +commentCount: 0
  +upVotes: 0
  +downVotes: 0
  +visibility: "visible             "
  +apId: "https://lemmy.ml/comment/7850458"
  +editedAt: null
  +createdAt: DateTimeImmutable @1706540434 {#1616
    date: 2024-01-29 16:00:34.0 +01:00
  }
  +"title": 349925
}

null