I finally decided that I wanted to be able to externally access some of my Docker containers from outside of my local network. I don’t want to deal with the security hassle of exposing ports on my router, so I decided to go with Tailscale....
I assume when you say externally you mean via Tailscale, but without running Tailscale on each container/service?
What I currently do is run Tailscale on a few workstation-type devices, but everything else in my network doesn’t run the Tailscale client (partly because things like printers, outers, etc can’t run the client, and it’s less convenient for things like servers).
Those type of devices can be accessed by running one Tailscale node as a Subnet Router. This device is then able to route traffic to it’s subnet. Currently I use a Raspberry Pi for this.
My Pi also runs PiHole and acts as my DNS server, so it can name resolve local resources, though I don’t think this is required, because Tailscale has its own DNS resolution called Magic DNS. So your Subnet Router should be able to resolve those names anyway (going off memory here, so be sure to check the docs, I may be misremembering how it works since I use the same device for DNS).
You don’t even need Tailscale on a remote device to access your LAN - if you enable the Funnel service, you can provide an inbound encrypted path to specified resources.
I’m thinking about moving my PC out to the living room and streaming back to my office when I need to. I’ve used a number of moonlight clients with mixed results....
Y’all, this is gonna be super broad, and I apologize for that, but I’m pretty new to all this and am looking for advice and guidance because I’m pretty overwhelmed at the moment. Any help is very, very appreciated....
I dunno when it happened but I swear SBCs were the new best thing in the universe for a while and everyone was building cool little servers with their RockPis and OrangePis....
Hello, currently I use qksms but its very problematic and lacks basic fetures. One of those issues being you cant send videos, and sending and recieving media is pixalated or blurry because of a commpresion issue. I’ve already tried adjusting the compresion options in settings to find out it doesn’t work....
Or just put a power test attentuator on the antenna output.
It essentially absorbs the RF from the antenna and radiates it as heat. Since cell is pretty low power (1/2 watt max, IIRC), and a cell radio will stop trying to transmit after a while (though it will try again), I don’t think it would cause any problems.
Currently I set up Tailscale in my Synology NAS and I can access selfhosted services on my phone using the Android app. I want to use some services in my work PC too but I’m blocked from installing any software. So my question is, is there any solution that allows me to connect to selfhosted VPN via browser extension? (Just...
I’m looking for a privacy friendly device to use as TV box which can play 4K HDR ~90GB movies without problem, do you guys think the orange pi 5 could handle this type of files?
So there is this app claiming on-device iMessage functionality on Android. Seems cool but only has subscription based pricing. Does anyone know of a way to circumvent this?...
I’d be shocked if Apple’s leadership hasn’t contracted a hitman yet.
Hahahahaha
It’s definitely shining a light on the limitations of iMessage, especially how imperfect it’s encryption is, so yea, that’s the kind of thing that hits a little close to home.
Things that make me angry about my current smartphone Samsung Galaxy S21Ultra on a Verizon plan is the mandatory software updates in which they install WITHOUT MY PERMISSION stupid apps like Netflix and addictive gambling games and stacking block games and Candy crush. God knows what else they install without my permission. I...
Its not hard to flash a rom these days, unlike ten years ago.
Now developers post instructions for each device type. Look at Lineage, Graphene, DivestOS. Very good instructions from all of them, including installing ADB on Windows or Linux.
Of the dozens (hundreds?) of times I’ve flashed over the years, I’ve bricked 1 device, and that was from experimenting and not following instructions, I knew it was risky.
And with Pixel it’s about as straightforward as it gets.
This is the privacy community, I wouldn’t consider iOS appropriate here at all, since you really can’t do anything to limit the data collection. Especially not for a “what phone should I get” question. If someone already has an iPhone, asking what you can do is a good question (“not much” is the answer you’ll get).
Is it better out if the box than most Androids? Probably, maybe, depending on how that’s defined. But I can quickly make most Androids far better than iOS, even ones with a lot of vendor bloat.
For example, I recently cleaned up a Verizon Samsung just using the Universal Android Debloat Tool. This is stuff I used to do manually with ADB.
Then adding a VPN and I could restrict apps calling home and bypass Google DNS.
You can even disable google services, play, etc, and just don’t use a google acccount on the phone.
My phone is no longer getting updates, so it’s time to buy a new one. The hardware could easily last 1-2 more years but I’d have to replace the battery, which is a pain on my phone....
How does DivestOS compare to Graphene in your opinion?
Divest is based on Lineage, which isn’t as secure as Graphene (by a significant margin), but my understanding is Divest has done some things to improve sscurity/privacy.
I realize since we’re talking a Pixel here, Graphene is the security/privacy answer. I have other phones in my “support circle” that can use Lineage or Divest, and I’d like to advise people appropriately.
How to access traefik hostnames from tailscale clients
I finally decided that I wanted to be able to externally access some of my Docker containers from outside of my local network. I don’t want to deal with the security hassle of exposing ports on my router, so I decided to go with Tailscale....
How well does the raspberry pi handle being a moonlight client
I’m thinking about moving my PC out to the living room and streaming back to my office when I need to. I’ve used a number of moonlight clients with mixed results....
Self hosted free iOS MDM
I’d like to experiment with MDM for mine and my child’s iPhones, and possibly my child’s MacBook....
Starting over and doing it "right"
Y’all, this is gonna be super broad, and I apologize for that, but I’m pretty new to all this and am looking for advice and guidance because I’m pretty overwhelmed at the moment. Any help is very, very appreciated....
So SBCs are shit now? Anything I can do with my collection of Pis and old routers?
I dunno when it happened but I swear SBCs were the new best thing in the universe for a while and everyone was building cool little servers with their RockPis and OrangePis....
what are your recommendations for a good privacy friendly sms app?
Hello, currently I use qksms but its very problematic and lacks basic fetures. One of those issues being you cant send videos, and sending and recieving media is pixalated or blurry because of a commpresion issue. I’ve already tried adjusting the compresion options in settings to find out it doesn’t work....
Remove Modem/SimCard from a Car
I want to buy a new car, but it needs to be privacy friendly. Sadly you cannot really buy any new Car that is....
Exposing Myself (with Filebrowser)
Win11 Pro on used lenovo thinkcentre...
Self-hosted VPN that can be accessed via browser extension
Currently I set up Tailscale in my Synology NAS and I can access selfhosted services on my phone using the Android app. I want to use some services in my work PC too but I’m blocked from installing any software. So my question is, is there any solution that allows me to connect to selfhosted VPN via browser extension? (Just...
"TV box" reccomandation
I’m looking for a privacy friendly device to use as TV box which can play 4K HDR ~90GB movies without problem, do you guys think the orange pi 5 could handle this type of files?
Beeper Mini (play.google.com)
So there is this app claiming on-device iMessage functionality on Android. Seems cool but only has subscription based pricing. Does anyone know of a way to circumvent this?...
Next smartphone I buy, which one do you recommend?
Things that make me angry about my current smartphone Samsung Galaxy S21Ultra on a Verizon plan is the mandatory software updates in which they install WITHOUT MY PERMISSION stupid apps like Netflix and addictive gambling games and stacking block games and Candy crush. God knows what else they install without my permission. I...
Deciding between Fairphone 5 and Pixel 8
My phone is no longer getting updates, so it’s time to buy a new one. The hardware could easily last 1-2 more years but I’d have to replace the battery, which is a pain on my phone....