Not a shit meme at all ! In fact, I want to convert that to ASCII art and have it as the MOTD when I sudo -i or console in as root.

Can confirm, but depending on the VPS, your traffic may only be metered in one direction. Mine only meters egress, not ingress, so it’s not too bad if I want to use my media server.

All of mine use bind mounts so I can just tar-gz the whole deploy folder for backups and migrations. For volumes that connect to remote shares (SMB, NFS, etc) I use named volumes and let Docker take care of their lifecycle.

If named docker volumes would let me specify the local filesystem location, I’d use them. As-is, I rarely do.

The button to sign in is clearly called “Log in” and the signup field clearly has the button that says “Sign up for free”. And you’re expected to log in from the login page (by clicking the login button).

Really not seeing the problem here. Is it perfect? No. Have I seen worse? Oh yeah.

the only reason it sucks is because our hard water

Same. I probably get more calcium from a glass of water than from a glass of milk lol.

except for the very occasional

I, too, was disregarding the very occasional “courtesy flush” lol.

Every house and apartment I’ve lived in since 2003 has had low-flow fixtures. Never needed more than one flush.

But I’m surprised at this laptops performance since I got it off an eBay business auction and not for gaming.

Same. This thing is amazing. Granted, I’ve always been a Thinkpad fanboy, but this is my first “new” Thinkpad since my T420.

Which settings? I’m replying from a 2019 X1 Carbon and have that in my Steam library.

[Currently playing Bioshock 2: Minerva’s Den via Proton.]

Then you really should list all of the secondary functions you plan to add to it, make sure they understand what those are, and agree to each of them: full disclosure.

If you do something on it that could get them in trouble, it’s their ass on the line, not yours.

Are you friends okay with you doing that? I would not be, especially if my so-called friend didn’t disclose the secondary operations of the device that’s in my home, on my internet connection, under my name.

“Our spyware is not able to accommodate your platform.”

The horror stories I’ve read about what you give the software access to do (assuming there’s truth to them; I’ve never run it myself).

Edit: I’m realizing now your screenshot is probably for a web course.

I wonder if Canonical named it “snap” because they Thanos-snapped half the packages from the apt repo

At least for appimage, it doesn’t create application launchers. And it’s 50/50 whether the icon in the window list works or not.

I also build a lot of Docker images, and container formats throw a wrench in that if that’s the only way the application/utility is packaged. So I end up building from source.

Just not a fan of container formats in general.

I say that as a heavy user of Docker, but that’s a different use-case.

Let the hate of the crowd wash over me, but I don’t even like Flatpak, and I’ve got love-hate (mostly hate) relationship with AppImage as well.

Just give me a system package or a zipped tarball.

In recent years, have had to just get used to needing to build most projects from source.

I use SnappyMail. It’s a fork of Rainloop that’s actually maintained.

https://github.com/the-djmaze/snappymail

And unlike Rainloop, the Sieve filter editor actually works.

I have a single Nginx setup which is the frontend for all my web services. So I only need to deploy it there (and to its HA partner). My renewal script just scp’s it to the secondary and does an nginx -s reload on both.

I do generate separate certs/keys for my non-web servers, but there’s only two of those.

You could also, if you wanted, just generate one cert and distribute it and its key to everything with a script or other automation tool (Ansible is what I used to use).

Is there a way I can get Let’s Encrypt to dole out a wildcard certificate

Yep. Just specify the domains yourdomain.com and *.yourdomain.com in the certbot request. Wildcard domains require the DNS-based challenge, but you’ve said you’re already good there. You don’t technically need the apex domain (yourdomain.com) but I always add it since I do have services running there.

Any subdomains under the wildcard can use internal DNS or internal IPs on the public DNS (I do the former, but the latter works too).

I used to run an internal CA, and it wasn’t too hard to setup a CA and distribute my root cert. Except on mobile devices. On Android it was easy, but there was a persistent warning that my network traffic could be intercepted (which is true when there’s a custom root cert installed), but it since it was my cert, it got annoying seeing that all the time. Not sure if Apple devices can even do that, but regardless, it wasn’t practical for friends who wanted to use my self-hosted services to install a custom cert when they were over.

Oh, well, silver lining: the misinterpretation of that comment inspired more discussion than it would have had it been interpreted correctly as grammar pedantry lol

🫡