|
Astro7x posted:I love Time Machine, and I've never noticed a problem with the backup speeds being an issue. 
|
#
?
Feb 27, 2023 17:53
|
|
|
|
| # ? May 15, 2024 09:14 |
|
|
Time Machine does hashing and deduplication and poo poo, so it's slower than just copying files to a NAS or external drive. Particularly on the first run. That's probably why some people complain.
|
|
#
?
Feb 27, 2023 19:09
|
|
|
They need to offer iCloud Time Machine backups, drat it.
|
|
#
?
Feb 27, 2023 19:20
|
|
|
I have a nas i set up with a xeon-d BGA board from asrack 6 years ago or so. Is there any board thats similar that also isn't 1000 bucks? The one I had was for 420 dollars but the only ones I can find are older boards or a supermicro that I have to get from them and is listed on reseller sites for more than I want to spend. I'm assuming every one in my market probably switched to Synology? I suppose the other option is desktop parts + HBA which might be what I need to do.
|
|
#
?
Feb 27, 2023 19:33
|
|
|
Corb3t posted:They need to offer iCloud Time Machine backups, drat it. Yeah At this point I think since I should probably keep iCloud storage for “just in case”, maybe I’ll just make sure iCloud images are downloaded to the iMac and then let TM handle backing them up (unless it doesn’t do that for some reason) It’s still incredibly loving annoying that I can’t store the photos.app Library on a mounted network drive.
|
|
#
?
Feb 27, 2023 19:43
|
|
|
Corb3t posted:They need to offer iCloud Time Machine backups, drat it. You can already sync your keychain, desktop, documents, etc. That’s most of what matters. A library preferences backup would be nice.
|
|
#
?
Feb 28, 2023 00:56
|
|
|
Was reminded of the discussion on VPN vs port forwarding from the beginning of this month, and in particular the following post:Corb3t posted:Y'all should just open port 32400 and enjoy seamless streaming from any device. Plex supports 2FA - it's probably a lot easier convincing the people you share Plex with to turn that on instead of setting up a VPN or using a Plex-specific device. while reading today's golden nugget from the infosec thread: https://arstechnica.com/information-technology/2023/02/lastpass-hackers-infected-employees-home-computer-and-stole-corporate-vault/
|
|
#
?
Feb 28, 2023 15:03
|
|
|
Keito posted:Was reminded of the discussion on VPN vs port forwarding from the beginning of this month, and in particular the following post: And to steal another quote from that thread: Klyith posted:1Password if you can afford $3 per month and want to be done with this poo poo forever. I'll be working on this today I think, should have ditched LastPass two security breaches ago.
|
|
#
?
Feb 28, 2023 15:19
|
|
|
Keito posted:Was reminded of the discussion on VPN vs port forwarding from the beginning of this month, and in particular the following post: That guy was also the target of a very high-end hacker group, or potentially even a state actor. The threat level is a little bit different to the average goon. OTOH if your job makes you a target for Mossad, I agree that you shouldn't open a plex forward to the internet. Actually, don't even connect your NAS or other personal stuff to the same router that connects to the internet. In fact, don't use any computers at all if you can help it.
|
|
#
?
Feb 28, 2023 15:20
|
|
|
Enos Cabell posted:And to steal another quote from that thread: I went with 1Password and the sharing part is the best part. Very easy to share with my wife the joint accounts. And it was very easy to import from Lastpass.
|
|
#
?
Feb 28, 2023 15:34
|
|
|
Segment poo poo like that away from each other, yikes.
|
|
#
?
Feb 28, 2023 15:52
|
|
|
Klyith posted:That guy was also the target of a very high-end hacker group, or potentially even a state actor. The threat level is a little bit different to the average goon. I know none of the details, but a dev for a password manager opening a work password vault (1 out of 4 people to have access to that vault) on a home PC with Plex server installed is loving lol. Not to mention their "remediation" steps at the bottom of their announcement. Some are just laughable. https://support.lastpass.com/help/incident-2-additional-details-of-the-attack
|
|
#
?
Feb 28, 2023 17:42
|
|
|
Internet Explorer posted:I know none of the details, but a dev for a password manager opening a work password vault (1 out of 4 people to have access to that vault) on a home PC with Plex server installed is loving lol. Not to mention their "remediation" steps at the bottom of their announcement. Some are just laughable. Deleted my lastpass account an hour ago, feels good man. Also felt good whittling down the ~500 stored accounts I had in lastpass to under 100 in 1password.
|
|
#
?
Feb 28, 2023 20:09
|
|
|
Internet Explorer posted:I know none of the details, but a dev for a password manager opening a work password vault (1 out of 4 people to have access to that vault) on a home PC with Plex server installed is loving lol. Not to mention their "remediation" steps at the bottom of their announcement. Some are just laughable.
|
|
#
?
Feb 28, 2023 20:17
|
|
|
Yes, and? Their poo poo was clearly not locked down appropriately, let alone "one of the largest cloud password managers in the world" locked down.
|
|
#
?
Feb 28, 2023 22:05
|
|
|
Keito posted:Was reminded of the discussion on VPN vs port forwarding from the beginning of this month, and in particular the following post: Ouch. With the timing being what it was, I wonder if it's the same Plex vulnerability that forced them to reset everybody's password, or a newly undiscovered bug altogether? I'm still going to remotely share my Plex library with close friends and family from my network isolated Plex server.
|
|
#
?
Feb 28, 2023 22:37
|
|
|
Nothing like spinning up a brand new array only to see a bunch of unrecoverable read/write errors off of a new disk. Yes, it's a Seagate drive. At least the others have 5 years of warranty on them (until 2027 that is). Toshiba + Hitachi + WD for me I guess it is then. Pity, I really wanted to believe that Seagate isn't that poo poo anymore but anecdata is a bitch.
|
|
#
?
Mar 2, 2023 20:59
|
|
|
Buy whatever you want but I suspect all manufacturers have the occasional DoA drive, and these folks who use lots of hard drives and track their failure rates run plenty of Seagate: https://www.backblaze.com/blog/backblaze-drive-stats-for-2022/
|
|
#
?
Mar 3, 2023 20:51
|
|
|
I’ve read the Backblaze stats for years and basically their stats do line up with the conventional wisdom essentially. None of my Toshiba drives have failed so far out of the 16 I’ve gotten yet of the 30-something odd WD I’ve had about 5 disk failures across 10+ years, none of the 8+ Samsung drives, and these were the only Seagate drives I’ve bought in the past 16 years I’ve just realized. Obviously all rather low N but paying more for more reliable drives seems to matter enough for whatever odds align with my experiences.
|
|
#
?
Mar 4, 2023 03:38
|
|
|
An N so low I would hesitate to say you could glean any meaningful conclusions from personal experience. Pretty much nobody can.
|
|
#
?
Mar 4, 2023 18:50
|
|
|
Hahaha, conquered the weird NAS card problem with my rockpro64. I just needed an older SATA card. $20 ASM1061 works, $35 ASM1062 didn't. Yay for microcenter off brand pci cards. Next step-resume building 2bay NAS
|
|
#
?
Mar 4, 2023 20:51
|
|
|
Klyith posted:That guy was also the target of a very high-end hacker group, or potentially even a state actor. The threat level is a little bit different to the average goon. Yesterday’s nation state attack is tomorrow’s script kiddie attack. These things have a habit of becoming widely available very quickly, and sites like shodan.io make it trivially easy to find exposed services on the internet. I’ve disabled port forwarding on my Plex box until I can find a more robust way of exposing it, I’m expecting a rash of copycat attacks in the near future.
|
|
#
?
Mar 5, 2023 19:21
|
|
|
Mr Crucial posted:I’ve disabled port forwarding on my Plex box until I can find a more robust way of exposing it, I’m expecting a rash of copycat attacks in the near future. "More robust" like not running a plex build from 2020 perhaps?
|
|
#
?
Mar 5, 2023 19:36
|
|
|
Motronic posted:"More robust" like not running a plex build from 2020 perhaps? Well that would be a start. But I’d rather not leave myself at the mercy of someone who discovers the next bug.
|
|
#
?
Mar 5, 2023 20:49
|
|
|
Nowadays things like 0days are more valuable to be sold to state actors than to be randomly used on some nobody afaik. Just keep your stuff updated and don’t be the guy who the NSA or Mossad wants to monitor and you’ll largely be fine, afaik
|
|
#
?
Mar 5, 2023 22:14
|
|
|
FAT32 SHAMER posted:Nowadays things like 0days are more valuable to be sold to state actors than to be randomly used on some nobody afaik. Just keep your stuff updated and don’t be the guy who the NSA or Mossad wants to monitor and you’ll largely be fine, afaik I don’t doubt that I’m a low priority target, but I’m planning to use this excuse to learn how to properly lock down a self-hosted internet-facing resource. There are plenty of low-effort improvements that can be made beyond just ensuring that software is kept updated.
|
|
#
?
Mar 5, 2023 22:29
|
|
|
Mr Crucial posted:Yesterday’s nation state attack is tomorrow’s script kiddie attack. These things have a habit of becoming widely available very quickly, and sites like shodan.io make it trivially easy to find exposed services on the internet. 1. Reducing your attack surface is never a bad thing. 2. A thing that's secure but unusable is pointless. 3. The tradeoff between 1 and 2 is a choice, and absolutely one you should make for yourself. In saying that it's unlikely anyone ITT will get owned by whatever thing the lastpass guy did, I'm just giving a probability. Many people seem to want their plex open to non-nerd friends and family, and I don't think this is a major problem for them. But also I'm sure if you tell people you've taken your plex server off the internet because security they won't argue. 4. That said, if you are worried about skiddie / botnet type attacks, the solution is to keep your poo poo updated. This is absolutely more important than anything else. Security you set up by configuration is fallible. You might make a mistake, your firewall might be faulty, or the device might make a connection you're not aware of (ex plex communicates to the Plex servers even if you don't port-forward). A patch that removes a vulnerability from existence is not fallible. Make sure your stuff updates, get rid of or restrict things that don't. (Bonus number 5: lmao that everyone gets paranoid about their plex server's possible compromise, but not the torrent clients and whatever other poo poo they're running to acquire multiple terabytes of totally legal filez. Or, you know, the filez themselves. Those are absolutely 100% ironclad secure, right?)
|
|
#
?
Mar 5, 2023 23:15
|
|
|
Klyith posted:(Bonus number 5: lmao that everyone gets paranoid about their plex server's possible compromise, but not the torrent clients and whatever other poo poo they're running to acquire multiple terabytes of totally legal filez. Or, you know, the filez themselves. Those are absolutely 100% ironclad secure, right?) No port requirements for newsgroups 
|
|
#
?
Mar 5, 2023 23:18
|
|
|
Klyith posted:(Bonus number 5: lmao that everyone gets paranoid about their plex server's possible compromise, but not the torrent clients and whatever other poo poo they're running to acquire multiple terabytes of totally legal filez. Or, you know, the filez themselves. Those are absolutely 100% ironclad secure, right?) You're not entirely wrong but it's a bit harder to hack a computer through a video file that gets sent over a streaming web player than some executable warez. Torrent clients themselves are frequently open source so 
|
|
#
?
Mar 6, 2023 00:25
|
|
|
Both torrent clients and video players are also more diverse than Plex servers - the return on investment from finding an attack that works on one specific version of VLC on Ubuntu is miniscule compared to something that works on "every Plex docker connected to the Internet except those updated the last week". Which I guess is to Plex' credit - they've got a decent track record despite being a juicy and easily found target. (We've solved it by not being in a situation where Plex connected to the internet makes sense in the first place. It's not like we watch it at work or while walking home, there are other ways to do streaming audio, and friends/family have found their own solutions.)
|
|
#
?
Mar 6, 2023 00:46
|
|
|
So as long as you don't download anything with the torrent client its all good.
|
|
#
?
Mar 7, 2023 05:50
|
|
|
Eletriarnation posted:You're not entirely wrong but it's a bit harder to hack a computer through a video file that gets sent over a streaming web player than some executable warez. I remember all sorts of exploits targeting various forms of data embeds in WMVs, buffer overflowing ID3 tags, obscure format parsers like EMF, etc. back in the 2000s where just loading a malicious file in the wrong media player or even browsing to the folder with icon previews enabled could result in malware. In the 2010s we saw issues with mobile OS media decoders that allowed MMS messages to be weaponized. The major media player engines have all "been there, done that" for the most part and the ones that have survived have generally learned their lessons.
|
|
#
?
Mar 7, 2023 16:09
|
|
|
Has anyone with UnRAID successfully changed the port the webgui runs on? I'd like to move it off 80/443 and use SWAG to reverse proxy but I can't find any reliable guides and see a whole lot of people saying it messes up.
|
|
#
?
Mar 7, 2023 19:05
|
|
|
I have a truenas box with two relevant network cards: One into the wider LAN, and one 10gbit direct link to another server. The LAN does not allow more than one MAC per port. I'd like to configure a jail that is connected to both. Using NAT on the LAN side works, and VNET hooked to a bridge lets me talk to the other server. But it there any way to do both on the same jail in the truenas GUI? For now I've only got it connected to the 10gbit link, and then I do NAT on the other server to get it onto the LAN. This does work, but it feels a bit hacky. E: truenas, not opnsense. Too many BSD appliance boxes in my life.
|
|
#
?
Mar 7, 2023 19:18
|
|
|
Matt Zerella posted:Has anyone with UnRAID successfully changed the port the webgui runs on? This is the much more typical recommendation. -Leave 80/443 to Unraid -Port forward in your router 80/443 to your unraid server IP address but to different ports. I'll use 10443 and 10080 as an example. -Configure the Swag container and map host port 10443 to container port 443, and 10080 to container port 80. Incoming traffic from WAN to 80/443 will now go to the Swag container and work like you expect it to. If you have nat loopback setup on your router connections locally to your domain should work fine too.
|
|
#
?
Mar 7, 2023 19:41
|
|
|
Matt Zerella posted:Has anyone with UnRAID successfully changed the port the webgui runs on? what’s the particular reason you’re trying to reverse proxy the gui? that shouldn’t be exposed to the internet if you’re trying to deconflict container ports just give the containers discrete IPs
|
|
#
?
Mar 7, 2023 20:05
|
|
|
I don't want to RP the Web gui. It's for internal RPing to docker containers only using split brain DNS. My goal here is to have no external ports exposed on UnRAID and everything runs through SWAG or NPM over ssl. I'm also not forwarding from my router either.
|
|
#
?
Mar 7, 2023 21:29
|
|
|
Matt Zerella posted:I don't want to RP the Web gui. It's for internal RPing to docker containers only using split brain DNS. My goal here is to have no external ports exposed on UnRAID and everything runs through SWAG or NPM over ssl. I have a entry for the unraid gui in my reverse proxy only so I can use a simpler name that the long one unraid assigns.
|
|
#
?
Mar 8, 2023 01:04
|
|
|
Got it set up. Thanks for the VLAN suggestion but I'm not there yet. I got the GUI moved to different ports. Got swag running on 80/443 and now almost everything is reverse proxies internally with a let's encrypt certificate and nice pretty DNS. The DNS Resolver in pfsense rules.
|
|
#
?
Mar 8, 2023 07:26
|
|
|
|
| # ? May 15, 2024 09:14 |
|
|
How do I backup Windows disks as disk images to a network drive? I looked at Veeam, but a backup software's download taking TEN GIGABYTES is way too loving much. Why it takes so loving much space for a simple backup software? Even Windows takes half the size of that, and it's a whole complete OS with bells and whistles! Any alternatives?
|
|
#
?
Mar 8, 2023 10:02
|
|
