Hmm. Lofi enough solution. 😆

what are mesh von ips?

Oh, you mean e.g. always using the tailscale IP? Sure, I can do that. But it sure would be a pain since at home I use the .local domain very comfortably…

I know I wrote tailscale friendly, but the same applies to zerotier, Cloudflared, and dyndns, I guess…

haven’t looked at Pangolin, but thanks for the info! I might explore it in the future if my current setup gives me any issues.

pretty cheap to get a domain name through Cloudflare too - nine bucks a year for a .com , I think? Just get something completely personal or completely random! :D They even have a way to get emails routed to your general inbox. It’s fugly, but it works!

huh. I knew there was a reason for me to go back to ZT. mdns, you say? Nice to know!

You got two options which I’ve tried -

1. A solution like tailscale or zerotier. Simple setup, easy to turn on and just go. Tailscale is newer and has a nicer interface and features like using an actual VPN like Mullvad as an “endpoint” (or whatever they call it). Their Mullvad connection also basically gives you a discount as they charge only $5 for the vpn instead of €5. The catch is that Mullvad charges you that price for 5 devices. So if a sixth device connects to the VPN through tailscale, you get charged $10 for that month.
2. A cloudflare tunnel with zero trust on top. More work to setup. But makes it easy to access your apps without any vpn. They’re basically exposed to the internet at that point, but locked in behind cloudflare’s authentication. You can literally set it up for one or two email IDs. Yours and a family member’s. Much simpler for others to wrap their heads around. But some people dislike cloudflare for some reason or the other.

How?

Good idea!

Brands of what?

Thanks for mentioning SingleFile. I’m not using it right now.

I reckon the problem with that is… what’s the source for the recommendations and then what’s the sink?

Like, first, how do you get all that information about music, type of music, musicians, year of release etc?

Then where do you store it? Then you come to the problem of building a robust recommendation engine. Sure that’s one step that seems solvable with open source. Not easy. Solvable.

Then, what does a person do with the recommendations? So you have to build ways to export to YouTube, Spotify, Apple Music, FOSS music solutions. Perhaps plugins are the way to solve this.

Not saying it’s not doable. Just difficult.

Though I also believe someone would have tried to tackle it in their capacity in the FOSS world. Don’t know how Fedi plays into this. Maybe an online radio station?

Spotify scrobbles to LastFM. Maybe they have an API or export solution? All you would have to do is play your playlist straight through once after connecting to LastFM.

I don’t know about importing it further as I don’t know what Navidrome is.

Can we get mobile companies to start treating Facebook’s apps as threat vectors?

They probably heard your argument and didn’t show you relevant ads just to spike the bowl. 😝

$28 a year??? Woah.

My recommendation (sorry for the delay in response) would be not to use it as a base. Use the image as such. It has in-built features for screenshots, for using puppeteer, etc. So just use those. Any issues with that approach?

By the way, if you get XVfb running for puppeteer (a little further down in the readme), let me know.

Try using this following project as your base image before throwing puppeteer on it (or use the inbuilt functionality to take screenshots). It includes Jessie Frazelle’s seccomp profile. If you want nightmares, go read her blogpost about it. Otherwise just let it be and follow the setup guide in the readme of this project -

https://github.com/jlandure/alpine-chrome

You wanna know a fun way to do this?

GitHub (and I think Gitlab too) supports you running their runner within your own infra. It’s literally a binary that needs permissions and space. Then, you can tell your git repo to use that runner to run docker compose and as part of the “build” process, deploy you container to the same or an in-network machine.

This is not secure, it’s probably going to involve a lot of hard coding of local IPs or server names etc. But you can make it work.

I use this way to get a Win11 PC to run some regular containers on itself. Works like a charm.