Plex runs relay servers where your Plex server will connect to the relay and your player will also connect to the relay, making both ends of the connection egress type as far as routing and access control goes. https://support.plex.tv/articles/216766168-accessing-a-server-through-relay/

It’s optional and likely not everyone uses it, but this provides a way for Plex to do remote streaming without the Plex server being reachable directly from the internet.

Separately, it costs money for Plex to run.

Thank you, that’s useful!

Unfortunately for some of them even if the game works there are often cases where either mods don’t work or some overlay/other additional software.

On your answer though, I was under the impression that when you configure the KVM passthrough setup it makes the video card you use for the passthrough inaccessible for the host itself and that to make it accessible, it requires undoing some of the config and a restart. Is this incorrect?

In their defense, they also clearly label immich as under active development with frequent changes and bugs.

Edit: nvm I saw it was already discussed in another reply.

Doesn’t count until it runs doom.

Would you accept a certificate issued by AWS (Amazon)? Or GCP (Google)? Or azure (Microsoft)? Do you visit websites behind cloudflare with CF issued certs? Because all 4 of those certificates are free. There is no identity validation for signing up for any of them really past having access to some payment form (and I don’t even think all of them do even that). And you could argue between those 4 companies it’s about 80-90% of the traffic on the internet these days.

Paid vs free is not a reliable comparison for trust. If anything, non-automated processes where a random engineer just gets the new cert and then hopefully remembers to delete it has a number of risk factors that doesn’t exist with LE (or other ACME supporting providers).

It used to be an open source project, then at some point the developers moved it to closed source. In reaction to this, a couple of people forked the last open source version of emby and launched it as an open source project (again) named jellyfin.

It is still open source and under active development, and has a significant userbase. Especially on Lemmy I think it’s much preferred by people to emby (or at least more vocally supported).

I try to buy all ebooks, unless they only sell on Amazon.

I have never seen contributors get anything for open source contributions.

In larger, more established projects, they explicitly make you sign an agreement that your contributions are theirs for free (in the form of a github bot that tells you this when you open a PR). Sometimes you get as much as being mentioned in a readme or changelog, but that’s pretty much it.

I’m sure there may be some examples of the opposite, I just… Wouldn’t hold my breath for it in general.

Haven’t had any experience with eweka, but this is the reason why people tend to have multiple providers from different backbones and multiple indexers - to increase your chance for completion. Weirdly, eweka does not follow DMCA, but NTD which I’ve seen regarded as slower to take down content, so in theory the experience should be better, especially on fresh content.

Your mileage will vary greatly depending on what indexers/providers you pick and unfortunately it’s very difficult to say whether it will reach your expectations until you try different options.

If you’re willing to spend some more on it, you could try just looking for a small and cheap block account from a different backbone to see if it helps with the missing articles, but there are no guarantees.

Your isp can most likely tell which VPN you’re using (unless you also use tor, and even then there’s the theories that a lot of it is ran by law enforcement… depends on how paranoid you are), they will still see the quantity of traffic coming from your home to the VPN and vice versa. All they need to do is to check the IP and they’ll likely find it’s in use by … VPN service.

As long as using a VPN is not illegal in your country you can pay for it however you want really (in some places paying with crypto may make it more suspicious than if you just paid for it through PayPal), if law enforcement really wanted to find out the VPN service you use they probably could, the payment would only make it a tiny bit easier.

The key point as mentioned multiple times is to use one you trust, there’s no objectively best one, but you’ll find a lot of objectively bad ones (for privacy) if you research them. As a start just never use any which are sponsoring YouTube videos or blog articles, pretty much all of those are crap.

VPNs usually route your DNS through them as well, sometimes to other DNS servers but sometimes they just send them to your original DNS server but through the VPN, kinda up to your VPN config - all of the vpn services I’ve used to date did this, although they were all reputable ones. I’d not recommend to use a questionable VPN though.

Dnssec only verifies authenticity of the server and the integrity of the data, so it helps to prevent man-in-the-middle of DNS, it doesn’t provide privacy. Look into DNS over Https (DoH) instead. It provides e2e encryption for your DNS traffic which achieves what dnssec does, but also gives you privacy. DNS over TLS (DoT) also does this, but it runs on a different port so it’s easier to block (e.g. if your isp decided they don’t like private DNS), while with DoH your DNS traffic looks the same as other web traffic - and afaik it can’t be blocked. As above, it’s likely this is not needed for use with a VPN, but I’d recommend looking into in general for use even when not on the VPN. Things like controld or nextdns can give you even more peace of mind (although read up on their policies for yourself)

Thank you for this, very useful!

Thank you! This is great information.

I use unraid (currently without parity since it’s all just stuff I’ve been okay to lose) with drives I’ve collected over the years: 2x3TB WD red (one of which is almost 10y old, the other ~7 since it had died once in warranty and got replaced), 1x 12 TB WD red (which is ~3y old).

I was going to add something between another 16-20TB drive depending on the price/TB whenever the next expansion comes up. I’ve mentioned it in another comment, but I’ve never used not-new drives and have been fairly shy about them, hence the larger price tag for expansion than expected.

Even if I cut down on my usenet providers/indexers since I’ve shot a bit overboard with coverage, the cost of realdebrid/alldebrid is still very similar to just the cost of those/year, entirely excluding the cost of disks - hence my interest in feasibility.

This is likely very true, good point. I imagine there is some resilience with there being multiple debrid providers available so worst comes to worst you’d have to pay up for another membership and swap (and I guess hope that the other one still fulfills the purpose).

Findroid is not available for android TV as far as I know so couldn’t try it, my other option there would be to use Kodi with a plugin but I’ve never really been a Kodi user so it’s less appealing to me.

It’s a bit nitpicky to be fair but:

• chapter API (skip intro/credits), I know it’s in the works and there is a plugin but I’ve found it work much better in Plex (actually emby has this and it’s alright)
• the android apps, particularly on TV. I find the jellyfin one somewhat meh for UX. Not huge gripes but just things like how in a list you have to press a button at the top of the screen to display the alphabet shortcut (i.e. jump to all moves starting with a letter). On a TV this is pretty awkward IMO. I know there a bunch of different screens around this, e.g. the one you get with smart screen to go “by letter”, or setting the list direction to horizontal allows getting to the button on top easier but it feels clunky to me, so many screens which could be replaced with 1 better designed one.

I do think eventually I’ll end up on jellyfin, probably once the chapter API arrives and skipping credits and intro has first party support tho.

Thank you, those are pretty good prices! Have you used recertified drives? I’ve been fairly scared of used drives so curious if you have and their failure rate compared to new?

Another option you could consider is rather than running the VPN on the pi and downloading through that, to run the VPN on your media server as you planned and instead use the pi (or your router if you can run openwrt) as the remote access point. Then you only need to worry about the performance needed for remote access

I’m not sure how tailscale works, but this is what I do with zerotier (i.e. run it on my router).