Post B35yPbAubgo92ek5aa by niobleoum@nekosat.work
(DIR) More posts by niobleoum@nekosat.work
(DIR) Post #B35sawfaQlpVAQ7LPs by WandererUber@poa.st
2026-02-07T23:54:38.782121Z
4 likes, 1 repeats
tfw every time you check up on JD Souls he is attempting some insanely complex technical feat like solving P=NP just to read his emailwhat the fuck are you doing lil bro?RT: https://ariamispainted.world/objects/994dbee9-c751-4aee-8180-de990d86bca1
(DIR) Post #B35topdTToljMMJaqG by john_darksoul@ariamispainted.world
2026-02-08T00:07:11.857990Z
3 likes, 0 repeats
@WandererUber I want to be able to control everything on my phone outside my network and using a standard subdomain. So qbittorrent is running on qbit.my.domain. Some cool stuff I can do with this is copy a YT link, paste it into my ytdl container, it will download and automatically load into plex which I can then play without ads on an iphone. There's other stuff too. If I had security cams running I'd be able to login and access them too. I just think it's neat that I can control the server on my iphone.
(DIR) Post #B35v0aqMP1GyuaVxJo by WandererUber@poa.st
2026-02-08T00:21:14.173954Z
2 likes, 0 repeats
@john_darksoul >So qbittorrent is running on qbit.my.domain.I would have just set a bookmark for ip and qb webui port>Some cool stuff I can do with this is copy a YT link, paste it into my ytdl container, it will download and automatically load into plex which I can then play without ads on an iphone. This is probably really cool if you like computers.I hate computersnigga got a whole ass domain, fucking CONTAINERS and a plex server just to watch youtube without ads on his phoneI use newpipe...in all seriousness I get fiddling around with stuff and it's very satisfying once it works, but you go about it in these really roundabout ways where every step of the way I just think "surely there is a simpler solution"like dude just access qb direct IP through the vpn tunnel it's not a big deal why the fuck do you even *want* a domain?
(DIR) Post #B35vAAUFFcWk40jgJc by john_darksoul@ariamispainted.world
2026-02-08T00:22:15.874068Z
2 likes, 0 repeats
@WandererUber Some things are really anal about preferring ssl. Bitwarden for example, if you want to point it to a self hosted vault, requires ssl.
(DIR) Post #B35vZJ00jtfnhha38K by WandererUber@poa.st
2026-02-08T00:27:58.241446Z
1 likes, 0 repeats
@john_darksoul okay I remember that but I'll still biteremind me why you couldn't just self-sign a cert for the direct IP?
(DIR) Post #B35w0uuts2pF7cM8qu by john_darksoul@ariamispainted.world
2026-02-08T00:31:47.775409Z
0 likes, 0 repeats
@WandererUber I can but I need to do it with my own dns server and then I have to load the certs into ios so they're trusted. The domain was $3 and the process seemed simpler. If the renewal fee is actually $20 I'll probably look into doing it that way.
(DIR) Post #B35w6bYmkdskpFixtI by WandererUber@poa.st
2026-02-08T00:33:58.372228Z
0 likes, 0 repeats
@john_darksoul >but I need to do it with my own dns serverwhat does this mean again? Your device has an IP you can access through the tunnel, doesn't it? Why do you need a DNS server?
(DIR) Post #B35wh209v5RVG1ti2y by john_darksoul@ariamispainted.world
2026-02-08T00:39:24.501018Z
1 likes, 0 repeats
@WandererUber You need something. The most recommended way to do it on truenas is to use adguard or pihole, both of which act as dns servers. I'm not sure how else you'd do it. At least with nginx. I'm not sure how else you would make a cert on truenas.
(DIR) Post #B35x7iNOzeoSD5UcuO by WandererUber@poa.st
2026-02-08T00:45:23.604214Z
0 likes, 0 repeats
@john_darksoul >nginxyou need that too?!In my head, when I recommended zerotier, I was thinking you have the vaultwarden program on your nas, your bitwarden program on the phone, zerotier on both, and you just put the zerotier IP of the server as the address for the bitwarden phone app, and since you need https, you just self sign a cert to that IP and install it on the phone...Since you don't use zerotier, I would have thought you'd shrimply use whatever bridge IP your tunnel program gave you, instead and the rest of the process would remain as simple.And now you're telling me you're setting up a whole ass DNS server and you STILL need to buy a domain. And you're installing a webserver...I'm either way out of my depth or missed something.
(DIR) Post #B35xIFxSzaf7G2O9HU by hazlin@shortstacksran.ch
2026-02-08T00:46:05.191911Z
0 likes, 0 repeats
@WandererUber @john_darksoul John is a clanker spanker.
(DIR) Post #B35xbI9J4RGhYT0GYq by john_darksoul@ariamispainted.world
2026-02-08T00:49:34.546551Z
1 likes, 0 repeats
@WandererUber All of this stuff was already set up. I don’t know exactly what zero tier uses but I’m sure it’s some form of wireguard, which is what I’m using. I need nginx for my instance and it essentially is just an easy way to do proxying and create certs hassle free. I didn’t have to buy the domain, but the setup seemed easier. Wireguard works the same way zerotier does except it doesn’t require an account. And I don’t have to have ssl for everything, just some stuff like bitwarden requires it. Once I have the domain though I might as well give everything a cert and subdomain address. How do you create certs? Like what method? I know there are some more hands on ways of doing it.
(DIR) Post #B35xq9g6qbkXcuQy3c by niobleoum@nekosat.work
2026-02-08T00:53:24.848645Z
1 likes, 0 repeats
@WandererUber @john_darksoul On a positive note - one's OpSec is inversely proportional to how tangled you are in actually risky/illegal/heinous shit. It means he is a good soul :koronebless:
(DIR) Post #B35xyMr1k7vCoASNF2 by WandererUber@poa.st
2026-02-08T00:54:54.617835Z
0 likes, 0 repeats
@john_darksoul I use the cli for gpg and just get the two keyfiles out. I thought maybe you can just give those to vaultwarden directly instead of having to set up a fucking webserver to proxy and encrypt. Like dude, are you seriously telling me bitwarden demands ssl for custom vaultwarden servers but vaultwarden can't do ssl?? I still doubt that it even actually requires it if you literally point it to a local-looking IP but idk how it determines that.
(DIR) Post #B35yPbAubgo92ek5aa by niobleoum@nekosat.work
2026-02-08T00:59:48.305247Z
2 likes, 0 repeats
@mancat19 @WandererUber @john_darksoul My genius level IQ to un-spook youtube is to simply not use it at all. It actually improved my digital experience too. Each day I start to hate computers even more. :KoyukiSad:
(DIR) Post #B35zQRFD79BIUCiXBo by Griffith@clubcyberia.co
2026-02-08T01:11:09.196017Z
2 likes, 1 repeats
@WandererUber @john_darksoul Nginx sounds like a Spanish slur for mulatto
(DIR) Post #B35zUD1TvnEpXO5sHI by john_darksoul@ariamispainted.world
2026-02-08T01:10:41.278754Z
1 likes, 0 repeats
@WandererUber Well it's a bit weird because port vaultwarden is on actually requires I use ssl to access it. So does the truenas homepage. But both of them still come up as untrusted. I don't if that means they do have ssl or not, but I always thought it was weird. Either way iPhone bitwarden is very finnicky with the ssl (or so gemini tells me), which is why I decided to grab the domain. Bitwarden was easier to set up once I had certs than qbit was by a mile though. You have to tell qbit that you're running a proxy, to trust the proxy subnet, to make the proxy pass the host subnet to qbit, then to trust the wireguard subnet on top of it.
(DIR) Post #B361CxElZKAFZ3CvnE by WandererUber@poa.st
2026-02-08T01:31:05.476794Z
1 likes, 0 repeats
@john_darksoul well if you enjoy doing it this way...
(DIR) Post #B362K1T0LDqKfCnlTc by john_darksoul@ariamispainted.world
2026-02-08T01:42:28.736832Z
1 likes, 0 repeats
@WandererUber The TrueNAS stuff is way easier to work with than the instance. Everything is in its own docker container and it just works for the most part. A lot of them have ios apps that just plug right into your server too. I’m going to download a recipe app next. With akkoma I can’t even get fucking emojis to work. I can’t even get the Unicode ones in some kind of decent order.