As long as the game on steam isn’t using a DRM like Denuvo, Enigma, etc then I can backup and play them even without steam.

It’s just that if the game uses Steam DRM then I’d have to use a steam emulator like Goldberg/gbe_fork to play the game. Sometimes you’d also have to remove SteamStub DRM from the game exe files using Steamless.

GOG is easier since you don’t need to mess with steam emulators and such. You also won’t run into the issue of having to manually create windows registry entries that some old games need. GOG installers will create those windows registry entries for you.

There’s also a new activation method in MAS (Microsoft Activation Scripts) that enables the commercial ESU with 3 more years of updates. The regular consumer ESU just gets you 1 more year of security updates.

Here’s another tool to import music metadata to musicbrainz.

https://harmony.pulsewidth.org.uk/

Containers within a pod can use localhost to access each other. Containers outside of the pod needs to use the pod name to access the containers in the pod.

I looked up when pasta became the default networking backend for rootless and it seems to have been with podman 5.0. I do remember using podman 5.x versions, so I was most likely using pasta.

The reason why I seperated each app into their own network was indeed for security. The only container with access to all the networks is the reverse proxy.

I made a comment on another post a while ago, talking a bit about inter-container/pod networking.

https://sh.itjust.works/comment/17072681

Do you actually need to move the admin ui off of port 80/443 if you are just forwarding ports? I don’t think you need to. That said I actually don’t know much about port forwarding since I use Tailscale because of CGNAT.

My understanding of port forwarding is that you are forwarding connections to your WAN IP/port to a LAN IP/port. Since the router admin ui is available only on LAN by default, you don’t need to change it’s port from 80/443.

You don’t need 2 reverse proxies as others have said. What I did is just add a DNS rewrite entry in my adguardhome instance to point my domain.tld to the LAN IP of my reverse proxy.

I use some generic names.

• Phone: phone
• Current Laptop: fedora
• Old laptop: laptop
• Router: openwrt

Yeah obsidian’s pretty nice. I use the daily notes feature built into it for my journal.

I ran a podman quadlet setup as a test some time ago. My setup was a little like this:

• Create a pod if the app uses multiple containers
• Create a seperate network for each app (an app is either a single container or multiple containers grouped in a pod)
• Add the reverse proxy container to all networks
• I don’t expose any ports to the host unless necessary

If you create a new network in podman you can access other containers and pods in the same network with their name like so container_name:port or pod_name:port. This functionality is disabled in the default network by default. This works at least in the newer versions last I tried, so I have no idea about older podman versions.

For auto-updates just add this in your .container file under [Container] section:

[Container]
AutoUpdate=registry

Now there’s two main ways you can choose to update:

1. Enable podman-auto-update.timer to enable periodic updates similar to watchtower
2. Run podman auto-update manually

# Check for updates
podman auto-update --dry-run

# Update containers
podman auto-update

If you run adguard home it’s pretty easy. Just add a DNS rewrite to your local IP.

How are you running nginx and immich exactly? With containers or on the host?

I don’t know nixos that much but that looks like nixos configuration to me, so it’s running on the host I assume?

Some feeds I follow

• Adventures in Linux and KDE: https://pointieststick.com/feed/
• F-Droid: https://f-droid.org/feed.xml
• GamingOnLinux: https://www.gamingonlinux.com/article_rss.php
• Project Zomboid: https://projectzomboid.com/blog/feed/
• This Week in KDE Apps https://blogs.kde.org/categories/this-week-in-kde-apps/index.xml
• This Week in Plasma: https://blogs.kde.org/categories/this-week-in-plasma/index.xml

Personally, I always use MusicBrainz Picard to tag any music I download, so it doesn’t matter if what I downloaded has incomplete metadata.

If I don’t end up finding the correct release for metadata on MusicBrainz, then I just add it to the database myself (there’s tools and scripts to make it easier to add digital releases).

Obsidian with syncthing for syncing between my phone and PC.

My understanding is they cache the files and lets you download from their servers for faster speeds.

Wdym it’s not on the megathread? it’s still listed as one of the GOAT direct download websites.

For Tailscale you can disable key expiry on select devices.

Personally I don’t really care too much about whether it’s moral or not. I pirate when I feel like it and don’t when I don’t feel like it. I also pay for some things that I pirated before and enjoyed as long as it isn’t too expensive.