Arch is on 2026…

It’s not about AV. It’s about vulnerabilities.

AV just uses (often multiple) vulns to do something, and with closed-source systems you can’t fix it yourself, so you need an application to do it for you.

AV is a block-list approach… always needs updating, even for things you don’t have. Linux can operate with allow-lists, so only the apps you have can execute.

Plus firewalls (outbound as well as inbound), SSH, secure package repos, etc.

You don’t need AV, but, you can have it if you want it (maybe file-less memoey resident stuff)

But, yeah, that other post was just mayhem.

Yeah, we’re using Conversations and it’s fine for most things.

Will be self hosting prosidy “sooon”… and it’ll all be in-house.

And this is their only post.

The wording, the story… I can’t tell if it’s a collection of google searches or someone newer to computing.

I get that someone could be stressed out by something, but this just seems odd.

I’ve seen people flip out in Red/Blue team trials, but this isn’t the same

OP… if this did happen to you, you need to calm down. Maybe with professional help. Then come back to this when you’re calm.

This is good, if they:

• 1. Understand & trust what you’re doing and don’t fiddle with it
• 2. Don’t understand and just don’t fiddle with it

Luckily I have a family member that fits one of those categories.

+1 for Hetzner

I’m using restic to encrypt my files (content + filenames)

Boot memtest

Leave it to do it’s thing overnight. That will at least check for badly failing RAM.

I’ve run this on machines that I thought were ok, only to find… they weren’t.

That was all resolved.

I held off switching until very recently, but reading the githubs, etc. it’s all settled down now.

From memory it was just a bit of a nieve handover (ie “hidden” in the background, not out in public)

I’m from ye olden times, when everything was done in the yaml configuration files - so I prefer that approach.

The zones you create from the UI, work fine.

It’s just that the default “home” zone appears to have some quirks that can only be set from configuration.yaml

Yeah, the home zone is somewhat… different Zones

I do most of my config in yaml and all the zones are configured in a separate file, however, the home zone has (had? I’ve not checked in years) to be configured in configuration.yaml under the homeassistant: section.

You should be able to do something like:

homeassistant:
  latitude: 12.3356
  longitude: 1.23456
  radius: 50

If you’re configuring zones from the UI, I think editing the file should still work.

I have multiple zones: home and almost-home (same center coordinates, just larger diameter)

This allows the house to “get ready” before someone is actually home, ie trigger lights to come on earlier.

It also helps with random GPS jumps.

Then, when the wifi connection is slow (maybe low phone battery) and people are literally outside the door, there’s no awkward pauses before someone actually “arrives”.

I also have zones for our work places, intending to be used as a double-check, ie not-home isn’t usually good enough, I want the house to know we’re all at work and then the internal house cameras come on, etc.

I also have a “visitors” flag, so that if friends / family are in and we leave, then the TV and lights don’t turn off and they’re not attacked by the laser robots…

Also, (from memory) the person entity can be a combo of GPS and ping sensors to ensure it’s a correct reading

With… or without their knowledge? 😉

But yeah, there’s so many wifis around me, I could probably load balance across them all…

I hope that maybe this database will also help with that… if you can’t identify it, it’ll have less representation, so it won’t be bought… and the quality vendors will start to shine through.

Wow.

Ok, that sounds like that has evolved over some time!

Yeah, I think the firewall has a hardware issue… it reboots, starts stops fine under normal conditions, but, just sometimes a weird glitch throws it off.

Good point about VRRP, I’ll look into that some more as I think that’s the open, non-Cisco one.

That (2 FWs) was what I was considering initially.

But, looking at some other posts, I’m starting to rethink my design as I only have 1 WAN connection, then I only need 1 FW (maybe). SIM would be rarely used, I’m not sure the overall cost would be worth it

So separating FW from DHCP & DNS might be a better solution.

Not heard of BeeGFS, had a quick look on the Arch wiki… looks quite involved…

But, ok, at least I know that the DHCP part can be dealt with - thanks.

I’ve not looked at Proxmox clusters - can they restart VMs on a different host if they’re all using the same shared storage?

Ah… I was reading this thinking “ah, I’ll have to reply about the battery…”… glad you’re limiting the charging…

But an interesting point… I have a spare OLD Dell laptop kicking around which has various issues, but might be able to do what you’re doing. Thanks

Yep, all good with DHCP vs DNS… just my grammer was terrible.

Nothing was getting an IP from the DHCP, when the wifi returned…and… DNS was also not working for the few devices that still had an IP.

Sry bout the confusion there.