Oh certificates are so much fun and you have so many options. From fairly easy to mindboggling complex.

Your current solution is OK if you keep in mind security implications of distributing certs using scripts.

It is not entirely clear where you do your tls-termination but it sounds like that is the Caddy reverse proxy so that is where your certs should be.

Placing them in a location like /etc/ssl/example_com/ as fullchain.pem and privkey.pem is probably easiest. Make sure access rights are appropriate. Then point Caddy at them and it should work. I have no experience with Caddy itself though. If Caddy runs in Docker be sure to map the certificates into the container.

Mind that in this scenario the certificates are only on the Caddy server, connections from the reverse proxy to the services is unencrypted over http. You can’t easily use the LE certificates on the services itself without some ugly split-horizon DNS shenanigans.

Alternatively you can set up a PKI with certificates for your services behind the reverse-proxy for internal encryption and do public tls termination in the proxy with Let’s Encrypt.

Joplin has their own sync-server you can run as Docker container; free for personal use…

• https://hub.docker.com/r/joplin/server

Since you frame your question so “elloquently” and you already have many good answers. I’m curious about:

• What is your highest finished education?
• Are you religious?
• What is your primary news source?
• What is your day job?
• Where have you learned how vaccines work?

That’s amazing! I’ve got the same combination on my luggage!

I’ve been using the Index with SteamVR for a few years and so far my experience is pretty good. Running it on an NVidia 1080TI and now 5070TI it works quite smooth. Some minor things aren’t supported, like bluetooth (use a script to turn on/off the lighthouses) and the front camera’s. But most games I’ve tried work out of the box in Proton. Performance was also good, even on a 1080TI.

Some games I’ve played wihtout much issue: Beat Saber, Maestro (they messed up Index controllers, but that is a game issue), Gorn, Alyx, PoewrbeatsVR, Waltz of the Wizard, VRChat, Walkabout Golf, Boneworks and a few more I can’t remember right now.

I’ve been using an Index with NVidia and never encountered this flickering. SteamVR has always worked flawlessly on most games. Except for controller issues but those are more on the game developer (only supporting/testing meta hw) and no support for bluetooth and the front camera’s.

Ah too bad, was worth a shot. Other than dissecting the KDE snapshot tool I have no other ideas. Good luck on your search…

I haven’t done this myself but maybe you can script something with OBS? It is made for screencapturing and it seems to work with Wayland according to the Arch Wiki.

Admitting you were wrong in a situation (or opinion) is a very mature and strong skill to have. It also makes communication and relations much more honest. A lot of people never learn this.

So, if you know you were wrong. Sincerely apologize. Then stop! No complaining, no blaming. And especially no bitching about being triggered. Being triggered is on you, not her.

If the conversation is going well enough you might be able to explain yourself a bit for mutual understanding. But for now it is on you to make up for the breakdown in communication. You don’t have to be her friend, but you are both adults and need to work together in at least a professional courtesy. Save any feedback for a later conversation and try to keep emotions out of it.

Good luck!

I second that. Community was great. The absurdity of the episode with the ABBA soundtrack still makes me laugh.

I don’t know about AES67 but I’ve used Snapcast now for a few years and it works great. I use a central Mopidy service that streams to a few Snapcast clients connected to audio devices (not directly to speakers though). The clients run on normal PC hardware, Android and some on Pi’s with DAC’s from Hifiberry. The setup was very DIY but has been running very stable after that.

I don’t know what would be worse… Trump still alive or JD Vance taking over. It is like a lose/lose situation…

NFS is easy as long as you use very basic access control. When you want NFSv4 with Kerberos auth you’re entering a world of pain and tears.

How I read it is that they’ve reintroduced it in FF 139 and that you need to enable the third-party certificates to acces the client certificate in the Android cert. store. But the linked bugs in the later replies of my link mention a regression in FF 140+.

I do agree that this is still a horrible UX though. Sadly I don’t have the time currently to test it.

I was curious so I looked it up… But it should technically work on FF for Android, although there is a bug in the UI.

See:

• https://connect.mozilla.org/t5/ideas/allow-personal-certificates-in-firefox-mobile/idi-p/176

This is only true for the connection security. With mTLS you can also authenticate to the webapplication you’re trying to reach. So consider your use-case between von/mtls.

If you’re really out of options you can just brute-force it:

# grep -r 'old.home.lab' /etc

Or any other dir with configs…

Although the display was grating, Trump fell for it hook, line and sinker. Having seen Rutte in his previous role as prime-minister before this was all an act just to butter him up.

Maybe buildroot is something you’re looking for?

It is a nice look into the switch from a perspective of a windows user. But since he is experimenting there is a also a lot of bad choices or wrong information.

He gripes about things not going smoothly while replacing his whole desktop environment (when was the last time you replaced your explorer.exe?).

And clamping to old ways of doing things. Which is understandable but would go a lot better with a little bit of guidance. Why force Chrome while Firefox was probably pre-installed or Chromium also works. Using Filezilla while Dolphin can probably do it in an integrated way. Using Notepad++ while Kate probably covers most of his use-cases.

This doesn’t invalidate his experiences but it does indicate a resistance to switch.

There is some valid criticisms as well though. The docking station that bugs out or KDE Connect that is confused. We can improve those things, but hardly force Logitech to bring their (horrible) software suite to Linux.

Maybe he should give it another few weeks to actually feel that while his old ways might not transfer over 1:1 the new ways give him a lot more power.