You need the web site to use a certificate from the same root authority as your client certificate.
I’m not sure if I’ve misunderstood you, but I use Lets Encrypt for the server’s TLS, and then my own CA cert (which is only present on the webserver) for the client’s mTLS and everything works fine, since it’s the client that validates the server’s cert and the server that validates the client’s cert.
Only works with the web UI, no apps support it
Yeah that’s true.
you will get warnings when adding your root certificates to any device
It’s not a root certificate, and I’ve never seen any warnings.
Same, there’s also an unofficial home assistant integration for mine, so I get my brush tracking without ever using the official app.
Possibly mTLS, which you’d configure in your reverse proxy. You could email them the certificate and instructions on installing it. I believe for Chromium browsers on Windows you basically just double click the cert and click through the wizard. Firefox I know has a thing in the settings for importing the cert. Android you just tap on the cert and make sure it opens with ‘Certificate Installer’ if it gives you the option.
There’s some thinner m.2 to PCIe extensions that might work if there’s no space. Then you just use a normal PCIe sata card.
There’s only 11 out of 1894 errors being displayed. Each core starts the test at a different address, so it’s probably core 6 was the last to hit a bad area.
What is the scrappy super cheap but capable competitor of the pi, like the pi was to average desktop PCs?
I’d say Rock Pi or Orange Pi, if you want something close to capable.
what can do the same as a pi for 30 bucks like 10 years ago the pi was?
Probably the Arduino Uno Q. It’s Qualcomm’s new Arduino board that runs Linux. It also seems to start at around $44 for the 2GB model (I’m guessing they’re making a loss since they’re new to the SBC game, and they’re probably trying to gain market share).
Or if you don’t need a whole general purpose operating system, then there’s plenty of microcontrollers that’ll work fine (ESP32, STM32, etc.).
For me, every subnet (except internal only ones) have a global IPv6 prefix, including my Wireguard tunnels. I’ve got a mix of statically assigned and SLAAC. I think I’ve setup DHCPv6 too but it either doesn’t work or nothing uses it.
If anyone’s curious, here’s the leaker’s reasoning: https://www.openwall.com/lists/oss-security/2026/05/07/12
Basically he had no prior knowledge of the vulnerability, he saw the patch go in and wrote a PoC based on that.
That guy is a tech reviewer on YouTube, it probably makes for good content, and he may not have even bought it.
Python would be, and yt-dlp is a Python app.
I think things still need to be compiled specifically for a-shell, you can’t just run a random binary. Also iOS is more closely related to BSD, so Linux apps wouldn’t work anyway.
Here’s the official docs: https://docs.immich.app/guides/external-library/
They seem to use different paths.
I actually made a similar thing a few years ago, and mostly relied on WebSockets with a HTTP fallback: https://github.com/Steve-Tech/My_Time
You actually seem to know what you’re doing with Workers though, mine was pretty much a half-assed attempt at porting my python code (which again could probably be better).
Also my desktop is PTP synced to a GNSS disciplined time server, and I’ve found the My_Time workers demo to be fairly accurate. I also feel Cloudflare should be reasonably accurate given they have database products you’re intended to use with workers, but yeah, there’s no guarantees.
a low cost subscription for more advanced detection
It’s not just more advanced detection, they will fine tune models for you if you upload images of true/false positives/negatives.
Most browsers will only use happy eyeballs with a IPv6 UGA, ULAs are just used as a fallback if IPv4 isn’t working. You can work around that by using an unreserved UGA as your ULA but that’s pretty dodgy.
True, but it’s only the sending emails and I don’t have to worry about getting my ISP to set PTR records just to pass spam filters. Your domain’s MX records still point to your server.
Oracle Cloud has their Email Delivery service, which is basically just a straight SMTP proxy, and it’s free. I believe proxies still need to be configured as a sender in SPF and have their own DKIM signing key, but Oracle will still send without them, although wildcard senders will require them.
Usually if they’re all managed switches, you can look at the MAC table and map things out that way.
If you aren’t already aware, Dave Plummer isn’t who he seems:
Dave Plummer: The Man Who Scammed Millions (in 2006) - YouTube
He’s also abused YouTube’s DMCA system to remove that video a few times.