It looks nice, but honestly, once I set up everything (which I do on each of the *arr anyways), there is nothing left to be managed. That‘s the whole point of this setup, to get rid of managing things manually.

So even if I love that project and am very appreciative for all the work, I don’t have any use case in my setup that would want me to use this.

@[email protected] why on earth would you use a title like that? It‘s just plain wrong. The project switched to a different license. It is still free and still open source.

Is this the only point, when it comes to security? In my experience, the ease of use is also a factor. Today, VPN clients are just one button and it runs. I2P is almost there, but requires you to setup some configs manually. So is it really worth to drive a tank to just go grocery shopping?

Tomorrow passwords will be cracked in no time, because most algorithms are not quantum safe. Same with password length.

I never said it is not an attack vector. There are dozens if not hundreds. The question is about the probability, which is always a dimension if you manage risks. There is no need to list all theoretical possible attack vectors, if the probability of actually happening only affects 2 people on this planet.

Videos for educational purposes should not sensationalize unlikely attacks, as it only causes unnecessary fear. I’d rather have someone using torrent on VPN than not using anything at all because they are now afraid of the government.

That’s not what I was talking about?

If someone is actually trying to convict you just based on the correlation of the connection times, you probably don’t just share a copyrighted movie. So why mentioning this as an actual threat in the first place?

It is not the state. Those are regular professionals.

I partially agree that there should be a possibility to kill yourself in an easy way. But don’t forget that very often, this death wish is the cause of a mental illness, which can be treated.

So with Exit, you need to have been diagnosed by a psychiatrist. So it probably takes some time, and that time has to be obviously paid. After that, a second psychiatrist checks the diagnosis for any errors. And the third actor is going to be a regular doctor, double checking for errors. If all goes well, you get the death cocktail. As things can go wrong with that, you should be accompanied by someone experienced. Exit provides this assistance free of charge, as they use donations and membership fees to pay for that.

I cannot tell you about what diseases are successful. Usually, psychological issues are not enough to get the diagnosis you need. You need to be heavily impacted by it and there has to be no cure.

By the way OP, similar but worse is the ability to handle 25Gbits. But someone made a working router for that as well and CPU was also a factor: https://michael.stapelberg.ch/posts/2022-04-23-fiber7-25gbit-upgrade/

True. But since OP is using a benchmark anyways, I don‘t know how close to real world that is. If they are doing lots of filesharing, let‘s say with P2P networks, it could be way worse because of the number of connections. So I agree with you - I was just working with the info I had :)

And he is currently at 1/3 of the potential speed and 3*60% = 180% CPU load for 1Gbits. So I wouldn’t even bother troubleshooting further when you already know the hardware will be an issue sooner or later.

The question is what you do with your pfsense. IDS/IPS are quite CPU hungry and Celerons are not really fast CPU’s.

DNS? Why so complicated? Just edit your hosts file 😏

Agree. I just got it for fun and because it was cheap. I used it for my disposable e-mail addresses but now switched to .org

Also, don‘t use it for any mail servers. Spam Assassin gives a negative score by default on *.xyz domains. Stupid as shit, but I had to learn the hard way.

My HA is running in docker. It is easier than you might think. Forget about LXC. And just take your time migrating the stuff and only when the service works in docker, you can shut off the VM. Believe me, management of docker is way easier than 5 VM‘s with different OS‘s. Docker Compose is beautiful and easy.

If you need help, just message me, I might be able to give you a kickstart

I was assuming you were able to get rid of the other 5 VM‘s by doing so. If not, obviously you would have not less overhead.

Add a new VM, install docker-ce on it and slowly migrate all the other containers/vm‘s to docker. End result is way less overhead, way less complexity and way better sleep.

Don‘t forget that the copyright law is a civil law, so there needs to be someone being able to proof to have suffered from any damages. Having a law case within a border is usually much cheaper to having one internationally, because every country has a different law system and you need a lot more lawyers, just to then find out there was no damage. So the risk of paying a lot of law fees without getting any damages covered is just too high. Obviously, it makes sense that big studios will try to hunt down big trackers, but I think even with my 25/25Gbit I am far away of being an interesting target, especially on an international level. At least this is how my view on this is.

Thanks for the heads up. I am well aware of this. Obviously I would try not to get too much attention and would probably block all Swiss clients from accessing my server. Having legal issues internationally at that scale without any money involved is unlikely. But that‘s just my hypothesis.

Edit: only because I‘m a pirate does not mean I have no moral values. I would never want to distribute heavily illegal content. Only copyrighted content.