Honestly, if you only have a week to go, might be easier to just get some Reolink cams and set those up. Jumping through hoops to use desktops with webcams is more work than you need.

I don’t even know what you’re talking about now, so I’m going to stop responding. If Dependabot was already enabled for a project, you probably wouldn’t need to worry, so that negates this entire thread. 🙄

I’m aware, but then you mentioned “manual changes”, which connotes “local changes”. Putting up a PR with changes isn’t considered a manual anything.

Well a PR means an upstream fix for the project. If you want to scan all your local running things, by all means change whatever you want, but it will just be potentially wiped out by the tool you mentioned if running.

Yup. Really easy in most cases if you’re just upgrading a dependency version of something to the next minor release up, but then it has to pass all the project CI tests, and get an actual maintainer to tag it for release. That’s how open source works though.

This is a bad idea for a number of reasons. Most obvious issue is that it doesn’t guarantee anything in the way of actually fixing vulnerabilities, because some project you use may not even be scanning their own work.

Trivy and Grype will give you a pretty decent idea of what you have for exposure, but you’re at the behest of any project for fixing their own issues, or you can contribute updates if accepted.

Really the first line of defense is just securing your comms to the public internet. If you’re running everything internally, you have a lot less to worry about. Nothing will ever be bulletproof though.

Really all you’re needing is a network interface to a disk. Nothing more. If you’re comfortable running a headless device, go for that and ignore Synology as the majority of the features aren’t even needed in this case. Hyper Backup supports rsync destinations on remote hosts, and that sounds like all you want.

Synology sells single bay units now, but anything that has network connectivity should work fine. If this is just off-site backup, find whatever is the cheapest. If an RPi with a USB attached disk is cheaper, do that.

You can find MiniPCs of all sorts really cheap now, though almost all have smaller onboard SSD storage.

First off, no, this is 100% not true. That’s like saying a professional chef’s chicken soup will be the same as a beginner following the same recipe. Just, no.

Second, I’m talking about the general idea and implementation. Example:

Which is easier?

1. Cloning and running a repo to install node deps, configuring dotenv variables, running node app, then opening a browser to input a domain name into a field to get a response back about domain ownership, OR…
2. Opening a terminal and running whois somedomain.com and getting a response back. Code to illustrate.

Which is easier?

1. Configuring and running a compose to start a docker container to visit a browser to use a text editor, OR…
2. Open a local text editor which every OS has available

The cheeky nature of the projects aren’t lost on me, i just don’t see a point beyond basic coding exercises for them to exist. They’re getting social media hype and embracing that…cool, but anyone acting like this is some awesome new stuff is just delusional or flat wrong.

Doesn’t seem so.

And there’s a difference between utilitarian and idiotic as well. The fact you can’t tell the difference is a “you” problem, friend.

There’s a difference between KISS and just plain useless. These apps are like beginner code for people in high school.

I think it’s hilarious people are now building tools to manage the tools that were managing other tools and use more tools to actually do the job they say they are doing. What a world.

Just kinda flipped through his guide. It’s a bit dated on knowledge and techniques, even for beginners.

You don’t need a computer for a router. Get a router that ships with OpenWRT and start there. GL.iNet makes good and affordable stuff. Use that for your ad blocking, VPN, and so on to get started.

I’d just skip OpenVPN altogether and get started with Wireguard or Headscale/Tailscale.

If you want to run other heavier services, start out with a low-power minipc until you’re settled on what your needs or limitations are. You can get a very capable AMD minipc for $250-300, or an n100 low-power for a bit cheaper. Check out Minisforum units for this. Reliable, good price, and solid warranty.

If you deal in heavy storage, maybe consider adding a NAS to the mix, but maybe that’s a further steps. OpenWRT is a good starting point just to get your basic network services and remote access up, then just move on from there.

A good and fun starting point for some people is setting up Home Assistant on a minipc or Raspberry Pi (honestly, the costs of Pi boards now is insane. Might be good just to get the minipc).