This has been said over and over again. I have been hosting Mail now for over 2 years and have yet to encounter any problems. Although, i would not recommend to set it up manually and rather advise to use one of the ‘all in one’ suggested solutions here in the thread.

A project ending as abandonware is always a possibility. One reason projects get abandoned is losing funding, which can be secured by using dual licensing and selling some features to businesses.

That is not my point.

Having a CE or OS version and an Enterprise Version can lead to conflict of interest. Do you add a feature to the OS Version or do you spend time on the Enterprise feature? There are a lot of examples, Emby is one, others are escaping me right now.

There are other models that work well like paid support etc. Nonetheless i will stay away.

Looks amazing. But the dual licensing scares me. The open variant could be artificially limited in functionality or could end up basic abandon ware.

I encountered it now multiple times that new TLD are discriminated against. They are more likely to get blocked. This applies not only to Mails also to any more controlled network like free wifi networks or business networks.

Go with a classic .com .net .org or a country TLD if you can.

Btw, also applies to registrations on online services.

Mailcow is amazing.

Importing exporting i would just use any mailclient and drag-drop them over. Depending on how many Mailboxes you have to transfer.

I absolutely disagree with you. If a manufacturer does not care about Linux support, it’s on the manufacturer. Do not blame the thousands of unpaid volunteers and a few paid ppl for not supporting a specific BT chip or controller or whatever.

The signing issue is so on OP cause disabling secure boot or using a supported distro like ubuntu could have fixed that, and yes you can run Windows 11 with Linux dual boot without secure boot.

Basically everything you stated, Bluetooth, Controller and GPU is hardware.

Your experience is probably different since you still think and act like you use windows. This is normal. When you are used to something and then switch to something that works differently you will run into problems.

Looks like you used hardware that was designed for windows and are blaming it now on Linux.

I am not understanding the issue you have that requires signing of drivers.

Yes some Bluetooth devices lack the support from the manufacturer’s for Linux, the Controllers i have used work great, at least for my needs.

Controllers have better support Linux for ages. Not understanding the issue here either.

Troubleshooting on Windows sucks at least to the same degree. The same non specific error message gets you 50 possible solutions.

No need to announce your departure.

I am not understanding the issue you have with DNS?

Just have a script that updates the DNS entry to your current public IP. If you do not like Cloudflare there are plenty of other services that offer a free API with their DNS service.

I think you are misunderstanding something here.

If i understand you correctly, your Server is accessing the VM disk images via a NFS share?

That does not sound efficient at all.

I assume you are referring to Filesystem Snapshotting? For what reason do you want to do that on the client and not on the FS host?

sshfs is somewhat unmaintained, only “high-impact issues” are being addressed https://github.com/libfuse/sshfs

I would go for NFS.

HA had 2 security audits. I would not worry too much. Always depends on what you can control with it. https://www.home-assistant.io/blog/2023/10/19/security-audits-of-home-assistant/

Lennart Poettering intends to replace “sudo” with #systemd’s run0. Here’s a quick PoC to demonstrate root permission hijacking by exploiting the fact “systemd-run” (the basis of uid0/run0, the sudo replacer) creates a user owned pty for communication with the new “root” process.

To my understanding that actually solves issues. A lot of ppl already prefer other tools like doas since sudo is basically “too big” for what it does.

More code means more potential bugs. run0 has to my knowledge significantly less code. And the benefit of not relying on SUID.

In the end, you do you. The big distros will adopt what is good for them and good to maintain. You do not have to use it.

Just subscribe to the release channel. That varies from OS to OS or Software, but is worth it.

Use tools that are universal. For example, I have not used TrueNAS Scale because they did not support native docker at the time. OS specific solutions are more likely to break then universal once (truecharts vs docker)

To get up and running again after a complete failure i can just download the latest config and data from my backup and set up any distro that supports docker and my system is running again.

I do OS upgrades when they are available, usually within 1 or 2 days and containers are updated with watchtower daily.

The main difference i would say is the development and licensing model. Photo prism is forcing ppl who want to commit to sign a CLA to.give away their rights. Also the community is not really active it is mainly one dev that can change the code license on any given time.

Immich does not have such an agreement and has a huge active contributor community around it. Also Immich is backed by Futo which has its pros and cons.

Imho the biggest pain in self hosting is when a foss product turns evil towards its community and start to practice anti consumer/free selfhosters business practices.

Immich is far less likely to turn evil.

Edit: I think it is the biggest pain cause you have to migrate every device and person to the new service.

How are those devices affected by having no notification anymore? The manual labor exists anyway.

Most network switches and devices have a web gui to switch them out. Those can be automated.

Then swap you nameservers to a DNS provider that allows that?

So I’d like to split my passwords file into multiple “files”, where the unimportant logins are permanently unlocked for convenience, while the more sensitive login credentials remain encrypted until I actually need them.

And how should that protect you against an attack that has compromised your system? If the system is compromised, then an additional lock does not hinder the attacker to wait until you open it.

The tweet he commented on was indeed a nice idea, but a CEO should have more foresight that the things Trump stated in it would not be true. When you look at it now, it looks like it was more or less a threat that led to a closer relationship between “tech bros” and the current administration instead of the “take down” of them.