Yeah the Open Source version. I doubt that the hosted version is using that. Cloud providers have super fast DB’s that are basically compatible with the MySQL syntax

My question was ironic, implying that anyone using it in a productive system/software/service is doing a very bad job at software architecture. I avoid any product relying on super slow software pieces.

Well, who is using mysql/mariadb nowadays anyways? If you haven’t made the switch to at least postgres in the past 5 years, you messed up anyways.

Is this the only point, when it comes to security? In my experience, the ease of use is also a factor. Today, VPN clients are just one button and it runs. I2P is almost there, but requires you to setup some configs manually. So is it really worth to drive a tank to just go grocery shopping?

Tomorrow passwords will be cracked in no time, because most algorithms are not quantum safe. Same with password length.

I never said it is not an attack vector. There are dozens if not hundreds. The question is about the probability, which is always a dimension if you manage risks. There is no need to list all theoretical possible attack vectors, if the probability of actually happening only affects 2 people on this planet.

Videos for educational purposes should not sensationalize unlikely attacks, as it only causes unnecessary fear. I’d rather have someone using torrent on VPN than not using anything at all because they are now afraid of the government.

That’s not what I was talking about?

If someone is actually trying to convict you just based on the correlation of the connection times, you probably don’t just share a copyrighted movie. So why mentioning this as an actual threat in the first place?

Oh wow, love the colors of the wallpaper. I wonder if I could achieve the same thing with my plants.

By the way OP, similar but worse is the ability to handle 25Gbits. But someone made a working router for that as well and CPU was also a factor: https://michael.stapelberg.ch/posts/2022-04-23-fiber7-25gbit-upgrade/

True. But since OP is using a benchmark anyways, I don‘t know how close to real world that is. If they are doing lots of filesharing, let‘s say with P2P networks, it could be way worse because of the number of connections. So I agree with you - I was just working with the info I had :)

And he is currently at 1/3 of the potential speed and 3*60% = 180% CPU load for 1Gbits. So I wouldn’t even bother troubleshooting further when you already know the hardware will be an issue sooner or later.

The question is what you do with your pfsense. IDS/IPS are quite CPU hungry and Celerons are not really fast CPU’s.

DNS? Why so complicated? Just edit your hosts file 😏

deleted by creator

Agree. I just got it for fun and because it was cheap. I used it for my disposable e-mail addresses but now switched to .org

Also, don‘t use it for any mail servers. Spam Assassin gives a negative score by default on *.xyz domains. Stupid as shit, but I had to learn the hard way.

My HA is running in docker. It is easier than you might think. Forget about LXC. And just take your time migrating the stuff and only when the service works in docker, you can shut off the VM. Believe me, management of docker is way easier than 5 VM‘s with different OS‘s. Docker Compose is beautiful and easy.

If you need help, just message me, I might be able to give you a kickstart

I was assuming you were able to get rid of the other 5 VM‘s by doing so. If not, obviously you would have not less overhead.

Add a new VM, install docker-ce on it and slowly migrate all the other containers/vm‘s to docker. End result is way less overhead, way less complexity and way better sleep.

Don‘t forget that the copyright law is a civil law, so there needs to be someone being able to proof to have suffered from any damages. Having a law case within a border is usually much cheaper to having one internationally, because every country has a different law system and you need a lot more lawyers, just to then find out there was no damage. So the risk of paying a lot of law fees without getting any damages covered is just too high. Obviously, it makes sense that big studios will try to hunt down big trackers, but I think even with my 25/25Gbit I am far away of being an interesting target, especially on an international level. At least this is how my view on this is.