cross-posted from: https://sh.itjust.works/post/55355363

https://redlib.catsarch.com/r/stupidpol/comments/1r4l2yi/merz_urges_germans_to_work_more_cites_greece_as/

I am running a defederated local Matrix server, and I need to set up calls. From what I can tell, the "legacy" calls require a STUN and TURN server, and the new MatrixRTC standard seems to require them as well for Livekit to work. However, I do not want to expose anything out to the public internet, as I want everything to be behind NAT for local access only (all of the clients for the server will also be behind the NATted network). I also have Tailscale running on my servers, and it would be useful if I would be able to connect to the TURN server even when not in the network. Is there a way to get STUN/TURN to work in this situation? It seems that all the servers expect to have public network access.

While looking for Discord alternatives I came across this project which looks like a great alternative for the kinds of Discord servers centered around Open Source projects and organizations. Ones where live chat and voice rooms aren't the focus.

It's a combination of forums and knowledge base that would be perfect for this use case.

I reach for an empty box of RAM to look at.

Defence Minister David McGuinty says Canada has now officially joined the European Union’s Security Action for Europe (SAFE) program, which offers loans to member states to invest in defence capabilities.

"The agreement strengthens our collective security, supports the development of key defence capabilities, and gives Canadian industry access to European defence markets while contributing to European and Ukrainian security," McGuinty said in a statement sent to CBC News.

cross-posted from: https://news.abolish.capital/post/28102

US military leaders previously warned Trump that they were 'not ready' to respond to Iran's anticipated retaliation and required additional time to prepare

From thecradle.co via This RSS Feed.

We're excited to announce a major update: the Jellyseerr and Overseerr teams are officially merging into a single team called Seerr. This unification marks an important step forward as we bring our efforts together under one banner.

For users, this means one shared codebase combining all existing Overseerr functionalities with the latest Jellyseerr features, along with Jellyfin and Emby support, allowing us to deliver updates more efficiently and keep the project moving forward.

Please check how to migrate to Seerr in our migration guide and stay tuned for more updates on the project!

https://www.youtube.com/watch?v=ftjEcrrf7r0

The company may have walked away from one controversial partner, but its Community Requests program still runs through a major DHS contractor: Axon.

Archived version: https://archive.is/20260214133230/https://www.theverge.com/report/879320/ring-flock-partnership-breakup-does-not-fix-problems

The last anime I actually really liked was Cowboy Bebop. I try getting into it off and on but I'm kind of put off by the common tropes. That said, my d&d characters for the past 20 years have been some variation of "that's an awful lot of hydra meat that's going to waste if I don't cook it" which I understand is the premise of the show.

Is it worth giving it a try? Am I going to have to sit through an unreasonable amount of jiggling tits?

How's your Valentine's Day going?

Wall Street Journal says Claude used in operation via Anthropic’s partnership with Palantir Technologies

Acer and Asus can't sell their PCs in Germany until they reach an agreement with Nokia about the use of HEVC.

EDITED TO ADD MY SOLUTION : FINALLY! I got it working. Leaving everything here for any future people.

I believe that a large part of the problem stemmed from not using a wildcard cert, for whatever reason? I switched my domain's DNS nameservers from Namecheap to Cloudflare (not overly happy about using Cloudflare but in the short term just happy this is working now). On Cloudflare, I made an API token with the permissions of zone, DNS, and Edit. I used that API token to create a *.domain.tld cert using a DNS challenge in Nginx Proxy Manager, and switched all my proxy hosts to use that wildcard cert. Once I did that, I achieved my goal!

Thank you to all the commenters who took the time to read and offer help!!

ORIGINAL MESSAGE BELOW
I am pulling my hair out and need help. I'm going to try to be as thorough as possible.

The Goal : To use sub.domain.tld to access a service hosted on my local network whether I am on the local network or not, with SSL certs either way.

The Current Situation : I have Unraid running on a home server on Unraid.IP.Address. On that server, I'm running a few services as well as a couple VMs which themselves are running services. I won't get into the details of all of them. I think the most relevant ones right now are DuckDNS, Nginx Proxy Manager, and Adguard Home - all of these run in docker containers on the Unraid host.

The Adguard home service has a static IP at AGH.IP.Address, and my router (an Actiontec T3200M) has been set to use AGH.IP.Address as both DNS Server 1 and DNS Server 2.

I own domain.tld through Namecheap and use their DNS records to point multiple sub.domain.tlds to sub.duckdns.org for dynamic DNS services. These successfully resolve through Nginx Proxy Manager when I'm outside my network to my various services, as well as those I host for some friends. Nginx Proxy Manager has a cert for each sub.domain.tld. I cannot gain access to Namecheap API for the purposes of a wildcard cert via DNS challenge, to my knowledge.

I also have Tailscale setup on the Unraid server. I currently use Tailscale to pretend to be on my local network when I am away to continue accessing my services from the same LAN.IP.Addresses whether I am home or away. This makes it seamless for me and my partner, but it wasn't my ultimate goal (as mentioned in The Goal).

What I've Tried : I have tried to use Adguard Home's DNS rewrites as well as custom query filters to catch local requests for sub.domain.tld and point them instead to Unraid.IP.Address, but this does not resolve. If I try to access sub.domain.tld from within the network with or without DNS rewrite entries, it does not resolve. I've tried using PiHole instead of Adguard Home, but was having difficulty determining if it was working at all as a DNS server, so I switched back to Adguard Home. I've also tried setting up a second Nginx Proxy Manager instance on my network at a different IP address, and tried to have Adguard Home rewrite DNS to that one still with no success.

This has been a thing I've worked on off and on for a few months with no real success so I may be forgetting a few things that I have tried. If they come up in the comments, I will edit this part with additional things I've tried.

I believe I want split DNS to achieve what I'm trying to achieve, but for the life of me I cannot figure out how to accomplish it. Any help would be super appreciated. Of all the things I've learnt on my self-hosting journey—switching to Linux full time, learning some docker and docker compose concepts, some light scripting, learning about VMs and passthrough, and more—networking as by far been the most difficult and head-bashingly difficult aspect of it all. For me, at least.

Does anyone have any suggestions for what my next steps should be to achieve my goal? I am open to any good or bad news. If I need to switch registrars, or change up my set-up radically, whatever it might take, I want to learn and I need direction because my research has hit its end.

Cheers!

I built a note-taking app because the one I wanted didn't exist. Clean UI, local .md files, no cloud, no account.

Built with Rust + Tauri 2.0 + SvelteKit. Full-text search powered by Tantivy. Graph view, AI writing tools (bring your own key), Obsidian import, version history.

Available for Linux (AppImage, APT, AUR), Windows, and macOS. Source: https://codeberg.org/ArkHost/HelixNotes

The contrast is striking: In Europe, some people whose names come up in the Epstein files are facing consequences — but in the U.S., not so much.

European royals, government officials, politicians and others are losing jobs and titles over their connection to the late convicted sex offender Jeffrey Epstein. European law enforcement agencies are opening investigations based on recent troves of documents released by the U.S. government.

Prominent Americans with apparent ties to Jeffrey Epstein — including Trump and Commerce Secretary Howard Lutnick— have so far largely kept their positions of power.

Intelligence agencies say deadly toxin in skin of Ecuador dart frogs found in Navalny’s body and highly likely resulted in his death

Alexei Navalny, the Russian opposition leader, was killed by dart frog poison administered by the Russian state two years ago, a multi-intelligence agency inquiry has found, according to a statement released by five countries, the UK, France, Germany, Sweden and the Netherlands.

The US was not one of the intelligence agencies making the claim.

Navalny died in a remote Arctic penal colony where he was serving a 19-year sentence. Samples from his body were secured before his burial and sent to the laboratories of two countries.

The UK, describing the poisoning as barbaric, said it would be reporting Russia to the Organisation for the Prohibition of Chemical Weapons, as a flagrant violation by Russia of the chemical weapons convention (CWC).

When Western leftists in awe with Qassam they're unaware that Qassam lineage is aligned with Iraq, Lebanon, Yemen, Afghanistan, Syria and Iran after five hundred years of resistance. The Axis of Resistance didn't form now. It was formed when first Westoids set foot on West Asia and North Africa to genocide billions.