DarkSirrush

The server has been reverse engineered for literal decades at this point.

I can share my traefik setup - note I am doing this on my phone at work, so I might miss something

compose.yaml

    labels:
      - "traefik.enable=true"
      - "traefik.http.routers.traefik.middlewares=authwares@file"

  GNU nano 7.2                      /config/traefik/dynamic/middlewares.yaml
http:
  middlewares:

    limit:
      buffering:
        memRequestBodyBytes: 5000000000
        memResponseBodyBytes: 5000000000
        maxRequestBodyBytes: 5000000000
        maxResponseBodyBytes: 5000000000

    authwares:
      chain:
        middlewares:
          - default-headers
          - authelia
          - limit

    default-headers:
      headers:
        accessControlAllowHeaders: "content-type,authorization"
        accessControlAllowMethods:
          - GET
          - OPTIONS
          - PUT
          - POST
          - DELETE
        frameDeny: true
        accessControlAllowOriginList: "*"
        accessControlMaxAge: 100
        addVaryHeader: true
        browserXssFilter: true
        contentTypeNosniff: true
        forceSTSHeader: true
        stsIncludeSubdomains: true
        stsPreload: true
        stsSeconds: 15552000
        customFrameOptionsValue: SAMEORIGIN
        referrerPolicy: "strict-origin-when-cross-origin"
        customRequestHeaders:
          X-Forwarded-Proto: https
        customResponseHeaders:
          X-Robots-Tag: "none,noarchive,nosnippet,notranslate,noimageindex"
          server: ""
          X-Forwarded-Proto: "https,wss"
        hostsProxyHeaders:
          - "X-Forwarded-Host"

    authelia:
      forwardAuth:
        address: http://auth/api/verify?rd=https%3A%2F%2Fauth.example.com%2F
        trustForwardHeader: true
        authResponseHeaders:
          - "Remote-User"
          - "Remote-Groups"
          - "Remote-Email"
          - "Remote-Name"

  GNU nano 7.2                            /config/traefik/traefik.yaml
global:
  checkNewVersion: false
  sendAnonymousUsage: false

entryPoints:
  web:
    address: :80
    proxyProtocol:
      insecure: false
      trustedIPs:
        - 172.32.0.0/16
        - 192.168.1.0/24
    forwardedHeaders:
      insecure: false
      trustedIPs:
        - 172.32.0.0/16
        - 192.168.1.0/24
    http:
      redirections:
        entryPoint:
          to: websecure
          scheme: https
          permanent: true
  websecure:
    address: :443
    proxyProtocol:
      insecure: false
      trustedIPs:
        - 172.32.0.0/16
        - 192.168.1.0/24
    forwardedHeaders:
      insecure: false
      trustedIPs:
        - 172.32.0.0/16
        - 192.168.1.0/24
    http:
      tls:
        options: modern@file
        certResolver: letsencrypt
        domains:
          - main: "example.com"
            sans:
              - "*.example.com"

  providers:
  docker:
    exposedByDefault: false
    network: compose_proxied
    allowEmptyServices: true
    endpoint: "http://socket:2375/"
    defaultRule: "Host(`{{ index .Labels \"com.docker.compose.service\"}}.example.com`)"
  file:
    directory: /config/dynamic
    watch: true

api:
  insecure: false
  dashboard: true

certificatesResolvers:
  letsencrypt:
    acme:
      email: acme@example.com
      storage: /certificates/acme.json
      dnsChallenge:
        provider: cloudflare
        resolvers:
          - "1.1.1.1:53"
          - "1.0.0.1:53"

log:
  level: DEBUG
  filePath: /config/logs/traefik.log
  format: json
accesslog:
  filepath: /config/logs/access.log
  bufferingSize: 100
  format: json

Guess I am making this in excel now.

Note that its also possible to set up service auto discovery with traefik, the only traefik related config I do on new containers is

Traefik.enabled=true

I gave up and used endeavouros instead.

I have a few:

loginserver

• 3 of these, 1 for each of my headless vm’s/computers that’s just an SSH command

dcompose(d/pull) - docker compose (down/pull)

3 scripts that are just docker compose up/down/pull, as scripts (remind me in 6 hours and I will post the scripts) so that it will CD to my compose folder, execute the command (with option for naming specific containers or blank for all) and then CD back to the directory I started in.

Or, hear me out, we have the right and secretly wish we were the left (endeavouros flavoured arch BTW)

Did you check the magazine cover too?

Why not use myrient? It seems to have every ps2 game individually and is also easy to mass download from (at least with a download manager) and the speeds are great in my experience.

That’s good to know for others, especially if that update check setting isn’t found in-app and only in the config file itself.

For me, I don’t think I am going to try again with the app.

I can’t stand that I can’t close discord until I have touched that stupid dropdown, to the point I have uninstalled discord and just use a matrix bridge or the browser version.

I’m on endeavouros so the deb file is pointless

My mother used to call me a son of a bitch until I one day replied “I know”.

Or

“I don’t believe in god because of the things He has done to me, but that doesn’t mean you shouldn’t believe in Him”

She also talked about her “schizo friend” quite a lot, as if the events were recent, even though there was no chance she had seen the person in over a decade.

We don’t speak anymore.

I gave up on automating it, I download with slskd, and run musicbrainz Picard (import slskd download folder, and set it to always save to the jellyfin music folder/rename with my preferred sorting method). This has the bonus of downloading the cover art, and rarely has issues.

Nah, huge boobs limit cosplay options far more than small ones - there are tricks to increase visual size, but decreasing is a lot more difficult and can cause discomfort or injury if done wrong.

Currently Souls Remnant, though only the lowest tier because I am broke

If they are professional and not someone looking for a quick buck, and professionals probably wouldn’t steal a random person’s phone

I think I finished book 1? But his character was written so self absorbed/conceited/disgusting I couldn’t keep reading.

Yeah, but that mc deserves it.

Seriously, could not get far in the LN because the character was written with such a shitty personality.

To be fair, Gojo was killed off because the mangakas wife had the hots for the character, not because it was integral to the story.

Starting to feel like Tokyo Ghoul with all the kicking the MC when he is down.