I commented elsewhere here, but E2E encryption is just between the server and the end user (ie a VPN)
You’re thinking about encryption at rest, on the storage.
Immich would have to setup a whole new design to be able to store all the metadata on a per-user basis… but… you could have multiple Immich instances if you were to host it for your friends, but I think we’re drifting into “why bother” now…
Well… E2E is still feasible, that’s your VPN for example.
Encryption at rest is where de-dupe, search, etc, can break.
I guess this is mainly targeted at Universities and organisations that mirror repos?
They’re the kinda place (I presume) that would be able to support this…
Is that the same i as the squareroot of -1?
If you’re able to, use GeoIP ranges to only allow access from the countries you want.
That immediately limits a lot of everything
Then - again if you’re able to - use a block list that covers known scrapers in case they’re in your country.
I use pfBlockerNG on my pfSense firewall for exactly this.
Take a backup and go for it.
Personally, I ditched OMV for standard Arch Linux and just added the packages I wanted…
This
x10
MythTV for the main storage, stored in folders by my genre.
All metadata updated via Picard.
Syncthing to replicate to a Raspberry Pi (2 or 3, I don’t recall which) running Volumio with a DAC board to connect speakers to.
The Pi is in the bedroom, so I only replicate the genres that I want, which cuts down on storage needed on the Pi, and means I don’t need MythTv / NAS / etc. powered over night.
I was going to query why fork instead of just maintaining, but after reading theose comments I see the problem.
So, ok, I need to start shifting packages…
Thanks for the CoMaps pointer, didn’t know about that / issues with Organic Maps
MythTV - as others have already mentioned. It’s designed to work with the 10’ interface
Even records TV programs (presuming you have tuner hardware of course) - which I don’t think the others can do?
We don’t stream Netflix, but we do watch other various streams (ie BBC iPlayer), yoochoob, etc - all works fine, inc… video files from various sources, and music…
We use it with a Logitech K400 wireless keyboard and it works great for us.
I have played with a more traditional looking TV wand remote in the past, but you still need a keyboard to type in program websites, names, etc. so the K400 became our defacto remote.
MythTV used to come with Ubuntu as Mythbuntu back in the day, but most of the pre-installed distros have fallen away, so you’d need to pick a distro and install it yourself.
It’s a very mature application, so you won’t need to keep updating every time you want to watch anything.
Yes. And No.
I have a home made (arch btw) NAS that stores all our files - mostly via syncthing, even from remote family.
That was it.
Then I installed Immich so that we could see the photos… so… it’s technically just a NAS, but it does now have a web application running on it…
Videos & Music are on a completely separate MythTV box which existed before the NAS - I saw no point in moving ~3TB of data to a separate box that would need to be powered when I want to watch / listen to something… my NAS powers itself up & down throughout the day to save electricity (and it was interesting to learn how to make it know when it was / wasn’t being used)
Download with yt-dlp. All of it. Even into a single folder if that’s easier.
Then run it all through Picard and that’ll do everything else for you - albumart, metadata, folders, filenames, the lot.
Anything that Picard doesn’t know about, enter it into the MusicBrainz db to give back to the community.
Done.
We use VNC as we can record the sessions easily for later priof / discussion with our customers.
It’s in a VPN tunnel of course.
But of course, we also don’t use Google, AWS, etc as they’re not secure enough for us and we have our own SOCs
If you’re looking for a different approach, I moved from Nextcloud to Radicale for my family calendars, which includes ToDo functionality.
From an app point, for Android I’m using Fossify Calendar (which I think you’re using?) and Tasks.Org ToDo - and this definitely handles recurring tasks (inc. with different types of schedules)
From a remote access point of view, I have HA Proxy to convert the internal HTTP traffic into external HTTPS traffic (with Lets Encrypt certificate)
(Yes, I also have a VPN for other things… just focusing here for the calendar / todo)
My journey⋮ Nextcloud —> syncthing + radicale
Much simpler, easier to maintain, less resources needed
Got a link for that? Searching for “garage backup storage” doesn’t really get me anywhere…
Nice. I’ll go that way when I next brave the dust and cobwebs where the server’s currently located
Aha! I was considering moving from proxmox to incus too, but incus seemed quite new and not much documentation (at the time)
How do you find it now?
If they’re sharing it with me, then sure, I’ll add it to the folder for that party, holiday, event
Immich would scan it and faces are taken care of and if there’s metadata in there, great, if not, dunno if I could be bothered to edit it… maybe date stamp if that was wildly off.