brewery

Came to say this. Most people in the UK have to pay tuition for university. There is a govt loan but you're still paying it, plus interest

Oh Ok. Sorry, it just can't across really negative rather than pointing out a potential flaw. I can see difficulties enforcing it by the workers like you mention

Thanks for taking the time to reply. Will have to reconsider my choices here!

Im curious about your argument because this would justify not putting any rules at any time. No cigarettes for under age in shops (might attack a shop keeper), no alcohol in pubs (might attack a bartender), no fines for speeding (might attack cameras or police), no parking restrictions (might attack ticket wardens), etc.

Maybe the threat of fines are not enough to change this behaviour (which I can understand in India after spending a lot of time there) so they are trying a novel approach. One thing Indian police will take more seriously is attacking a worker for applying the rules compared to risking your own life.

Why is it shitty? I am not trying to deny it, just really curious what it is about

Feels a bit like the horse has already bolted. I am very against this move and also believe everyone should delete their Facebook accounts (I did so years ago and not missed anything). However, it feels like (a) it's already happened so people are in these bubbles where the fact checks won't help and (b) it feels like it's mostly shared through WhatsApp groups where there is no content moderation.

I really want to delete WhatsApp but all my family and friends use the groups, and just don't care enough about this stuff to bother moving elsewhere. I only know one person who isn't on it and have no groups of people not using it as their main form of communication within those groups.

After some research on here and reddit about 6 months so, I settled on Borgbase and its been pretty good. I also manually save occasionally to proton drive but you're right to give up on that as a solution!

The hardest part was choosing the backup method and properly setting up Borg or restic on my machine properly, especially with docker and databases. I have ended up with adding db backup images to each container with an important db, saving to a specific folder. Then that and all the files are backed up by restic to an attached external drive at well as borgbase. This happens at a specific time in the morning and found a restic action to stop all docker containers first, back them up, then spin them back up. I am find the guides that I used if it's helpful to you.

I also checked my backups a few times and found a few small problems I had to fix. I got the message from order users several times that your backups are useless unless you regularly test them.

Theres a lot of different things going on here although it sounds simple, you're actually touching many different technologies. I started a few years ago to self host and it took me a while to get my head around these and still have issues so don't worry too much!

Im not familiar with caddy but the ports look wrong. It would be looking for 80 and 443 presumably on the docker host (right hand side / "RHS Ports". You could use any ports on the left hand side ("LHS Ports").

The section "DOMAIN}:1443" might be telling caddy to be looking on port 1443 inside docker, which means the port need to be flipped around. The RHS Ports are what the service inside docker is looking to use (often these are set by the developer but they can be changed in settings, it's easier to leave these as default and only change the LHS Ports). The LHS Ports are what you choose to expose on the actual server itself. https://docs.docker.com/get-started/docker-concepts/running-containers/publishing-ports/

Theres no mention of the router settings so the problem might be there. Are you forwarding the right ports through? You would need to forward ports 80 and 443 to the LHS Ports you choose for caddy. These port forwards would also need to point to your servers internal address. (Search " port forward settings")

What do you have on port 80 as I would recommend to change that to something else and have caddy on ports 80 and 443. I would also suggest trying nginx proxy manager which is available on docker, has a nice web interface to add reverse proxy's, and can handle your SSL certificates (inc automatic renewals). This would replace caddy and would use ports 80 and 443 on your server. https://nginxproxymanager.com/

Also, just to mention, your safest option is not to expose vaultwarden to the internet unless your very sure you need to and add other protections (firewalls, fail2ban etc). If it's just you/a few people, look into using a VPN like tailscale (easiest but relies on external party) or Wireguard (fully yours to control but pretty complicated).

You would still need an SSL cert but your can do this through DuckDNS using https://github.com/maksimstojkovic/docker-letsencrypt. You could also buy a cheap domain and never have to expose anything, as they would give you a certificate to download (cloudflare or porkbun are good - https://kb.porkbun.com/article/71-how-your-free-ssl-certificates-work) and you manually upload it to caddy or nginx proxy manager. the best option is to use nginx proxy manager or certbot to handle these as the certificates expire. You can set up "DNS challenge" in your SSL certificate manager which needs details from your DNS to obtain the SSL certificates on your behalf.

If I was you, I would search for online guides and setup in this order: nginx proxy manager, SSL cert (buying your own cheap domain from cloudflare and setting up DNS challenge in nginx proxy manager), tailscale, then vaultwarden.

First time I've seen this and wow, this really hits the reasons! Thank you

As someone who used to cycle, walk or ride a bus across these bridges, please don't blow them up. In fact, I think all the central London bridges have bus lanes, plenty of walking space and some have cycle lanes. Theres one bridge for people only. I know im taking this too seriously but it's a very scary thought

Does it include cleaners? Most offices seem to hire external companies so don't hire cleaners themselves, or any of the "menial" jobs required to have a functioning office. Might hide much worse jobs

Im using a free Mailgun account for all my self hosted services. Happy with it so far.

Proton only has SMTP on it's business accounts, and you have to apply for one with a good reason (ie not for spam)