GottaHaveFaith

That’s something worth money so I don’t think you’re going to find anything good

Yes I re-read the cve, I thought it was an issue with an npm package with a cryptominer

I don’t think a vpn would help here

I basically fix other people shitty voice for a living (replacing it with my own shitty code), the “best” one was by a guy, I suppose he was a self taught c programmer from how he wrote code, writing a complex python program. I saw:

• a function called randomNumberGenerator. It was a function which started a webserver. While looking for a python tutorial for something I found out why: he copy pasted the tutorial snippet but then didn’t bother renaming the function
• a program whose job was to listen to all other services and send them to another service via udp BUT it had a maximum buffer size so messages sometimes got truncated. I just directly put the listener in the target program and deleted it
• like another guy in this thread he didn’t use git. First day on the job they told me “yes, we need to check which machine has the latest code because he ssh into them and work there”. His version control was basically putting code in different machines
• lot of copied variables, because of c I suppose? Things like var = self.var
• camelCase python (ok this is just styling in the end)
• files with 10k lines of code
• half the services were in python 2, half in python 3. Don’t ask me why
• variables name in his original language (not English, not the client language)
• single letter variables, I fondly remember self.I (upper case i)
• I remember an if a == a: (I left it there because lol)
• he added a license check which used the ethernet mac address. Too bad ethernet was removed from the machine, and his code launched an exception which returned 00:00:00:00 as mac address, so all licenses were working on all machines

And many other things…

In another project I saw a backend running on the frontend, as in, this guy wrote the logic for a machine on the Javascript running the user interface of the screen

Dumb idea: if the configuration is on a file, you can make it immutable. Something with chattr +i can’t remember. I take no responsibility if your server catches fire, and you may have to manually set the flag on and off if you want to add new media/change settings. It may be more complicated if everything is inside a “full” sql db

As for the rest, either start jellyfin at boot or a custom launcher or kodi. I don’t know if plasmashell is still working, it can probably be configured to only show the correct stuff. There are also custom launchers for android tv

Installed 4239 packages 8000 severe vulnerabilities 200 packages looking for funding

I think most selfhosters already know/use Linux, so management issues are already known. About the ease of use, if you manage services with docker it’s really easy to bring them up/down, and if you want some GUI there’s portainer.