Okay I am very confused… where are these characters from? Sorry for my ignorance.

It’s 12V so I guess you can Frankenstein something with a car battery. But honestly this sounds more like a LTT video than something I would trust not to burn my house down.

Very good point regarding geoip, thanks!

Yea that’s basically the reason why I can’t use a VPN.

In fact there isn’t really a problem to leave your phone connected to the selfhosted VPN all the time. If split tunneling works properly, only traffic that access your home network would actually go through the VPN, all others will just get bypassed.

But in my case, I already need to be connected to another VPN most of my day, so can’t really go this route.

Well I’m trying to discuss when unable to use a VPN so….

Limited container access is a good point. Noted.

I think the APP itself is fine, but would an API access give attackers a mean to brute force into it? Sorry no expert here.

The official wiki talks about securing password login with fail2ban. I guess this is not needed in my case, as it’s handled at the Authelia level.

Because it’s “quick start”. Least effort to get a taste of it. For actual deployment I would use compose as well.

Many project also have a example docker-compose.yml in the repository if you dig not so deep into it

There is https://www.composerize.com to convert run command to compose. Works ~80% of the time.

I honestly don’t understand why anyone would make “curl and bash” the officially installation method these days, with docker around. Unless this is the ONLY thing you install on the system, so many things can go wrong.

I wonder if this can be done with a reverse proxy. Nginx can change specific strings in the page it returns, so maybe this can be pushed a bit further?