No idea at all, but I am highly interested in your experience. So it would be great if you could came here back to share it with us

This is the answer

Yes, it will be enough if your services are not exposed via port forwarding , tailscale / zerotier are super convenient for this.

Honestly, if I were you I would start thinking in having a small computer just to act like a proxy / firewall of you synology, or even better, just run the applications on that computer and let the nas only serve files and data.

It is much easier to support, maintain and hardening a debain with a minimal intallation than nay synology box just because the amount of resources available to do so. In this easy way you could extent the life of your nas far beyond the end of life of the Sw

Don’t make it available from internet. This will solve the issue.

If it is not possible, once the cve is published and properly described, perhaps there is another way to secure it via an external proxy or even a waf.

If you have unsupported Sw, it is always a pain in the ass to keep them secure so try to figure out always the first point

Can someone be so kind to explain me what I am seeing?

Because it seems like I am not celvee enough to get it

The answer is mTLS.

But you will run into the key distribution problem. But if your number of devices is manageable, it could be the solution

This thing reduces the attack surface of the inmich installation.

If it is good, or bad or fitting to your security model can only be said by you. But honestly it sounds like a sensible thing to do

The learning curve is a bit steep but his guide is awesome https://trash-guides.info/Radarr/Tips/How-to-setup-language-custom-formats/

In the other hand, the public trackers are dominated by English and, at least I, I couldn’t find a lot of Spanish dual movies better than the 720p

In any case, if you can gain access for a Spanish private tracker with radarr support, let me know

Thanks for the comment, I will try to check but performance should not be an issue. In the end it is personal selfhosted service.

If you think something similar to Instagram could solve your problem, check this: https://docs.pixelfed.org/running-pixelfed/installation/

Also, it should be trivial to expand it to the rest of the family

Super good, it is increíble useful and the ability to find any document in almost any place in seconds in awesome.

Once this is said, you need to stick to a process and it is time consuming, and of course, you need to manually review the automatics tagging feature.

So, It is not a set and forget like most of the people expect

Give kodi a try ;)

Borgbackup. It is an ugly command line program. But it gets the job done and ticks all the boxes. But if you accept a recommendation try to use one of the friendly frontend like emborg or borgmatic

And you don’t need different partitions so you can save space.

OK got what you mean.

For avoiding the cases you are describing I use several plugins for the keepass (original flavour) so in my desktop it syncs directly with the cloud.

And in my android I use keepass2androd thst is able to open the database from the cloud too.

Regards

May I ask what is wrong with your archaic setup?

I have exactly the same config and I find it easy and reliable for not asking for a change.

Am I missing some points or what is going on?