Extension library for Tachiyomi forks. No idea if it works with Aniyomi.

https://github.com/keiyoushi/extensions

At least they didn’t hit keiyoushi.

This engine is McCarthyism.

:q!

To be fair, Microsoft is one of the most aggressive at checking for root on Android devices. They’re not the good guys here.

1. Install Kitsune Mask (just like Magisk install) https://huskydg.github.io/magisk-files/

2. Install PIF Next. It will automatically download new device fingerprints as Google bans old ones https://github.com/daboynb/PlayIntegrityNEXT

3. Google, banks, Microsoft, whoever else is aggressively checking for root. Please consider to eat my entire asshole. Thank you.

Edit: nvm I’m bad at reading, I missed that you couldn’t even root your phone.

Google and the banks can eat my whole asshole.

VPN drains my phone battery like crazy, plus eventually I’d like to be able to share my services with some less technical people, and want to keep the barrier to entry low for them, so I’ve been looking at what I’d want in order to be comfortable exposing services publicly.

Services are running on Truenas Scale (k3s).

What I’ve been thinking is:

1. Isolate services’ network access to each other and to my local network.
2. Reverse proxy in front of all services (probably Caddy)
3. Coraza as a WAF
4. Crowdsec Caddy module
5. Some sort of auth layer in the proxy, like oauth2-proxy (kind of tricky because not every service would work well with this, especially without client support). Probably would start with a 3rd party identity provider rather than rolling my own, especially since 3rd party will probably do a lot more monitoring around logins, patterns, etc.

Thinking of hosting the reverse proxy piece on a VPS. Probably not completely necessary because I don’t think hiding my home IP really buys me much security, but Caddy might be easier to configure on the VPS compared to Truenas (though I guess I could run it in a VM on Truenas).

Each app could run a wireguard sidecar to connect it to the VPS.

Curious what others think about this setup, or if the recommendation is still to keep things behind a VPN.

Time to compile it myself.

Wow, I was wondering why those were 404ing, saw the repo was deleted and a new one was just created, and saw this post from 15mins ago:

https://old.reddit.com/r/Tachiyomi/comments/192157x/2024_there_is_the_end/

TLDR: they purging all extensions.

I keep Teams on my Android phone but installed in its own isolated work profile via Shelter.

You could do it, especially if you’re running Truenas Scale since that’s Linux. On Core you could do it inside a VM (I have Jellyfin set up inside an Ubuntu VM with persistent samba mounts to access my media).

On Scale the recommended way would probably be through helm charts, though config might look a bit different than the Docker Compose files here. There are charts for I think all the services mentioned: https://truecharts.org/charts/description_list

Personally I’m planning on waiting just a little bit longer for Scale to become more stable and then I’m going to migrate, rather than trying to set up all these services in a VM on my Core machine today.

I think it’s a pretty fair comparison because in order to get the lifespan that I expect out of my hardware (3-5+ years), on Android I need to install a custom ROM just to get security updates.

Meanwhile Apple is still publishing updates for devices even 10 years old sometimes.

Yes, I know Google is starting to commit to 5 years of security updates, but if you bought a Pixel phone last year (like I did) then there’s a decent chance that yours still only came with 3 years of updates. So if you want a similar level of service then you end up having to do a lot of work yourself to make it happen.