I run MiniO in Docker. Love it. I’ve never used Garage or Seaweed.

I’d be interested in that. Kind of like an open-source Consumer Reports.

[SOLVED!] That Stack Exchange post was the solution! I had to ask ChatGPT for assistance (e.g., “how do I view the contents of a .crt and a .p12?”, “how do I add a CA to a client cert?”), but it worked. Thanks for your help, @[email protected].

I don’t think I would have ever thought that my client cert didn’t contain the CA, especially because when I clicked on the client cert that was installed in GrapheneOS, it showed me a summary that said it did contain a CA! grrrr

(tagging @[email protected] as he wanted to know the solution)

Thanks for your research and the suggestion, @[email protected].

I wasn’t able to make that work, but I don’t think it was trying to solve the problem I’m having, anyway. That procedure was to add self signed SSL certificate to Android, but my certificate is neither self-signed nor an SSL cert. At least I think not - I find certs very confusing. The cert I’m trying to work with is an mTLS cert, a client cert. It’s not used to establish a secure SSL connections, it’s used to verify that I (the person with the cert) and authorized to use the app.

Additionally, I’m able to successfully install the cert into Android, but the problem is that it seems to be ignored. The mTLS cert is installed in GrapheneOS’s “VPN & App User Certificate” section, and my CA cert is installed in the “CA Certificate” section. Vanadium, Fennec, and Mull browsers just aren’t using them. :(

Thanks for the reply, @[email protected].

I tried to install my client cert in “CA Certificate” but the certificate manager app in GrapheneOS said that it was the wrong kind of cert to be used in “CA Certificate”. It is, after all, a client cert, not a CA cert.

:(

Thanks for all those explainations, everyone. Some of it was over my head, by I got the gist. 🙂

I just installed this a couple days ago and already used it twice. It’s super easy and convenient.

All of these replies made me feel a little bit better, but yours especially resonated with me. Thanks.

Can you try killall ssh on the client, and then try to ssh into the rpi again?

Social media is not the place to request or trust legal advice. What I’m requesting here is people’s experiences.

FYI, there’s also https://github.com/walkxcode/dashboard-icons ?

Its not an “icon font”, but it’s a good source of icons.

Is this a good use case for peertube? Spin up an instance or join an instance, and upload the video there?

This is really fascinating. I’m on this journey, too, and do a lot that’s similar, but I’ve not heard of some of what you do/use and some of it sounds beyond my capabilities.

Thirded. I self-host it (actually the Vaultwarden fork) and use it on desktop browsers, as a desktop app, and as and Android app (F-Droid). I also store secure notes in it (e.g. end of life instructions for my partner). Very powerful and versatile, and AFAICT, secure.

That sounds crazy, but easy to test. Thanks for the suggestion.

I use Solokeys. Didn’t know they were defunct. I just bought another from then a month or so ago. I use it for MFA, ssh, and sudo, and I’m trying to config Kubuntu login screen to require solokey but no luck yet.

I like solokeys, but the one I recently bought has NFC and, technically, my pixel7 running GraphenreOS can detect the device, but it doesn’t work. Many people reported this issue. In my experience, NFC is non-functional.