Cloudron Forum

WanderingMonster packaging report is that this would be hard but feasible: https://paste.wanderingmonster.dev/?ebe00188d1149a6d#GSN4LJzodW7ptL9toLBhkTHGj3YJWriFj5FsEu5vFbRw

This is a great proposal! We need it, other downloaders are flaky, and it would be about the easiest application to package on Cloudron. A report on how to package it is here: https://paste.wanderingmonster.dev/?06af18bc0e10b387#7JTZKMbxhiE4KuGNXYppA9t3NC6HoZos5sXUhzd1Kt2U

restic is also a strong candidate that is my daily driver: https://restic.net/ Super reliable. And there’s even a community guide, (by me ) : https://docs.cloudron.io/guides/community/restic-rclone

Ok @james. I’ll do more accurate research

Just to be clear, we very much appreciate such feedback at the moment, however the app is not yet production ready but only ready to test. The next versions for example will have some breaking change as it support better timezone setting per event, which might make some events which came in via caldav import relocate to UTC.

Hello @gomesm @gomesm said: Upgrading to 24.04.4 fixed the issue. Good to read! So another confirmed fix by upgrading Ubuntu.

Ah, actually, I think it's likely just that my Firefox is glitching out as it's everywhere for me right now.

I would absolutely advocate for re-adding X-Content-Type-Options: nosniff as long as we don't have a way to set headers directly in the Security Settings of Cloudron Apps (like we can with CSP headers). That header still provides meaningful protection against MIME-sniffing attacks and has widespread browser support. Afaik, X-Permitted-Cross-Domain-Policies is still used by Acrobat (which is unfortunately far from dead), but I agree it's fair to remove it from the default configuration since it's an edge-case.