qazwsxedcrfv000

Indeed they are 😂. It is especially true with the newer gen products. A few years ago these "power stripes with battery backup" had much smaller capacity and fewer capability.

It would be a neat option if they have armed it with a larger battery. Even those dirt cheap portable battery packs come with 10Ah nowadays...

as if they are in a role to make demands now lmao

A selfhost option: Bitwarden frontend with Vaultwarden backend.

For such a small load, you may consider those surge protectors/power stripes with battery backup, e.g. APC Back-UPS 600VA. Or you can take a more DIY route and try those DC UPS circuits if your low-power NAS supports direct DC input, i.e. it has a barrel jack for power.

Motherboard has to be changed no matter you are upgrading to the latest Intel or moving to AMD. CPU-wise I dun think AMD is significantly more compatible with Linux than Intel... You may have confused the situation regarding GPU.

AM4 is on its last leg. So if you really make a change to AMD, I suggest moving to AM5 which means you need to drop your RAM too as AM5 only supports DDR5.

Yes Telegram bot API supports long polling which is basically your server making successive long-running requests to the Telegram server and wait for a response.

Any $5 VPS (usually single core plus 1GB RAM) should be good enough for this purpose if it is just a bot for you and your friends.

If your budget allows, I recommend you buying an Intel 12th gen i3 12100 with a low tier ITX board with say H610 instead of J5040. J5040 is not a bad chip for its class but it is significantly underpowered.

Seriously if you really want to host your own instance, it is more or less your responsibility as an admin to moderate that instance. That includes purging and blocking unwanted contents. There is no way to avoid that.

As for your suggestion, it largely boils down to restricting anonymous access to the search related APIs in an instance. It is no doubt a good feature, espeically for read-only instances. I think you can create an issue about it in Github to get more visibility from the devs.

Yes the basic auth way I suggested only protects the lemmy-ui from being accessed which is the lowest hanging fruit in the equation. That's also why I call it the "simplest way". "Interested parties" can still access your instance via API if they know their way.

It would not affect federation as the endpoints are still open. But a word of caution. This only protects the lemmy-ui from being accessed without the basic auth credentials. If someone tries to access your instance via API, it will still work.