Dust0741

@Dust0741@lemmy.world

This is a remote user, information on this page may be incomplete. View at Source ↗

⁨Comment⁩ on ⁨Sanity check: am I crazy for wanting to wipe everything and do/learn from scratch?⁩ ⁨⁨1⁩ ⁨week⁩ ago⁩:
Let’s go!!!
⁨Comment⁩ on ⁨Sanity check: am I crazy for wanting to wipe everything and do/learn from scratch?⁩ ⁨⁨2⁩ ⁨weeks⁩ ago⁩:
Not really. I also didn’t have much data in them, so I opted to start from scratch. I’d recomend searching for “service docker” to find how to run that thing in dockers compose. Then I make a folder for each thing. In my home directory, I make a new folder. Say fileBrowser. Then inside that I make docker-compose.yml and put the compose from the internet (if you find a docker run, you can convert it to compose via sites like composerizer). Then for config volumes I like to specify ./ so it goes to the current folder. I.e. ./filebrowserconfig/settings.json:/settings.json so that inside the fileBrowser folder we’re already in, it has a folder called filebrowserconfig and a file called settings.json. (note that docker tries to make folders, not files. So if the json file doesn’t already exist, it’ll make a folder named settings.json lol)
⁨Comment⁩ on ⁨Sanity check: am I crazy for wanting to wipe everything and do/learn from scratch?⁩ ⁨⁨2⁩ ⁨weeks⁩ ago⁩:
This is what I did! I’ve now migrated to my own docker-compose files.
Traffic routing security comparison
Submitted ⁨⁨3⁩ ⁨weeks⁩ ago⁩ to ⁨technology@lemmy.world⁩ | ⁨0⁩ ⁨comments⁩
Traffic routing security comparison
Submitted ⁨⁨4⁩ ⁨weeks⁩ ago⁩ to ⁨selfhosted@lemmy.world⁩ | ⁨2⁩ ⁨comments⁩
⁨Comment⁩ on ⁨Any nice playbook or tutorial to host a static website from home?⁩ ⁨⁨5⁩ ⁨weeks⁩ ago⁩:
Yup for sure. I specifically have mine open source. I have my domain through Cloudflare so that made sense.
⁨Comment⁩ on ⁨Any nice playbook or tutorial to host a static website from home?⁩ ⁨⁨5⁩ ⁨weeks⁩ ago⁩:
I know it’s not self hosting, but I went with a Hugo site hosted on Cloudflare pages. That way I don’t have to port forward or worry about uptime or security.
NUT UPS support question
Submitted ⁨⁨5⁩ ⁨weeks⁩ ago⁩ to ⁨selfhosted@lemmy.world⁩ | ⁨7⁩ ⁨comments⁩
⁨Comment⁩ on ⁨wg-easy plus gluetun⁩ ⁨⁨1⁩ ⁨month⁩ ago⁩:
So my public IP address changes. Using just wireguard makes my public IP just my home’s public IP. It would be nice to be able to make it a 2-in-1 where my public IP becomes that of a paid VPN account, based on the gluetun container
wg-easy plus gluetun
Submitted ⁨⁨1⁩ ⁨month⁩ ago⁩ to ⁨selfhosted@lemmy.world⁩ | ⁨7⁩ ⁨comments⁩
⁨Comment⁩ on ⁨Domain instead of ip in Wireguard⁩ ⁨⁨4⁩ ⁨months⁩ ago⁩:
Yup! This is what I do! Love it so much
⁨Comment⁩ on ⁨Domain instead of ip in Wireguard⁩ ⁨⁨4⁩ ⁨months⁩ ago⁩:
Thank you. It really was that simple
Domain instead of ip in Wireguard
Submitted ⁨⁨4⁩ ⁨months⁩ ago⁩ to ⁨selfhosted@lemmy.world⁩ | ⁨8⁩ ⁨comments⁩
⁨Comment⁩ on ⁨I benchmarked 6 different metal USB sticks⁩ ⁨⁨5⁩ ⁨months⁩ ago⁩:
Wikipedia is only 110GB… library.kiwix.org
⁨Comment⁩ on ⁨Minecraft server and reverse proxy⁩ ⁨⁨5⁩ ⁨months⁩ ago⁩:
Thanks for the help. This is enough to get me started
⁨Comment⁩ on ⁨Minecraft server and reverse proxy⁩ ⁨⁨5⁩ ⁨months⁩ ago⁩:
With Crafty you can bind a specific port.

I use tailscale for public access, and have set it up so tailscale users can access the domain.

I guess what I’m asking for is NPM but for tcp.
⁨Comment⁩ on ⁨Minecraft server and reverse proxy⁩ ⁨⁨5⁩ ⁨months⁩ ago⁩:
No I’m not. I have tailscale setup for external access. (I have dns records already in my domain provider pointing to a tailscale ip, so a device on my tailnet can access my domain. ie an authorized tailscale device can access nginx.example.com) I want to know what I have to do to get minecraft.example.com to resolve interenally.
Minecraft server and reverse proxy
Submitted ⁨⁨5⁩ ⁨months⁩ ago⁩ to ⁨selfhosted@lemmy.world⁩ | ⁨19⁩ ⁨comments⁩
⁨Comment⁩ on ⁨How annoying is it to connect to VPN/use Tailscale instead of being able to access the service directly?⁩ ⁨⁨5⁩ ⁨months⁩ ago⁩:
Oh fascinating. I’ll have to look into that
⁨Comment⁩ on ⁨Set up Tailscale with NGINX Proxy Manager⁩ ⁨⁨5⁩ ⁨months⁩ ago⁩:
Cool okay.

What about the CNAME one?
⁨Comment⁩ on ⁨Set up Tailscale with NGINX Proxy Manager⁩ ⁨⁨5⁩ ⁨months⁩ ago⁩:
For 4 II, its CNAME Name: @ Target: ???

What is the target supposed to be?
⁨Comment⁩ on ⁨Set up Tailscale with NGINX Proxy Manager⁩ ⁨⁨5⁩ ⁨months⁩ ago⁩:
A good dashboard helps with not remembering port numbers also. And can look slick
⁨Comment⁩ on ⁨Set up Tailscale with NGINX Proxy Manager⁩ ⁨⁨5⁩ ⁨months⁩ ago⁩:
Holy crap thank you so much. I was literally thinking of figuring out how to do exactly this EARLIER TODAY!

Thank you again for this write up. I have almost all of what you wrote already done (cloudflare, NPM and tailscale setup) but haven’t hooked Tailscale and NPM together yet.
⁨Comment⁩ on ⁨How annoying is it to connect to VPN/use Tailscale instead of being able to access the service directly?⁩ ⁨⁨5⁩ ⁨months⁩ ago⁩:
I have gluetun+socks5 containea running, then in an app, I put in localip:port into a proxy field. Then that app will use that connection for internet. Browsers on desktop also support proxies. So if you want a specific browser to always use the VPN, this is a very simple way to do that.

source.android.com/docs/security/…/private-space
⁨Comment⁩ on ⁨How annoying is it to connect to VPN/use Tailscale instead of being able to access the service directly?⁩ ⁨⁨5⁩ ⁨months⁩ ago⁩:
Its not bad using the official wireguard app. Its definitely noticable. On the android battery screen it’ll show around 5% after a full day of use and it on always
⁨Comment⁩ on ⁨How annoying is it to connect to VPN/use Tailscale instead of being able to access the service directly?⁩ ⁨⁨5⁩ ⁨months⁩ ago⁩:
For an external VPN like mullvad, I run my own proxy. Again it’s only available from my VPN or inside my network.

It uses socks5 and gluetun docket containers and in apps that support proxies, I can add my proxy to it and it’ll route that traffic through the paid VPN.

Or, a work profile (see shelter) or androids new private spaces. If you have private spaces, it uses a seperate network. So if you have a VPN installed outside the private space, it won’t work on apps inside the space. So, what you could do is have a paid VPN inside private spaces, and use it and a web browser or whatever there, and use your server’s VPN outside the private space.

Lmk if you want any of my docker composes
⁨Comment⁩ on ⁨How annoying is it to connect to VPN/use Tailscale instead of being able to access the service directly?⁩ ⁨⁨5⁩ ⁨months⁩ ago⁩:
I keep it running always. Partly to access stuff at home, and party to get the ad-blocking from pihole.

Do not expose stuff unless you fully understand the security risks
⁨Comment⁩ on ⁨Authentication for external sevices⁩ ⁨⁨5⁩ ⁨months⁩ ago⁩:
True. I would like to add another authentication.

I guess my question is how trustworthy is built-in authentication? I’m not really talking about vulnerabilities, but that’s a part of this, but how much trust can I put into a small projects login page being secure?
Authentication for external sevices
Submitted ⁨⁨5⁩ ⁨months⁩ ago⁩ to ⁨selfhosted@lemmy.world⁩ | ⁨13⁩ ⁨comments⁩