xinayder
@xinayder@infosec.pub
- Comment on Basic Security for your Website | Loudwhisper 3 months ago:
Can you use CrowdSec to track logs from a k8s pod? Say I have my website and some other services hosted on a k3s cluster, do I need to spin up a new pod for CrowdSec or should it be installed on the host?
- Comment on Cheap, OpenWrt compatible routers with WiFi 6? 3 months ago:
where?
- Submitted 4 months ago to selfhosted@lemmy.world | 8 comments
- Comment on Hosting on Oracle 8 months ago:
I tried 5 different credit cards to setup my account and none of them worked for the free tier. Contacted customer support, they simply said “well we can’t do anything about it, it’s clearly a problem in your end and not ours even though you tried 5 different credit cards to pay for the service”.
- Comment on PSA: Update your docker installation. Leaky Vessels flaws allow hackers to escape Docker, runc containers 9 months ago:
It’s still not an excuse to just ignore the security update because you might not be affected.
- Comment on After 1.5 years of learning selfhosting, this is where I'm at 9 months ago:
I think so, but if you check the official image you can definitely find out how to include custom plugins in it. I think the documentation might mention a thing or two about it too.
- Comment on After 1.5 years of learning selfhosting, this is where I'm at 9 months ago:
You can install the log transformer plugin for Caddy and have it produce a readable log format for fail2ban: github.com/caddyserver/transform-encoder
I had this setup on my VPS before I moved to a k3s setup. I will take a look at how to migrate my fail2ban setup to the new server.
- Comment on Anyone knows a good lightweight self-hosted alternative to GitHub? 1 year ago:
I’d recommend Forgejo/Gitea as others have mentioned or sourcehut.org (instance available at sr.ht)
- Comment on PasswordManagement: which one of these options would you choose? 1 year ago:
If you own a domain name you can uset the DNS-01 challenge instead of hosting a web server to serve the challenge response.
With DNS-01 it will add a TXT record to your DNS zones and check if the record exists to verify that you own the domain.
Depending on which tool you use, they usually support DuckDNS and some other free DDNS providers. If you have your domain on a registrar, chances are that it’s also supported.
- Comment on Gitness: Open-source code hosting and pipeline engine 1 year ago:
Why is Gitness on the news and why is it being considered as the de-facto alternative to GitHub? Why is GitLab/SourceHut/Forgejo (and Codeberg)/Gitea not being considered?
Forgejo for example has almost a 1:1 compatibility with GitHub Actions and it didn’t make the news. If you were to replace GitHub, Codeberg or Forgejo is a very good replacement for it.
- Comment on What's the best approach to deploy a static website to K8s cluster from a CI pipeline? 1 year ago:
Thanks for the suggestions!
I ended up configuring my CI pipeline to build a Caddy docker image that ships with my website files. The pipeline is also publishing the container image to the Codeberg registry and I apply the new image repo and tag to the Caddy Helm chart I found on ArtifactHub.
The only thing that’s left is to setup the CI to automatically restart the pod when a new image is pushed, so it will always have the latest version.
It was easier than expected and I had a few issues like my stylesheets not being applied and image files not rendering, but it was solved by changing the
pathType
field on the ingress configuration toPrefix
. - Comment on What's the best approach to deploy a static website to K8s cluster from a CI pipeline? 1 year ago:
I don’t like Cloudflare and I try to steer away from them.
Using Codeberg/GitHub/GitLab pages was an option as well, but I wanted to have it self-hosted so I have more flexibility and I get to use and customize Caddy to my liking.
- Comment on What's the best approach to deploy a static website to K8s cluster from a CI pipeline? 1 year ago:
That’s a nice suggestion. I guess I can make the CI build a Docker image containing my website’s files and then have a plugin for it to restart the pod that serves the website so it fetches the latest image.
- Comment on What's the best approach to deploy a static website to K8s cluster from a CI pipeline? 1 year ago:
How is this different than mounting the folder with the static website using
hostPath
? - Comment on What's the best approach to deploy a static website to K8s cluster from a CI pipeline? 1 year ago:
I was looking for it as well. I want to host the website using Caddy because I have a lot of config options available and I can fine tune it for my use cases.
I read a tutorial about using a Hugo Docker image, but then the hosting would be done by Hugo and not Caddy itself.
- Comment on What's the best approach to deploy a static website to K8s cluster from a CI pipeline? 1 year ago:
I’m not using k8s just to host my website, I have other services on it as well.
I know it’s overkill for small stuff, but I’m running k3s and not k8s (so it’s a lightweight engine). The reason I’m doing this is for learning purposes, I want to learn more about k8s and thought I could do an experiment with it on a VPS.
I plan on renting another VPS and adding another node to the cluster, as it’s pretty cheap (Hetzner ARM server costs around 3.8 EUR without VAT with 2 vCPUs and 4GB RAM). For example, it’s much more cheaper than the VPS I have on Vultr that has 1GB RAM and 1 vCPU.
- Comment on Microsoft documents leak new Bethesda games, including an Oblivion remaster 1 year ago:
An Oblivion remaster made in Skyrim
owait, that already exists, Skyblivion is a thing
- Submitted 1 year ago to selfhosted@lemmy.world | 21 comments