Gooey0210
@Gooey0210@sh.itjust.works
- Submitted 6 months ago to selfhosted@lemmy.world | 1 comment
- Comment on [deleted] 6 months ago:
Also it shares data with China
- Comment on Authelia + Bitwarden + other selfhosted stuff 6 months ago:
I didn’t get it 😅
I see a big problem in every approach, probably because I don’t understand something
When i’m using just bitwarden, all my passwords for every service are different, but the ui is opened for anyone to see
When I use authelia without oidc I add complexity of using the services, and probably two passwords to type manually, or a locked down system(which is cool)
And if I use authelia with oidc, it means I have only one password for all of the services (manual, or in bitwarden (which has its own manual password))
- Comment on Authelia + Bitwarden + other selfhosted stuff 6 months ago:
There’s actually a point of doing that, it’s called lock down, but how to explain users how to do this 😆
For bitwarden functionality there are bypass rules on just a nginx location, or network somebody is reaching through
In general the situation reminds me using selfhosted email as a contact email for that hosting 😁 but I think in this case it’s less risk because I control the data
- Comment on Authelia + Bitwarden + other selfhosted stuff 6 months ago:
🤝
Also, it’s common practice to do rules, so ask 2fa on myserver.host, but don’t ask anything on myserver.host/api
- Comment on Authelia + Bitwarden + other selfhosted stuff 6 months ago:
There’s no registration in authelia I believe 🥲
And my problem is, like, should authelia password be manually typed, if not, where do the people store the password if they don’t have bitwarden yet
- Comment on Authelia + Bitwarden + other selfhosted stuff 6 months ago:
where should be the main password, and what services do I bypass, and etc
And the most important, how do I explain people how to use it, do I create them authelia credentials and send, or how?
I mean, if it’s that hard, I don’t know how to help you
- Comment on Authelia + Bitwarden + other selfhosted stuff 6 months ago:
You need to use authelia’s oidc, and your nextcloud app will be able to store this session for everything it needs
- Submitted 7 months ago to selfhosted@lemmy.world | 20 comments
- Comment on Do you encrypt your data drives? 7 months ago:
Yes, all, no matter what data is, it’s not hard and doesn’t have any consequences, but protects from many inconvenient accidents
- Comment on WeatherStar 4000+ Emulator 7 months ago:
Why not to make it work outside of the US? 🥲
Also, is there world wide accepted Celsius instead of ye olde Fahrenheit?
- Comment on Increase your Linux Server Internet Speed with TCP BBR Congestion-Control 7 months ago:
Sorry, what is CN2?
If it’s any solution CCP provides, I wouldn’t trust it anyway
The great firewall situation was always interesting, because if you would use a roaming Sim, then you will be able to access anything
- Comment on Increase your Linux Server Internet Speed with TCP BBR Congestion-Control 7 months ago:
Download more bandwidth
- Comment on Increase your Linux Server Internet Speed with TCP BBR Congestion-Control 7 months ago:
Download more bandwidth
- Comment on Pause alerts during the night 7 months ago:
This is the obvious solution, I don’t understand people that are hesitating using DND
- Comment on Microsoft is blocking Windows Customization Tools 7 months ago:
Reply or upvote if you already quit Schindows a long ago
- Comment on Deleting facebook account without consenting to new EU ad policy or paying the subscription 7 months ago:
Maybe try some mobile versions of Facebook Like m.facebook.com in my experience it has less features, and even less security features
- Comment on List of Printers Which Do or Do Not Display Tracking Dots 7 months ago:
Lemmings, try your best to answer this question, if we’re not able to print stuff privately it means we are doing everything else for nothing
- Comment on [deleted] 7 months ago:
It can be a zero click 🫣
- Comment on New Discord TOS binds you to forced arbitration - Opt-Out Now 7 months ago:
Create a Lemmy topic? Free and open source, better organized 🤔
- Comment on New Discord TOS binds you to forced arbitration - Opt-Out Now 7 months ago:
For me it’s matrix, very rarely can see anyone advertising discord
- Comment on New Discord TOS binds you to forced arbitration - Opt-Out Now 7 months ago:
Isn’t everyone living in a Foss bubble already? 🥲
- Comment on New Discord TOS binds you to forced arbitration - Opt-Out Now 7 months ago:
Is anyone still using discord? 🫠
- Comment on Docker - what use is it? 8 months ago:
- When you’re prohibited from using nixos
- When there’s no package for it in nixos, and you’re lazy to package it yourself
- Comment on What's wrong with Nextcloud, and why is it slow/clunky? 8 months ago:
And maybe CPU, and also need some good old fine tuning
- Comment on New home server: what hypervisor/OS? 9 months ago:
Nixos ❄️
- Comment on "How to bypass and block infuriating cookie popups" 🙄🤦🏻♀️🤦🏻♀️ 9 months ago:
In case you want to share you data for them to sell, so not 100% functional
- Comment on [deleted] 9 months ago:
I’m actually not from the “close everything, don’t open ports, always sit behind cloudflare” camp
We selfhost so we can use and share our services
There are other things we can practice instead of just isolationism and keeping everything as simple as possible
- Comment on [deleted] 9 months ago:
There are many ways to do many things in nixos
For updates you can do automatic updates
Also, there are many deployment tools, like deploy-rs, morph, colmena, bento. They all have different approaches. Some you use ssh to deploy a remote system. Some just fetch the configuration and autodeploy it.
There are many ways how you can play with this. So you can disable sudo, and deploy with ssh only from some or a specified ip. Or you can keep ssh for root disabled and just deploy home-manager. It’s really a lot, you imagination is the only limit
- Comment on [deleted] 9 months ago:
I’m a Nixos user, I wouldn’t be much help unless you do Nixos. But it’s a whole new rabbit hole which would take you months/years to learn and setup 😅
What I can say, you can do “access from home network”, “access from VPN network”, “1fa/2fa from the internet” OR “access for / and /api, but 1fa/2fa for stuff like /admin, /admin-settings, or just /login or /logged-in”
Fail2ban is fun, also maybe have a look at crowdsec
