K3can
@K3can@lemmy.radio
Also at k3can@mastodon.hams.social
- Comment on Have clankers visited my blog one hundred twenty-one sexagintillion eight hundred ten novemquinquagintillion times so far in November?? 1 day ago:
I recently added Anubis and its validation rate is under 40%. In other words, 60% of the incoming requests are likely bots and are now getting blocked. Definitely recommend.
- Comment on Self-Hosters Confirm It Again: Linux Dominates the Homelab OS Space 5 days ago:
The question is kind of flawed, though. They list Linux, a kernel, in a list of OSes.
Either just list kernels, Linux, BSD, Windows NT, etc; or just list OSes, Debian, Fedora, FreeBSD, OpenBSD, Trunas, Windows Server 2025, Windows XP, MacOS, etc.Mixing the two together just creates weird results. ¯\_(ツ)_/¯
- Comment on Running GoToSocial on an old wifi router 5 days ago:
should it be in NAND or NOR?? Why not both? My initial idea was to flash to NOR and then configure openwrt to a sort of “minimal usable state”. That is, I’d have the basic functions required run my home network: basic routing between local networks and WAN. Then I’d copy that image to NAND and that would be when I installed the “extras”, like SQM and whatnot. That way, if I ever broke it beyond repair, I could just flip the switches and copy the NOR back to NAND and start over with that minimal usable config.
I sort of followed my plan, but I think things have changed enough that it would not be the simple restart that I hoped it would.
I still think it’s a good idea, though. - Comment on Running GoToSocial on an old wifi router 5 days ago:
The Nest ones? I haven’t seen anything online of folks successfully flashing one. The first steps would probably be to solder on a USBC port and see what kind of access you can get over serial. There’s a picture of a Nest board (not the Pro) here, as well as info on what appears to be the correct usb connector. The OP also mentions that the Nest is lacking the developer button, but my guess would be that the function is still accessible by shorting the correct TPs. It doesn’t seem like that OP ever went through with the project, though, so maybe you’ll be the first!
- Comment on Running GoToSocial on an old wifi router 5 days ago:
Interesting. Looks like he’s actually using an R4. I’ve got an R3, myself, though. I use mine as my gateway router and it certainly seems under utilized. I’ve got SQM, adblocking, DDNS, DoH proxying, multiple VPN interfaces, and it’s a ‘router on a stick’ for my home networks (at 2.5gbe). Despite all of that, the CPU load never seems to budge and I’m only using a tenth of the RAM. I’m personally a bit torn on the device; on one hand, it certainly seems like it can do a lot more. It even has a m.2 slot for SATA/nvme, so it could definitely provide NAS or even some bigger applications. On the other hand though, I feel like it’s such a critical piece of infrastructure that I don’t want to introduce a bunch of non-router-related functions and risk one of those extra functions crashing the system and bringing down my whole network.
- Submitted 6 days ago to selfhosted@lemmy.world | 23 comments
- Comment on 1 week ago:
I’m not able to watch the video right now; is this actually using the gopher protocol?
- Comment on Self hosting Sunday! What's up, selfhosters? 1 week ago:
It’s running!
- Comment on I finally understand Cloudflare Zero Trust tunnels 1 week ago:
It’s not really “zero trust”, though, right?
Isn’t CF still terminating TLS?
- Comment on Self hosting Sunday! What's up, selfhosters? 1 week ago:
Trying to run a fediverse server on a decade-old Wi-Fi router and encountering some
unexpected issues. Making progress, though. - Comment on Why do so many services require email configuration? 2 weeks ago:
Eh, I agree.
I have root access to the server and can directly interact with the backend DB. Forcing email for a password reset doesn’t protect me from me.
- Comment on Internet upload speeds on self-hosted Jellyfin/Plex Servers? 1 month ago:
I have Xfinity now, so uploads are pretty good (300/80), but I used to have Spectrum, which not only cost more but only got about 8 mbps up. My solution was to restrict clients to low bandwidth streams, like 3mbps. I only had a couple users, though, so obviously there’s a limit to how far that will scale.
If you can’t upgrade or switch providers to increase bandwidth nor throttle clients, I think the only other solution would be time restrictions, but it’s really going to depend on your users whether that’s effective.
- Comment on Arr Podman Quadlets Setup 1 month ago:
Here are mine for another example:
- Comment on Alternative to github pages? 2 months ago:
I’m guessing you want to selfhost, rather than use a hosting service?
When you say you have your site already, do you mean it’s hosted on a local webserver, or just that you have the files?
If it’s just the files, you’ll need to choose a webserver. I like NGINX myself, but lighttpd is another option (there’s quite a few options, really, but sticking to a well known option is generally more secure).
Configuration will depend on the server you choose, but then you’ll put the files into three “root folder” used by the webserver. This isn’t the system root ( ‘/’ ), but a different folder specified as the root of your web page, usually ‘/var/www/html or /srv/www/html’.
Once the files are in place, you can test the site by using the web browser on another PC and entering the local IP address of the server. If everything looks good, you can set up port forwarding on your router to forward public port 80 to port 80 on the local server.
Lastly, you will need a DNS provider which will point your domain to the IP address of your router. Assuming you have residential service, you will need to determine whether your IP address is static or dynamic, or if your ISP is utilizing CGNAT. Depending on those factors, you may need to do some additional setup.
Once it is working, your next step will likely be to set up SSL and port forwarding on 443. That will allow your website to be accessed over https, which is the standard for the modern Internet.
I have hosted my own website and a blog for a while, and there are definitely some additional steps I would recommend to take, but the above is your basic starting point.
- Comment on Am I corrupting my data? 2 months ago:
It’s not. It’s just a GUI for a server.
It’s a modular GUI, though. The base install allows basic server management: system stats, upgrades, and a couple other bits. However, you can install additional modules to expand the GUI to allow for storage management, ZFS management, container management, file sharing (NFS, SMB), a file browser, VM management, user management, and so on.
My go-to “NAS system” is just standard Debian with Cockpit and a handful of supporting modules. It gives a nice GUI like OMV, but with all the flexibility and control of a normal Debian install.
- Comment on Am I corrupting my data? 2 months ago:
Late to the party, but if you really want a GUI for ZFS, 45drives has a ZFS plug-in for cockpit that works quite well.
- Comment on Self-hosted blog - do I need a static IP address? 3 months ago:
That’s called dynamic DNS (it’s the dd in ddclient).
- Comment on Self-hosted blog - do I need a static IP address? 3 months ago:
I selfhost my blog without a static IP. You just need Dynamic DNS.
Keep in mind that your outbound bandwidth might be different from your inbound. I get 300mbps in, but only 5mbps out. It’s not noticeable during normal Internet use, but as you start sharing content publicly, limited bandwidth becomes really noticeable.
- Comment on Podman Quadlets are so cool 3 months ago:
Using them here to run everything. My whole *arr stack is running in a Quadlet pod. Really convenient, especially the auto update and rollbacks.
- Comment on What RSS feeds are you subscribed to? 8 months ago:
Nerd blogs, a couple message boards and Reddit subs, and XKCD, of course.
- Comment on How do you keep track of vulnerabilities? 8 months ago:
There are some tools to help, but things are sort of specific to particular aspects. Lynis for general systems, ntopng for networks, and such.
For 90% of stuff, though, you can just stick to stable repos and upgrade on a schedule and you’ll be alright.
- Comment on Best Reverse Proxy for Cloudflare 8 months ago:
What’s a good reverse proxy for a set up using Cloudflare?
Having a reverse proxy behind your reverse proxy is a little redundant, but should work fine. My preference after trying several was nginx. The config takes a little to get used to, but it has a ton of features.
is Cloudflare’s proxy really needed?
Not at all.
Cloudflare just makes configuration a bit easier, especially if you’re behind CGNAT. I wrote a little about them here: blog.k3can.us/index.php?post/2025/02/Cloudflare-f…
- Comment on What do you host on your backup servers? 10 months ago:
Host? As in running services?
Wireguard and the Proxmox Backup Server software itself. Redundancy/failover comes from the server cluster itself, not my backup server.
As far as the backup content, it “hosts” backup images of my VMs and LXCs, plus
/homefrom my laptop in case it ever gets lost or damaged. - Comment on Podman or rootless docker? 1 year ago:
I use podman almost exclusively at this point. I like having the rootless containers and secrets management. If you’re on Debian, though, I strongly suggest pulling podman from Trixie. The version in Bookworm is very out of date and there’s been a lot of fixes since then.
- Comment on Is it possible to run a reverse proxy only on a specific service or port? 1 year ago:
For what it’s worth, though, you can proxy other services, like Gemini or gopher, through the same proxy for simplicity’s sake.
- Comment on Do you selfhost your own blog/website? 1 year ago:
I self host.
I use nginx as a reverse proxy with crowdsec. The backends are nginx and mariadb. Everything is running on Debian VMs or LXCs with apparmor profiles and it’s all isolated to an “untrusted” VLAN.
It’s obviously still “safer” to have someone else host your stuff, like a VPS or Github Pages, etc, but I enjoy selfhosting and I feel like I’ve mitigated most of the risk.
- Comment on If you already know Docker CLI, is there a reason to use Portainer? 1 year ago:
I’d imagine that if your job is making YouTube videos, portainer and other graphical abstraction layers probably make more visually interesting videos than just watching someone type out a bunch of commands.
- Comment on How do I redirect to a /path with Nginx Proxy Manager? 1 year ago:
If you’re going to be playing with custom locations and such, it might be worth using nginx directly instead of through the limitations of NPM.
