K3can

@K3can@lemmy.radio

This is a remote user, information on this page may be incomplete. View at Source ↗

Also at k3can@mastodon.hams.social

⁨Comment⁩ on ⁨What RSS feeds are you subscribed to?⁩ ⁨⁨4⁩ ⁨weeks⁩ ago⁩:
Nerd blogs, a couple message boards and Reddit subs, and XKCD, of course.
⁨Comment⁩ on ⁨How do you keep track of vulnerabilities?⁩ ⁨⁨5⁩ ⁨weeks⁩ ago⁩:
There are some tools to help, but things are sort of specific to particular aspects. Lynis for general systems, ntopng for networks, and such.

For 90% of stuff, though, you can just stick to stable repos and upgrade on a schedule and you’ll be alright.
⁨Comment⁩ on ⁨Best Reverse Proxy for Cloudflare⁩ ⁨⁨5⁩ ⁨weeks⁩ ago⁩:

What’s a good reverse proxy for a set up using Cloudflare?

Having a reverse proxy behind your reverse proxy is a little redundant, but should work fine. My preference after trying several was nginx. The config takes a little to get used to, but it has a ton of features.

is Cloudflare’s proxy really needed?

Not at all.

Cloudflare just makes configuration a bit easier, especially if you’re behind CGNAT. I wrote a little about them here: blog.k3can.us/index.php?post/2025/02/Cloudflare-f…
⁨Comment⁩ on ⁨What do you host on your backup servers?⁩ ⁨⁨2⁩ ⁨months⁩ ago⁩:
Host? As in running services?

Wireguard and the Proxmox Backup Server software itself. Redundancy/failover comes from the server cluster itself, not my backup server.

As far as the backup content, it “hosts” backup images of my VMs and LXCs, plus /home from my laptop in case it ever gets lost or damaged.
⁨Comment⁩ on ⁨Podman or rootless docker?⁩ ⁨⁨4⁩ ⁨months⁩ ago⁩:
I use podman almost exclusively at this point. I like having the rootless containers and secrets management. If you’re on Debian, though, I strongly suggest pulling podman from Trixie. The version in Bookworm is very out of date and there’s been a lot of fixes since then.
⁨Comment⁩ on ⁨Is it possible to run a reverse proxy only on a specific service or port?⁩ ⁨⁨5⁩ ⁨months⁩ ago⁩:
For what it’s worth, though, you can proxy other services, like Gemini or gopher, through the same proxy for simplicity’s sake.
⁨Comment⁩ on ⁨Do you selfhost your own blog/website?⁩ ⁨⁨5⁩ ⁨months⁩ ago⁩:
I self host.

I use nginx as a reverse proxy with crowdsec. The backends are nginx and mariadb. Everything is running on Debian VMs or LXCs with apparmor profiles and it’s all isolated to an “untrusted” VLAN.

It’s obviously still “safer” to have someone else host your stuff, like a VPS or Github Pages, etc, but I enjoy selfhosting and I feel like I’ve mitigated most of the risk.
⁨Comment⁩ on ⁨If you already know Docker CLI, is there a reason to use Portainer?⁩ ⁨⁨5⁩ ⁨months⁩ ago⁩:
I’d imagine that if your job is making YouTube videos, portainer and other graphical abstraction layers probably make more visually interesting videos than just watching someone type out a bunch of commands.
⁨Comment⁩ on ⁨How do I redirect to a /path with Nginx Proxy Manager?⁩ ⁨⁨6⁩ ⁨months⁩ ago⁩:
If you’re going to be playing with custom locations and such, it might be worth using nginx directly instead of through the limitations of NPM.