K3can
@K3can@lemmy.radio
Also at k3can@mastodon.hams.social
- Comment on What RSS feeds are you subscribed to? 4 weeks ago:
Nerd blogs, a couple message boards and Reddit subs, and XKCD, of course.
- Comment on How do you keep track of vulnerabilities? 5 weeks ago:
There are some tools to help, but things are sort of specific to particular aspects. Lynis for general systems, ntopng for networks, and such.
For 90% of stuff, though, you can just stick to stable repos and upgrade on a schedule and you’ll be alright.
- Comment on Best Reverse Proxy for Cloudflare 5 weeks ago:
What’s a good reverse proxy for a set up using Cloudflare?
Having a reverse proxy behind your reverse proxy is a little redundant, but should work fine. My preference after trying several was nginx. The config takes a little to get used to, but it has a ton of features.
is Cloudflare’s proxy really needed?
Not at all.
Cloudflare just makes configuration a bit easier, especially if you’re behind CGNAT. I wrote a little about them here: blog.k3can.us/index.php?post/2025/02/Cloudflare-f…
- Comment on What do you host on your backup servers? 2 months ago:
Host? As in running services?
Wireguard and the Proxmox Backup Server software itself. Redundancy/failover comes from the server cluster itself, not my backup server.
As far as the backup content, it “hosts” backup images of my VMs and LXCs, plus
/home
from my laptop in case it ever gets lost or damaged. - Comment on Podman or rootless docker? 4 months ago:
I use podman almost exclusively at this point. I like having the rootless containers and secrets management. If you’re on Debian, though, I strongly suggest pulling podman from Trixie. The version in Bookworm is very out of date and there’s been a lot of fixes since then.
- Comment on Is it possible to run a reverse proxy only on a specific service or port? 5 months ago:
For what it’s worth, though, you can proxy other services, like Gemini or gopher, through the same proxy for simplicity’s sake.
- Comment on Do you selfhost your own blog/website? 5 months ago:
I self host.
I use nginx as a reverse proxy with crowdsec. The backends are nginx and mariadb. Everything is running on Debian VMs or LXCs with apparmor profiles and it’s all isolated to an “untrusted” VLAN.
It’s obviously still “safer” to have someone else host your stuff, like a VPS or Github Pages, etc, but I enjoy selfhosting and I feel like I’ve mitigated most of the risk.
- Comment on If you already know Docker CLI, is there a reason to use Portainer? 5 months ago:
I’d imagine that if your job is making YouTube videos, portainer and other graphical abstraction layers probably make more visually interesting videos than just watching someone type out a bunch of commands.
- Comment on How do I redirect to a /path with Nginx Proxy Manager? 6 months ago:
If you’re going to be playing with custom locations and such, it might be worth using nginx directly instead of through the limitations of NPM.