doeknius_gloek
@doeknius_gloek@discuss.tchncs.de
- Comment on Linux Foundation says yes to NoSQL via DocumentDB 1 day ago:
tl;dr: MongoDB is Web Scale.
- Comment on Microsoft's latest Windows 11 24H2 update breaks SSDs/HDDs, may corrupt your data 1 week ago:
I’ve read in another article that NG Lv 1 means that the drive is recoverable and NG Lv 2 that the drive is unrecoverable.
- Comment on How do you manage backup for kubernetes persistent volumes? 2 weeks ago:
I’m thinking about just doing something outside kubernetes that just copies the data from the directory that NFS provides to another storage.
This is what I’m doing for the most part. A TrueNAS server provides the NFS shares and periodically backs them up with restic.
Some apps don’t like NFS very much, especially those that require SQLite. If you’re running Jellyfin over NFS you probably know what I mean. For those apps I use Ceph instead, which is highly available and a lot faster but also more complicated. Those PVCs I backup from within kubernetes to S3 storage with velero.
- Comment on GitHub is no longer independent at Microsoft after CEO resignation 2 weeks ago:
I use GitLab at work and Forgejo at home. GitLab is huge, Forgejo is lighter. GitLab Runner is very nice, Woodpecker was a pain to setup but it now does everything I need. GitLab supports Subgroups, Forgejo does not. Forgejo is FOSS with a non-profit behind it, GitLab Inc. is for-profit.
At the end, I like to work with both. GitLab has lots of features, but for my own stuff Forgejo serves me very well and I like the openness of it.
- Comment on GitHub is no longer independent at Microsoft after CEO resignation 2 weeks ago:
How about private repositories?
In many cases, yes, we do allow them (under certain conditions)!
Our priority is to support the free content and free and open-source software ecosystems. As such, we cannot invest time, hardware and resources to provide private hosting for everyone. However, contributors to the aforementioned ecosystems can use up to 100 MB of private content at their own convenience.
- Comment on Free hosting options for Pangolin in the EU? 5 weeks ago:
No, it’s permanent. They call it “VPS XS”, here (in german ). Sadly a initial one-time payment of 10€ required, I forgot about that.
On ionos.com the same VPS costs $2/month. No one-time payment though.
The unique selling point of this VPS for me was the low price combined with unlimited bandwith. Sometimes my nebula lighthouse needs to proxy traffic for peers that can’t talk to each other directly. It’s nice not to worry about bandwidth then.
- Comment on Free hosting options for Pangolin in the EU? 5 weeks ago:
Ha, that’s a good question: I don’t. I chose a rather long time for the certs validity and then promised to myself that I will extend my ansible playbook when I need to.
- Comment on Free hosting options for Pangolin in the EU? 5 weeks ago:
I’m not using Pangolin, but a 1€/month VPS from IONOS serves as my nebula lighthouse.
- Comment on What are the advantages/disadvantages of the different backup solutions? 1 month ago:
The question you’re asking is too broad. Every tool somehow differs from the others, but listing all differences requires in-depth knowledge of each tool and a lot of time.
At the end of the day, every tool somehow backs up your data. CLI interfaces, encryption algorithms, deduplications logic, supported backends, underlying programming languages and a lot more may differ. Identify what’s most important to you, test different solutions and then use the tool that works best for your use-case.
- Comment on Former and current Microsofties react to the latest layoffs 1 month ago:
one of their leaders saying “use AI to help with the trauma of job loss”
no way
- Comment on I think my server might nit be a fan of the upcoming heatwave 1 month ago:
My server rack is located in an uninsulated attic with two tiny windows. I haven’t measured the ambient temperature but I think it’s over 40°C. Yesterday one drive in my storage server reached 65°C - so for today I have shut it off until the rain comes. Fun times.
- Comment on Backup for important files/pictures? 2 months ago:
Obligatory: RAID is not a backup.
- Comment on Safest CalDAV/CardDAV server 2 months ago:
Security in software is about implementation, not different programming languages. Security as a whole is also not something you can achieve just by installing “secure” software - every software has bugs and vulnerabilities (but not every one of them automatically poses a security risk, this depends on your usage and environment). You can try to harden your system, but you need to do this in layers and the application code is just one of them.
For example, you could geoblock IP addresses so their requests never even reach your application. This does not mean that you’re automatically safe from attackers from e.g. Russia, but you make youself a less easy target.
There are many other defense mechanisms like request limiting, dynamically blocking malicious requests with something like Fail2Ban, strong authentication, network segregation, virtualization, and so on. I hope you see were I’m going. Security is complex and depends a lot on your personal threat model.
That being said, if you need to know how secure the code of a given software is, you need to find something that has recently been audited or audit it yourself.
- Comment on With the recent happenings with Synology/Plex, I’ve decided it’s time to make the move and up my self-hosting game, just need some input from the veterans to solidify my plan and put it into action. 3 months ago:
I might be cynical, but moving away from Synology and Plex because of the writing on the wall and then choosing Unraid probably won’t end well.
Don’t get me wrong, I understand the love for Unraid even though I don’t use it. It looks nice and newbie-friendly and you can throw all your random disks at it regardless of size. But enshittification will come for Unraid and I personally think that it has already begun.
- Comment on Come to say thank you. Time to move from proprietary to Open Source 3 months ago:
Thanks for your response!
- Comment on Come to say thank you. Time to move from proprietary to Open Source 3 months ago:
What made you switch from TrueNAS Scale to Unraid, if I may ask? Is it just the ability to mix different drive sizes? I’m currently using TrueNAS Core and thinking about migrating to TrueNAS Scale.
- Comment on How to send backups on multiple location? 4 months ago:
I have an offsite NAS where I run the Restic REST server as a docker container. I connect to it over Nebula but you could also use a traditional VPN, Tailscale, Headscale, Pangolin or whatever.
Works like a charm.
- Comment on Considering a refurbished Lenovo ThinkCentre M920q for use as a discrete HTPC / SteamLink console. Is this a good idea? Does anyone here have any experience with these? 4 months ago:
I was recently reading a lot about these because I wanted to use three Lenovo M920x for my homelab as virtualization hosts with Proxmox.
The really cool thing about them is their low power usage, that you can easily buy them used/refurbished and that you can fit a small PCIe expansion card into them.
I didn’t use them in the end because sadly 22110 M.2 SSDs don’t fit and I wanted to use enterprise SSDs for Ceph.
However, your use case seems simpler, so I’d think a M720q or maybe even M710q (without PCIe slot) would do, for less money than the M9xx series (which support vPro).
There’s a really nice forum thread on ServeTheHome with loads of information about these units.
- Comment on How to secure Jellyfin hosted over the internet? 4 months ago:
Uhh, interesting! Thanks for sharing.
- Comment on How to secure Jellyfin hosted over the internet? 4 months ago:
No, it isn’t.
- Comment on Google will move Android AOSP development behind closed doors 5 months ago:
I don’t know anything about Android AOSP, so I found this clarification important:
This does not mean that Google is making Android a closed-source platform, but rather that the open-source aspect will only be released when a new branch is released to AOSP with those changes, including when new full versions or maintenance releases are finished.
- Comment on Help with iptables, using nixos setting up a wiregaurd server for friends 6 months ago:
You need more Excalidraw in your life.
- Comment on Wubuntu: The lovechild of Windows and Linux nobody asked for 8 months ago:
Kill it before it lays eggs!