ShortN0te

@ShortN0te@lemmy.ml

This is a remote user, information on this page may be incomplete. View at Source ↗

⁨Comment⁩ on ⁨Encrypted backups to the cloud⁩ ⁨⁨5⁩ ⁨days⁩ ago⁩:
You have basically two options.
1. Symmetric Encryption. That means you use the same password/key for writing the Backup and for reading the backup. Here you have to write the password somewhere, depending on the OS there are options like keychains or similar that can hold the password so that the password is only available once you are loged in or have unlocked the keychain.
2. Asymmetric Encryption. That means you have different passwords/keys to read and write the backup. PGP is an example here. Here you can just simply use one key to write the backup, this key can become public and you do not have to worry about your backup since it will only be readable with the 2. key.
I personally use Restic with a password that is only readable by the system root user stored on the filesystem. Since I use Full Disk Encryption i do not have to worry too much about when the secret is available in clear text at runtime.
⁨Comment⁩ on ⁨Good mail server for selfhosting⁩ ⁨⁨2⁩ ⁨weeks⁩ ago⁩:
Yes thats why i said in theory. I doubt that many residential IPs are blacklisted, but still not optimal.

IPv6 only works but there are probably many Mail Servers that are IPv4 only, so you will not receive mails from them.

If you are serious about it, rent a VPS or get a static IP on your residential connection.
⁨Comment⁩ on ⁨Good mail server for selfhosting⁩ ⁨⁨2⁩ ⁨weeks⁩ ago⁩:
It would be more reliable to use a ‘clean’ not blacklisted static IP.

But in theory you could just use ddns and update the IP. But I actually never tried it.

Mailcow comes ready out of the box. Just change the DNS entries according to Mailcow and you are good to go.
⁨Comment⁩ on ⁨Good mail server for selfhosting⁩ ⁨⁨2⁩ ⁨weeks⁩ ago⁩:
This has been said over and over again. I have been hosting Mail now for over 2 years and have yet to encounter any problems. Although, i would not recommend to set it up manually and rather advise to use one of the ‘all in one’ suggested solutions here in the thread.
⁨Comment⁩ on ⁨Good mail server for selfhosting⁩ ⁨⁨2⁩ ⁨weeks⁩ ago⁩:

A project ending as abandonware is always a possibility. One reason projects get abandoned is losing funding, which can be secured by using dual licensing and selling some features to businesses.

That is not my point.

Having a CE or OS version and an Enterprise Version can lead to conflict of interest. Do you add a feature to the OS Version or do you spend time on the Enterprise feature? There are a lot of examples, Emby is one, others are escaping me right now.

There are other models that work well like paid support etc. Nonetheless i will stay away.
⁨Comment⁩ on ⁨Good mail server for selfhosting⁩ ⁨⁨2⁩ ⁨weeks⁩ ago⁩:
Looks amazing. But the dual licensing scares me. The open variant could be artificially limited in functionality or could end up basic abandon ware.
⁨Comment⁩ on ⁨Good mail server for selfhosting⁩ ⁨⁨2⁩ ⁨weeks⁩ ago⁩:
Mailcow is amazing.

Importing exporting i would just use any mailclient and drag-drop them over. Depending on how many Mailboxes you have to transfer.
⁨Comment⁩ on ⁨[deleted]⁩ ⁨⁨2⁩ ⁨weeks⁩ ago⁩:
I am not understanding the issue you have with DNS?

Just have a script that updates the DNS entry to your current public IP. If you do not like Cloudflare there are plenty of other services that offer a free API with their DNS service.

I think you are misunderstanding something here.
⁨Comment⁩ on ⁨Homelab upgrade - "Modern" alternatives to NFS, SSHFS?⁩ ⁨⁨2⁩ ⁨weeks⁩ ago⁩:
If i understand you correctly, your Server is accessing the VM disk images via a NFS share?

That does not sound efficient at all.
⁨Comment⁩ on ⁨Homelab upgrade - "Modern" alternatives to NFS, SSHFS?⁩ ⁨⁨3⁩ ⁨weeks⁩ ago⁩:
I assume you are referring to Filesystem Snapshotting? For what reason do you want to do that on the client and not on the FS host?
⁨Comment⁩ on ⁨Homelab upgrade - "Modern" alternatives to NFS, SSHFS?⁩ ⁨⁨3⁩ ⁨weeks⁩ ago⁩:
sshfs is somewhat unmaintained, only “high-impact issues” are being addressed github.com/libfuse/sshfs

I would go for NFS.
⁨Comment⁩ on ⁨How do you all handle security and monitoring for your publicly accessible services?⁩ ⁨⁨3⁩ ⁨weeks⁩ ago⁩:
HA had 2 security audits. I would not worry too much. Always depends on what you can control with it. home-assistant.io/…/security-audits-of-home-assis…
⁨Comment⁩ on ⁨How do you keep up?⁩ ⁨⁨3⁩ ⁨weeks⁩ ago⁩:
Just subscribe to the release channel. That varies from OS to OS or Software, but is worth it.

Use tools that are universal. For example, I have not used TrueNAS Scale because they did not support native docker at the time. OS specific solutions are more likely to break then universal once (truecharts vs docker)

To get up and running again after a complete failure i can just download the latest config and data from my backup and set up any distro that supports docker and my system is running again.

I do OS upgrades when they are available, usually within 1 or 2 days and containers are updated with watchtower daily.
⁨Comment⁩ on ⁨Prioritizing de-clouding efforts⁩ ⁨⁨3⁩ ⁨weeks⁩ ago⁩:
The main difference i would say is the development and licensing model. Photo prism is forcing ppl who want to commit to sign a CLA to.give away their rights. Also the community is not really active it is mainly one dev that can change the code license on any given time.

Immich does not have such an agreement and has a huge active contributor community around it. Also Immich is backed by Futo which has its pros and cons.

Imho the biggest pain in self hosting is when a foss product turns evil towards its community and start to practice anti consumer/free selfhosters business practices.

Immich is far less likely to turn evil.
⁨Comment⁩ on ⁨JetKVM's Source Code is now public! ✨⁩ ⁨⁨1⁩ ⁨month⁩ ago⁩:
Yes they could also redesign the whole product for a few ppl who will plug it into an old PC that still uses vga or an old server that has no IPMI.

You realise how big the VGA connector is relative to the product?
⁨Comment⁩ on ⁨JetKVM's Source Code is now public! ✨⁩ ⁨⁨1⁩ ⁨month⁩ ago⁩:
Cant you just use a dongle?
⁨Comment⁩ on ⁨Nextcloud client just deleted all of my files, why did it do this?⁩ ⁨⁨3⁩ ⁨months⁩ ago⁩:
Because you pointed 2 programs at the same directory to sync the content with an external directory structure.

In my experience adding an already existing directory structure to a sync program is a bad idea. Create the directory and then move the existing structure into it to be safe or/and at the very least have a backup.

Not having a backup is on you. You got lucky this time.
⁨Comment⁩ on ⁨Help Running Scrutiny⁩ ⁨⁨3⁩ ⁨months⁩ ago⁩:

NOTE: Scrutiny is a Work-in-Progress and still has some rough edges.

Honestly, at this point i would not recommend the usage of scrutiny, the development was almost ways really slow and the creater does not seem to have kuch interest in the project. There are still standing issues and imho important features missing.

I would look into prometheus+grafana or something of that sort.
⁨Comment⁩ on ⁨I present: Managarr - A TUI and CLI to help you manage your Servarr instances⁩ ⁨⁨3⁩ ⁨months⁩ ago⁩:
This is not really correct. Those companies take complete control of the secret keys. And no, it is not the same effect when you use tailscale compared to wireguard cause of various reasons. CGNAT, no port forwarding, funnels etc.
⁨Comment⁩ on ⁨I present: Managarr - A TUI and CLI to help you manage your Servarr instances⁩ ⁨⁨3⁩ ⁨months⁩ ago⁩:

Netmaker, Tailscale or Zerotier

No way in hell i am giving a company complete remote access to my servers and clients.
⁨Comment⁩ on ⁨JetKVM - a polished take at the nanoKVM(?)⁩ ⁨⁨3⁩ ⁨months⁩ ago⁩:
This is not the invention of an IP KVM, those are old. This product just offers the functionality of an IP KVM for very little money.
⁨Comment⁩ on ⁨JetKVM - a polished take at the nanoKVM(?)⁩ ⁨⁨3⁩ ⁨months⁩ ago⁩:
It is based on completely different hardware. A Raspberry Pi CPU is much more expensive than the CPU that is used here.
⁨Comment⁩ on ⁨JetKVM - a polished take at the nanoKVM(?)⁩ ⁨⁨3⁩ ⁨months⁩ ago⁩:
Power issues can cause problems that the hardware glitches into states it should not be. Changing something in the BIOS or updating it. Hardware defects. OS upgrade fails (Kernel bug causes the network driver to fail) Etc. Etc.

Those devices are not for the weekly “oh my setup failed” its for the once in 10 years “i am on vacation and the server is not reachable and for some reasons my system crashed and has not rebooted by its own”

And for below 100€ it’s a no-brainer.
⁨Comment⁩ on ⁨Anyone self-hosting ActualBudget? (with connection to bank)⁩ ⁨⁨3⁩ ⁨months⁩ ago⁩:
I just set it up. Yes i dislike the fact, that you need another party for syncing it, but i doubt it would be possible otherwise, just too much work to support everyone.

I read up on GoCardless and they do not sound that evil

But not sure if i will keep the connection up. Will see i guess.
⁨Comment⁩ on ⁨Dittofeed - open-source messaging automation platform⁩ ⁨⁨3⁩ ⁨months⁩ ago⁩:
Really disliking that discord is used as helpdesk/forum. Not really searchable via the web.
⁨Comment⁩ on ⁨Concerns Raised Over Bitwarden Moving Further Away From Open-Source⁩ ⁨⁨4⁩ ⁨months⁩ ago⁩:
I am talking about the fork. It is operated by someone else.
⁨Comment⁩ on ⁨Concerns Raised Over Bitwarden Moving Further Away From Open-Source⁩ ⁨⁨4⁩ ⁨months⁩ ago⁩:
The syncthing fork on f-droid is still an option. An issue has been opened on the github repo. Lets see what will happen with the fork
⁨Comment⁩ on ⁨If you already know Docker CLI, is there a reason to use Portainer?⁩ ⁨⁨4⁩ ⁨months⁩ ago⁩:
The thing is, those poor design decisions have nothing to do with those features, i claim that every feature could be implemented without “holding the compose files hostage”.

Btw. dockge does support connecting to another docker dockge instance.
⁨Comment⁩ on ⁨Looking to move on from Unraid, need suggestions.⁩ ⁨⁨4⁩ ⁨months⁩ ago⁩:
No, that would make no sense and is obviously not what i meant.

But you could separate the arr stack from things like pihole with a vm. For example you could pin one thread to that VM so you will not bottleneck your DNS when you are doing heavy loads on the rest of the system. This is just one example what can be done.

Just because you do not see a benefit, does not mean there is none.

Also, VMs are not “heavy” thanks to virtualization technology built into modern hardware, VMs are quite light on the system. Yes they still have overhead but its not like you are giving up big percentages of your potential performance, depending on the setup.
⁨Comment⁩ on ⁨Looking to move on from Unraid, need suggestions.⁩ ⁨⁨4⁩ ⁨months⁩ ago⁩:
You talk like there is not in between containers and VMs. You can use both.