d_k_bo

@d_k_bo@feddit.org

This is a remote user, information on this page may be incomplete. View at Source ↗

Auch bekannt als:

@d_k_bo@feddit.de

⁨Comment⁩ on ⁨What are some self hosted services that you think are essential?⁩ ⁨⁨20⁩ ⁨hours⁩ ago⁩:
To get a TLS certificate from Let’s Encrypt, they need to verify that you are in control of your domain. For regular domains, this can be done via HTTP, for wildcard certificates they require you to create a DNS record with a special token to verify ownership of the domain.

This means that in order to automatically obtain a TLS certificate, caddy needs to interact with the API of your domain registrar to set up this record. Since there are many different providers, this isn’t built into caddy itself and you require a version that includes the corresponding caddy-dns module. Caddy modules need to compiled into the binary, so it’s not always trivial to set up (in my case I have a systemd timer that rebuilds a local container image whenever a new version of the docker.io/caddy:builder image is available).
⁨Comment⁩ on ⁨What are some self hosted services that you think are essential?⁩ ⁨⁨2⁩ ⁨days⁩ ago⁩:
Caddy automatically sets up certificates for you. Since I don’t want my subdomain to appear in certificate transparency logs, I use a wildcard certificate which requires using a plugin for my DNS provider.
⁨Comment⁩ on ⁨What are some self hosted services that you think are essential?⁩ ⁨⁨3⁩ ⁨days⁩ ago⁩:
A reverse proxy, in my case Caddy.
⁨Comment⁩ on ⁨Full open source and private camera monitoring system⁩ ⁨⁨2⁩ ⁨months⁩ ago⁩:
It supports any ONVIF compatible IP camera as well as USB cameras and the raspberry pi camera module
⁨Comment⁩ on ⁨Full open source and private camera monitoring system⁩ ⁨⁨2⁩ ⁨months⁩ ago⁩:
MotionEye used to be the go-to solution.

I am not sure about the current state of the project (the python 2/3 transition took a long while, there are only pre-releases using a modern python version).
⁨Comment⁩ on ⁨Basic Security for your Website | Loudwhisper⁩ ⁨⁨3⁩ ⁨months⁩ ago⁩:

Some people also swear by other measures, like changing the SSH port to something else. Most people end up using 2222 to easily remember. This is borderline useless, as you can see for yourself.

While being useless against a sophisticated attacker, there hasn’t been any bot activity in my sshd logs since changing my ssh port to a different one.
⁨Comment⁩ on ⁨Immich v1.109.1 released with optional paid license⁩ ⁨⁨3⁩ ⁨months⁩ ago⁩:
Declaring the use without a paid license as “Unlicensed” is very misleading since the project is also licensed under the GNU AGPL v3.0.