Shimitar
@Shimitar@downonthestreet.eu
- Comment on Developing a self-hosted alternative to Google Keep 2 days ago:
Radicale is an amazing light and efficient CardDAV/CalDAV server. Pair with Dav5x on android and you are fully setup.
- Comment on Why is my server using all my Swap but I have RAM to spare? 2 days ago:
1gb swap is way too small…
I usually setup swap to be 2x the total ram size. So, 32gb swap in your case.
Nothing wrong here, seems normal. With such little swap.
Actually Linux kernel works better with swap, the more the better. It will lalso perform better than zero swap. Counterintuitive indeed, but that’s how it works.
If you don’t want swap, use zram.
- Comment on Anyone have any luck with Gl Inet Luci Openrouter VLANs? 3 days ago:
Luci? What is that? You mean OpenWRT?
- Comment on [deleted] 4 days ago:
You keep posting this question over and over again.
How can we even give you ideas if we don’t even know where this land is?
I have an idea, make a ski resort! Another idea, build a fun water park on it…
Wait, how we can even know that anything like that is possible there?
Can you develop yourself? Do you need to sell it for cash? So sell it. When? Who knows.
- Comment on There is likely a picture of your house on the internet. 5 days ago:
Yeah, indeed there is… And a nice time history too since a few years ago.
Love that.
- Comment on What are some countries you’ve visited that shocked you with unexpected friendliness? 6 days ago:
Iran has been by far the most friendly and welcoming people. And I visited -a lot- of places.
Also USA had very welcoming people, I must have been lucky by judging from people online, but in real world, my experience has always been very positive.
- Comment on What steps do you take to secure your server and your selfhosted services? 1 week ago:
It is, but you are free to switch at any time provider, there is no technological lock in like with cloudflare or tailscale (i know there is a free self hostable version, not talking about that).
So just rent a new one and switch your wireguard there.
- Comment on [help] Cheap SSDs for storage 1 week ago:
I had good experiences 10y ago with amazon “white labels” mechanical drives… But its aneddotical and didn’t go with amazon for my sdds anyway.
- Comment on [help] Cheap SSDs for storage 1 week ago:
I could upgrade my requirements to server grade, but not the budget, so I would say the driving factor is budget :)
Hand me a bunch of server grade ssds for the price of consumer and I would gladly install them.
- Comment on [help] Cheap SSDs for storage 1 week ago:
Very interesting, thanks…
At least ssds are much less hot and lot quieter than mechanical drives, and in a home, not chilled, and not isolated environment means even more than power consumption to me.
- Comment on [help] Cheap SSDs for storage 1 week ago:
I usually pick the cheapest of a brand I trust. Kingston atm for my ssds.
Don’t care, even the crappiest is way faster than what I need plus less energy hungry than mechanicals.
I focus on size, buy the biggest I can afford according to the raid level I need. Currently have 4 x 4Tb Kingston ssds in RAID5.
- Comment on Help with domain 1 week ago:
Bad example, you picked a reserved range that confused me :)
- Comment on Help with domain 1 week ago:
You can with srv DNS records. I never tested if browser do honor that or just go to port 443 anyway.
- Comment on Help with domain 1 week ago:
Create the subdomains and have them all point to your PUBLIC IP (10.172… But keep in mind 10… Are -not- public ip)
You will need to setup redirect from your router/gateway to your internal ip.
Unless you are on cg-nat (that would explain a 10… class ip) in that case, you will definitely need a real public static ip
To “match” the various ports all to 443, you will need a reverse proxy, since those ports are not standard. This could be mitigated with srv DNS records, but I really strongly suggest not to go public without https and reverse proxy.
- Comment on What steps do you take to secure your server and your selfhosted services? 1 week ago:
This, but I prefer nginx.
And no real need for tailscale or cloudflare. If you do not like to depend on a third party service, either port forward and ddns or an external vps+wire guard if you have gcnat
- Comment on Risks of self-hosting a public-facing forum? 1 week ago:
I would do it. Its fun…
Will you mess up? Yes. Who cares, Do it, just ensure its data you can lose no worries.
I would host on a vps, just to keep you home safe from swat raids (assuming you in the us, other nations should be safe).
- Comment on Repurposing TB16 dock 1 week ago:
Link doesn’t seems to point to a product
- Comment on Update Synapse ASAP, there is a high severity vulnerability which malicious actors could use to prevent your homeserver from federating with other servers 1 week ago:
I know, what a pity
- Comment on Update Synapse ASAP, there is a high severity vulnerability which malicious actors could use to prevent your homeserver from federating with other servers 1 week ago:
On Conduwuit here… Synapse is a PITA.
- Comment on How to configure UFW rules for podman 1 week ago:
Podman works with nft, not iptables. Ufw iirc uses iptables.
Try a different firewall tool, or use nft directly
If your containers are bound to 127.0.0.1 and you only have a reverse proxy on 443, you probably don’t even really need a firewall.
Run rootless podman and segregate each container stack on its own network, podman will take care of it for you.
- Comment on ISO Selfhost 1 week ago:
Yes, something like that. A non profit foundation would be mandatory.
- Comment on ISO Selfhost 1 week ago:
Yeah, that is something I keep thinking. I need a way to keep all that working somehow.
Maybe a foundation, to keep personal data for future research scope, or general knowledge. Its sad that all that will go to waste.
- Comment on ISO Selfhost 1 week ago:
I see you are on Lemmy.world, keep in mind self hosting your Lemmy will bypass the heavy censorship going on on Lemmy.world in terms of defederation.
For example another great community and very active is the pirate community on db0, which is banned on your current instance. And not the only one.
- Comment on ISO Selfhost 1 week ago:
Not that “alternatively young” but the difference is slight here.
Yeah I self host my Lemmy because why not? As well I self host my matrix with bridges to all main chat closed ecosystems because why not?
At least my descendants will own all my comments and posts.
And I also host (not at home, but on vps) my email because why not.
Do you really need any other reason to?
Also, Lemmy rocks, this community is one of the best and more active.
- Comment on SEIM 2 weeks ago:
You can edit your posts, you know :)
- Comment on Do I really need a firewall for my server? 2 weeks ago:
You don’t. Providing you have an upstream gateway that do the firewall for you, provided you don’t have an open WiFi, provided you use a reverse proxy, provided you have sane network settings all around, provided you run linux(or similar).
Even better if you are behind CGNAT.
Provided you know what you are doing.
On the other hand, setting up a firewall in a safe way is no easy task either.
I use an opnSense on top of my home network, given all the above “provided”.
Before that, I never run a firewall and never had an issue. Always being cg-nat tough.
- Comment on pi-hole and pi-vpn with own domain name 2 weeks ago:
Hard to say, unless you give us more on why and where you failed!
- Comment on [Discussion] What would it take to selfhost some of the backend that Tesla's connect to? 2 weeks ago:
I am pretty sure it would be impossible.
That connection I expect to b3 secured by using signature keys that are private and would need to be released by Tesla to allow anybody connect its car to a different back end.
- Comment on Summit for Lemmy is now open source 2 weeks ago:
Love summit, glad to hear this welcome evolution.
- Comment on Bridges with matrix conduit 2 weeks ago:
What went wrong with telegram? Which error?