atzanteol

@atzanteol@sh.itjust.works

This is a remote user, information on this page may be incomplete. View at Source ↗

⁨Comment⁩ on ⁨What are some unique Games to host server's of?⁩ ⁨⁨3⁩ ⁨days⁩ ago⁩:
I ran a fairly popular RTCW server back in the day… Insta-gib and sniper rifles only. Good times.
⁨Comment⁩ on ⁨How do you manage your home server configuration?⁩ ⁨⁨5⁩ ⁨days⁩ ago⁩:
They’re good at different things.

Terraform is better at “here is a configuration file - make my infrastructure look like it” and Ansible is better at “do these things on these servers”.

In my case I use Terraform to create proxmox VMs and then Ansible provisions and configures software on those VMs.
⁨Comment⁩ on ⁨How do you manage your home server configuration?⁩ ⁨⁨6⁩ ⁨days⁩ ago⁩:
Terraform and ansible. Script service configuration and use source control. Containerize services where possible to make them system agnostic.
⁨Comment⁩ on ⁨Password managers...⁩ ⁨⁨1⁩ ⁨week⁩ ago⁩:
Cloud backups.
⁨Comment⁩ on ⁨Docker security⁩ ⁨⁨1⁩ ⁨week⁩ ago⁩:
This is… Pretty stupid. There are things to be careful about but it’s pretty straight forward to use iptables.
⁨Comment⁩ on ⁨Docker security⁩ ⁨⁨1⁩ ⁨week⁩ ago⁩:
But absolutely none of the issues you listed are issues with iptables.
⁨Comment⁩ on ⁨Docker security⁩ ⁨⁨2⁩ ⁨weeks⁩ ago⁩:

point is, firewalld and iptables is for amateur hour and hobbyists.

Which is weird for you to say since practically all of the issues you list are mistakes that amateurs and hobbyists make.
⁨Comment⁩ on ⁨Docker security⁩ ⁨⁨2⁩ ⁨weeks⁩ ago⁩:
Containers run “on bare metal” just as much as non-containerized applications.
⁨Comment⁩ on ⁨Decreasing Certificate Lifetimes to 45 Days⁩ ⁨⁨2⁩ ⁨weeks⁩ ago⁩:
They’re cheap. You can also generate your own certs and use your own ca. But otherwise yes - quit yer bitching and learn how to do things right.
⁨Comment⁩ on ⁨Decreasing Certificate Lifetimes to 45 Days⁩ ⁨⁨2⁩ ⁨weeks⁩ ago⁩:
You don’t need to if you’re just using things locally.
⁨Comment⁩ on ⁨Decreasing Certificate Lifetimes to 45 Days⁩ ⁨⁨2⁩ ⁨weeks⁩ ago⁩:

That’s a lot easier said that done for hobbyists that need a certificate for their home server.

I’d you’re going to self host you need to learn. I have no time for kids who just want “Google but free” and don’t want to spend any time learning what it takes to make that happen.
⁨Comment⁩ on ⁨Decreasing Certificate Lifetimes to 45 Days⁩ ⁨⁨2⁩ ⁨weeks⁩ ago⁩:
It’s being deiven by the browsers. Shorter certs mean less time for a compromised certificate to be causing trouble.

cabforum.org/working-groups/…/requirements/
⁨Comment⁩ on ⁨Decreasing Certificate Lifetimes to 45 Days⁩ ⁨⁨2⁩ ⁨weeks⁩ ago⁩:

Will we need to log in every morning and expect to refresh every damn site cert we connect to soon?

Automate your certificate renewals. You should be automating updates for security anyway.
⁨Comment⁩ on ⁨Immich Is Now Stable!⁩ ⁨⁨3⁩ ⁨weeks⁩ ago⁩:
“Bare metal” has traditionally meant without any os either. Your code executes directly on hardware and has direct control over everything. Like a micro controller.

Code in a container executes on the hardware in exactly my the same way as code not running in a container - with the os as an intermediary.
⁨Comment⁩ on ⁨Immich Is Now Stable!⁩ ⁨⁨3⁩ ⁨weeks⁩ ago⁩:
“not running in a container” is not “running on bare metal”. It’s just running outside a container.
⁨Comment⁩ on ⁨Recommendations for an all-SSD home server?⁩ ⁨⁨4⁩ ⁨weeks⁩ ago⁩:
enough, a lot, more demanding.

You need to give some sort of guidance here.
⁨Comment⁩ on ⁨Making setups resilient to outages⁩ ⁨⁨4⁩ ⁨weeks⁩ ago⁩:
How much money are you willing to spend? Resiliency is expensive.
⁨Comment⁩ on ⁨Is self-hosting becoming too gatekept by power users?⁩ ⁨⁨5⁩ ⁨weeks⁩ ago⁩:

Self-hosting is trivial and everyone can do it.

So is open heart surgery. Unless you want it to end successfully.
⁨Comment⁩ on ⁨Is self-hosting becoming too gatekept by power users?⁩ ⁨⁨5⁩ ⁨weeks⁩ ago⁩:

Have you forgotten that you too started at 0?

Not at all. In fact I remember the day my server was hacked because I’d left a service running that had a vulnerability in it. I remember changing passwords, calling my bank to ensure there had been no fraudulent charges, etc. I remember “war driving” to find vulnerable WiFi networks. I remember changing default passwords on a service setup by a client of mine.

As I said - it’s not gate-keeping it’s experience.

Yes, it sometimes can be difficult and frustrating, but so long as someone, anyone, is willing to try and learn and fail and retry, they can get my help

Teaching is “gate-keeping” apparently. You can’t tell somebody that they need to learn something! You just need to give them a link to a url and say “run this thing as root and your stuff will work - totally not a scam tho”.
⁨Comment⁩ on ⁨Is self-hosting becoming too gatekept by power users?⁩ ⁨⁨5⁩ ⁨weeks⁩ ago⁩:
“Has anyone noticed that medical doctors gate-keep people doing open heart surgery?”

Why do you assume self-hosting is and can be trivial? It is NOT for everybody. You should have some base level of technical knowledge. You should expect to need to learn some things. It’s not a badge of honor, it’s experience.

My project focuses on building a tool that makes self-hosting more accessible without sacrificing data ownership

Good luck with that.
⁨Comment⁩ on ⁨MPV: The Ultimate Self-Hosted Media Solution You're Probably Sleeping On⁩ ⁨⁨1⁩ ⁨month⁩ ago⁩:
I’m happy you’re discovering the Linux CLI, but this is pretty ridiculous. mpv, vlc, mplayer, etc. all serve very different uses from jellyfin.
⁨Comment⁩ on ⁨how do you explain selfhosting to the non-techies in your life?⁩ ⁨⁨1⁩ ⁨month⁩ ago⁩:
I don’t.
⁨Comment⁩ on ⁨How often do you update software on your servers?⁩ ⁨⁨1⁩ ⁨month⁩ ago⁩:
Clearly you don’t know.
⁨Comment⁩ on ⁨How often do you update software on your servers?⁩ ⁨⁨1⁩ ⁨month⁩ ago⁩:

If I wanted to run updates frequently I would run arch lmao. Even if I did apt update every day, debian stable doesn’t get that many updates.

You’re not updating for features you’re updating for bug and security fixes. That’s why Debian stable doesn’t have many updates. But the ones they do are typically important.
⁨Comment⁩ on ⁨How often do you update software on your servers?⁩ ⁨⁨1⁩ ⁨month⁩ ago⁩:
That’s… Not how it works… Debian is “stable” not “secure”. You use Debian so that is easier to run updates frequently since they’ll be unlikely to break things.
⁨Comment⁩ on ⁨How often do you update software on your servers?⁩ ⁨⁨1⁩ ⁨month⁩ ago⁩:
All systems, daily via a single ansible script. That’s apt update, upgrade and reboot if needed (some systems set to only reboot with a separate script so I can handle them separately).

Rarely have any sort of problems.
⁨Comment⁩ on ⁨Linkwarden downloaded the whole flipping Internet ...⁩ ⁨⁨2⁩ ⁨months⁩ ago⁩:
Sounds like you bookmarked the while flippin’ Internet.
⁨Comment⁩ on ⁨What's the real danger of opening ports?⁩ ⁨⁨2⁩ ⁨months⁩ ago⁩:
This is an awful analogy…
⁨Comment⁩ on ⁨[deleted]⁩ ⁨⁨2⁩ ⁨months⁩ ago⁩:

squeezing every last drop of resource form tired old hardware

This is such a myth. 99% of the time your hardware is doing there doing nothing. Even when running “bloated” services.

Nextcloud, for example, uses practically zero cpu and a few tens on mb when sitting around yet people avoid it for “bloat”.
⁨Comment⁩ on ⁨⁩ ⁨⁨2⁩ ⁨months⁩ ago⁩:
Clearly it was suitable for their purposes at one time?