Lem453

@Lem453@lemmy.ca

• ⁨Comment⁩ on ⁨Monitoring OPNSense Logs with Grafana Loki⁩ ⁨⁨9⁩ ⁨hours⁩ ago⁩:

  Do you mind putting some screenshots of what the final dashboard looks like?

  Also, how much IO wear and tear does this put on a solid-state drive?

• ⁨Comment⁩ on ⁨Traefik with Socket Activation via Podman Quadlets⁩ ⁨⁨1⁩ ⁨week⁩ ago⁩:

  What’s the advantage of socket activation? Is it more secure than exposing a docker port?

• ⁨Comment⁩ on ⁨How do you handle absolutely critical alerts on your Android phone?⁩ ⁨⁨1⁩ ⁨week⁩ ago⁩:

  Mine works instantly on a pixel 8. There is a notification that is always active for the gotify app. I believe an always on notification is required for instant pushing with non google apps. Maybe you haven’t enabled it in the settings somewhere?

• ⁨Comment⁩ on ⁨How do you handle absolutely critical alerts on your Android phone?⁩ ⁨⁨1⁩ ⁨week⁩ ago⁩:

  Gotify along with an external email service. I get each notification twice, immediately

• ⁨Comment⁩ on ⁨Nextcloud (PHP) vs OpenCloud (Rust)⁩ ⁨⁨2⁩ ⁨weeks⁩ ago⁩:

  From the website, i can’t see how it’d different than owncloud.

• ⁨Comment⁩ on ⁨Nextcloud (PHP) vs OpenCloud (Rust)⁩ ⁨⁨2⁩ ⁨weeks⁩ ago⁩:

  This is what you’re really looking for:

  github.com/owncloud/ocis

• ⁨Comment⁩ on ⁨How do I host Jellyfin in the most secure manner possible?⁩ ⁨⁨2⁩ ⁨weeks⁩ ago⁩:

  No reason not to have both. Things like vaultwarden do warrant an extra layer so setup wildcard domain for internal services x.local.example.com and then normal certs for external stuff like y.example.com.

  To get internal stuff you then need your vpn as well to access it. You can now easily choose what risk you want on a per app basis.

  Technotim has a good video on this

• ⁨Comment⁩ on ⁨Backups made easy: btrfs + snapper + snapborg⁩ ⁨⁨2⁩ ⁨weeks⁩ ago⁩:

  Oh i see.

  that is a good point. Being about the mount the borg repo and pull out a specific file is very useful. Not sure I would do it as a bloc device since I don’t think there is an easy way to see specific files.

• ⁨Comment⁩ on ⁨Backups made easy: btrfs + snapper + snapborg⁩ ⁨⁨2⁩ ⁨weeks⁩ ago⁩:

  With snapshots it costs nothing if the OS files don’t change much

• ⁨Comment⁩ on ⁨Developing a self-hosted alternative to Google Keep⁩ ⁨⁨2⁩ ⁨weeks⁩ ago⁩:

  Self host radicale if you don’t want the whole nextcloud suite

• ⁨Comment⁩ on ⁨New Jellyfin Server/Web release: 10.10.7⁩ ⁨⁨2⁩ ⁨weeks⁩ ago⁩:

  If I in traefik and jellyfin in docker, so I add the docker IP of traefik as the trusted proxy?

• ⁨Comment⁩ on ⁨Best Back Up Solution For Multiple Servers⁩ ⁨⁨3⁩ ⁨weeks⁩ ago⁩:

  I use self hosted borg repo to backup to a local server and then also borgbase is a service that allows remote backup.

  Borgmatic automates all of this.

• ⁨Comment⁩ on ⁨How to secure Jellyfin hosted over the internet?⁩ ⁨⁨3⁩ ⁨weeks⁩ ago⁩:

  He’s saying that while there is no benefit to being connect to WG at home, there is also no downside so many people just stay connected all the time.

• ⁨Comment⁩ on ⁨How to secure Jellyfin hosted over the internet?⁩ ⁨⁨3⁩ ⁨weeks⁩ ago⁩:

  I haven’t tried it, but the app has the ability to select which app it tunnels.

  When you make a new tunnel, it says “all applications” if you click on that you can select specific ones to include or exclude

• ⁨Comment⁩ on ⁨How to secure Jellyfin hosted over the internet?⁩ ⁨⁨3⁩ ⁨weeks⁩ ago⁩:

  Android wireguard all hasn’t been updated in 18mo. Its extremely simple with a small code base. There basically isn’t anything to update. It uses wireguard kernel module which is itself is only like 700 lines of code. It so simple that it basically became stable very quickly and there is nothing left of update right now.

  git.zx2c4.com/wireguard-android/about/

• ⁨Comment⁩ on ⁨How to secure Jellyfin hosted over the internet?⁩ ⁨⁨3⁩ ⁨weeks⁩ ago⁩:

  I just stay connected to wireguard even at home, only downside is the odd time I need to chromecast, it needs to be shut off.

• ⁨Comment⁩ on ⁨How to secure Jellyfin hosted over the internet?⁩ ⁨⁨3⁩ ⁨weeks⁩ ago⁩:

  I use plain wireguard on me phone, always on essentially with no issues. I wonder why tailscale app can’t stay open.

• ⁨Comment⁩ on ⁨Making sure restic backups are right⁩ ⁨⁨4⁩ ⁨weeks⁩ ago⁩:

  I use Borg but every now and then I mount a backup and download a few files to make sure they work correctly.

  I’ve so far only had to do this for real with my local zfs snapshots after messing up a config file or blowing away the wrong folder. Process to restore is essentially the same except I would mount the Borg repo instead of a local zfs snapshot

• ⁨Comment⁩ on ⁨The Enshittification of 3D Printers – Are We Losing What Made Them Great?⁩ ⁨⁨4⁩ ⁨weeks⁩ ago⁩:

  For now

• ⁨Comment⁩ on ⁨Firefox deletes promise to never sell personal data, asks users not to panic⁩ ⁨⁨1⁩ ⁨month⁩ ago⁩:

  Is librewolf a good alternative? Most plugins seem compatible

• ⁨Comment⁩ on ⁨Immich: opinion revised⁩ ⁨⁨1⁩ ⁨month⁩ ago⁩:

  Borgbase is remote

• ⁨Comment⁩ on ⁨Immich: opinion revised⁩ ⁨⁨1⁩ ⁨month⁩ ago⁩:

  I used to use a docker container that makes db dumps of the database and drops it into the same persistent storage folder the main application uses. I use this for everything in docker that had a db.

  Immich as recently integrated this into the app itself so its no longer needed.

  All my docker persistent data is in a top level folder called dockerdata.

  In that I have sub folders like immich which get mounted as volumes in the docker apps.

  So now I have only 1 folder to backup for everything. I use zfs snapshots to backup locally (zfs auto shot) and borgmatic for remote backups (borgbase).

  All my dockers all compose files that are in git.

  I can restore he entire server by restoring 1 data folder and 1 compose file per stack.

• ⁨Comment⁩ on ⁨Custom Attributes in Authentik OIDC⁩ ⁨⁨2⁩ ⁨months⁩ ago⁩:

  this is great info, thanks. I don’t think its the issue right now, I think I need to define the roles in owncloud which I tried to do but it still doesn’t work. I’ll ask on the owncloud forums but these custom scopes might still be needed at some point. thanks.

• ⁨Comment⁩ on ⁨Custom Attributes in Authentik OIDC⁩ ⁨⁨2⁩ ⁨months⁩ ago⁩:

  tried this and also tried making a role in authentik assigned to the group called ocisAdmin and added the admin user to it, it still gives the same error. Seems like I need to define a proxy.yaml file in owncloud with the roles, I did this and it still doesn’t work.

• ⁨Comment⁩ on ⁨Custom Attributes in Authentik OIDC⁩ ⁨⁨2⁩ ⁨months⁩ ago⁩:

  tried this, created a group called ocisAdmin and added the admin user to it, it still gives the same error. Seems like I need to define a proxy.yaml file in owncloud with the roles, I did this and it still doesn’t work.

• Custom Attributes in Authentik OIDC
  Submitted ⁨⁨2⁩ ⁨months⁩ ago⁩ to ⁨selfhosted@lemmy.world⁩ | ⁨9⁩ ⁨comments⁩
• ⁨Comment⁩ on ⁨What does the 3-2-1 rule look like for you?⁩ ⁨⁨2⁩ ⁨months⁩ ago⁩:

  Its an automation software for borg backup to run on a schedule and keep a certain number of backups while deleting old ones etc.

• ⁨Comment⁩ on ⁨What does the 3-2-1 rule look like for you?⁩ ⁨⁨2⁩ ⁨months⁩ ago⁩:

  All persistent storage is in a folder.

  Locally there are zfs snapshots and for remote I use borg.

  Borg to

  1. Local server
  2. Friends server
  3. Borgbase
• ⁨Comment⁩ on ⁨How often do you run backups on your system?⁩ ⁨⁨2⁩ ⁨months⁩ ago⁩:

  I would but the other side isn’t zfs so I went with borg instead

• ⁨Comment⁩ on ⁨How often do you run backups on your system?⁩ ⁨⁨2⁩ ⁨months⁩ ago⁩:

  Local zfs snap every 5 mins.

  Borg backups everything hour to 3 different locations.

  I’ve blown away docker folders of config files a few times by accident. So far I’ve only had to dip into the zfs snaps to bring them back.