Lem453
@Lem453@lemmy.ca
- Comment on Could anyone recommend me a self-hosteable TinkerCAD equivalent? 22 hours ago:
Freecad in a VM with a remote viewer like guacamole?
- Comment on Migrating from Nextcloud AIO to Owncloud Infinite Scale: Good Idea? 4 days ago:
Not sure what you mean by expects oauth.
I’ve been testing it and it works very well so far in my tests with just a normal user name and password to login.
I’ve actually been meaning to work on getting oauth connected to my authentik but haven’t gotten around to it yet
So far the server seems very solid and the clients for android and windows also seem very good.
- Comment on Anyone self-hosting ActualBudget? (with connection to bank) 2 weeks ago:
Would appreciate a link please! Can’t seem to find it on DDG
- Comment on Looking for help/guidance on how to setup a server for a business 2 weeks ago:
You don’t have the knowledge or experience to do this for a business. This is different than a personal cloud. You will be blamed when things don’t work.
Don’t touch this with a 10ft pole.
If you want to help, find commercial services that offer this and suggest those.
- Comment on The Fennec Android browser is currently behind on Firefox security updates, deemed unsafe by F-droid 3 weeks ago:
I’ve been using Firefox install via obtainium straight from the Mozilla repo.
- Comment on how can i self host my music? 3 weeks ago:
For normal docker self hosters the biggest is similar structures across their images.
It config is always /config
Also they run the same user so it helps with file permission issues
- Comment on 4 weeks ago:
This. N100 box with Opnsense will serve you well for a decade+ until you want to upgrade to 10gbps.
- Comment on Authentication for external sevices 1 month ago:
I use this for oauth, forward proxy and ldap authentication. All my apps are authenticated via authentik and its great
- Comment on Installing Jellyfin as a Podman Quadlet 1 month ago:
Do you run other things on your system other than containers? I have a VM that only runs containers so it really doesn’t do anything else with systemd apart from the basics so I’m curious if there would be any advantage to me switching.
- Comment on Installing Jellyfin as a Podman Quadlet 1 month ago:
Why should someone want containers managed by systemd instead of just having them run like normal? What is the advantage?
Also if you use cockpit or some equivalent GUI to manage your containers, do you have to give it permission to control all systemd services?
- Comment on Mozilla grants Ente $100k 1 month ago:
Immich is quite new clearly say they will have breaking changes.
Stable release planned for this year
The updates are almost always packed with cool new features so I’d rather have an amazing app with a bit of maintenance then get something stable that lacks features. Especially when stability is now just around the corner.
As far as breaking changes go, in the year of me using the docker install I’ve had maybe 3 updates that required me to change things and each one was leas than 10 mins of work. Pretty basic stuff if you are actually on the selfhosted path
- Comment on I tried to selfhost Nextcloud at work 1 month ago:
Yes it works with the android app
- Comment on Network Switch 1 month ago:
Very reasonable. FWIW, sfp uses way less power than rj45 for 10gbe if that’s an option.
- Comment on Network Switch 1 month ago:
The comments here saying to not bother with 10gbe is surprising considering it’s the selfhosted community, not a random home networking self help. Dismissing a reasonable request form someone who is building a homelab is not a good way to grow niche communities like this one on the fediverse.
10gbe has come down in price a lot recently but is still more expensive than 1gb of course.
Ideas for switches: servethehome.com/the-ultimate-cheap-10gbe-switch-…
- Comment on I tried to selfhost Nextcloud at work 1 month ago:
OwnCloud rewrite in Go is way better
- Comment on Haptic: A new local-first, privacy-focused and open-source home for your markdown notes 2 months ago:
See me comment above
I don’t like that obsidian not fully open source but the plugins can’t be beat if you use them. Check out some youtube videos for top 20 plugins etc. Takes the all to a whole new level.
- Comment on Haptic: A new local-first, privacy-focused and open-source home for your markdown notes 2 months ago:
I could never get NextCloud on android to sync files back to the servers
- Comment on Haptic: A new local-first, privacy-focused and open-source home for your markdown notes 2 months ago:
The real power of obsidian is similar to why Raspberry Pi is so popular, it has such a large community that plugins are amazing and hard to duplicate.
That being said, I use this to live sync between all my devices. It works with almost the same latency as google docs but its not meant for multiple people editing the same file at the same time
- Comment on Looking for a crossplatform backup solution over https 3 months ago:
And borgmatic makes retention rules with automatic runs super easy. It basically a wrapper that runs borg on the client side.
- Comment on Google Says Sorry After Passwords Vanish For 15 Million Windows Users. 3 months ago:
Security in layers.
All your services should be using https. Vaultwarden in particular won’t even run without https unless you bypass a bunch of security measures.
This is how to setup local only and external https, I highly recommend this as a baseline setup for every homelab. It allows you to choose how much security you want on a per app basis and makes adding new apps trivially easy.
- Comment on Google Says Sorry After Passwords Vanish For 15 Million Windows Users. 3 months ago:
Anyone with the knowledge to self host will quickly discover 3-2-1. If they choose to follow it, that’s on them but data loss won’t be from ignorance
- Comment on Google Says Sorry After Passwords Vanish For 15 Million Windows Users. 3 months ago:
Borg backup to borgbase is not very expensive and borg will encrypt the data plus the vault is also encrypted
- Comment on Google Says Sorry After Passwords Vanish For 15 Million Windows Users. 3 months ago:
Keep vaultwarden behind wireguard for local only access then also use https certs and good master password. Very secure like this
- Comment on Linkwarden - An open-source collaborative bookmark manager to collect, organize and preserve webpages | July 2024 Update - New iOS App, Full Page Copy, User Administration and more... 🚀 3 months ago:
Last in checked, there is an open PR for the PWA Android app the expose the share function. That will allow this to work however you will have to install the PWA via chrome since the share feature for PWA is proprietary. Sucks because I use Firefox with a bunch of privacy features .
- Comment on Immich v1.109.1 released with optional paid license 3 months ago:
Same with jellyfin.
They basically don’t accept recurrent donations on purpose
- Comment on Help with authentik and traefik random drops 4 months ago:
I’ve got multiple apps using LDAP, oauth, and proxy on authentik, I’ve not had this happen.
I also use traefik as reverse proxy.
I didn’t manually create an outpost. Not sure what advantage there is unless you have a huge organization and run multiple redundant containers. Regardless there might be some bug here because I otherwise have the same setup as you.
I would definitely try uploading everything to the latest container version first
- Comment on Should I use a reverse proxy in a homelab? 4 months ago:
For people wanting the a very versatile setup, follow this video:
Apps that are accessed outside the network (jellyfin) are jellyfin.domain.com
Apps that are internal only (vaultwarden) or via wireguard as extra security: Vaultwarden.local.domain.com
Add on Authentik to get single sign on. Apps like sonarr that don’t have good security can be put behind a proxy auth and also only accessed locally or over wireguard.
Apps that have oAuth integration (seafile etc) get single sign on as well at Seafile.domain.com (make this external so you can do share links with others, same for immich etc).
With this setup you will be super versatile and can expand to any apps you could every want in the future.
- Comment on How do you manage your encryption keys? 4 months ago:
Bitwarden let’s you upload files (key files) and save all you passwords.
- Comment on Authy got hacked, and 33 million user phone numbers were stolen 4 months ago:
Use aegis, export the keys and then reimport them every time you switch. Trusting your second factor to a cloud is a disaster waiting to happen.
If you want to get fancy setup your own cloud server (nextcloud, Seafile, owncloud etc) and set the backup folder for aegis to the self hosted cloud for easy restore every time you switch ROMs.
- Comment on Proton launches privacy-focused Google Docs alternative: Docs in Proton Drive is an open-source, end-to-end encrypted collaborative document editor 4 months ago:
FWIW collabora and open office can integrate with other clouds like Seafile and owncloud Infinite scale. So even without NextCloud it can be used. It can also be used stand alone.