Deemo

joined 1 year ago
[–] Deemo@bookwormstory.social 2 points 3 months ago (1 children)

Interesting I always assumed they used ip not dns for geo locating cdns.

[–] Deemo@bookwormstory.social 1 points 3 months ago (1 children)

How much was your latency out of curiosity?

[–] Deemo@bookwormstory.social 2 points 3 months ago

Thanks for the clarification

[–] Deemo@bookwormstory.social 2 points 3 months ago (4 children)

Does the 300ms include dns latency?

40
submitted 3 months ago* (last edited 3 months ago) by Deemo@bookwormstory.social to c/selfhosted@lemmy.world
 

Hi guys for those of you that use pi-hole (or similar solutions like adguard home, etc) and wireguard how far away can you be from your wireguard/pi-hole server before latency becomes a major issue?

Also on a side note how many milliseconds of latency would you guys consider to be to slow?

Edit I meant dns latency sorry for not mentioning

[–] Deemo@bookwormstory.social 2 points 3 months ago

Thanks for the tip

[–] Deemo@bookwormstory.social 1 points 3 months ago

I should elaborate. I want to switch from caddy to authentiks internal reverse proxy. By default authentik uses ports 9000 and 90443 and you have the option to change them to 80 and 443 via docker compose.

Using host mode throws a wrench in the ports and authentik is made of more than one container.

 

Hi guys quick question say you run a a application on your localhost (example lets say couchdb runing directly on localhost:3434 not in docker).

Now you have a docker container (say caddy, ngnix, etc). Is there a way to allow docker container to acess localhost:3434 WITHOUT using the Host network driver (--net=host)

[–] Deemo@bookwormstory.social 1 points 4 months ago (2 children)

Does whois privacy work for .eu?

[–] Deemo@bookwormstory.social 4 points 4 months ago (4 children)

I do own a cheap numerical xyz domain (something like 432433.xyz) cost a dollar per year. Only reason I was curious about eu.org is its very short and ends with .org.

I haven't really bought a proper .com domain since I'm just using them for side hobby projects (not for sharing with other people).

[–] Deemo@bookwormstory.social 4 points 4 months ago

Thanks for the clarification

 

Hi guys I recently stumbled upon this website where you can get a eu.org sub domain (example.eu.org for instance).

I noticed though that domains aren't created instantly. I'm curious if there is human review to get domians processed and if it generally takes a long time to make domains using them.

[–] Deemo@bookwormstory.social 1 points 4 months ago

Again thanks for taking the time to help and explain this to me

[–] Deemo@bookwormstory.social 1 points 4 months ago

Yep this works

[–] Deemo@bookwormstory.social 1 points 4 months ago* (last edited 4 months ago) (3 children)

"origin=cloudsmith/caddy/stable";

Unable to parse Unattended-Upgrade::Allowed-Origins. An error occurred: not enough values to unpack (expected 2, got 1)


// Automatically upgrade packages from these (origin:archive) pairs
//
// Note that in Ubuntu security updates may pull in new dependencies
// from non-security sources (e.g. chromium). By allowing the release
// pocket these get automatically pulled in.
Unattended-Upgrade::Allowed-Origins {
        "${distro_id}:${distro_codename}";
        "${distro_id}:${distro_codename}-security";
        // Extended Security Maintenance; doesn't necessarily exist for
        // every release and this system may not have it installed, but if
        // available, the policy for updates is such that unattended-upgrades
        // should also install from here by default.
        "${distro_id}ESMApps:${distro_codename}-apps-security";
        "${distro_id}ESM:${distro_codename}-infra-security";
        "${distro_id}:${distro_codename}-updates";
//      "${distro_id}:${distro_codename}-proposed";
//      "${distro_id}:${distro_codename}-backports";
        "origin=cloudsmith/caddy/stable";
};
20
unattended upgrades with caddy (bookwormstory.social)
submitted 4 months ago* (last edited 4 months ago) by Deemo@bookwormstory.social to c/selfhosted@lemmy.world
 

Edit: credit to exu@feditown.com

Assuming you installed caddy via Debian, Ubuntu, Raspbian method

https://caddyserver.com/docs/install#debian-ubuntu-raspbian

add "cloudsmith/caddy/stable:any-version"; to /etc/apt/apt.conf.d/50unattended-upgrades

Example:

// Automatically upgrade packages from these (origin:archive) pairs
//
// Note that in Ubuntu security updates may pull in new dependencies
// from non-security sources (e.g. chromium). By allowing the release
// pocket these get automatically pulled in.
Unattended-Upgrade::Allowed-Origins {
        "${distro_id}:${distro_codename}";
        "${distro_id}:${distro_codename}-security";
        // Extended Security Maintenance; doesn't necessarily exist for
        // every release and this system may not have it installed, but if
        // available, the policy for updates is such that unattended-upgrades
        // should also install from here by default.
        "${distro_id}ESMApps:${distro_codename}-apps-security";
        "${distro_id}ESM:${distro_codename}-infra-security";
        "${distro_id}:${distro_codename}-updates";
//      "${distro_id}:${distro_codename}-proposed";
//      "${distro_id}:${distro_codename}-backports";
        "cloudsmith/caddy/stable:any-version";
};

Link to comment chain (not sure how to add links in a federated way)

https://feditown.com/comment/1221458

https://bookwormstory.social/post/2100056/4136035

Origional post:

Hi guys anyone know how to use un attended upgrades with caddy.

I have ubuntu server 22.0.4.

The part that stumps me is caddy uses a external repository cloud Smith making ot difficult to setup.

I installed caddy via Debian, Ubuntu, Raspbian

https://caddyserver.com/docs/install#debian-ubuntu-raspbian

The closest example I could find to unattended upgrades with a external repo was this example using docker.

/etc/apt/apt.conf.d/50unattended-upgrades

"Docker:${distro_codename}";

https://blog.coffeebeans.at/archives/1299

I'm not sure if it's as simple as

/etc/apt/apt.conf.d/50unattended-upgrades

"Caddy:${distro_codename}";

Edit:

One more question affect would adding

APT::Unattended-Upgrade::Package-Blacklist "";

/etc/apt/apt.conf.d/20auto-upgrades

have?

Edit2:

I just removed this I only found this from google gemini (which probably isn't the best source of info)

APT::Unattended-Upgrade::Package-Blacklist "";
 

Hi guys do you guys know any selfhosted cloud solution that has a combined sync and filestream option?

Context when you use seafile on macos there is seadrive (mounts external cloud like a drive) and seafile sync which syncs files to local folders. The problem is the two clients sort of act seperatly from one other (you cant make seadrive make files offline for instance neither can you preview files in seafile sync).

By contrast onedrive and google drive both have client apps which can sync on demand (file stream) and optionally make files available offline with a simple right click in context menu.

~~Side note I have tried nextcloud on mac but its experimental mount mode just keeps a placeholder .nextcloud file.~~

Edit:

Nextcloud does have proper virtual file sync. Only limitation is you can't make files availble offline via the context menu and instead need to set up manual folder syncs

Edit 2:

You need to grab the release from https://github.com/nextcloud-releases/desktop/releases/tag/v3.13.0

Specifically the vfs version Nextcloud-3.13.0-macOS-vfs.pkg

 

Edit 2: Fdroid Version 3.0 allows read only acess to files writing to files seems to not work

Edit: Tldr install version 3.0 from fdroid or github. Plastered version out of date.

Hi guys not sure if this is the right place to ask, but anyone having issues using the file browser integration for seafile?

The android app by itself seems to work but the files integration only seems to be broken.

By contrast the ios version of seafile the app and its files app integration both work with no issue. Additionally the webdav, browser, and mac apps (seadrive) have no issues.

Other context:

  • Running Seafile server 11.0.9 on Ubuntu 22.04.4 LTS using tailscale
  • Seafile android app version 2.3.7 running on Android 14
 

Hi guys I was wondering if there is a streamlined way to disable remote acess to a selfhosted service (say at a reverse proxy level) if a published security vunerability is present.

I know, ideally you want to keep all your selfhosted services up to date. However on certain selfhosted service auto updates may not be viable (due to major changes between updates) and you being unavailable 24/7 to respond to vunerabilities.

Curious on your thoughts and suggestions. So far the only middle ground I can find is realying on a vpn wireguard, tailscale, etc.

Page regarding homeassistant remote ui autodisable: https://www.nabucasa.com/config/remote/

view more: next ›