And I don't look even slightest like Humphrey Bogart no matter what kind of fedora I'd wear.
IsoKiero
joined 1 year ago
have seen some people have networking issues with them.
I've been a happy customer for hetzner for almost a decade and I haven't had any issues with their networking. If you're running virtualization you need to take care of you MAC addresses or they won't allow traffic and eventually will kick you off from their platform (and they have a good reason to do so). As long as you play by their rules on their hardware it's rock solid, specially for the price.
I used to have old ThinkStation as a home server. Even older ones like S20 I have couple of laying around is still pretty capable system (I'm typing this on one) and as they've been CAD workstations and things like that when they were new many have 12+GB of RAM already. I got mine for free troguh a work contact, but they should be available via ebay or (preferably) your local version of it for pretty cheap.
Then you just need new drives and their prices have dropped too. 100€ is a bit of a stretch, but if you can get a whole computer from someone in the industry it should be possible. I have a few systems laying around I could get rid of for a case of beer or something, but shipping alone from here would eat up majority of your budget (if anyone is interested in x3550 m3 throw me a message, located in Finland, I might remember the model wrong but that's roughly in the ballpark).
Other than thinkstations I'd say you'll want a xeon CPU with at least 4 hyperthread cores, 16GB RAM and all the drives your budget has left. SSD for a boot drive(s) is nice to have, but spinning rust will get you there eventually.
Many rack mounted servers only accept SAS-drives which are a bit more expensive. Tower mounts generally use SATA so you can just throw in whatever you have laying around. The main concern is amount of RAM available. For older systems it might be a bit difficult to find suitable components, so more you have already in place the better. For VM server I think 16GB or above is fine for learning and it might be possible to shoehorn most of the stuff in even with 8GB. Performance will definetly take a hit with less RAM, but with that budget some compromises are necessary.
So, in short, with that budget it might be possible if you have a friend who has access to discarded workstations or happen to stumble in a good deal with local companies. It'll require some compromises and/or actively hunting for parts and with old hardware there's always possibility of failure so plan accordingly.
Depends on whom you ask from. For me selfhosting is all about the software and renting hardware is a perfectly fine solution for that. You don't need to worry about UPS's, maintaining hardware and all the jazz which comes with your own gear. Sure, then you're depending on your VPS provider that services actually stay up, but even a small VPS provider has more people working on things than just yourself. And they have power solutions, like industrial scale power solutions with generators, multiple connection points to the internet and things like that which are either impossible or very expensive to set up just for your own hardware.
And then there's the other side, like home automation, where relying on internet connectivity to get your lights on is, in my opinion, a bit silly thing to do for yourself and running server for that locally makes perfect sense. So, right solution depends on your needs, but if you want to define what counts as self hosting in my opinion it boils down to who has the root/administrator credentials on your server. Other may have different opinions.
While I agree with @rglullis@communick.news, this isn't strictly speaking on-topic for this community, that kind of knee-jerk response is very much out of the topic as well. The first community rule is to be civil and in general I, perhaps optimistically, would like that conversation over fediverse in global would be civil, or at least well argumented, a bit like it used to be (more or less, YMMV) back in the usenet days.
And on the topic of self-hosting, that's a line drawn in the water. I run various of things by myself (postfix+dovecot, LAMP, bitwarden, seafile, nextcloud....) on a rented servers running linux+kvm. And I get money by doing that, it's a very much a business case, so I'm a bit reluctant to ask questions about the setup I have in here as I think it wouldn't be fair to ask for advice from hobbyists in a project where money is directly involved. But for me personally that setup checks both sides of things. I get money by doing it, but at the same time I personally can get out of the walled gardens like M365 or Gsuite.
TL;DR: There's no need to be rude, you can choose to politely point people in the right direction.
Not spesifically a tool to put on a USB stick, but Ventoy is worth checking. I've had a bit mixed results with it on older hardware but when it works it's pretty easy to manage your carry-on-tools.
I do wonder about when VPNs started being used as proxies…
About at the same time operators at the US noticed that they could profit from profiling users behaviour. In here that's very much illegal thing to do and most use cases for VPN is to connect yourself into corporate network. VPNs are of course useful to protect you from MITM attacks at open wifi networks and things like that, but hiding your behavior from your ISP is very much an US thing.
While I think you could techincally spoof your originating IP at the VPN server to match your clients IP it wouldn't do anything useful. That's not how IP routing works. What you're trying to achieve with a setup like that?
Not necessarily. VPN can be used for that, but I'd be that more common use case is to access networks which are otherwise firewalled off from the public internet, like corporate LAN.
And if you're concenred on data written on sectors since reallocated you should physically destroy the whole drive anyways. With SSDs this is even more complicated, but I like to keep it pretty simple. If the data which has been stored on the drive at any point of it's life is under any kind of NDA or other higly valuable contract it's getting physically destroyed. If the drive spent it's life storing my family photos a single run of zeroes with dd is enough.
At the end the question is that if at any point the drive held bits of anything even remotely near a cost of a new drive. If it did it's hammer time, if it didn't, most likely just wiping the partition table is enough. I've given away old drives with just 'dd if=/dev/zero of=/dev/sdx bs=100M count=1'. On any system that appears as a blank drive and while it's possible to recover the files from the drive it's good enough for the donated drives. Everything else is either drilled trough multiple times or otherwise physically destroyed.
Dd. It writes on disk at a block level and doesn't care if there's any kind of filesystem or raid configuration in place, it just writes zeroes (or whatever you ask it to write) to drive and that's it. Depending on how tight your tin foil hat is, you might want to write couple of runs from /dev/zero and from /dev/urandom to the disk before handing them over, but in general a single full run from /dev/zero to the device makes it pretty much impossible for any Joe Average to get anything out of it.
And if you're concerned that some three-letter agency is interested of your data you can use DBAN which does pretty much the same than dd, but automates the process and (afaik) does some extra magic to completely erase all the data, but in general if you're worried enough about that scenario then I'd suggest using an arc furnace and literally melting the drives into a exciting new alloy.
You can run rsyncd as a service on host you wish to back up and connect to that from your central point directly without ssh. Traffic is unencrypted and I wouldn't trust on that over public network, but you can bind rsyncd to localhost and open a single ssh tunnel for each host (or even write a small script to keep tunnels open automatically) and then just run rsync over that. That's how I backup my things, just with backuppc in the mix (I've got scripts to open/close ssh tunnels at backuppc configuration). VPN tunnels are also an option to encrypt traffic, but depending on your use case that might be a bit overkill.
Or if you're not tied to rsync you could use something like BorgBackup or other tools which manage the whole jazz for you out of the box.