Opensuse!
Yast is one of the most fully featured package managers and tumbleweed is damn good and they lean fully into KDE.
I even run opensuse Kalpa (KDE immutable) and it is pretty rock solid outside of steam flatpak.
JustEnoughDucks
joined 1 year ago
You want a prebuilt NUC. That is pretty much it. A Pi generally doesn't cut it, plus by the time you get all the accessories to make it usable as a server, you are at the price of a much more powerful small PC.
I run a ryzen 3600 with 32GB RAM in a Node 304 and it is very quiet with 12TB red pro helium drives. 4 HDD capable with a GPU and 6 without. However, it still draws 20-30W idle or 50W with an Arc A380 installed.
There is one neat trick: don't expose SSH.
There is still not a reason anyone has been able to give for 99% of self-hosters to expose SSH.
If you need to access your machine via ssh while on the go. Wireguard to your local network, use SSH. Done. Unless you are running an always-up public facing site, the amount of times you have to access your machine that can't wait until after work is very low anyway.
Bots will scan all ports. That is just how it works. Less than 22, but you will still get spammed. Why force your computer to go through the fail2ban loop and take up resources when it is simply not needed at all and you can block it on another machine?
Privatevpn allows it over openvpn, but not Wireguard (also independent and not a part of the big corporate vpn net)
I have an orangepi zero 3 with pihole
Then an ITX PC with
-
mealie (meal planner, recipe parser, grocery list maker with a bunch of features and tools)
-
immich for self hosting a google photos alternative
-
*arr stack for torrenting Linux ISOs
-
Jellyfin for LAN media playing
-
home assistant for my VW car, our main hanging renovation lights, smoke and CO monitors, and in the future, all of the KNX smart systems in our house
-
Syncthing for syncing photo backup and music library with phone
-
Bookstack for a wiki, todos, journal, etc... (Because I didn't want to install better services for journals when I don't use it much)
-
paperless-ngx for documents
-
leantime for managing my personal projects, tasks, and timing
-
Valheim game server
-
Calibre-web for my eBook library backup
-
I had nextcloud but it completely broke on an update and I can't even see the login fields anymore, it just loads forever until it takes down my network and server, so I ditched it since I never used it anyway
-
crowdsec for much better (preemptive) security than fail2ban
-
traefik for reverse proxy
More niche? Opensuse Kalpa.
I started running it and their are some pains like figuring out which layer to install tablet driver software, undervolting software, and kde connect. Seam flatpak still sucks dick and the tray icon for it doesn't work at all and it needs a ton of modifications to get things to where the native steam runtime just works, but still a fun experiment.
Considering the capitalists have forced the world to arbitrarily measure the "economy" by measuring how willing rich people are to play in the rich man casino...
L O L "doing something different"
Epic tried to pull an Amazon.
Get VC money and chinese money and subsidize and undercut competition using anticompetitive practices to gain market share before the rug pull where they jack up their margins to the industry standard. (Everyone uses 30%, even brick and mortars except humble which is 25)
The difference is Amazon actually made a good software experience in the beginning few years and Epic spent literal years with very few feature updates and whining and burning money suing about "unfair market practices" when they were the only ones actually engaging in anti-consumer practices like paying off developers to be Epic-exclusive and buying developers and removing their games from steam. The other "different" thing that they did I guess is their CEO is an outspoken objective asshole.
They never got to the rug pull part because their actual software sucked balls and they refused to improve it so much so that someone else actually made a better launcher than them for their own products...
Epic tried to pull an Amazon.
Get VC money and subsidize and undercut competition using anticompetitive practices to gain market share before the rug pull where they jack up their margins to the industry standard.
The difference is Amazon actually made a good software experience in the beginning few years and Epic spent literal years with very few feature updates and whining about "unfair market practices" when they were the only ones actually engaging in anti-consumer passes like paying off developers to be Epic-exclusive and buying developers and removing their games from steam.
If you want to build it yourself, you have to decide on size.
Are you trying to keep it as small as possible?
Do you want a dedicated GPU for multiple jellyfin streams? (Definitely get the Intel A380, cheap and an encoding beast)
If you don't want to start a rack and don't want to go with a prebuilt NUC, there are 2 PC cases I would recommend.
Node 304 and Node 804.
Node 304 is mini-ITX (1 PCIe slot, 1 M.2 slot for boot OS, 4 HDDs, SFX-L PSU, and great cooling)
Node 804 is micro-ATX (2 PCIe slots, 2 M.2 slots, 8-10 HDDs, ATX PSU, and 2 chambers for the HDDs to stay cool)
Why do you want a N100? Is electricity very expensive where you are that idle power is a big factor? Because desktop CPUs are more powerful and the CPUs can idle down to 10W or so without a GPU and they can have way more RAM.
Tldr; go with prebuilt NUC or go with a desktop CPU for a custom build.
I did this exact thing with my server. Fully encrypted with a boot partition on a USB.
Clonezilla from my encrypted SSD to another (you can also decrypt it with clonezilla before the copy if you want)
Expanded the LVM volumes
Viola, 120GB to 500GB. Spun up the docker containers and everything just worked again
And in all tiers: make an additional profit by selling your information without your consent (it has been decided in many courts that burying subtext deeply in forced terms of service isn't consent)
We are already paying them by letting them harvest our data, ads or not.
Then they double or triple dip with the scenarios you describe. I am still paying them by being on their site with an ad blocker as they harvest my data and sell it to the highest bidder. Not to mention quadruple dipping with using our info and content without consent to train AI to sell.
They use the argument "your data/art/photos/videos are freely posted on the internet, so we can use them how we please". If they publish content openly on the internet, then we are free to do with it as we please.
They can't use the argument but say "no no no, it doesn't apply to things WE put out"
They are either pirating our content and data constantly or ad-blocking is not pirating.