a_fancy_kiwi

joined 2 years ago
sorted by: new top controversial old
Why is Debian always left out of the distro recommendations? in c/linux@lemmy.ml
[–] a_fancy_kiwi@lemmy.world 1 points 3 days ago

Linux has gotten really good over the last ~15 years. It used to be that if you didn’t have the most up to date packages, you would be missing game changing features. Now, the distribution you use almost doesn’t matter because even the older packages are good enough for most things.

To answer your question, if it weren’t for gaming, no I wouldn’t mind using Debian as my daily driver. If I ever needed a new package for whatever reason, I would use flatpaks, snaps, docker, or Distrobox to get it.

Why is Debian always left out of the distro recommendations? in c/linux@lemmy.ml
[–] a_fancy_kiwi@lemmy.world 4 points 3 days ago (2 children)

Personally, yeah it’s the old packages. I want to play games on my desktop and have the newest DE features. An arch based distro seems like it’ll keep up better than Debian.

For my servers though, I only use Debian.

Pros and cons on - and alternatives to - running three separate servers on one single Linux instance using systemd-nspawn in c/linux@lemmy.ml
[–] a_fancy_kiwi@lemmy.world 4 points 4 days ago

I’m assuming you mean LXC? It’s doable but without some sort of orchestration tools like Nix or Ansible, I imagine on-going maintenance or migrations would be kind of a headache.

Pros and cons on - and alternatives to - running three separate servers on one single Linux instance using systemd-nspawn in c/linux@lemmy.ml
[–] a_fancy_kiwi@lemmy.world 6 points 4 days ago (1 children)

You might come across docker run commands in tutorials. Ignore those. Just focus on learning docker compose. With docker compose, the run command just goes into a yaml file so it’s easier to read and understand what’s going on. Don’t forget to add your user to the docker group so you aren’t having to type sudo for every command.

Commands you’ll use often:

docker compose up - runs container

docker compose up -d - runs container in headless mode

docker compose down - shuts down container

docker compose pull - pulls new images

docker image list - lists all images

docker ps - lists running containers

docker image prune -a - deletes images not being used by containers to free up space

Coworker wants to try Linux with gaming, Bazzite or Mint? in c/linux@lemmy.ml
[–] a_fancy_kiwi@lemmy.world 6 points 4 days ago

he is still completely new to this so I want things to work out perfectly for his first experience.

Of the two options you gave, I’d go with Mint. If your friend runs into a problem, it would probably be easier to diagnose the issue since it’s just Ubuntu/Debian under the hood.

Once they get used to it, they can try other gaming specific distros if they want to try to get a little more performance.

Pros and cons on - and alternatives to - running three separate servers on one single Linux instance using systemd-nspawn in c/linux@lemmy.ml
[–] a_fancy_kiwi@lemmy.world 7 points 4 days ago* (last edited 4 days ago) (9 children)

Should I just learn how to use Docker?

Yes. I put off learning it for so long and now can’t imagine self-hosting anything without it. I think all you have to do is set a static IP to the NIC from your router and then specify the IP and port in a docker-compose.yml file:

Ex: IP-address:external-port:container-port

services:
    app-name:
        ports
            - 192.168.1.42:3000:3000
Apple to Soon Take Up to 30% Cut From All Patreon Creators in iOS App in c/technology@lemmy.world
[–] a_fancy_kiwi@lemmy.world 2 points 1 week ago

I’d love to but it’s a chicken and egg thing. Regular people don’t understand bitcoin let alone monero. On top of that, you still have fees for converting from a currency to monero and again from monero to a currency, so there’s still a middle man :/

How many containers are you all running? in c/selfhosted@lemmy.world
[–] a_fancy_kiwi@lemmy.world 1 points 1 week ago

thanks, I'll look into it. Much appreciated

Apple to Soon Take Up to 30% Cut From All Patreon Creators in iOS App in c/technology@lemmy.world
[–] a_fancy_kiwi@lemmy.world 2 points 1 week ago* (last edited 1 week ago)

I understand your view and sympathize deeply but there is a lot wrong in the world today and if I have to divert energy somewhere to try and change something, Patreon's 10/90 split is at the bottom of the list for me at the moment. Regular working class people aren't getting that good of a deal at the jobs they work at. I'm not even talking 90/10, just getting their .01% of the profits in a 1000 person org for their contribution would probably be life changing.

You are right but our frames of reference are different.

How many containers are you all running? in c/selfhosted@lemmy.world
[–] a_fancy_kiwi@lemmy.world 9 points 1 week ago (4 children)

I’ve never looked into adding GitHub releases to FreshRSS. Any tips for getting that set up? Is it pretty straight forward?

Apple to Soon Take Up to 30% Cut From All Patreon Creators in iOS App in c/technology@lemmy.world
[–] a_fancy_kiwi@lemmy.world 20 points 1 week ago* (last edited 1 week ago) (2 children)

I wouldn’t say these services are nothing. Are they worth 10%? Eh.

A 90/10 split for content creators who otherwise wouldn’t know how to build and operate their own platform doesn’t sound like a terrible deal. It’s not amazing but if there were better options, Patreon may not be so popular.

Edit: I want to clarify. Patreon is a for profit company who has apparently tried raising prices already and back tracked. Eventually, Patreon will try and squeeze out more profit from the creators and the user base will be big enough that Patreon will have the leverage to do so; we’ve all seen it before. I’m not saying Patreon is a good company, I’m not saying they won’t be dicks in the future, I’m not saying the system as it is, is good. I’m only saying 10% isn’t a bad deal when so many other options are worse (ex. Apple taking 30%)

Apple to Soon Take Up to 30% Cut From All Patreon Creators in iOS App in c/technology@lemmy.world
23
Help with understanding memory usage discrepancy (lemmy.world)
submitted 2 weeks ago* (last edited 2 weeks ago) by a_fancy_kiwi@lemmy.world to c/selfhosted@lemmy.world
34 comments fedilink
 

I recently noticed that htop displays a much lower 'memory in use' number than free -h, top, or fastfetch on my Ubuntu 25.04 server.

I am using ZFS on this server and I've read that ZFS will use a lot of RAM. I also read a forum where someone commented that htop doesn't show caching used by the kernel but I'm not sure how to confirm ZFS is what's causing the discrepancy.

I'm also running a bunch of docker containers and am concerned about stability since I don't know what number I should be looking at. I either have a usable ~22GB of available memory left, ~4GB, or ~1GB depending on what tool I'm using. Is htop the better metric to use when my concern is available memory for new docker containers or are the other tools better?

Server Memory Usage:

  • htop = 8.35G / 30.6G
  • free -h =
               total        used        free      shared  buff/cache   available
Mem:            30Gi        26Gi       1.3Gi       730Mi       4.2Gi       4.0Gi
  • top = MiB Mem : 31317.8 total, 1241.8 free, 27297.2 used, 4355.9 buff/cache
  • fastfetch = 26.54GiB / 30.6GiB

EDIT:

Answer

My Results

tldr: all the tools are showing correct numbers. Htop seems to be ignoring ZFS cache. For the purposes of ensuring there is enough RAM for more docker containers in the future, htop seems to be the tool that shows the most useful number with my setup.

125
How do you all handle security and monitoring for your publicly accessible services? (lemmy.world)
submitted 1 year ago* (last edited 1 year ago) by a_fancy_kiwi@lemmy.world to c/selfhosted@lemmy.world
70 comments fedilink
 

This is a continuation of my other post

I now have homeassistant, immich, and authentik docker containers exposed to the open internet. Homeassistant has built in 2FA and authentik is being used as the authentication for immich which supports 2FA. I went ahead and blocked connections from every country except for my own via cloudlfare (I'm aware this does almost nothing but I feel better about it).

At the moment, if my machine became compromised, I wouldn't know. How do I monitor these docker containers? What's a good way to block IPs based on failed login attempts? Is there a tool that could alert me if my machine was compromised? Any recommendations?

EDIT: Oh, and if you have any recommendations for settings I should change in the cloudflare dashboard, that would be great too; there's a ton of options in there and a lot of them are defaulted to "off"

86
How do you handle SSL certs and internet access in your setup? (lemmy.world)
submitted 1 year ago* (last edited 1 year ago) by a_fancy_kiwi@lemmy.world to c/selfhosted@lemmy.world
89 comments fedilink
 

tldr: I'd like to set up a reverse proxy with a domain and an SSL cert so my partner and I can access a few selfhosted services on the internet but I'm not sure what the best/safest way to do it is. Asking my partner to use tailscale or wireguard is asking too much unfortunately. I was curious to know what you all recommend.

I have some services running on my LAN that I currently access via tailscale. Some of these services would see some benefit from being accessible on the internet (ex. Immich sharing via a link, switching over from Plex to Jellyfin without requiring my family to learn how to use a VPN, homeassistant voice stuff, etc.) but I'm kind of unsure what the best approach is. Hosting services on the internet has risk and I'd like to reduce that risk as much as possible.

  1. I know a reverse proxy would be beneficial here so I can put all the services on one box and access them via subdomains but where should I host that proxy? On my LAN using a dynamic DNS service? In the cloud? If in the cloud, should I avoid a plan where you share cpu resources with other users and get a dedicated box?

  2. Should I purchase a memorable domain or a domain with a random string of characters so no one could reasonably guess it? Does it matter?

  3. What's the best way to geo-restrict access? Fail2ban? Realistically, the only people that I might give access to live within a couple hundred miles of me.

  4. Any other tips or info you care to share would be greatly appreciated.

  5. Feel free to talk me out of it as well.

EDIT:

If anyone comes across this and is interested, this is what I ended up going with. It took an evening to set all this up and was surprisingly easy.

  • domain from namecheap
  • cloudflare to handle DNS
  • Nginx Proxy Manager for reverse proxy (seemed easier than Traefik and I didn't get around to looking at Caddy)
  • Cloudflare-ddns docker container to update my A records in cloudflare
  • authentik for 2 factor authentication on my immich server
0
Help with understanding throughput of pcie and hard drives (lemmy.world)
submitted 2 years ago* (last edited 2 years ago) by a_fancy_kiwi@lemmy.world to c/selfhosted@lemmy.world
3 comments fedilink
 

I've been interested in building a DIY NAS out of an SBC for a while now. Not as my main NAS but as a backup I can store offsite at a friend or relative's house. I know any old x86 box will probably do better, this project is just for the fun of it.

The Orange Pi 5 looks pretty decent with its RK3588 chip and M.2 PCIe 3.0 x4 connector. I've seen some adapters that can turn that M.2 slot into a few SATA ports or even a full x16 slot which might let me use an HBA.

Anyway, my question is, assuming the CPU isn't a bottle neck, how do I figure out what kind of throughput this setup could theoretically give me?

After a few google searches:

  • PCIe Gen 3 x4 should give me 4 GB/s throughput
  • that M.2 to SATA adapter claims 6 ~~GB/s~~ Gb/s throughput
  • a single 7200rpm hard drive should give about 80-160MB/s throughput

My guess is that ultimately, I'm limited by that 4GB/s throughput on the PCIe Gen 3 x4 slot but since I'm using hard drives, I'd never get close to saturating that bandwidth. Even if I was using 4 hard drives in a RAID 0 config (which I wouldn't do), I still wouldn't come close. Am I understanding that correctly; is it really that simple?

view more: next ›