ohshit604

joined 5 months ago
sorted by: new top controversial old
You can still enable uBlock Origin in Chrome, here is how in c/technology@lemmy.world
[–] ohshit604@sh.itjust.works 3 points 1 day ago* (last edited 1 day ago)

This is the Firefox extension I use, I would check the headers your browser passes with WhoAmI to verify your user-agent, alternatively you can use invidious to get around YouTube’s bullshit.

I host a public Invidious instance for folks with a Canadian IP - https://inv.halstead.host/

You can still enable uBlock Origin in Chrome, here is how in c/technology@lemmy.world
[–] ohshit604@sh.itjust.works 28 points 2 days ago* (last edited 2 days ago) (3 children)

I have to use Chrome to access a couple of sites that don't play nice with Firefox.

I bet those sites will play nice if you switch your user-agent to display as chrome.

Anubis is awesome! Stopping (AI)crawlbots in c/selfhosted@lemmy.world
[–] ohshit604@sh.itjust.works 5 points 4 days ago (1 children)

How is the art a positive?

What else should I self-host? in c/selfhosted@lemmy.world
[–] ohshit604@sh.itjust.works 2 points 4 days ago

While true, they still collect data on the results hosting your own instance can prevent you from hitting rate-limits as often.

What else should I self-host? in c/selfhosted@lemmy.world
[–] ohshit604@sh.itjust.works 10 points 4 days ago* (last edited 4 days ago) (8 children)
  • SearxNG (Google Privacy frontend)

SearXNG is more than just a front end for google search, it’s an aggregator, if configured properly can collect results from Bing, Startpage, Wikipedia, DuckDuckGo, Brave.

What else should I self-host? in c/selfhosted@lemmy.world
[–] ohshit604@sh.itjust.works 5 points 5 days ago* (last edited 5 days ago)

Yes, back up your stuff regularly, don’t be like me and break your partition table with a 4 month gap between backups. Accomplishing 4 months of work in 5 hours is not fun.

Why does Arch seem to have a cult like following? in c/linux@lemmy.ml
[–] ohshit604@sh.itjust.works 2 points 1 week ago (1 children)

While true, at least I ain’t getting the updates that bloat applications with Ai.. yet

PSA: If the first Smart Search in Immich takes a while in c/selfhosted@lemmy.world
[–] ohshit604@sh.itjust.works 3 points 1 week ago* (last edited 1 week ago) (1 children)

So why would you not write out the full path?

The other day my raspberry pi decided it didn’t want to boot up, I guess it didn’t like being hosted on an SD card anymore, so I backed up my compose folder and reinstalled Rasp Pi OS under a different username than my last install.

If I specified the full path on every container it would be annoying to have to redo them if I decided I want to move to another directory/drive or change my username.

Why does Arch seem to have a cult like following? in c/linux@lemmy.ml
[–] ohshit604@sh.itjust.works 4 points 1 week ago* (last edited 1 week ago) (3 children)

People praising Arch, people hating on Ubuntu, meanwhile me on Debian satisifed with the minimalism.

PSA: If the first Smart Search in Immich takes a while in c/selfhosted@lemmy.world
[–] ohshit604@sh.itjust.works 4 points 1 week ago* (last edited 1 week ago) (3 children)

As other stated it’s not a bad way of managing volumes. In my scenario I store all volumes in a /config folder.

For example on my SearXNG instance I have a volume like such:

services:
  searxng:
    …
    volumes:
      - ./config/searx:/etc/searxng:rw

This makes the files for SearXNG two folders away. I also store these in the /home/YourUser directory so docker avoids needing sudoers access.

PNG has been updated for the first time in 22 years — new spec supports HDR and animation in c/technology@lemmy.world
[–] ohshit604@sh.itjust.works 5 points 1 week ago* (last edited 1 week ago)

Would this be the Gif killer? If PNG can contain a relatively similar frame count & time limit but with marginally better image quality it just may.

goodbye plex in c/selfhosted@lemmy.world
[–] ohshit604@sh.itjust.works 1 points 1 week ago* (last edited 1 week ago)

Grandma probably doesn’t do the actually torrenting herself, chances are OP has a overseerr or jellyseerr type of setup, grandma makes the request and things just flow.

25
Docker Swarm networking vs Docker Compose (sh.itjust.works)
submitted 3 weeks ago* (last edited 2 weeks ago) by ohshit604@sh.itjust.works to c/selfhosted@lemmy.world
5 comments fedilink
 

Evening y’all

I’ll try to keep it brief, I need to move my reverse proxy (traefik) to another machine and I’m opting to utilize Docker Swarm for the first time this way I’m not exposing a bunch of ports on my main server over my network, so ideally I’d like to have almost everything listening on local host while traefik does it’s thing in the background

Now I gotta ask, is Docker Swarm the best way to go about this? I know very little about Kubernetes and from what I’ve read/watched it seems like Swarm was designed for this very purpose however, I could be entirely wrong here.

What are some key changes that differ typical Compose files from Swarm?

Snippet of my current compose file:

services:
  homepage:
    image: ghcr.io/gethomepage/homepage
    hostname: homepage
    container_name: homepage
    networks:
      main:
        ipv4_address: 172.18.0.2
    environment:
      PUID: 0 # optional, your user id
      PGID: 0 # optional, your group id
      HOMEPAGE_ALLOWED_HOSTS: MY.DOMAIN,*
    ports:
      - '127.0.0.1:80:3000'
    volumes:
      - ./config/homepage:/app/config # Make sure your local config directory exists
      - /var/run/docker.sock:/var/run/docker.sock #:ro # optional, for docker integrations
      - /home/user/Pictures:/app/public/icons
    restart: unless-stopped
    labels:
      - "traefik.enable=true"
      - "traefik.http.routers.homepage.rule=Host(`MY.DOMAIN`)"
      - "traefik.http.routers.homepage.entrypoints=https"
      - "traefik.http.routers.homepage.tls=true"
      - "traefik.http.services.homepage.loadbalancer.server.port=3000"
      - "traefik.http.routers.homepage.middlewares=fail2ban@file"
  traefik:
    image: traefik:v3.2
    container_name: traefik
    hostname: traefik
    restart: unless-stopped
    security_opt:
      - no-new-privileges:true
    networks:
      main:
        ipv4_address: 172.18.0.26
    ports:
      # Listen on port 80, default for HTTP, necessary to redirect to HTTPS
      - target: 80
        published: 55262
        mode: host
      # Listen on port 443, default for HTTPS
      - target: 443
        published: 57442
        mode: host
    environment:
      CF_DNS_API_TOKEN_FILE: /run/secrets/cf_api_token # note using _FILE for docker secrets
      # CF_DNS_API_TOKEN: ${CF_DNS_API_TOKEN} # if using .env
      TRAEFIK_DASHBOARD_CREDENTIALS: ${TRAEFIK_DASHBOARD_CREDENTIALS}
    secrets:
      - cf_api_token
    env_file: .env # use .env
    volumes:
      - /etc/localtime:/etc/localtime:ro
      - /var/run/docker.sock:/var/run/docker.sock:ro
      - ./config/traefik/traefik.yml:/traefik.yml:ro
      - ./config/traefik/acme.json:/acme.json
      # - ./opt:/opt
      #- ./config/traefik/config.yml:/config.yml:ro
      - ./config/traefik/custom-yml:/custom
      # - ./config/traefik/homebridge.yml:/homebridge.yml:ro
    labels:
      - "traefik.enable=true"
      - "traefik.http.routers.traefik.entrypoints=http"
      - "traefik.http.routers.traefik.rule=Host(`traefik.MY.DOMAIN`)"
      #- "traefik.http.middlewares.traefik-ipallowlist.ipallowlist.sourcerange=127.0.0.1/32, 192.168.1.0/24, 208.118.140.130, 172.18.0.0/16"
      #- "traefik.http.middlewares.traefik-auth.basicauth.users=${TRAEFIK_DASHBOARD_CREDENTIALS}"
      - "traefik.http.middlewares.traefik-https-redirect.redirectscheme.scheme=https"
      - "traefik.http.middlewares.sslheader.headers.customrequestheaders.X-Forwarded-Proto=https"
      - "traefik.http.routers.traefik.middlewares=traefik-https-redirect"
      - "traefik.http.routers.traefik-secure.entrypoints=https"
      - "traefik.http.routers.traefik-secure.rule=Host(`traefik.MY.DOMAIN`)"
      #- "traefik.http.routers.traefik-secure.middlewares=traefik-auth"
      - "traefik.http.routers.traefik-secure.tls=true"
      - "traefik.http.routers.traefik-secure.tls.certresolver=cloudflare"
      - "traefik.http.routers.traefik-secure.tls.domains[0].main=MY.DOMAIN"
      - "traefik.http.routers.traefik-secure.tls.domains[0].sans=*.MY.DOMAIN"
      - "traefik.http.routers.traefik-secure.service=api@internal"
      - "traefik.http.routers.traefik.middlewares=fail2ban@file"

networks:
  main:
    external: true
    ipam:
     config:
       - subnet: 172.18.0.0/16
         gateway: 172.18.0.1

I censored out my actual domain with MY.DOMAIN so if that confuses people i apologize.

Update:

So, I’ve came across an application called Traefik-Kop which essentially allows for swarm like communication between traefik and two docker engines.

This isn’t full-proof as I do have to expose ports over the main server however, this was the simplest way of achieving what I was going for.

I want to say thank you to everyone who has commented I haven’t had much time to respond to comments here but I have read them all, y’all’s insight is much appreciated!

Update 2:

People here suggest Pangolin however, I just spent the last 3 hours trying to integrate pangolin with the Traefik instance that I already have setup, it was not fun, i couldn’t figure out how Pangolin is able to communicate with Traefik if it doesn’t expose any ports or define docker labels, once I figured out Pangolins web-ui runs on 3002:3002 I was able to reverse proxy it however, when attempting to login I kept running into 404 errors.

I’ll give it another go when I’m no longer frustrated with it as it does seem like the best route for me to take.

14
Packages similar to Earlyoom? (sh.itjust.works)
submitted 4 months ago* (last edited 4 months ago) by ohshit604@sh.itjust.works to c/linux@lemmy.ml
8 comments fedilink
 

So recently I just come across Earlyoom and it has completely resolved my desktop crashing and better handles my memory, I was wondering if there is any other software that I’m missing that could potentially improve my systems resource handling?

Distro = Debian 12, KDE Plasma 5

view more: next ›