I'm local first - stuff I'm testing, playing with, or "production" stuff like Jellyfin, Forgeo, AudioBookshelf, Kavita etc etc. Local is faster, more secure, and storage is cheap. But then some of my other stuff that needs 24/7 access from the internet - websites and web apps - they go on the VPS.
thirdBreakfast
joined 2 years ago
I just do one Docker container per LXC. All the convenience of compose, plus those sweet Proxmox snapshots.
Doki Doki Literature Club is a fun dating sim, but it has slightly more emotional breadth than that, so it might pass this test.
When I switched to webdev, I dropped $20 on a system admin Linux course on Udemy. I highly recommended this approach.
Forgejo - actively developed open source. It's what powers Codeberg. Easy to set up and manage with Docker. I moved to it from Gogs and skipped Gitea after reading about the forks.
It is only resolving for devices in the Tailnet. Kuma is checking they are all up, and this Ansible playbook is checking they have all their updates. I wouldn't have thought that was an unusual arrangement - and it's worked perfectly for about a year till about three weeks ago.
> afterallwhynot.jpg
Yes, this.
Thanks yes - that's exactly what I needed.
Thanks - this is exactly what I needed.
I recovered from a small disaster today using the neko dockerised web-browser.
I set up a remote backup with Proxmox running on a HP mini and a Synology a month ago at a friend's house 3000 km away. I thought I'd reserved all the IP addresses, but last night the Synology IP address changed, so the NFS shares to Proxmox and Jellyfin broke. That wasn't to hard to fix remotely, but I don't want it to happen every time the DHCP lease expires.
So now I need to log into their router and reserve the IP addresses...
I can get on the local network there by ssh-ing into one of my entities (via Tailscale), but how do I get to the web interface of the router?
Enter neko. It spins up a browser in a Docker container that can be accessed over a web address. So I created an LXC, installed docker and spun it up, then was able to use that to open the local-only web interface to the router.
neko is intended for watch parties, so multiple people can be logged in to the same browser window at a time - there's a toggle to take control of the window for clicks and typing, but apart from that it's all pretty straight forward. There's a very noticeable lag, but it got the job done.
Perhaps there was an easier lighter-weight way of doing this? In the old old days there was a text browser called Lynx - so perhaps there's some modern iteration that could have done this job?
Edit: There is an easier lighter-weight way of doing this!
Thanks to @SteveTech@programming.dev, @Dewege@feddit.org and others who mentioned 'ssh tunneling' - TIL I could just connect a local port (8080 in my case) to port 80 on the router (192.168.1.1:80 in my case) via the VM I have ssh access to over tailscale (thirdbreakfast@100.126.38.117) with:
ssh -L 8080:192.168.1.1:80 thirdbreakfast@100.126.38.117
ssh -L <local port to use>:<remote machine to access with port> <ssh address of jump machine>
When executed, that looks like I've just ssh'ed into that machine, but until I log out of that connection I can open up 127.0.0.1:8080 in my browser and I'm in the router's web interface - still a tiny bit of lag, but way smoother experience with less carry on.
Amazeballs.
I've had a fitbit wifi bathroom scale for a while. Getting the data out got suddenly more difficult when Google bought them, and I didn't love giving that data to google. It's finally died, and I'm looking at replacement options.
In a perfect world, I could just go to a store and buy a "HomeAssistant Ready" scale. If I can't have that, I'd like a scale that is on my local network and exposes the last x weigh-ins as an API on the device, then I could write something to poll it.
I haven't seen anything like those, but have turned up:
- a project to decode the bluetooth transmissions of a number of scales (after you build an ESP32 device for it)
- the Withings cloud based scale, but with a well documented API
Any other good options?
555
Beware Hollywood’s digital demolition: it’s as if your favourite films and TV shows never existed
(www.theguardian.com)
572
‘My whole library is wiped out’: what it means to own movies and TV in the age of streaming services
(www.theguardian.com)
I've been downloading SSL certificates from my domain provider, using cat to join them together to make the fullchain.pem, uploading them to the server, and myself adding a 90 day calendar reminder. Every time I did this I'd think I should find out about this Certbot thing.
Well, I finally got around to it, and it was one of those jobs which turns out to be so easy you wish you'd done it ages ago.
The install was simple (I'm using nginx/ubuntu).
It scans up your server conf files to see which sites are being served, asks you a couple of questions, obtains the Let's Encrypt certificate for them, installs it, updates your conf files to use it, and sets up a cron job to check if it's time to renew the certificate, which it will also do auto-magically.
I was so pleased with it I made a donation to the EFF for it, then I started to think about how amazingly useful Let's Encrypt is, and gave them one too. It's just a really good time to be in this hobby.
I highly recommend Certbot. If you've been putting this off, or only just hearing about it, make some time for it.
view more: next ›
100% this. And Lenovos and HPs designed for the business market generally are a pleasure to work on (in the hardware sense) if you need, with good manuals and secondhand spare parts.