Ebby

I tried to update my lemmy instance and it all went so horribly wrong. DB never came up, errors everywhere, searching implied I updated to a dev branch sometime in the past (not a dev, don’t think I did) and it’ll be console and DB queries for a fix.

Ran out of time and overwhelmed, I restored backups and buried my head in the sand. Nope, not now. Future, yes, but oh not now.

Welp, I know what I’m doing Sunday.

Never crossed my mind and sounds amazing. Sorry poor, overworked NAS, you’re hosting another something.

Same here. I don’t like some of the recent decisions, but I remember the time I looked at the value and thought “yeah, this is working, valuable, and I can get behind it”, and bought the lifetime pass.

And I used the hell out of it! I don’t regret supporting the developers at all.

But features like plugins disappear, rolled to in-house teams. They work better, but cost more to maintain.

It’s ambitious, and gives developers plenty of work, but I feel the new redesign bit more than they can chew and overran budgets. They may be trying to balance budgets.

Jellyfin certainly took off. Great for them. It just wasn’t polished or an option when I set things up way back then.

Same boat here. I chose Plex because the apps were everywhere. Smart TV’s, phones, web…

I can switch, no problem. I don’t want to have to teach my parents a new app. OMFG!

I can understand new features being behind a fee, but this is putting old, old capabilities behind a paywall. Hmmm…

This with a recent decision to remove watch together sort of eliminates the whole reason I would have tried Plex so many years ago.

I’m a fan of Plex (it’s worked for me) and understand the Jellyfin crowd too. I’m worried about who is calling the shots at the moment. They aren’t aligning with their users.

Heck yeah! Old desktops or laptops are how most of us got started.

Things to consider:

• Power- this will be on 24/7 probably. That adds up
• Speed- not just CPU, but RAM, disk access and network interface can limit how much data you want to move.
• Noise- fans can suck (pun intended). Laptops tend to run quieter

I’m sort of looking to upgrade and N100 or N150’s are looking good. Jellyfin can do transcoding so that takes a little grunt. This box would work well for me. It’s not a storage solution, but can run docker and a handful of services.

I use smokeping just for fun. It doesn’t measure throughput, just latency, but they are loosely linked.

I have a cheap ZigBee thermostat and some automations to control temp. Works ok, but I’m trying to smarten it up a bit in the next few weeks.

Those emails have warned me something was pooched in advance many times. I do find them useful.

Sad to see them go, but nice they mention an alternative.

Should I worry?

I’ve had this stuff in logs since the late 90’s. It was concerning at first, but port scanning and scripts are the internet’s background static now.

Is this normal internet behaviour?

Yup. Welcome to self hosting!

Should I expect even worse kinds of attacks?

Not that it will happen, but good security expects attacks. I like to say “Obscurity is not security.”

What can I do to improve security on my website and try to block these kinds of requests/attacks?

As these scrips are targeting code you don’t run, they can be ignored relatively safely.

You can take a couple steps to lock things down like not responding to ping on WAN (less enticing to port scanning) locking down firewall settings, geolocation blocking, authentication, etc.

That said, if the script changed to something you DO host, you may be in for a bad day. Good to stay on top of security patches in that case.

Multiple machine learning urls? Yeeeeessssss! No more swapping configs for batch jobs!

Edit: I see v1.122.1 Must have a small update after.

You can use an expansion unit DX517 to add more dives or upgrade existing to larger ones if you use some form of Raid/SHR.

The swap-drive-and-rebuild-array route can take it’s sweet time.

I have 10Gbit and hunted that whale. But I didn’t build my own router. Electricity is $0.51 Kw/h. Ouch.

First, 10Gbit hardware is more available now than years ago, so you have more options. I started off with the router my ISP gave me. It worked, but it was 1Gbit. Not going to do for me. Plus, basic function was paywalled. Booooo! Snagged a broken Asus router and got it working great.

With IDS/IPS enabled, I get about 3.5Gbps. There is newer router tech today that looks interesting with fewer bottlenecks that would have been nice years ago, but not worth the upgrade right now.

My desktop hits about 2Gbps downloading Steam games/updates, but my partners desktop lags behind with SATA SSD storage. Definitely need NVME with that speed.

I will say my experience with 10Gbit Ethernet cards is not positive. I have a lot of intermittent disconnections and there are a lot of bugs vs 1Gbit switches. They do not like sharing with 2.5Gbit devices. I keep my server on 1Gbit connections. It’s plenty fast for my needs though.

Hmmmm. We’ve had single click LAMP installs way back in the early 00’s. Heck, web servers were a single check box in OSX. It’s just gotten really complicated since then.

Data centers work great because tech and staff work together in proximity to keep things smooth. To decentralized a data center …

I’d start with a VPN; without which, you’d have too many unknowns. I’d have local user space (probably a VM or docker environment) linked to a remote auto-magically configured proxy server and network infrastructure. (A lot of people do this anyway with wire guard or the like) Complete automation is the key here.

Users would install apps from docker (preconfigured) and the environment automatically establishes the VPN and sends port data and settings to the proxy service. DNS/fail2ban/security is set up, and goes live in a minute or two. Of course that wouldn’t work for things like Pihole or adguard.

User is responsible for disk/CPU, service provider for networking, well except ISP stuff. But anything average-user-easy will have to be mostly prepackaged for ease of use.

Oh, and if there are things that go wrong, clear explanations are essential. Things like “could not bind 0.0.0.0:80” could be “Hey dimwit, you already used port 80 for XXXX program. Pick something else!”

Or, you know, a script could do that.

I don’t think self hosting is average person territory at all.

I noticed 2 services out of dozens weren’t working last week and restarted their docker containers when I got home. Working again! Easy.

Nope. They only work on local LAN. Turns out IPv6 wasn’t working so I had a heck of a time tracking that down.

Home assistant kept giving me errors about my reverse proxy not being trusted, but all the settings were correct. Tried adding IPv6 addresses too, but never got that working. The only thing that worked was change the network interface from Ethernet to wireless.

There are a LOT of gremlins in selfhosting. It’s a fun hobby and rewarding, but definitely not for everyone.

I loooove bad movies. Not religious-bad, more mystery science theater bad.

I rip everything and plunk it into it’s own library just for me.

If you have the space and time, go ahead and limit access to her. She’s already seen them or will anyway. You hosting a file for one individual isn’t going to tip the grand scale of anything.

If you have a moral issue against it, don’t host the content. You’ve already made up your mind, it’s just taking you a while to realize it.

Immich was my first donation too. It’s grown so much, implemented features from user suggestions, and is quite polished.

It started as a Picasa/google photos copy, but is so much more now.

Can’t wait to see where they are headed.

Syncthing is very, very good at syncing, but I get the sense the developers are very specific about keeping to the core objective. There have been other features that would be nice, like have one device sync and archive old/removed files, that many have asked for but rejected. (There is a way, but it’s clunky and sometimes gets out of sync.)

I don’t think a cross-user sync solution would ever come to this app. You’ll have to create a unique folder and “device” for that.

That’s my setup. I like selfhosting, but leave email to other services. I got tired of being on blacklists.

That said, namecheap email servers are still on blacklists. I’ve locked horns with tech support a couple times because legit email gets dropped. Unless you pay for a vps or something more expensive, you’re thrown in with the spam and scum class.

It works for the most part for my needs.