Podman is an alternative to Docker which integrates better with systemd and it also offers a way to automatically update containers.

But that’s basically using the same built-in auth. If there’s an auth bypass I don’t think it makes a difference.

Too real, though I only have automerge for digest and patch enabled. Too many dependencies have breaking changes on “minor” updates.

So what’s your preferred solution and why?

SSH and Ansible using SSH

Why not give every server a reasonably memorable domain name?

Did you do Quadlets?

I test in my Homeproduction

I use Arch (btw) on my desktops and laptops.

On my servers I’m halfway through replacing Debian with openSUSE.

My desktop and servers have different use cases and I interact with them in different ways, so there’s little confusion for me.

Agreed. I was going to argue more against encryption, but you can see me somewhat changing my mind in the second half of my comment.

For me personally, I don’t want the hassle of encryption on my VPS and have decided I’m fine with the remaining risk.

It’s worth going through the provider’s policies.

For example, here’s how Hetzner handles deletion of your data

Encryption will prevent mistakes, but if you can’t trust the provider’s policies you shouldn’t trust them to run your infrastructure at all.

Sonarr and Radarr heavily rely on quality profiles you need to define, for examples see TrashGuides.

Your system probably needs less setup in comparison

Do you know any? I’ve never really looked beyond ntfy.sh until now

That’s why you have regular snapshots, backups and monitoring

And after having done that, you spend the next day automating these steps with cloud-init and Ansible

You can still use VMs and do containers in there. That’s what I do, makes separating different services very easy.

I wanted to contribute a while back and found a bunch of duplicate authors. Unfortunately there wasn’t any way to merge them and the relevant issue has been open for years.

I use Migadu, it’s probably the closest you can come to fully managing email while not hosting your own server. All their plans are limited on inbound/outbound mails per day and storage used. Beyond that you add as many domains as you want (within reason on their cheapest plan) and create any number of separate mailboxes/users.

I just pull the latest container to update. Not sure if that’s what you’re referring to

I use it in my homelab to host stuff. Everything is fully open source, so you can compile Xen Orchestra manually and get all the enterprise features for free. Or if you’re lazy like me, use the installer script or container by ronivay. I’ve been using it for years and again, you get all the enterprise level features for free.