Lucy :3

In some way, I am, but mainly I feel my need to only use selfhosteable stuff, and selfhost 90% of those services, confirmed.

And I’m having a very good day now :3

Gitlab and Nextcloud broke (cuz I ctrl+c’d the pacman hooks, oops), but some manual DB upgrades and rebooting fixed that. However, I can’t login into my synapse from anywhere, and can only use it with existing sessions for some reason.

Also, there’s searxng.30p87.de now :3

Good thing there are alternatives.

@cows_are_underrated@feddit.org vs me?

Tbh, if you’re using the same DB for PWs, you’ve successfully downgraded to 1FA now. Except maybe if you use a seperate KeyStick/Yubikey as secret bearer or smth

No, knowing literally “systemctl enable --now” and “journalctl -ru” is not even learning. The level of knowledge of the OS needed for running a native package vs a container is exactly the same.

The obvious question: Do you want to access your server only from within your network or also from anywhere else?

Do a curl http://mydomain.tld/ -i with your server off/while off-network.

Your registrar probably has a service to rewrite http accesses to https automatically. Curl -i shows the headers, which will probably confirm that you’re being redirected without even connecting to anything in your network.

Love how all “just works”-app debugging is just debugging the overly complicated and annoying container/-engine.

(^^^)

https://buttplug.io/, for the interested

Arch packages. All services have systemd integration.

It’s bricked as soon as a company is bought up, and the new company has no interest in continuing support or wants customers to buy a new or their product. The lawsuits are non existent, because due to forced arbitration clauses present in almost all contracts today, you cannot sue. The most prominent, recent example being Disney not allowing a customer to sue them for a death in their park, because the dead person has used a free trial of Disney+ and therefore agreed to forced arbitration. Video by Louis Rossmann. (Generally, Louis covers a lot of such cases and maintains a wiki where the cases and companies are collected.) Also, there’s no way to just buy from another manufacturer and be happy, because it’s all of them. And the shareholders, which are the only ones that are relevant for what a company does, do not care if they damage the reputation and run the company into the ground long-term, as long as the numbers went up quickly (from forcing subscriptions, ads and/or tracking onto customers, or discontinuing a product in favor of another one. With a normal TV, you now have an outdated but working product, as neither HDMI, cable TV nor satellite will randomly change or need updates. Something connecting to the internet and requiring permanent security updates for apps and OS does. So either you will suddenly lose most functionality, the manufacturer (or rather, new owner) sees this as a good way to justify just bricking it or the new owners will first implement forced arbitration if not present already (which you have to accept, otherwise you can’t use the product), force said subs/ads/tracking, then rugpull and close the manufacturer. Good luck suing against suing against a company that does not exist anymore, and disallows you to sue.
Paid a few million for a company, got that worth in trained workers, customers to scam and already collected data, and got many more millions from implementing said stuff. Bottomline: “Earned” many, many millions. Bonus: There’s a good chance the consumer buys a new TV from you, because they don’t know who fucked them.

All of those things are real cases, more or less common, documented in thousands of videos of Louis.

Most people I’ve met have streaming services set up on their laptop already. From start to finish, plugging in your Laptop and typing soap2day.pe or netflix.com is much easier than connecting to wifi or ethernet, installing the app on the TV, and logging in. Just to disover that streaming service XY is not available on the TV due to an old OS, license issues, compatibility issues (as eg. Netflix has special requirements, such as x86_64 and not ARM and RISCV for >720p and playing in general, iirc). On your laptop (or whatever), everything’s already set up.
That is, if you have a laptop or similar of course.

/var/run/postgresql is my eternal friend

Also, they spy on you, can be bricked by the manufacturer, can therefore be used to extort money from you after buying it (depending on your country’s laws) and lock you into one ecosystem. The profit margin off of that is so high that “smart” TVs are always much cheaper than normal TVs, even with development costs and higher hardware costs. So you are the product.

And if you actually want to stream Netsucks or smth, plugging in your Laptop where you’re already logged in is much more convenient than using a native app on the TV. And ofc you don’t have to use some broken, outdated YouTube unshittifier that Google keeps breaking on there, you can just use piped/invidious in your Laptops/Mini-PCs browser. Also, not having any apps on a fucking TV means not requiring Network access, so no spying, updating etc. anyway.

Exactly. Therefore, docker is not useful for those purposes to me, as using arch packages (or similar) is easier to fulfill my needs.

One main server, with backup servers being very easy to get up and running, either by full-restoring the backup, or installing and restoring specific services. As everything’s backed up to a Hetzner Storage Box, I can always restore it (if I have my USB sticks with the keyfiles).

I don’t really see the need for multiple running hosts, apart from:

• Router
• Workstation which has a 1070 in it, if I need a GPU for something. My 1U server only has space for a low profile and one slot GPU/HPC processor, and one of those would cost way more than its value over my old 1070 would be.

That I’ve yet to see a containerization engine that actually makes things easier, especially once a service does fail or needs any amount of customization. I’ve two main services in docker, piped and webodm, both because I don’t have the time (read: am too lazy) to write a PKGBUILD. Yet, docker steals more time than maintaining a PKGBUILD, with random crashes (undebuggable, as the docker command just hangs when I try to start one specific container), containers don’t start properly after being updated/restarted by watchtower, and debugging any problem with piped is a chore, as logging in docker is the most random thing imagineable. With systemd, it’s in journalctl, or in /var/log if explicitly specified or obviously useful (eg. in multi-host nginx setups). With docker, it could be a logfile on the host, on the guest, or stdout. Or nothing, because, why log after all, when everything “just works”? (Yes, that’s a problem created by container maintainers, but one you can’t escape using docker. Or rather, in the time you have, you could more easily properly(!) install it bare metal) Also, if you want to use unix sockets to more closely manage permissions and prevent roleplaying a DHCP and DNS server for ports (by remembering which ports are used by which of the 25 or so services), you’ll either need to customize the container, or just use/write a PKGBUILD or similar for bare metal stuff.

Also, I need to host a python2.7 django 2.x or so webapp (yes, I’m rewriting it), which I do in a Debian 13 VM with Debian 9 and Debian 9 LTS repos, as it most closely resembles the original environment, and is the largest security risk in my setups, while being a public website. So into qemu it goes.

And, as I mentioned, either stuff is officially packaged by Arch, is in the AUR or I put it into the AUR.

Considering I have a full backup, all services are Arch packages and all important data is on its own drive, I’m not concerned about anything