This is a honest question. I have two RSS services hosted on my server, and I don’t see the point. RSS is by nature distributed, and subscribing to my own server just makes the source of all news being the same. What is the advantage? What do people use it for?
Miniflux is possibly the most important thing I self host. It tells me when software updates (basically everything on GitHub has RSS). It’s also great to keep up with blogs that don’t update consistently and also stay out of the “there are only three websites” bubble.
You don’t even need the vps unless you’re behind cgnat Though you should never expose Jellyfin to the Internet, they have had and continue to have major security problems
Do not expose Jellyfin to the general Internet. They have security issues, I would not trust that (no cloudflare does not save you by default).
There are basically two ways: VPN, or authenticated reverse proxy. VPN is probably the easiest to setup and the most flexible, but it’s a bit of a pita to use.
Authenticated reverse proxy will break apps, but the web app will work (and you can setup your reverse proxy to allow specific user agents from the VPN to bypass it, allowing apps on the VPN to work). I currently do this so I can look at metadata on my phone without a VPN setup.
If piracy is moral and ethical and enables us to share knowledge, why do private trackers gatekeep this knowledge? It goes against the principles of piracy. Do they do it just to feel superior about bring in a sekrit club?
I use ProtonVPN for everything, and I’ve started noticing more and more sites simply blocking me if I try to connect to them through ProtonVPN. As much as it sucks, I’ve more or less become acclimated to having to deal with an increased number of captchas while using a VPN; but I’m pretty angry about being blocked...
I use a Firefox container tied to a socks proxy on my router to bypass VPN for tricky sites. Yeah I know not the answer you’re looking for but some things have to be done (banking, health insurance) and if they already know my home address there’s little reason to hide the IP address
They don’t seem to support wildcard/catch all email forwarding
Dynamic DNS is done with an API key that has access to the entire account(!!!)
Though, I might move to them anyway (just moved a domain to namecheap which I used years ago and wow their ux sucks, and they don’t support dane or sshfp, Google domains was really good rip)
I was just browsing some torrents lately and anything that isn’t on a torrent is on a website like rapidgator. Rapidgator is ok if you downloading audiobooks, but why aren’t more people using OnionShare to send and receive files? I haven’t used it and I don’t know it’s limitations, but if I ever wanted a file which was...
Passwords will be brute forced if it can be done offline.
Set a good high entropy password, you can even tie it to your login password with ssh-agent usually
Private SSH keys should never leave a machine.
If this actually matters, put your SSH key on a yubikey or something
If a key gets compromised without you knowing, in worst case you will revoke the access it has once the machine’s lifespan is over.
People generally don’t sit on keys, this is worthless. Also knowing people I’ve worked with… no, they won’t think to revoke it unless forced to
and you will never revoke the access it has.
Just replace the key in authorized_keys and resync
And you may not want to give all systems the same access everywhere
One of the few reasons to do this, though this tends to not match “one key per machine” and more like “one key per process that needs it”
Like yeah, it’s decent standard advice… for corporate environments with many users. For a handful of single-user systems, it essentially doesn’t matter (do you have a different boot and login key for each computer lol, the SSH keys are not the weak point)
Sounds like a pain to get non technical family members to use. If you’re willing to break the non web app you could always put it behind an authenticating proxy (which is what I do for myself outside of VPN, setting up a VPN on a phone is obnoxious and I only look at metadata anyway on my phone)
Hint: you don’t have to use ldap to use authelia (I haven’t bothered). It’s a bit awkward to use though, I’d only recommend it for single-user setups (I wish they would just add support for SQLite, they already use it for 2fa and stuff)
This is very troubling, and I’m not even sure where to start. I recently received an email message from my ISP which alerted me to an incoming update. I didn’t worry too much since this is obviously not the first update they’ve ever pushed through....
Probably, unless they have a static delegation or do prefix delegation properly, which if they did they probably don’t suck enough to require double NAT^ lol
^single NAT for IPv6, assuming they don’t NAT it themselves
Right now I’ve been using Tailscale because it automatically adapts to my network conditions. If I’m at home, it’ll prioritize local network connection, but when I’m out and about, it’ll automatically beam a direct connection or use a relay....
I run a self-hosted server at home on which I have run a bunch of personal stuff (like nextcloud etc.). To prevent pointing DNS servers at my home router, I run a reverse proxy on a VPS that I rent (from Scaleway FWIW)....
CAA can also be used to disable http verification, meaning you would have to have control of DNS to be able to get a certificate (which the VPS ideally wouldn’t have).
I use Caddy as a reverse proxy, but most of this should carry over to nginx. I used to use basic_auth at the proxy level, which worked fine(-ish) though it broke Kavita (because websockets don’t work with basic auth, go figure). I’ve since migrated to putting everything behind forward_auth/Authelia which is even more secure in some ways (2FA!) and even more painless, especially on my phone/tablet.
Sadly reverse proxy authentication doesn’t work with most apps (though it works with PWAs, even if they’re awkward about it sometimes), so I have an exception that allows Jellyfin through if it’s on a VPN/local network (I don’t have it installed on my phone anyway):
It’s nice being able to access everything from everywhere without needing to deal with VPNs on Android^ and not having to worry too much about security patching everything timely (just have to worry about Caddy + Authelia basically). Single sign on for those apps that support it is also a really nice touch.
^You can’t run multiple VPN tunnels at once without jailbreaking/rooting Android
An RSS reader (I use Miniflux), ended up being extremely useful
Almost every piece of software worth selfhosting has an RSS feed for updates (e.g., every GitHub releases page has an RSS feed). I started selfhosting a good deal more after setting up Miniflux.
Like omg there is this whole internet out there outside of Reddit/Twitter/etc that does RSS. The vast majority of blogs have RSS (e.g., Wordpress and Substack). I wish I had discovered RSS decades ago, so many websites I’ve forgotten because I would check updates manually and eventually just forget. I even host a personal Nitter instance so I can follow Twitter people in Miniflux.
What's the point on hosting RSS reader's?
This is a honest question. I have two RSS services hosted on my server, and I don’t see the point. RSS is by nature distributed, and subscribing to my own server just makes the source of all news being the same. What is the advantage? What do people use it for?
deleted_by_author
What is the motive behind private trackers?
If piracy is moral and ethical and enables us to share knowledge, why do private trackers gatekeep this knowledge? It goes against the principles of piracy. Do they do it just to feel superior about bring in a sekrit club?
What can we do about major sites blocking VPN providers?
I use ProtonVPN for everything, and I’ve started noticing more and more sites simply blocking me if I try to connect to them through ProtonVPN. As much as it sucks, I’ve more or less become acclimated to having to deal with an increased number of captchas while using a VPN; but I’m pretty angry about being blocked...
How much does it matter where my domain registrar is located?
Edit, Solved in comments 👌...
Why isn't OnionShare more popular among pirating communities?
I was just browsing some torrents lately and anything that isn’t on a torrent is on a website like rapidgator. Rapidgator is ok if you downloading audiobooks, but why aren’t more people using OnionShare to send and receive files? I haven’t used it and I don’t know it’s limitations, but if I ever wanted a file which was...
Sync bash aliases and ssh keys across devices
How do you guys quickly sync your settings (especially bash aliases and ssh keys) across your machines?...
Jellyfin docker outside of lan.
Kind of a quick off the cuff question… but is it difficult to get a docker hosted jellyfin server accessible outside of lan safely?...
Simple guide to self hosted authentication?
I’d like to set up my identity and authentication service for my self hosted applications but it is not a beginner friendly subject....
Are there any advantages of using Rust instead of C in the Linux kernel?
Will there be performance and security improvements?
My ISP has taken total control of my network
This is very troubling, and I’m not even sure where to start. I recently received an email message from my ISP which alerted me to an incoming update. I didn’t worry too much since this is obviously not the first update they’ve ever pushed through....
How do you facilitate remote access?
Right now I’ve been using Tailscale because it automatically adapts to my network conditions. If I’m at home, it’ll prioritize local network connection, but when I’m out and about, it’ll automatically beam a direct connection or use a relay....
Is it possible to completely hide all reverse proxy traffic from a VPS provider?
I run a self-hosted server at home on which I have run a bunch of personal stuff (like nextcloud etc.). To prevent pointing DNS servers at my home router, I run a reverse proxy on a VPS that I rent (from Scaleway FWIW)....
How do you deal with malicious requests to your servers?
I put up a vps with nginx and the logs show dodgy requests within minutes, how do you guys deal with these?...
What can the 'average Joe' start hosting, that will change their life?
I’m already hosting pihole, but i know there’s so much great stuff out there! I want to find some useful things that I can get my hands on. Thanks!...