Thanks for the amazing reply and specially for the explanation regarding wireguard.
I didnt know about crowsec and kata containers, both amazing projects, I will definetely look into it and try to set them up.
Just one quick follow up question, when you mention dedicanted service user, do you mean its best to have a sepate user for each service, such as one for nginx, one for adguardhome and so on? Currently all of them run under the same user and I didnt think about this possibility before.
Have you played around with Grafana? It really is quite simple if you have prometheus already working.
For a home lab environment you dont even need to use prometheus-alertmanager. Grafana can handle alerts as well.
Grafana also has hundreds of pre-made dashboards you can import. Node monitoring is quite straightforward.
Assuming you have prometheus good to go, all you need to do is go to Grafana - Datasources, create a new datasource, point to your prometheus instance.
Then you can import the dashboards you want.
Now you can setup your alerts - you can use SMTP, telegram, slack among others for your notifications.
Couldnt agree more.
It is a roleplaying game after all. Conflict resolution can even be fun if the players are into it.
For longer campaings with a set group of friends we dont even start the campaing with “all PCs are friends”. I just make them meet and tie their interests together so they kinda have to work together. Friendships develop over time.
But I would never, under any circumstance, allow for bullying or teasing even among characters.
I don’t really have any issue for what the software is supposed to do. I can access my instance, read and edit, templates and queries work fine.
But overall the user experience is not so good on mobile. On desktop it is really easy to navigate my notes, specially so because of the great support for keyboard shortcuts. Now for mobile it doesnt feel too good. Navigation works but the interface is too small - making tapping a bit clunky. I also find it uncomfortable to use for to do lists - things like groceries lists that I need on the go. Sometimes toggling works fine if touch but sometimes it switches to view mode.
I really dont think any of that is an issue with the software itself. Its just the format I guess? I still use silverbullet and Ive never tried anything as good for organizing work stuff. But I still wish something more “native” for android.
What issues did you have? I have updated recently and didnt notice any problems so far. Also do you have any suggestion for alternatives? For me personally silverbullet is great for desktop usage, not so much on mobile though.
Grafana is just the frontend, its a dashboard for your different data sources Prometheus is the “database”, it scrapes data from your endpoints over http
Thank you for your reply!
Personally I am fine with nginx configuration, at least when using containers. The syntax is fine and all I need to do is map one file into the container
But I took a look at the automatic cert feature and wow, that is very, very nice. I may give caddy a try for this feature only - it would simplify my current setup.
I am also surprised it allows using HTTPS over port 443 for cert renewal. I didnt even know this was possible, so I was always stuck with DNS challanges.
So again, thanks for your reply!
Honest question: why not use nginx?
I have run it in so many different scenarios, both professionally and personally, its crazy. Nginx has never failed me, literally. My homeserver is quite limited but nginx has a very small footprint, it performs beautifully well and it satisfies all my hosting, proxying, redirecting and streaming needs.
It works for modern and legacy applications, custom code, webhosting, supports all the modern features and its configuration is very easy with literal thousandsof examples available online.
Apache probably can do all that but I hate how unintuitive its configuration is to me personally. HAproxy cant do half the stuff nginx does.
As for caddy Ive heard of it but never really used it. What does it offer that nginx doesnt?
Awesome! If you decide to give it a go you may want to take a look at the authors youtube channel:
https://www.youtube.com/channel/UCdPAeHKtE5XcBQ8ScLhGsgQ
He has shared some examples of the things you can do with it.
Anyways I hope you can find somethinflg that suits your needs!
Not familiar with obsidian nor logsec, but silverbullet is a programmable notebook. Everything is indexed and can be used, acessed and manipulated using javascript.
You can then write queries to fetch the data and then use templates to display it.
I have a very simple query that displays all my pending tasks for each project I am working on.
I also have created a template for displaying ttrpg character sheets, and the data is polulated by a yaml object which contains the actual character data. Custom javascript code automatically calculates stats, skills, checks and carry weight for me.
So basically I believe that you can do what you’re looking for on silverbullet but maybe not out of the box.
Can you share some info on how you did that folder organization? Did you provide the AI with a list of files?
I dont get the downvotes. If op is into containers and security, podman sure is worth considering.
I am sorry that happened to you
Thanks for sharing your story, though. I have a few domains, two of them being very important for me (one I use for all my emails, and the other one for all my self hosted stuff). So I’ll be paying close attention to their renewal
I hope you can find another domain that you like and that you can transfer your stuff to it.
I am currently running baikal using podman, quadlets, rootless mode. What kind of issue did you have?
That said, although baikal does get the job done, I am actually considering migrating to nextcloud just because of caldav/carddav, since it seems to be the most complete implementation out there.
It is worth taking a look at the features you need before fully migrating. As far as I can tell baikal may have some issues for some people with invitations, sharing calendars and sending email.
I’ve seen people recommend radicale, which probably works well, but from what I read is the least adherent to caldav/carddav protocols.
That was a great answer, thank you so much!
Yes I didnt even notice the family photos and docs dont need to be on that same server. Initially I just put them there to act as a local file share. But you are absolutely right, moving them from the public server is the best thing I can do to protect them.
I will look into setting up a second server for the private stuff that is not publicluly accessible