I use Fedora Kinoite daily and find it to be the only OS to make sense really.

I find Fedora CoreOS totally confusing (with that ignition file, no anaconda, no user password by default, like how would I set this up anywhere I dont have filesystem access to?)

But there are alternatives. I would like to build my own hardened Fedora server image that can be deployed anywhere (i.e. any PC to turn into a secure and easy out-of-the-box server).

As modern server often uses containers anyways, I think an atomic server only makes sense, as damn Debian is just a pain to use.

Experiences, recommendations?

I made a similar post a few weeks ago.
I will try uBlue core and give you all a small update about it.

I feel similar about Debian. It’s a good distro for sure and I don’t have any issues with it for server use, but somehow, I still don’t like it somehow. RPM-/ OSTree based distros are more my taste, and I don’t even know why.

@Pantherina@feddit.de
creator
link
fedilink
English
0
edit-2
8M

I am completely confused about ublue currently, (okay all they did is remove the image list, its the same on Github)

Debian is old and crusty with all its tooling. Apt sucks, automatic updates are strange, there are no snapshots afaik, it uses ext4, its like Fedora was 10 years ago

lemmyvore
link
fedilink
English
18M

People who use Debian servers typically just install Docker on a basic system and then use containers. Which is exactly the same concept that you describe.

What’s the filesystem of the server got to do with anything? You can take snapshots in half a dozen different ways, everybody uses the method they’re comfortable with.

Handles
link
fedilink
English
1
edit-2
8M

A bunch of edgelord babies skimmed the selfhosted subs and noticed that “atomic distros” is a common buzzword ATM; they then flood said subs with opinionated posts that atomic subs are the best and everything else sucks 🙄

anders
link
fedilink
08M

@Pantherina i use fedora kinoite and yeah it’s really awesome! new packages and a safe system.

I wanted to use Fedora CoreOS on my server but no providers offer it so I ended up installing AlmaLinux instead. But yeah the ignition file setup is really painful. tried in a vm but never managed to get everything i wanted. i’m gonna stick with enterprise linux until they make it easier, i think

@Pantherina@feddit.de
creator
link
fedilink
English
0
edit-2
8M

I tried IOT too and it the bootloader didnt install.

Then I just installed Atomic Sway (because not that much bloat), and before logging in rebased to secureblue server-main-userns-hardened. It worked but I have no DNS? Damn…

anders
link
fedilink
0
edit-2
8M

@Pantherina have you checked if systemd-resolved is working properly and that systemd-networkd or networkmanager is used? only one of them shall be used. i had a similar issue when upgrading from 38 to 39 because then both were active. i’m using NetworkManager on my desktop and disabled systemd-networkd and then it worked…

@Pantherina@feddit.de
creator
link
fedilink
English
08M

Strange, Fedora39 to Fedora39, I use that atomic base always (like 15 different installs, GNOME, Plasma6, Secureblue, Cosmic, Sway,…)

anders
link
fedilink
08M

@Pantherina
I see. At least systemd-resolved needs to be running and /etc/resolv.conf needs to be 127.0.0.1

@Pantherina@feddit.de
creator
link
fedilink
English
08M

I rebooted and now it works. /etc/resolv.conf is not the file you edit, but that localhost DNS is interesting. Saw that a long time ago (Obi wan face)

anders
link
fedilink
18M

@Pantherina
Awesome! Great to hear that it works :)
@selfhosted

What makes Debian a pain to use on servers?

@Pantherina@feddit.de
creator
link
fedilink
English
-28M

Automatic updates are overcomplex and not even preinstalled. Install a package, change some configs, so some more.

I dealt with it and its annoying.

And there is a lot more that is completely manual with no good default presets

@Appoxo@lemmy.dbzer0.com
link
fedilink
English
0
edit-2
8M

cron
run as superuser script.sh
apt get updates
apt get upgrade -y
??? profit?

@Pantherina@feddit.de
creator
link
fedilink
English
08M

Why is there apt-get and apt? Also on regular updates there are sometimes package conflicts that need manual configuration. Maybe -y deals with some.

@bastion@feddit.nl
link
fedilink
English
18M

What monstrosity are you running and calling Debian that there are package conflicts on regular updates?

…or, are you talking early-2000’s Linux, where SuSe was the only consistent distro and package management hadn’t really been fully sorted out?

@Pantherina@feddit.de
creator
link
fedilink
English
18M

Probably I got none, just this “do you want to use the maintainers version” which is always a bit confusing. VirtualBox also gave issues but just dont use that crap.

@ByteWizard@lemm.ee
link
fedilink
English
28M

unattended-upgrades is annoying? How so?

@Pantherina@feddit.de
creator
link
fedilink
English
08M

Its overcomplex. For sure I could get used to it and maybe this is the way to go.

But you could wrap this tedious process in a function.

Fedora has a distro upgrade command (that totally sucks but okay) since many years, while on Debian I needed to follow some random Guide to get on the hyped Debian 12.

@ByteWizard@lemm.ee
link
fedilink
English
18M

If you’re on Debian, it’s the tried and true method. The config is dead simple for most upgrades, just un-comment the line in the config file next to the type of upgrades you want, stable or testing. It can take some debugging if you have a package with it’s own APT repo. It’ll just ignore those updates by default.

@ShortN0te@lemmy.ml
link
fedilink
English
18M

Debian releases a migration guide with every new version release. And sorry but if you have trouble updating your system then replacing the source.list file and then updating your system again, you should reconsider running a server yourself, imho.

@Pantherina@feddit.de
creator
link
fedilink
English
-18M

I was looking for such a guide but could not find it back then.

I followed this guide

Which may be overcomplex but it is complete and lots of things where not intuitive at all.

As I said, you could easily automate this step, instead of making it that manual. Or course I can do that, but why need to, if a sudo apt distro-upgrade would do it?

@ShortN0te@lemmy.ml
link
fedilink
English
28M

https://wiki.debian.org/DebianUpgrade

Because those steps need manual review. Things change, packages get removed, packages get upgraded, config files need to get manual reviewed and merged etc.

On a simple System without much configuration that stuff does not matter, but when you use different package repositories and backports you need to be careful. I am not sure how introducing a new command does solve those complex issues. Imo only the system admin can decide what the best steps are.

@Pantherina@feddit.de
creator
link
fedilink
English
18M

Thanks! Will look into that

Justin
link
fedilink
English
18M

NixOS works really well as an image based server. Use nixos-generate to create a pre-configured image and put it on a flash drive/PXE share, and you’re good to go. Automatic updates are a bit confusing and not really documented, but doable. I have code examples.

Create a post

A place to share alternatives to popular online services that can be self-hosted without giving up privacy or locking you into a service you don’t control.

Rules:

  1. Be civil: we’re here to support and learn from one another. Insults won’t be tolerated. Flame wars are frowned upon.

  2. No spam posting.

  3. Posts have to be centered around self-hosting. There are other communities for discussing hardware or home computing. If it’s not obvious why your post topic revolves around selfhosting, please include details to make it clear.

  4. Don’t duplicate the full text of your blog or github here. Just post the link for folks to click.

  5. Submission headline should match the article title (don’t cherry-pick information from the title to fit your agenda).

  6. No trolling.

Resources:

Any issues on the community? Report it using the report flag.

Questions? DM the mods!

  • 1 user online
  • 126 users / day
  • 421 users / week
  • 1.16K users / month
  • 3.85K users / 6 months
  • 1 subscriber
  • 3.68K Posts
  • 74.2K Comments
  • Modlog