• 0 Posts
  • 128 Comments
Joined 2Y ago
cake
Cake day: Jun 20, 2023

help-circle
rss

Very reliable hard drives don’t exist whatever the price. You need RAID. But, look at backblaze drive reliability statistics to identify some obvious problem drives to avoid. It would help if you said what you are trying to do with the drives, what capacity you want, etc.


If you look closely, a .epub is just a zip archive of a bunch of very simple html pages. So extracting the zip and viewing the HTML with a browser works fine.


I don’t bother with a proxy host or with LetsEncrypt, though I guess you could use LetsEncrypt perfectly well. Back when I was doing this, LetsEncrypt didn’t exist and you had to actually pay for public certificates, so using locally generated free ones saved money. It also had a minor(?) security advantage in that if the private server key somehow leaked, it wouldn’t let people impersonate our internet domain.

For the private CA I simply used the crappy CA.pl script that comes with OpenSSL or did at the time. There are much better ways to do it, especially at any kind of scale, but CA.pl sufficed dealing with a few development machines.


Proxy host out on the public internet? Usually I just use a local private CA for this, and install the CA root in my browser.


E5 because it supportsECC memory.


SSDs for backup? Being rich must be nice. More srsly if you have the upstream pipe for it, remote backups are preferable in case something happens at home.


A hosted services ad on c/selfhosted, maybe not the right thing, but I’ll defer to others.


just want some old junker (6/7/8th gen Intel)

You probably have to go back further than that for a 3.5" sff pc. Look on woot though, they have such refurbs all the time. Or scrounge a mini tower.


I set up ZNC and got it working but it was a pain in the neck, took some trial and error, and the docs were confusing. Once I got it going I basically left it alone rather than try to clean up the situation.


Mxroute.com look for a discount offer since they have lots of good ones.


Can you verify with wireshark that the traffic is only going through your lan? I’m not hip enough for nginx but I used to have to run apache under gdb all the time to trace random errors from the server. That would be next, if the traffic is really local.


There is a famous Erik Naggum rant about XML at, no wait, I better not link it but you can find it with a search engine if you want, which means you don’t get to complain to me about it since you are the one who went looking for it. Very NSFW and VERY politically incorrect. Naggum died in 2009 but anyone who published a thing like that today would be raked over the coals.


I wouldn’t count on google drive doing anything in particular after expiration, unless that is expressly part of the product description. Just because you can observe it happening now doesn’t mean you can expect it to keep happening. For that matter, Google cancels products all the time. So I wouldn’t even rely on the paid plan not being withdrawn at some inconvenient moment. If you really want to use it, then best strategy is probably use it as long as it lasts, but have some plan B in mind if it goes away.

Oneprovider.com shows lots of offers in Istanbul, though servers are expensive there compared to a place like Hetzner:

https://oneprovider.com/search?&cities[]=62&price=0&price_max=9999999999999999&price_any=0


1.1 USD/mo for 2TB is basically a giveaway or free plan, i.e. you’re the product not the customer. So I’d be suspicious. How much storage are you looking for? Hetzner unfortunately jumps from 3.2 euro/1TB to 11 euro/5TB. So 2TB is kind of a bad spot on that scale. But if google drive is working for you and your stuff is encrypted, why not keep it?


Tbh you get jerked around less with paid plans. I’m happy with Hetzner Storage Box. I have 5TB there for 10 euro/month. I’d never use Google Drive. borgbase.com has a 10GB “free forever” plan and I could see parking some stuff there, but 10GB is pretty small and IDK the conditions. Why not use a VPS provider with better storage options?


It was ok at the time, and if it isn’t ok now, that means you want to run something that is too bloated for its own good.

Really though, special hardware for this doesn’t make too much sense. A raspberry pi with two ethernet interfaces would be great, but if you can live with ethernet plus wifi, the current rpi’s will do it. Otherwise there are lots of similar boards that really do have two ethernet.

I have not really felt much use for self hosted server hardware at home. I use VPS’s for that and it’s less hassle. Maybe it doesn’t count as completely self hosted, but conceptually it’s a miniature colo box.



Oh man, what a mess. It is just not worth it if you’re only adding 1 or 2 TB. Also you don’t say what kind of data you want to store on this system. If it’s media files (static once written) that can simplify things.

I’d say don’t mess with external drives at all. Your simplest path is upgrade your 1TB internal SSD to 2TB or 4TB. Those aren’t too expensive, and you get SSD storage. Yes you may as well use LUKS unless you want to get fancier. I have some thoughts about key management but haven’t implemented them in practice, so talk about that would be theoretical.

RAID is for when you have data that changes, like databases where you frequently add rows or do updates, so you are up to date if a drive crashes just after an update. It also lets you keep the system running while you hot swap the crashed drive. If you don’t mind taking your storage offline while you restore from a backup, and you don’t mind having to recreate the most recent data, you don’t need RAID.

I simply keep my static stuff and backups on a Hetzner StorageBox, encrypted with Borg Backup. That eliminates all the hassles of RAID, buying hardware and keeping it at home, etc. I can remote mount it (read only) with sshfs with all cryptography happening on the client side (in practice I don’t do that very often). There’s no need to use an encrypted file system on the server, or for the server to ever see plaintext. Of course StorageBox is not self hosted, but you could do something similar with a bare iron storage server. Anyway I think it’s difficult to beat this for economy until you have tens or maybe 100’s of TB of data.


Interesting, thanks, I didn’t know anything about that. I’ve probably looked at the book at some point, but don’t remember anything about it.



That’s if you have a regular domain instead of.internal unless I’m mixing something. Topic of thread is .internal as if it were something new. Using a regular domain and public CA has always been possible.


Right, main point of my comment is that .internal is harder to use that it immediately sounds. I don’t even know how to install a new CA root into Android Firefox. Maybe there is a way to do it, but it is pretty limited compared to the desktop version.


Yeah I know about that, I’ve done it. It’s just a PITA to do it even slightly carefully.


Browsers barf at non https now. What are we supposed to do about certificates?


If the problem is intermittent then longer run has better chance of catching it, but 2 hours with no errors is a good sign, with regard to the memory.


Do encrypted backups with Borgbackup or similar. That means the server never sees the plaintext or the decryption keys. The encryption happens on the client. Since it’s public-key encryption (separate keys for encryption and decryption), the client doesn’t need the decryption key either, except when restoring. So your backup can be automated without secret keys.


Try running memtest86 for a few days to test memory. That is fairly easy to do though it involves booting from a flash drive. Web search should find info.


I don’t understand the bonus question, and there are a lot of subtlties to multi-person secure chat. Does the user agent really have to be a web browser instead of, say, an ssh terminal? What do you expect to use instead of web sockets, in a browser?

On different occasions I’ve used irc or nextcloud chat, neither of whichis ideal. Plus ytalk but that is 2-person only. There used to be fairly busy discussion on the moderncrypto.org messaging forum but I think that is quiet now.

/u/positive_intentions@lemmy.ml might be interested too.




I don’t remember the format codes but they are generally pretty stable across a given host like youtube. The trouble is that not every video has all of the formats. You might have to just find the nearest one and convert with ffmpeg.


Use yt-dlp -F to list the available formats, and pick the one you want. See the “Video Format Options” section of the man page.


This all sounds like too many levels of hair. If you really want to serve from home and have the upstream bandwidth for it, then reverse proxy to a cheap VPS seems like the easiest approach. I lost interest in that ages ago, partly because of crappy home internet. I have played with the idea of colo’ing a server at a data center but in the end, it’s simpler to use VPS and/or rental dedicated servers, so I do that instead. Whether that counts as self hosting is up to you, I guess.


Namesilo has it, porkbun didn’t last time I checked, iirc. Dunno about Cloudflare. GoDaddy has always sucked in so many ways that I never looked into their DNS.


It can be fine, I’m using a comparable machine, you have to do the math for whether the power bills are worth it. What cpu does it have and how hard do you plan to run it?


Do you want something that also has CDN like Cloudflare? Bunny.net is good, but way more expensive than a cheap VPS if you use a lot of traffic.


Plain text or org mode file.


Flac for me has been about half the size of wav, at least for normal 16 bit 44 khz audio. Maybe it’s worse at higher bit depth? Anyway bulk storage is pretty cheap. You could have Flac in your archive while keeping ogg or whatever on your everyday playback device.


Bing (and therefore duckduckgo) was down a couple days ago. I could imagine people temporarily switching to google during the outage.