👩🏻‍💻 my so-called sudo life - day 489: new experiments edition 🧪

A blog post that chronicles what I have been up to since December... namely: advocating for the Fediverse, creating #selfhosting guides for newbies and experimenting with e-reader jailbreaks and off-grid mesh radio communications

🔗​: https://blog.elenarossini.com/my-so-called-sudo-life/my-so-called-sudo-life-day-489-new-experiments-edition/

#MySoCalledSudoLife #KindleJailbreak #KOreader #SimpleUI #meshtastic #blog #tech #resistance

Started migrating stuff to the new home hypervisor. gemini://rosarium.vigilia.cc/ is now served from my first OpenBSD VM :) #openbsd #proxmox #geminiprotocol #selfhosting

Veronica Explains creates fun and interesting videos about technology including FOSS, Linux, retro computing, retro gaming, self-hosting and assorted other stuff. You can follow at:

➡️ @vkc

There are already 60 videos uploaded. If these haven't federated to your server yet, you can browse them all at https://tinkerbetter.tube/a/vkc/videos

#FeaturedPeerTube #Linux #FOSS #RetroComputing #RetroGaming #SelfHosting #PeerTube

• users: 1 (just myself)
• following: 254
• timeline_purge_days: 30
• disk: 298m (/var/snac/data)
• ram: 184m (including relayd, httpd, logger, snac itself)

New #blogpost

I have come to share what I've done, some more confessions from a FOSS enthusiast...

https://joelchrono.xyz/blog/more-confessions-from-a-foss-enthusiast/

This is day 53 of #100DaysToOffload

#blogging #selfhosting #degoogle #foss

Looks like not only backups but also my obsession^Wpassion to write detailed entries to my "selfhosting journal" pays back. Any change, I made in my main home server, has a date and a detailed description of changes made. Also, the process of #NetBSD installation and service installation is documented too, alongside with documented list of running services, opened ports, cronjobs, etc.

At one bad day, my main server started to hangup at near 18:00 and at nea 08:00. There weren't any cron (or any another) jobs at this time. In the logs and monitoring the problems with mosquitto (MQTT server) were visible — somehow it eats at near 100% of CPU, then monit restart it, then things become working, then (after some time) the server hangs completely. Investigation showed that write to my second ZFS disk (where the PostgreSQL DB lives) were extremely slowed, so ZFS panicked, crashed and crashes the kernel

[ 204836.661198] wd0d: device timeout writing fsbn 123148477 of 123148477-123148478 (wd0 bn 123148477; cn 122171 tn 1 sn 46), xfer 38, retry 1
[ 204863.837664] wd0: soft error (corrected) xfer 38
[ 206810.672323] wd0: autoconfiguration error: wd_flushcache: status=0x5128<TIMEOU>
[ 212327.420695] SLOW IO: zio timestamp 211326864412007ns, delta 1000556283358ns, last io 211280726737075ns
[ 212327.420695] panic: I/O to pool 'zfs' appears to be hung on vdev guid 1299234741086050345 at '/dev/wd0'.
[ 212327.420695] cpu0: Begin traceback...
[ 212327.420695] vpanic() at netbsd:vpanic+0x183
[ 212327.420695] panic() at netbsd:panic+0x3c
[ 212327.420695] vdev_deadman() at zfs:vdev_deadman+0x15e
[ 212327.420695] vdev_deadman() at zfs:vdev_deadman+0x31
[ 212327.420695] spa_deadman_wq() at zfs:spa_deadman_wq+0xe0
[ 212327.430704] workqueue_worker() at netbsd:workqueue_worker+0xef
[ 212327.430704] cpu0: End traceback...

At the same time, I hear a strange metal noises from server at near 08:00 too, so the destiny of second drive was specified.

The server restoration will take some time, but since anything were written in the log file, I'm able just to replay some actions and get all systems up as soon as possible

#selfhosting #HomeServer

Alt...

Emacs buffer with journal entries (in OrgMode) related to the administrative actions in the server.

Alt...

Emacs buffer with description of NetBSD installation process on the main server and with lists of TODO items, services, opened ports, etc.

Alt...

EGA colored photo of a 2.5 inches HDD

I've been running two degraded ZFS arrays for the last few weeks (Debian host).

Yeah, I know. Whatevs.

One of the pools was basically "scratch" backup space and one of the spindles died (breaking the utility of the mirror). Pulled the drive, wiped the remaining, put back in service with minimum fuss as a single drive. I'll throw another spindle at it when drive prices drop again.

The other array had the SSD cache die and it's been chugging along fine ever since. Not a big deal, but from a "experience" point of view it "feels slow" like a working md array.

New SSD arrived in the mail so that'll get sorted sometime today/tomorrow.

So, what's this post about?

Linux peeps, if you are thinking about md arrays, just stop, take the time, and throw 'yer leg over the zfs horse. It's worth it.

#Linux #RunBSD #zfs #md #mdadm #raid #homelab #SelfHosted #SelfHosting

> Prerequisites
> docker

*sigh*
Closes tab.

#selfhosting #openbsd #bsd

New post:

"A newbie's guide to self-hosting with #YunoHost. Part 5: Upgrades & Maintenance"

Not exactly the most exciting post I have ever written, but system maintenance is so essential.

And spoiler alert: thanks to a botched #PeerTube upgrade I discovered the wonders of #tmux (thank you @teapot_ben and @drfyzziks for recommending it!)

🔗 : https://blog.elenarossini.com/a-newbies-guide-to-self-hosting-with-yunohost-part-5-upgrades-maintenance/

#SelfHosting #MySoCalledSudoLife #DigitalSovereignty

Self hosters, do you use Cloudflare in front of your hosted services?

#cloudflare #selfhosting #privacy #security

@mastodonmigration We should probably be pushing things like #Friendica and #Pixelfed and other free Fediverse servers over things like Ghost.

Even pushing free wiki software would be a win over a proprietary platform.

But yes, escaping commercial platforms is a critically important idea, and the first step to #selfhosting.

I have deployed and run infra since the noughts, through some wild turns in geo/techno-political history, and will say that now more than ever, #selfhosting is an act of resistance.

Depopulate. Defund. Disempower.

If you've got Home Assistant automations that are based on the IP address of a device, make sure you give those devices a static IP. You'll save yourself a ton of headache later on. Ask me how I know /s

#homeassistant #selfhosting

This seems like a good time for people to move off of giant corporate email providers. Surveillance capitalism needs to be shown the door. We're going to need to be able to trust our communications.

Related: I wish the US locality system hadn't collapsed after Jon Postel passed. (Rest in peace.)

#selfhosting #email

RE: https://mastodon.social/@glyph/116140431530202122

give @glyph cash

ignore tags

#mutualaid #fediverse #selfhosting #retroComputing #python #dev #indiedev #foss #hosting #mastodon #activitypub #joinIn #video #software #politics #windows #linux #macos #ios #android #fedi #support #help #patreon #indieweb #internet #webDev #homelab #diy #maker #charity #donations #money #rant #writing #writingcommunity #drawing #dragons #furry #furryart #anime #art #server #education #absurdAmountOfTags #humor #satire #meme #joke #pol #lifestyle #give #today #fyp

I self-host a lot of stuff. Nearly everything that I use. FOSS and self-hosting is a massive part of my computing experience.

I love reading about people enjoying / exploring self-hosting stuff.

I struggle when people advocate "just self-host it", without giving due consideration to the costs, risks, security considerations, and so on.

I know that I've posted this a few times now, but this discussion seems to pop up quite a lot. So:

https://neilzone.co.uk/2022/07/self-host-it-is-not-the-answer/

#SelfHosting #FOSS #blog

I am immensely grateful to the Fediverse for all the encouragement I got here to embark on a #selfhosting journey.

#YunoHost has empowered my digital life in immeasurable ways.

My way of giving back - and fighting the broligarchs of Big Tech - is to create a guide that demystifies the process. I have compiled all my posts so far in a single page:

🔗 : https://blog.elenarossini.com/a-newbies-guide-to-self-hosting-with-yunohost/

If you're curious about self-hosting but you haven't taken the leap yet, I hope my articles will be helpful to you ❤️

#Introduction ― I'm a 6th year #medicine student, aspiring #neurology
resident. Some topics I'm interested into:

#neuroscience #cognitivescience #neuroimaging #pathology #virology
#bioinformatics #socialism #pacifism #minimalism #collectivism
#cooperatives #environmentalism #climatechange #sustainability
#permaculture #vegan #existentialism #posthumanism #postmodernism #scifi
#cyberpunk #foss #unix #netbsd #sdf #gopher #privacy #bbs
#decentralization #selfhosting #lisp #retrocomputing

Just received an email from my mail server administrator. They sent me a link to change my password because it's 'insecure'.

My mail admin is so efficient...

...hey, wait a minute... I AM my mail administrator! 🤦‍♂️

#Phishing #SelfHosting #SysAdminLife #SecurityFail #InfoSec

RE: https://bahn.social/@MeierUli/116006925873414629

@jwildeboer About SELFHOSTED EMAIL

Email is a good idea to solve for ourselves - even as a sentiment or practical / political action - but I need also somewhere I can go when I get stuck which will for sure happen (half-way through maybe) and past just my sentiment phase I'd need to go to the finish with someone.

I think it's getting better... or exists! ? !

Looking at #email hashtag and #selfhost / #selfhosting / #selfhosted

"Mailserver: mox is great fun."
https://www.xmox.nl/

What's your self-hosting platform of choice? Proxmox? Unraid? TrueNAS? Something else?

#homelab #selfhosting

#sysadmins #mastoadmin #mastoadmins #selfhosting questions re: DNS...

Has anyone hosting their own instance seen a massive increase in DNS queries to their domain.

I don’t host my own DNS, and my DNS provider can’t give me logs of requests, so I can’t even check which subdomain it might relate to.

I’m not sure what I could do to avoid it – the overage is not a large amount of money, but it’s recurrent and annoying, and started when I started this instance.

I changed the TTL to 2 weeks and it didn’t make a difference.

I’m not sure what else to check.

Can anyone recommend a DNS provider I could use temporarily that I could get logs from?

I don’t want domain hosting or web hosting, or masto hosting.

Thanks!

like/favorite if this appears in your feed please :)

#selfhosting #snac2 #openbsd

Last minute call to join Tunnel, starting in a few days. For those of you interested in learning about #selfhosting, with a focus on network and server security, this your ideal strong start. No prior experience necessary, no comp-sci degree needed.

Best of all, you get to walk out with your very own fast and powerful Virtual Private Network, for which dozens of configs can be handed out as QR codes to give to fam, friends and colleagues.

https://courses.nikau.io/tunnel

Alt...

Title image for Tunnel, featuring that text in caps against a duo-tone image of a medieval brick tunnel system

Since my home server not intended for use by any people outside of my city (plus some VPN endpoints in other countries) — it is ok to ban some unwanted countries and cities from which I don't expect anything good, except attempts to hack my box to use my resources or set me up .

So I added some GeoIP blocking to the npf with script to update GeoIP list — I blocked China, Iran, North Korea, etc and Moscow (because there are a lot of government and commercial backed bots coming from here). Results are good — the bots don't disappeared completely but the speed of adding new IPs to the blacklist is decreased

Sadly, I was unable to add USA and UK to the list, because looks like there are some limits (not found how to increase them ), which disallows to load a lot of CIDRs for these countries to the blacklist.

#NetBSD #npf #bots #selfhosting

Alt...

Graph of the count of banned IPs per week. There are two red tangents on the two points — before and after the GeoIP bans were enabled. And the two red lines, parallel to the X axis. The resulting derivatives are 0.59 and 0.38, so the speed of raising the values (count of blocked bots) are decreased.

Alt...

Part of the script to update npf blacklists. Script contents: # List of blocked countries: # AE - United Arab Emirates # AF - Afganistan # BY - Belarus # CN - China # CU - Cuba # HK - Hong Kong # HU - Hungary # IR - Iran # KP - North Korea # KW - Kuwait # PK - Pakistan # PS - Palestine # TW - Taiwan # UA - Ukraine /usr/pkg/bin/curl --connect-timeout 30 --fail --interface re0 --ipv4 --silent \ --retry 3 --retry-connrefused --retry-delay 5 --retry-max-time 90 \ --show-error --proxy http://127.0.0.1:20172 \ -o - "$GEOIP_COUNTRIES_SOURCE" | \ /usr/bin/egrep '^[0-9.,]+((AE)|(AF)|(BY)|(CN)|(CU)|(HK)|(HU)|(IR)|(KP)|(KW)|(PK)|(PS)|(TW)|(UA))$' | \ /usr/bin/awk -F, '{ print $1, "-", $2 }' | \ /usr/pkg/bin/iprange > /usr/share/npf/blacklist.countries.new if [ "$?" -ne "0" ]; then echo "Failed to update countries blacklist" rm -f /usr/share/npf/blacklist.netset.new \ /usr/share/npf/blacklist.countries.new exit 3 fi # List of blocked cities: # Moscow /usr/pkg/bin/curl --connect-timeout 30 --fail --interface re0 --ipv4 --silent \ --retry 3 --retry-connrefused --retry-delay 5 --retry-max-time 90 \ --show-error --proxy http://127.0.0.1:20172 \ -o - "$GEOIP_CITIES_SOURCE" | \ gzip -d | \