It’s been a while, let’s go! Any major fuckups lately or smooth sailing?
I had to change the local DNS setup yesterday. I finally installed my wife Linux Mint and wanted to set her up for Vaultwarden real quick which became an hour long debug session since apparently CNAME entries for hostnames don’t work as I thought. Never came up the recent year as all my machines took it, but resolved refused to and so I eventually deleted the entries in the Pihole and created them as A records pointing to the VM with the reverse proxy, hoping I won’t need to change the IP anytime soon. It’s always DNS!
In other news I think I moved all my local dockered services to forgejo+komodo now and applying updates by merging renovate MRs still feels super smooth. I just updated my calibre web automated with a single click. Only exception is home assistant where I have yet to find a good split in what to throw in a docker volume and what to check in git and bindmount.
I’ve been hinking about infrastructure as code tools. Skimmed the very surface of opentofu, looked at the list of alternatives.
I’m in need of something that is both, deployment automation and (implicit) documentation of the thing that I call “the zoo”. Namely:
Now I think about which tool would be the right one for the job while I’m still not 100% sure what the job is. I don’t like added complexity, it is quite possible this could become a dead end for me, if I spend more time wrangling the tool than I gain in the end.
PS: If you haven’t already, please take a look at your openssl packages. Since this week there are two new CVEs rated as high: https://openssl-library.org/news/vulnerabilities/index.html