Just my experience. Like I said, the only thing I use it for is to watch a tutorial without endless, unskippable ads just to find out the tut is trash.

Still learning on this journey of self hosting

No worries mate. I bet if we all posted some of the boners even seasoned selfhosters have pulled, it would make a hilarious book for nerds and geeks. Sometimes I think, ‘gosh I sure am glad there wasn’t anyone around to see that!’

The thing about these front ends is that Google will eventually get around to blocking your IP. After many unsuccessful attempts that got ban hammered after a week or so, I finally got it to work. I piped it through Cloudflare Tunnels/Zero Trust. Haven’t had an issue. My deployment was the Invideous with companion app. The Companion app has been complaining about being unhealthy for ages now, but it keeps right on ticking. I don’t watch a huge number of YT videos. Usually my consumption is a tutorial here or there.

Similar to Invideous, et al. You Tube front end.

You can dettach your headers with --header.

I did not know this. That would seem, abiding by your system, to be more secure. I will have to investigate.

Thanks for sharing.

convert them to qr codes,

Never crossed my mind, but that’s a good idea. Might have to implement that on my next rotation.

Users won’t actually leave Discord. I emphasized ‘some’ in the opening paragraph because the announcement states that the vast majority of existing users won’t be impacted (¹the platform already has enough usage information to reliably identify their age).

¹We already know who you are LOL

For the backup disks I want full disk encryption

I encrypt everything.

I have a repository set up with all my keys for all my encrypted drives. The keys get rar’d with a strong, known, 50 character password, and the filenames encrypted so no one can just open the rar file and gaze at the keys.

• drive_xxxxx1_2_14_26.rar
• drive_xxxxx2_2_14_26.rar
• drive_xxxxx3_2_14_26.rar

These get backed up in a 3,2,1 schema, and also to thumb drives stored in secure places. I also rotate the passwords on a regular basis, so the process starts all over again.

• Check keys: sudo cryptsetup luksDump /dev/sdX
• Add new key: sudo cryptsetup luksAddKey /dev/sdX
• Delete old key: sudo cryptsetup luksRemoveKey /dev/sdX
• Verify keys: sudo cryptsetup luksDump /dev/sdX

The headers are not secret. Anyone with physical, read access to the device can run luksDump. It reveals algorithm, key derivation parameters, number of keys, but not the passphrase or master key.

As far as ‘best practice’, that will be determined by subsequent replies to your post. LOL That’s just how I do it.

Cosmos

Bravo! I deployed it on a test server just to how it was. Nice UI, great features as I remember. Seemed like a solid product. It’s got a well stocked app store.

If you run linux, then Lynis is awesome to verify your config

+1 for Lynis if you are scanning for vulnerabilities. Some of the recommendations won’t really apply to a homelab, but it is pretty comprehensive. A great way to harden your server(s).

Are you just wanting to scan certs? LetsEncrypted partnered with RedSift to offload their cert expiration checks. It’s free: https://iam.redsift.cloud/signup?product=cert-letsencrypt. Uptime Kuma will also track your certs too.

Awesome!

Engineer here

What division? Curious. I’m a mech eng specializing in HVAC. I didn’t get to attain my own PE stamp…life happened.

I grow a few tomatoes myself. Not quite the operation you have going tho. After doing a significant amount of research, I have found that is does great for my seizure condition. One of the terpines of cannabis is Linalool, and it is an effective anti-seizure med. So, I grow strains that are high in Linalool. After a seizure, it makes for a better rescue med than Ativan. In all honesty, tho I think cannabis gets over hyped a lot, it has made a demonstrable positive difference in my life. It isn’t a panacea drug, but is definitely has many medical use cases. It’s a shame here in the US that rich, white, racist, capitalist’s legislation from 100 years ago, still bogs down it’s legalization.

I currently grow weed

Cannabis will grow just about anywhere. However, to make it do magic, it takes skill.

The diversity represented here is interesting to me. Surgeon, teachers, musicians, mechanics, etc. Fascinating.

It also helps that my local bdsm community had had self hosters who talked about it for years.

I’ll have to admit, that is one of the most unique statements I’ve heard at Lemmy.

I’m an entrepreneur, jack of all trades good at none. My relationship with technology started at a very young age thumbing through the pages of Pop Sci & Pop Mechanics magazines. As a kid, I would drag my wagon to electronic repair shops (back when people actually had their electronics fixed) and ask if there was any ‘junk’ they wanted to get rid of. I’d load up my wagon and back to the house I’d go to explore all my treasures. Some of it I actually could fix and I was the only kid I knew with stereos, turntables, small b&w TVs, radios, 8-track & cassette players. The excess, I would sell to friends.

I built my first 5 watt HAM radio set from a kit from the N.R.I which promised me that if I completed the course, I would be guaranteed of a successful career in electronics. LOL Later on, a friend of mine at the time and I built our own low power FM transmitter and would put on shows after school for the kids in the neighborhood. We would take call ins for requests…until that drove my parents(?) mad because of the constant phone ringing.

My first computer was an Altair, then a Timex/Sinclair, and I’ve had just about one of each since then.

Fast forward to the age of the internet, and my first real ‘self hosting’ gig was running a fully licensed, internet radio station in the pre-napster era. Well, Napster came out I think in 1999-ish and that’s about the time I fired up the internet radio station. It was selfhosted and streamed to Shoutcast CDN servers paid for by an outfit I worked with called the IM Radio Networks. Everything was automated. We could take requests from a webpage of popular choices, that got funneled to the server, and in a couple songs, you got to hear your request. We featured Indie bands we solicited from MP3.com, but also carried commercial bands too. And then the RIAA took a giant shit on internet radio. A large group of us went to Washington to plead our case before a committee headed up by Senator Leahy.

From there, I’ve been selfhosting something or another but it didn’t start to really gel into something really serious until Docker came around. That changed the game. That takes up to present day 2026. Still selfhosting, still intrigued by technology, still that wide eyed kid trying to learn all he can stuff into his limited brain.

Libre-cock and balls

<actual LOL>

libre
adjective

    With very few limitations

I think it has to do with whether or not the image contains enough metadata for a scan to take place and thus it doesn’t know the status of said image. I’m going out on a limb, but this would be something the dev team should have included in his manifest or what ever(?). I’m not a Docker programmer. I think I read that somewhere else. Give corrections if any.