Same. I buy all my domains there. And in case someone needs a proper API and support for the dns challenge, host your DNS at DeSEC.
khorak
joined 1 year ago
Same, I have a bunch of "inbox" folders and drop files into my server or desktop from my phone with 3 clicks.
Just in case you missed this, you can issue valid HTTPS Certificates with the DNS challenge. I use LetsEncrypt, DeSEC and Traefik, but any other supported provider with Lego (CLI) would work.
Do you happen to have some resources or links re sshfs? Once I found an app which supports mounting over sshfs but it is barely documented and iirc required passwordless ssh keys to work :(
I am seeding 70 torrents on a private tracker, most of it some niche stuff. It's getting downloaded, but I have 0.00 seeded across all 70 torrents. I have no port forwarding. 1 + 1 = you need proton / airvpn.
Symfonium is great, it supports a bunch of sources and works really well. Absolutely worth supporting the dev (check his ko-fi too)!
Oh okay that's a lot of power. For reference, I just set up an old Haswell PC as a NAS, idling at 25W (can't get to low Package C states) and usually at 28-30 running light workloads on an SSD pool. My plan was to add a 5 disk cage and at least 3 HDDs, with Raidz2 and 5 disks being the mid term goal. Absolutely unnecessary and a huge waste. I settled on less but larger disks, and in mirror I can get 12-18 TB usable space for under 500€. Less noise and power draw too.
Look for 5W idle consumption boards + CPU combos which go down to package C6+ state. HardwareLuxx has a spreadsheet with various builds focusing on low power. Sell half your disks, go mirror or Raidz1. Invest the difference in off-site vps and or backup. Storage on any SBC is a big pain and you will hit the sata connector / IO limits very soon.
The small NUC form factors are also fine, but if your problem is power you can go very low with a good approach and the right parts. And you'll make up for any new investments within the first year.
The problem is, the libraries and SDK used to build the app will have had vulnerabilities for sure. Same for the underlying image (unless scratch / distroless). We run extensive vulnerability scanning in our pipelines, and Go libs occasionally pop up. The Go SDK also had multiple security fixes in the last year.
For the physical hosts / bare metal I use fluentbit, with Loki as the backend. Grafana for visualization and alerts. This gives me utilization metrics and uptime monitoring. The app containers themselves I do not monitor.
How does this work, some loophole or a business customer? You can drop some info in a private message if you don't f feel like posting in public. Re server part deals, I am not sure if this is always the case, but the current selection of disks is 90% helium (Exos etc) HDDs, a few IronWolfs which are too large (20TB) and basically that's it. My DIY NAS is unfortunately in the apartment and I'm reluctant to try He disks due to the intensive sound profile.
One word of advice. Document the steps you do to deploy things. If your hardware fails or you make a simple mistake, it will cost you weeks of work to recover. This is a bit extreme, but I take my time when setting things up and automate as good as possible using ansible. You don't have to do this, but the ability to just scrap things and redeploy gives great peace of mind.
And right now you are reluctant to do this because it's gonna cost you too much time. This should not be the case. I mean, just imagine things going wrong in a year or two and you can't remember most things you know now. Document your setup and write a few scripts. It's a good start.