Production is my testing lab, but only in my homelab ! I guess I don’t care to perfectly secure my services (really dumb and easy passwords, no 2fa, not hiding plain sight passwords…) because I’m not directly exposing them to the web and accessing them externally via Wireguard ! That’s really bad practice though, but any time soon will probably clean up that mess, but right now I can’t, I have to cook some eggs…

There are 2 things though I actually do have some more complex workflow:

• Rather complex incremental automated backup script for my docker container volumes, databases, config files, compose files.

• Self-hosted mini-CA to access all my services via a nice .lab domain and get rid of that pesky warning on my devices.

I always do some tests if my backups are working on a VM on my personal desktop computer, because no backup means that all those years of tinkering for nothing… This will bring up some nasty depression…

Edit: If have a rather small homelab, everything on an old laptop, still quite happy with the result and works as expected.

If you change your mind someday, just send me a PM !

Just create a wildcard domain certificate !

I access all my services in my lan through https://servicename.home.lab/ I just had to add the rootCA certificat (actually the intermediate certificate) into my trust store on every device. That’s what they actually do, just in automated way !

Never had an issue to access my services with my self-signed certs, neither on Android, iOS, windows, linux ! Everything served from my server via my reverse proxy of choice (Treafik).

However I do remember that there was something of importance to make my Android device accept the certificate (something in certificate itself and the extension).

If you’re interested I can send you the snipped of a book to fully host your own CA :). It’s a great read and easy to follow !

Ohhh thanks for the clarification ! As you guessed I’m not into dev/programming so I wasn’t aware of this kind of detail !

Thank you :)

Edit: Now semver makes sense !

I mean, where else should they show that warning? It’s also posted in the forum. They also edited the documentation page.

Maybe you’re more into mailing list or the like? I’m genuine curious on what/ how/ where you expected getting this kind of information.

Really cool stuff !! Something I need to try out for sure !

Just to bad they didn’t add a multiuser setup example :( !

If you are doing any kind of multiuser mail node, you should have a separate SMTP system in front of this one that performs any necessary validation.

Maybe something worth a shot is a direct Wireguard server/client connection. While I don’t know how it works with double NAT (wireguard client with double nat) making your home server act as a direct tunnel would solve all your issues.

• Access your services from everywhere without middleman.

IIR, tailscale uses wireguard under the hood and you’re already hosting things on your home server, so maybe this could be worth a try :) !

Oh wow look at that beautiful website that made uBlock shine like a Christmas Tree ! What a beautiful specimen !

Even better, self-host Vaultwarden !

• Works everywhere (android, iOS, linux, windows, macOS…)
• TOTP
• Works without connection and if the instance is offline.
• Add notes, customize URI…
• password/username/passphrase generator
• …

A lot more to it :)

<— That Community episode is a real banger XD —>

There are some functions that do not work in the Office365 web Excel ! So that’s also not a solution if they need it for work ://.

Yeah :) Self-host it and share with family/friends ! 👍 I can’t stand anymore seeing my family members install some sketchy apps present in the official store or clicking the first ad/spy/ai/ bloated site gathering all their personal information…😮‍💨

I’m not expert in sed or awk. I always have to Google. For me though, it’s generally that you can do a great deal in just one line of awk or sed.

Same here ! I recently used a one liner awk piped into sed, piped into another command to find duplicated lines and merge both files.

Writing a python script would have taken an unknown amount of time !

You’re right ! And because OP want to archive Reddit pages I propose an alternative to reduce that bloated site to a minimum :).

From my tests, it can go from 20MB to 700Bytes. IMO still big for a chat conversation but the readability from the alternative front-end is a + !

Don’t know either, other than they can’t stand the thruth for a good reason? :/ We have been using iptables for years and now we have to relearn everything?

For reddit, SingleFile HTML pages can be 20MB per file ! Which is huge for a simple discussion…

To reduce that bloated but still relevant site, redirect to any still working alternative like https://github.com/redlib-org/redlib or old reddit and decrease your file to less than 1MB/file.

Debian as a server is fine and probably the best ! However as a daily drive OS I don’t think it’s the best choice.

I have always seen Debian as server distro and that’s probably what they meant ?

I have debian as my server distro since the beginning of my Linux journey (NEVER failed me !) However I can’t see how Debian as daily drive is a good idea. Sure they try to catch up with testing repo for those who wan’t a more up to date distro, but it’s seems harder to keep up when something breaks along the way.

That’s where Arch and derivatives shine, if something goes wrong it’s fixed in a few days.

I think what happens to me is that I completely lack discipline about structure and will often decide to re-organize things.

Haha ! Same boat here !

One slightly more stable system I’ve had for my own code is to use the Issues tracker as a sort of documentation storage system.

That’s a very nice tip, thank you ! That’s something I will explore.

Thanks for sharing. :) I hope you don’t mind me saying this but it’s nice to see commits like “Just a commit test”. I also have these as part of learning git.

Yeah that’s a bit embarrassing 🫠 ! Was playing around with some script to convert Obsidian markdown links to GitHub flavored markdown. Because a comment is necessary to push the commit I have always no idea what to put in there xDD.

Sorry I couldn’t help you out more and hope you will find a workflow that works for you ! 👍

This is exactly why proprietary stuff sucks !

Edit:

But I’m glad you’re holding to that old iPod without throwing it away ! 👍

Is there any specific reason to keep the docs in the wiki section? Vs markdown documents right in the wiki itself?

I don’t know sorry :/ I do use a document but only because I want more control over the TOC (Table of content), which is a bit strange in the wiki itself, but that’s just personal taste !

I’m not a Dev so take everything I say with a grain of salt, but what I would do is add a comment in the code to specify the change and link to your documentation file for more details (if needed). That’s probably one of the advantage of having your documentation not in the wiki page.

This would keep your code page clean while having proper documtation in the same repo ! However, I have never seen any project doing it like that (for a good reason probably?).

Here is my codeberg documentation repo about anime encoding in av1. It’s probably not what you’re looking for but maybe this can give you any idea or see if this could fit your workflow?