• 1 Post
  • 21 Comments
Joined 9 months ago
cake
Cake day: March 27th, 2024

help-circle
  • I agree. Years back, when I was getting my CDL in the construction industry, my trainer recommended I get some overalls for comfort. I was in fairly good shape at the time, but man - the relief I felt from not having a belt digging into my gut while behind the wheel made it a lot easier to hop out of the cab and throw chain at a good pace, and I never had to worry about anything coming untucked. Was certainly a game changer.






  • arcayne@lemmy.todaytoSelfhosted@lemmy.worldDNS?
    link
    fedilink
    English
    arrow-up
    1
    ·
    3 months ago

    My preferred way of solving this is to run a PowerDNS cluster with DNSDist and keepalived. You get all the redundancy via a single (V)IP.

    Technitium is probably more user friendly for greenhorns, though… and offers DHCP too. Beats pihole by a mile.



  • Wezterm is my primary. Love the built-in domain/sshmux features, especially for work. The LUA config rocks, sky is the limit. Highly portable when using something like Chezmoi or YADM.

    That said, it’s not always the most performant, especially with certain TUIs. I’ve been running my NVim workspace in Kitty lately just to avoid the minor UI lag (primarily with lazygit). Not a fan of Kitty (or its dev) otherwise, but it serves its purpose.

    If Wezterm ever gets optimized, it’ll be the GOAT for me.

    Ghostty also sounds like it’s got potential, but haven’t gotten my invite yet. ¯\_(ツ)_/¯







  • Apps: SSO via Authentik where I can, unique user/pass combo via Bitwarden where I can’t (or, more realistically, don’t want to).

    General infra: Unique RSA keys, sometimes Ed25519

    Core infra: Yubikey

    This is overkill for most, but I’m a systems engineer with a homelab, so it works well for me.

    If you’re wanting to practice good security hygiene, the bare minimum would be using unique cred pairs (or at least unique passwords) per app/service, auto-filled via a proper password manager with a browser extension (like KeePassXC or Bitwarden).

    Edit: On the network side, if your goal is to just do some basic internal self-hosting, there’s nothing wrong with keeping your topo mostly flat (with the exception of a separate VLAN for IoT, if applicable). Outside of that, making good use of firewalls will help you keep things pretty tight. The networking rabbit hole is a deep one, not always worth the dive unless you’re truly wanting to learn for the sake of a cert/job/etc.



  • We’re so tightly integrated with the M$ ecosystem at my work, it’s painful. My department has even been going out of it’s way to self host (F)OSS alternatives where we can, just to avoid as much of the cludge as possible.

    Has anyone tried out the new Teams integration feature that Mattermost recently rolled out for Enterprise customers? If so, any good?

    If we can seamlessly sync calls/meetings from Teams into Mattermost and ditch the Teams client for our day-to-day comms, I might have a fighting chance at convincing my supervisor to pivot my department.




  • I agree. I love seeing community engagement when there’s an actual question involved.

    My issue is with the flood of incredibly, incredibly basic questions being repeated over and over again. Especially when the user isn’t even looking for discussion - just an answer. Essentially treating the community like their own human-powered search engine. Gives off the vibe that they OP’s don’t care enough to put any effort in, they just want someone else to spoon-feed them and/or tell them what to do. Seems so mindless.

    And, the sheer volume of posts that fit that description can, and do, inadvertently drown out the less frequent, but more valid questions and requests for help… which just, sucks.


  • I see where you’re coming from. “Any publicity is good publicity”, as they say. So, sure… traction is good for overall visibility. I agree. We do need more of that.

    To counter your counter, for the sake of discussion:

    If the traction is built on semi-incoherent noise, doesn’t that feel precarious? Artificial, even? Kinda reminds me of bot-boosting, where you’d see a big initial uptick in views and maybe drum up some actual buzz. But in the long term, it’s either a fart in the wind, or it backfires altogether and ends up fueling a negative public opinion.