It really is!

I do run wireguard on my router, but the main reason is ad blocking, not hiding services. Most services are publicly exposed.

Not sure if irregular booting is still an issue, but that sounds a lot like device names changing between boots. If I could hazard a guess - you’ve got something like /dev/sda in your fstab, where ideally you’d have UUID=1234-ABC. You can get the uuid by running

blkid | grep sda

Is this at a webserver level?

Huh, TIL that’s still possible. Wasn’t in my case at the time.

I run my email server, but not at home. Running it at home is not all all more difficult, but it will only work for internal traffic and inbound from the internet. Residential IPs are simply blacklisted by ISP and as such - nothing will reach external recipients. Still useful, but is limited.

To have your smtp reach everyone globally you need to run it on a business IP. I use Linode, has worked very well since the setup in 2019, although they did get acquired by Akamai, which might become an issue at some point.

This is such an incredible write up of something I’ve never even considered to exist. Thank you!

I’d love to have things like that in a form of a post at !graybeard@lemmy.cafe

Network? That’s a small bit. DB is struggling with IO at times, but network usage is fairly low, at least on my end.

Gentoo/Arch guy checking in. It’s more about having fewer codepaths to go wrong after some update. At least in my case.

Huh TIL. Thought it was cock.

Filled in the survey. A few notes:

• Some of my answers make no sense on the surface - like the “experiment with new technology” block (4 questions). I’ve answered “Agree” to all of them, because I have taken time into account, which is not represented on the questions. Long story short - I do love experimenting with new tech, I’m almost always the first one to try something among my peers, but at the same I never blindly jump in (I’m hesitant) as most of the “new technology” is just
  • Someone repackaging foss and relabeling it
  • Some LLM bullshit
  • An inferior product to what already exists

There are also scenarios where I have already found something that’s the best solution for my case, so I won’t even bother looking at something new, even if it might be the best thing since sliced bread for someone else.

• TIme and effort setting up/maintaining (4 questions). It doesn’t take much time nor effort to set anything up now, but it did when I was starting out initially. I knew very little and a bunch of concepts hadn’t clicked, yet, so it took me days to set up Nextcloud and about half a year (on and off. Probably a week or so if it were all squeezed together) for email.

• The performance and intent to use in the future questions are weird - they feel like the same question, just leveling off in intensity. I’ve selected the same answer for all of them. They probably should’ve been a single question with agree/disagree options swapped for intensity levels.

Good luck with your PhD!

Mostly agree. Audiobooks are not my thing, but of it were - I’d look for a way to resume where I left off, maybe some recommendation on what to listen to next.

In general - once you’re into hosting stuff and past the initial barrier of setting everything up - adding another service is dead simple.

Can I be unreasonable? I’m gonna be unreasonable.

Gentoo.

.dev domains are required to only be reachable via https. You’ve not mentioned that in the post, so I’m guessing port 443 is not serving or even listening.

I’d delete the screenshot with your IP visible. You never know…

Majority of openrc/hardened/selinux binhost setup is done, need to figure out the small things.

Lemmy was also giving a bit of a headache, fiddled with limits some more.

I’m fairly certain there’s been an attempt to play with some opnsense config, but there was only time to install the updates. Or maybe this was last week 🤔

Whole path has to be accessible, not just the file itself. All dirs above the file need to have the executable bit set that affects the user accessing the file.

Lemmy.cafe checking in

I’ve not read all of it, but if you’re referring to the stuff at the beginning - none of those limitations apply to 5700xt.

If you mean something else - then, naturally, I would ask if it actually affects your media in the first place. It might, but I wouldn’t expect that.

I mean if you’re keeping the GPU - you can just set jellyfin to use VAAPI and utilise the gpu that way.

• https://trac.ffmpeg.org/wiki/Hardware/VAAPI
• https://wiki.gentoo.org/wiki/VAAPI
• https://wiki.archlinux.org/title/Hardware_video_acceleration#Configuring_VA-API

in case you want to tell me what I have is fine and I don’t need an upgrade

What you have is fine and you don’t need an upgrade 😁

But we’re not looking for fine, are we? :)

I would keep the gpu and get as many cpu cores and ram as my budget allows. Once you cross into “stupid amount of RAM” territory you can start utilising tmpfs for transient things such as jellyfin transcode directory to:

• preserve those precious ssd writes (not really relevant anymore)
• make it more efficient (feels-good kind of relevant)
• running a filesystem in ram is really cool (most relevant, naturally :D)