anamethatisnt

anamethatisnt , 4 months ago to Privacy in What PC is like the "thinkpad" of PCs?

Just carefully read the manual for the model you're interested in. Switching out a keyboard on T14s Gen1 is hell, as an example.
https://lemmy.world/pictrs/image/bc7b4b28-e2a5-46f2-bd60-79d3f11705b2.png

• https://download.lenovo.com/pccbbs/mobiles_pdf/t14s_gen1_x13_gen1_hmm_en.pdf

anamethatisnt , 4 months ago (edited 4 months ago) to Privacy in What PC is like the "thinkpad" of PCs?

Are you looking for a laptop or a desktop machine?
Framework laptops seems kinda cool but they don't ship to me yet so I have no personal experience. https://frame.work/
Many computer stores offer to build your computer from parts for a fee, that would give you the custom PC without building yourself.

anamethatisnt , 4 months ago to Selfhosted in Opnsense and one ethernet port

Your opnsense will have WAN (ethernet port) and your LAN side will be all virtualized. There's no problem having VLAN 10 with 192.168.10.0/24 for your main vms and then VLAN 20 with 192.168.20.0/24 for your VPN machine. Setup deny rules in the firewall to stop the VLANs from communicating.
If this is inside your current home network you will end up with double NAT though.

anamethatisnt , 4 months ago to Selfhosted in LibreY vs SearXNG, which one do you suggest and why?

Many use SearXNG to get less personalized search and tracking. If hundreds of users appear as one user for the search engine then both tracking and personalization of the results suffer.

anamethatisnt , 4 months ago to Selfhosted in New home server: what hypervisor/OS?

Yeah, you need to install cockpit on any linux you wanna manage using it, then you can use the ssh keys to setup so your cockpit session on the hypervisor gives you access to your vms too.

https://lemmy.world/pictrs/image/752b0fe1-eb74-4958-9ec1-6802065c6e7e.png

anamethatisnt , 4 months ago to Selfhosted in New home server: what hypervisor/OS?

No problem running virt-manager on the hypervisor itself. You can also use https://cockpit-project.org with the cockpit-virtual-machines addon to manage kvm vms from https://machineip:9090

anamethatisnt , 4 months ago to Selfhosted in New home server: what hypervisor/OS?

Running a Debian Bookworm hypervisor using KVM/QEMU with virt-manager for vms + Incus for lxc containers gives you a lot of freedom with how you use it.

edit: It also means you build your own hypervisor from parts - kinda like installing postfix/dovecot/mariadb/spamassassin instead of a packaged solution like mail-in-a-box. It takes more time and effort but I find I understand the underlying technologies better afterwards.

anamethatisnt , 4 months ago to Privacy in Cheap and safe streaming stick?

The CM4 won't get you H.264 4K, just so you know:
H.265 (HEVC) (up to 4Kp60 decode), H.264 (up to 1080p60 decode, 1080p30 encode)
https://www.raspberrypi.com/products/compute-module-4/

anamethatisnt , 5 months ago to Selfhosted in Home server tips and security for beginners?

I guess it depends on the person. I find starting with "real" VMs and VLANs makes it easier to get an understanding for what's going on underneath the hood, even when you start using Docker containers and the like.

anamethatisnt , 5 months ago to Selfhosted in Home server tips and security for beginners?

1. Yes.
2. Separate VMs in separate VLANs for private and shared storage. Makes things a bit less convenient for you, but worth it imo.
3. Somewhere between $1000-$2000 I imagine.
4. RAID is great for minimizing downtime but is never a replacement for a backup. The 3-2-1 rule mentioned below is a good thing to follow.
5. Never grant higher permissions than necessary, never open more ports than necessary. If your gaming server VMs have no need to communicate with your Nextcloud servers then setup deny rules in your router firewall to stop that traffic from being possible and so on.
6. Get a proper physical firewall device that allows you full control. I usually use opnsense or pfsense as the software OS.

anamethatisnt , 5 months ago to Privacy in Mullvad uses Gmail

I can agree on that, but their dns already do for anyone who is interested to find out.

anamethatisnt , 5 months ago to Privacy in Mullvad uses Gmail

1. If privacy is of utmost concern, we recommend that you refrain from communicating any personal data to us since plain-text email is not a safe media for communication. If necessary, use PGP-encrypted email.
2. ...
3. ...
4. We do use a third party to operate our email service, so we remind you to carefully read #1 again.

from:
https://mullvad.net/en/help/no-logging-data-policy#email

anamethatisnt , 5 months ago to Selfhosted in What should I use my RPi4 for?

You can also install Nagios the traditional way with apache instead
https://www.howtoraspberry.com/2021/05/how-to-install-nagios-on-a-raspberry-pi/

The port 9090 nems UI is based on Cockpit and just an apt install away
https://cockpit-project.org

anamethatisnt , 5 months ago to Selfhosted in What should I use my RPi4 for?

I've been wanting to use multiple raspberry pi zero w with sensory hats to feed data to a central home monitoring system. Would be a fun project.

anamethatisnt , 5 months ago to Selfhosted in What should I use my RPi4 for?

RPi4 + USB Storage works as a network connected backup space for home PCs. With dyndns and a split vpn tunnel I imagine you could have your Hetzner machine place backups there too.
Seems both nagios and zabbix work on RPi:
https://peppe8o.com/network-monitoring-with-raspberry-pi-and-nems-nagios/
https://bestmonitoringtools.com/how-to-install-zabbix-on-raspberry-pi-raspbian/