jrollans.com is a Fediverse instance that uses the ActivityPub protocol. In other words, users at this host can communicate with people that use software like Mastodon, Pleroma, Friendica, etc. all around the world.

This server runs the snac software and there is no automatic sign-up process.

Site description
These are the voyag... uh, things I post about.
Admin email
jrollans@gmail.com
Admin account
@jrollans@jrollans.com

Search results for tag #selfhosting

AodeRelay boosted

[?]pandolin [he/him/his] » 🌐
@pandolin@social.pandolin.online

Auf meinem Schreibtisch steht eine vollständige Cloud.
Kleiner als ein Taschenbuch, leiser als der Lüfter neben dir, sparsamer als eine Glühbirne. Kein Abo, keine fremde Cloud, keine Blackbox. Sie gehört mir.

Möglich macht das eine Architektur, die erwachsen geworden ist: ARM, energieeffizient, leise. Dazu eine schlanke, quelloffene Software aus Berlin @OpenCloud@opencloud.eu , die die Daten dort lässt, wo man sie hinlegt.

Ein neuer Artikel über ARM, den aus den Fugen geratenen Speichermarkt, die Freiheit, sich selbst auszusperren, und ein Mini-Rechenzentrum, das aussehen will wie ein kleines Gebäude.

Viel Spass beim Lesen!
👉 https://www.pandolin.io/die-cloud-die-in-eine-hand-passt/

#DigitaleSouveränität #SelfHosting #OpenCloud #ARM #Fediverse #Linux #FOSS #OpenSource

Illustration des Pandolin-Maskottchens, ein Pangolin, der an einem Schreibtisch ein kleines leuchtendes Mini-Rechenzentrum in den Klauen hält

Alt...Illustration des Pandolin-Maskottchens, ein Pangolin, der an einem Schreibtisch ein kleines leuchtendes Mini-Rechenzentrum in den Klauen hält

    [?]NodeZ3r0 » 🌐
    @nodez3r0@mstdn.wopr.systems

    Why rent a server when you can own one? is not just about control, it's about cutting the corporate umbilical cord.

    Cloud services are profitable for big tech, but the hidden costs of data privacy breaches and vendor lock-in hit hard. Self-hosting offers independence and resilience in the digital age.

    selfhosting clouddependence digitalfreedom

    wopr.systems/?utm_campaign=mem

    Cloud services are profitable for big tech, but the hidden costs of data privacy breaches and vendor lock-in hit hard. Self-hosting offers independence and resilience in the digital age.

    Alt...Cloud services are profitable for big tech, but the hidden costs of data privacy breaches and vendor lock-in hit hard. Self-hosting offers independence and resilience in the digital age.

      AodeRelay boosted

      [?]Christin Löhner » 🌐
      @christin@bizzfed.de

      GitHub gehört Microsoft. Zeit für einen Ausweg.

      GitHub gehört seit 2018 Microsoft, unterliegt dem US Cloud Act und lässt Copilot seit April 2026 standardmäßig mit deinem Code trainieren, wenn du nicht widersprichst. Codeberg ist die naheliegende Alternative: gemeinnützig, europäisch, ohne Konzern im Rücken. Reden wir drüber!

      https://www.chrislo.de/blog/2026-07-12-12-49-32-github-gehoert-microsoft-zeit-fuer-einen-ausweg/

      #chrislo #DigitaleUnabhängigkeit #ServerInfrastruktur #GitHub #Codeberg #GitLab #Microsoft #OpenSource #CloudAct #Copilot #SelfHosting

        AodeRelay boosted

        [?]Yehor 🇺🇦 » 🌐
        @yehor@mastodon.glitchy.social

        Something really important happened. My wife approved to migration. She tried the mobile app and liked it much more than the iOS Photos app.
        Now the only thing we need is to wait for the Immich sharing overhaul release around version 3.1 or 3.2: github.com/immich-app/immich/p

          [?]Ruben » 🌐
          @cyclops_@fosstodon.org

          What do self-hosting folks use on their phone (android) for email and calendar integration?

          I'm on k9mail and use nextcloud for calendar. I'd really like to accept meeting invite/updates on my phone. I can open the ics file but that seems to struggle with timezones and other small issues.

            AodeRelay boosted

            [?]🏳️‍⚧️ Christin Löhner 🏳️‍🌈 » 🌐
            @christin@lsbt.me

            GitHub gehört Microsoft. Zeit für einen Ausweg.

            GitHub gehört seit 2018 Microsoft, unterliegt dem US Cloud Act und lässt Copilot seit April 2026 standardmäßig mit deinem Code trainieren, wenn du nicht widersprichst. Codeberg ist die naheliegende Alternative: gemeinnützig, europäisch, ohne Konzern im Rücken. Reden wir drüber!

            chrislo.de/blog/2026-07-12-12-

            [?]InnocentZero » 🌐
            @innocentzero@social.tchncs.de

            enlighten me, how do I secure, and I mean THOROUGHLY secure, a public facing service (say forgejo/ntfy/matrix homeserver) etc properly, so that I can actually expose them to the public internet and inbound connections?

            I am not yet hosting such services, mostly because I'm worried I'll badly mess up somewhere

            BUT I really, really want to do it and do it well, all the kubernetes, containers, VM and orchestration talk sounds really nice!

            (While we're at it, can someone teach me the difference between a homelab and a homeserver?)

              [?]Wulfy—Speaker to the machines » 🌐
              @n_dimension@infosec.exchange

              life hack

              Document the fuck out of your setup.
              Ive just spend 15 minutes finding where one of my Zone managers is (They merged with another firm)

                [?]Daltux [ele/eles/he/them] » 🌐
                @daltux@snac.daltux.net

                :bah: MinIO, então, revelou-se outra empresa californiana que mantinha um modelo híbrido de licenciamento do software que desenvolvia e, na capitania do navio com uma extensa comunidade embarcada, resolveu abandoná-lo, voltando-se ao desenvolvimento de software totalmente privativo de liberdade. Pior, consta que fez isso para pular com os dois pés no inafundável supertransatlântico da dita inteligência artificial... :noAI:

                Qual será a próxima? Desconfiemos de todo projeto com esse modelo híbrido "Community Edition" altamente merdificável. Tentemos focar no software livre e não nos deixemos enganar pela conversa corporativa do chamado código aberto enquanto convém.

                Felizmente, o que foi desenvolvido até então está publicado sob , algo que, por nos conceder as quatro liberdades essenciais para isso, garante à comunidade que qualquer parte interessada assuma a liderança do projeto para tirar o barco da deriva, digo, continuar seu desenvolvimento como derivado. Parece até que isso já começou. Contudo, como há outros projetos mais ativos com propósitos semelhantes, não há certeza de que seu desenvolvimento continuará.

                A notícia já é antiga, de meses atrás, mas tomei ciência apenas hoje. A primeira vez que tive contato com esse programa e o utilizei foi muito recentemente, ao implantar meu servidor , de cuja documentação MinIO faz parte como armazenamento local. Agora vai ter que ficar assim, na última versão lançada, ao menos por algum tempo. Estava cogitando usar MinIO para mais funções, mas vou deixá-lo apenas para o armazenamento de objetos locais do Ente mesmo. Já devia ter usado algum outro sistema de armazenamento com API compatível com S3. Não é interessante começar algo com um componente importante já descontinuado. Lembrete a mim mesmo: mais atenção a dependências, na próxima vez! :blobCatThisIsFine:


                  AodeRelay boosted

                  [?]Daltux [ele/eles/he/them] » 🌐
                  @daltux@snac.daltux.net

                  Substituí o finado por Garage. Só vi vantagem! ✅


                    [?]Forkmesh » 🌐
                    @forkmesh@mastodon.social

                    Hello Fediverse 👋

                    We’re building ForkMesh: a community-owned Git forge for public and private repos.

                    Host projects, mirror code across real machines, sign collaboration, and keep work reachable beyond outages, takedowns, or walled gardens.

                    Run a node. Start a repo. Mirror what matters.

                    forkmesh.com

                      AodeRelay boosted

                      [?]Michael Jack » 🌐
                      @mjack@mastodon.bsd.cafe

                      I've cleaned up my Raspberry Pi selfhosting setup a bit. I'm using two, each in an Argon ONE V5 case with a 1TB NVME drive, running Raspberry Pi OS.

                      'one' is serving Nextcloud All-in-one, Immich and Vaultwarden via a Caddy reverse-proxy. All using Docker containers, Caddy as a custom build with my domain DNS provider added.

                      'two' is used as remote borg backup destination for 'one', and later a few monitoring tools.

                      All three sites are using a wildcard certificate for my domain, and I connect via WireGuard (on the router) when away from home.

                      Path of least resistance:

                      I've tried Podman, AlmaLinux, and running a manual install of Nextcloud on Ubuntu. This setup follows recommended installations methods, and gives me fewer things to worry about.

                      Photo of whiteboard with green text and drawings.

Left: WireGuard, Caddy, Vaultwarden, Nextcloud, Immich and BorgBackup, each with a check mark.

Right: a simple illustration showing server 'one' and 'two' and borg backup flow.

                      Alt...Photo of whiteboard with green text and drawings. Left: WireGuard, Caddy, Vaultwarden, Nextcloud, Immich and BorgBackup, each with a check mark. Right: a simple illustration showing server 'one' and 'two' and borg backup flow.

                        [?]Dima » 🌐
                        @dima@dol.social

                        Sometimes newer is not better. At least not for the things that matter to you.

                        I benchmarked two OVH VPS in the same Zurich location. My current 2025 model with a 500 Mbit network against the newer 2027 model with 1 Gbit. Same AMD EPYC Genoa cores, same provider, nearly identical sysbench CPU scores.

                        Then the surprises started.
                        The older box pushes 6,612 MiB/s in memory tests, the newer one 932 MiB/s. That is 7x.
                        Random 4K reads: 1.32 million IOPS against 832k.
                        And the old model is even about 1 EUR cheaper.

                        For a Mastodon instance, databases, and Docker workloads, memory and disk beat extra bandwidth every time. So the shiny new VPS gets demoted to reverse proxy and backup duty, and this instance stays exactly where it is.

                        Benchmark before you migrate.

                        Screenshot of the OVH control panel showing two active VPS in the EU-WEST-LZ-ZRH location: vps-817e781a.vps.ovh.net labeled vps-2027-model2.LZ and zrh-1.dol.ch labeled vps-2025-model1.LZ. Both marked Active, the model names underlined in red

                        Alt...Screenshot of the OVH control panel showing two active VPS in the EU-WEST-LZ-ZRH location: vps-817e781a.vps.ovh.net labeled vps-2027-model2.LZ and zrh-1.dol.ch labeled vps-2025-model1.LZ. Both marked Active, the model names underlined in red

                          [?]veev » 🌐
                          @veev@bark.wolp.chat

                          computery talk [SENSITIVE CONTENT]

                          So I'm working on turning an older gaming desktop into a selfhosted server thing.

                          I want it to use less power and generate less heat in this already-hot room so I poked around the motherboard settings and turned on AMD's branded automatic power profile thing.

                          It doesn't boot now. Uh oh. Well I can just take the coin battery out then in, wiping the motherboard to factory defaults right?

                          Well no. I only have a ryzen 5 3600. This motherboard's default firmware only supports up to Ryzen 2xxx. The only reason why a ryzen 3xxx worked here is because I borrowed someone else's Ryzen 2xxx to update the firmware. I no longer know anyone who has a Ryzen 2xxx. Welp. I guess I can pawn off the components to someone else but otherwise I just generated a heap of e-waste right now.

                          Does anyone have that exploding blobcat on hand? I feel like that right now.


                          #it #selfhosting #e-waste

                            AodeRelay boosted

                            [?]Neil Brown [he/him/his] » 🌐
                            @neil@mastodon.neilzone.co.uk

                            @michael

                            > If you self-host something I’ve not mentioned here and think I’m missing out...

                            Additions on my list:

                            * Jellyfin: great media streaming server

                            * Immich: photo hosting server

                            * Vaultwarden: password manager

                            * Mastodon: mastodon, innit!

                            * greenbone / OpenVAS: vulnerability scanning

                            * Wazuh: SIEM / alerting

                              [?]Michael » 🌐
                              @michael@mstdn.thms.uk

                              My homelab now contains around 17 services that I host for myself and family - not counting reverse proxies and similar helpers that exist solely to ‘support the operation’.

                                AodeRelay boosted

                                [?]Michael » 🌐
                                @michael@mstdn.thms.uk

                                A couple of people have asked me what I actually self host, so here is a list as of today:

                                blog.thms.uk/2026/07/self-host

                                If you self-host something I’ve not mentioned here and think I’m missing out, I’d love to hear about it - especially anything that’s replaced a paid service you were glad to see the back of.

                                  AodeRelay boosted

                                  [?]Ric Harvey 🇪🇺🌍💚 » 🌐
                                  @Ric@mastodon.squarecows.com

                                  🚨 Security release: pages-server v0.3.4

                                  If you run our Traefik plugin for Forgejo/Gitea static site hosting, please update now.

                                  Fixes:
                                  🔐 Auth bypass (High) — password-protected sites could be accessed without valid credentials when no authSecretKey was set
                                  🛡️ Stored XSS + HTML injection (Medium) in login/error/redirect pages

                                  v0.3.4 is secure by default — no config changes required.

                                  github.com/sqcows/pages-server

                                    AodeRelay boosted

                                    [?]Frank » 🌐
                                    @rincewind@unseen-university.social

                                    Neuer Artikel im Blog:

                                    Debian-Update von Bookworm auf Trixie - OK
                                    Mastodon: LoadError: libicudata.so.72 not found

                                    Warum ein unscheinbares Ruby Gem eine ganze Instanz lahmlegt - und wie man das langfristig verhindern kann.

                                    just-stuff.blog/mastodon-charl

                                      AodeRelay boosted

                                      [?]Yehor 🇺🇦 » 🌐
                                      @yehor@mastodon.glitchy.social

                                      That’s frightening because will switch into a read-only mode in that case and brake instance.

                                      So I need to replace my Asus PM42 with something with SATA and NVMe support. Also, something cheap. Also, something that would handle the same RAM Asus box uses currently.

                                        [?]viq [he/him] » 🌐
                                        @viq@social.hackerspace.pl

                                        Had a closer look, and is too adjacent for my liking (contribution policy of "sure, as long as you shepherd the bots", multiple bots of the complex kind in the pull request review automation)

                                          [?]Geoff » 🌐
                                          @sternecker@infosec.exchange

                                          Was expecting a forgejo update on the 9th and yes, it is available. However, it has 3 security fixes, after the large gitea CVE drop the other day, was assuming there would be more. This leads me to think the codebase has diff'd enough that the high CVE scores are exclusively gitea vulns. Which I am reading are being exploited in the wild. So, public Gitea, start looking for indicators of compromise and get them patched!!

                                            AodeRelay boosted

                                            [?]Larvitz :fedora: » 🌐
                                            @Larvitz@burningboard.net

                                            New on the blog: Hosting DokuWiki on FreeBSD with Bastille, nginx, and Caddy.

                                            A deliberately small, database-free wiki: one application jail, central Caddy ingress, PHP-FPM over a Unix socket, and explicit nginx rules protecting DokuWiki’s private data.

                                            The interesting part isn’t getting a page to render. It’s drawing clean security and backup boundaries.

                                            blog.hofstede.it/hosting-dokuw

                                              [?]Patch Arcana » 🌐
                                              @patcharcana@furry.engineer

                                              As I threatened yesterday, I have completed work to migrate the "worth keeping" repositories I have from Github to a self-hosted Forgejo instance.

                                              I have documented my reasoning and the instructions for converting your locals in this blog post.

                                              My hope is that by showing this to be relatively trivial more people will make the decision to maintain their own online repository stores.

                                              arcanalabs.ca/news/labnotes/pe

                                                AodeRelay boosted

                                                [?]Yehor 🇺🇦 » 🌐
                                                @yehor@mastodon.glitchy.social

                                                It’s been 5 full days without me SSH-ing somewhere. I think it is a new record since I started my . I couldn't take it anymore and upgraded my Mastodon instance to 4.6.3 today. While on vacation. While away from servers.

                                                  [?]Wolkensteine :neocat_heart: :no_ai: 🏳️‍🌈 [He/Him] » 🌐
                                                  @Wolkensteine@mastodon.wolkenheim.eu

                                                  Heyo Fedi friends!
                                                  Does anyone of you know a good self-hostable alternative to something like mailgun?

                                                  Boosts are greatly appreciated! :neocat_heart: :boosts_welcome:

                                                    dansup boosted

                                                    [?]Grow Your Own Services 🌱 » 🌐
                                                    @homegrown@social.growyourown.services

                                                    Are you into 3D printing, self-hosting and the Fediverse?

                                                    If so you might want to look into Manyfold, a FOSS Fediverse platform which lets you upload and share 3D print models:

                                                    🌱 manyfold.app

                                                    You can follow the official accounts at:

                                                    🌱 @manyfold@3dp.chat (main)
                                                    🌱 @manyfold@makertube.net (videos)

                                                    You can host your own Manyfold server using the instructions at manyfold.app/get-started/insta (be warned though, installation does require a bit of tech skill).

                                                      [?]OneWheelGeek » 🌐
                                                      @onewheelgeek@social.lol

                                                      Curious what kind of luck people have had running a single-user, self-hosted @gotosocial instance instead of joining a larger shared node.

                                                      With relays in GotoSocial, my feed is great—I can discover pretty much everything I care about. My bigger question is the *other* direction. I've heard some instances de-prioritize or outright limit federation from low-volume, self-hosted, or otherwise unknown nodes.

                                                      If you're mostly consuming content, I imagine it's a non-issue. But if you actually want to participate in conversations, are you giving up reliable interaction by running your own tiny instance?

                                                      Curious to hear real-world experiences.

                                                        AodeRelay boosted

                                                        [?]Rad Web Hosting » 🌐
                                                        @radwebhosting@mastodon.social

                                                        How to Install on VPS

                                                        This article provides an in-depth guide demonstrating how to install PeerTube on Ubuntu VPS.
                                                        What is PeerTube?
                                                        PeerTube is a decentralized, federated video hosting platform powered by WebTorrent and ActivityPub. It enables users to self-host video services and interact with other PeerTube ...
                                                        Continued 👉 blog.radwebhosting.com/install

                                                          [?]viq [he/him] » 🌐
                                                          @viq@social.hackerspace.pl

                                                          Is this the moment where I get annoyed enough with state and quirks of configuration management tools, and switch my boxes to somewhat more hands-off ? 🤔

                                                            [?]EdTheDev [He/Him] » 🌐
                                                            @EdTheDev@infosec.exchange

                                                            Because I'm a developer at heart, I had a fascinating late evening self hosting some apps I have never self hosted before.

                                                            Because I'm Cybersecurity by trade, I wrapped up my evening by physically disconnecting my the network cable.

                                                            Have a great evening / early morning, everyone.

                                                              [?]linuxwebzine » 🌐
                                                              @linuxwebzine@mstdn.ro

                                                              💬🌐 The Lounge: Clientul web IRC modern, perfect pentru self-hosting

                                                              În ciuda ascensiunii platformelor moderne de chat, protocolul IRC (Internet Relay Chat) rămâne una dintre cele mai rezistente și apreciate rețele de comunicare din lumea open-source și a comunităților tehnice. Totuși, clienții IRC tradiționali pot părea învechiți pentru utilizatorul obișnuit. Aici intervine The Lounge, un client web IRC modern, conceput special pentru a fi găzduit pe cont propriu (self-hosting), aducând experiența clasică de chat la standardele vizuale și funcționale din prezent.

                                                              The Lounge funcționează ca o aplicație web progresivă (PWA), oferind utilizatorilor o interfață similară cu cea a platformelor Discord sau Slack, dar păstrând în totalitate independența și libertatea oferite de IRC.

                                                              Iată principalele caracteristici care fac din The Lounge soluția ideală pentru comunități și pasionații de self-hosting:

                                                              🔹 Sesiuni persistente (Push Notifications & Bouncer Integrat):
                                                              Unul dintre cele mai mari dezavantaje ale IRC-ului clasic este că pierzi mesajele dacă te deconectezi. The Lounge rezolvă nativ această problemă: rulând permanent pe serverul tău, el rămâne conectat la canale în locul tău. Când deschizi aplicația pe telefon sau pe calculator, ești întâmpinat de întregul istoric al conversațiilor ratate, beneficiind în același timp de notificări push în timp real.

                                                              🔹 Interfață modernă, adaptivă și suport PWA:
                                                              Interfața grafică este curată, minimalistă și complet adaptivă (responsive), funcționând impecabil atât pe monitoare mari de desktop, cât și pe ecranele telefoanelor mobile. Fiind o aplicație Web Progresivă (PWA), The Lounge poate fi instalat direct pe smartphone-ul tău ca o aplicație nativă, direct din browser, fără a fi nevoie de un magazin de aplicații.

                                                              🔹 Previzualizări media bogate:
                                                              Uită de link-urile simple din textul chat-ului. The Lounge transformă experiența IRC prin adăugarea de previzualizări automate direct în fereastra de conversație. Imaginile, videoclipurile de pe YouTube, tweet-urile și fișierele audio trimise pe canal sunt afișate sub formă de carduri media bogate, făcând navigarea mult mai interactivă.

                                                              🔹 Management multi-utilizator și instalare simplă:
                                                              Aplicația este construită pe Node.js și poate fi instalată extrem de ușor, fie direct prin managerul de pachete npm, fie printr-un container Docker în doar câteva secunde. Administratorii pot configura serverul în mod „privat” (doar pentru utilizatorii înregistrați de ei, ideal pentru echipe sau grupuri de prieteni) sau în mod „public” (funcționând ca un client web deschis pentru oricine vrea să se conecteze rapid la o anumită rețea).

                                                              The Lounge demonstrează că protocoalele clasice pot fi revitalizate cu succes prin tehnologii web moderne, oferind o alternativă sigură, privată și extrem de elegantă la platformele de chat centralizate de astăzi.

                                                                [?]DB Tech » 🌐
                                                                @dbtechyt@fosstodon.org

                                                                How I Set Up .local Domains with Valid HTTPS in My Homelab
                                                                Watch here: youtu.be/EVnwnFY7C1w

                                                                  [?]Geoff » 🌐
                                                                  @sternecker@infosec.exchange

                                                                  I'm not running Gitea, but Forgejo. Here is a write up of the Gitea CVE's that are still embargoed for Forgejo. Regardless, they need to be patched! Make it a priority.
                                                                  hivesecurity.gitlab.io/blog/gi

                                                                    AodeRelay boosted

                                                                    [?]Dragon of BSDCafe :freebsd: [he/him] » 🌐
                                                                    @evgandr@mastodon.bsd.cafe

                                                                    Pretty funny that the most often requested file from my small kitchen-server is "/robots.txt". Pretty surprising, since a lot of LLM-bots usually ignores this file :drgn_sigh:
                                                                    The other requested files are just some js crap, which is obviously don't exist on my server — possibly some script-kiddies tried to find some entrypoint (see "config.js" and "env.js").

                                                                    The funny part: the referrer URLs. Hope, the default content of NetBSD /etc/passwd from inside the sandbox was made someone happy :drgn_blush_giggle:

                                                                    A cwm with 3 windows. On the top window there is an xterm with ssh client connected to the my server. Inside the window there are some lines from /var/log/nginx/ from inside sandbox (mostly the list of files and gzipped files in this catalog). On the middle window there is a GoAccess web interface with list of most-requested static files from my server. There are: /robots.txt (2.6 MiB of traffic), /config.js (1 MiB), /.env.txt (588 KiB), /env.txt (300.3 KiB), /app.js (316.4 KiB), /owa/auth/x.js (134.4 KiB).

                                                                    Alt...A cwm with 3 windows. On the top window there is an xterm with ssh client connected to the my server. Inside the window there are some lines from /var/log/nginx/ from inside sandbox (mostly the list of files and gzipped files in this catalog). On the middle window there is a GoAccess web interface with list of most-requested static files from my server. There are: /robots.txt (2.6 MiB of traffic), /config.js (1 MiB), /.env.txt (588 KiB), /env.txt (300.3 KiB), /app.js (316.4 KiB), /owa/auth/x.js (134.4 KiB).

                                                                    The screenshot of cwm with a Librewolf window on top. It displays the GoAccess web interface with a list of referrer URLs, from requests to my server. There are: https://MyIP/ (47078 hits), http://MyIP:443/ (25507 hits), https://MyIP (3018 hits), () { ignored; }; echo Content-Type: text/html; echo ; /bin/cat /etc/passwd (621 hits), https://MyIP/WebInterface/login.html (434 hits) and https://myhostname (291 hits). On the two other windows on the bottom there are: xterm window with ssh client connected to my server and an Emacs frame with log of actions made with server.

                                                                    Alt...The screenshot of cwm with a Librewolf window on top. It displays the GoAccess web interface with a list of referrer URLs, from requests to my server. There are: https://MyIP/ (47078 hits), http://MyIP:443/ (25507 hits), https://MyIP (3018 hits), () { ignored; }; echo Content-Type: text/html; echo ; /bin/cat /etc/passwd (621 hits), https://MyIP/WebInterface/login.html (434 hits) and https://myhostname (291 hits). On the two other windows on the bottom there are: xterm window with ssh client connected to my server and an Emacs frame with log of actions made with server.

                                                                      [?]James Wynn 🧐 » 🌐
                                                                      @james@social.wynning.tech

                                                                      Finally started the process of migrating off cloudflare to a vps thanks to towonel. Everything I've migrated seems to be working better to ham on CF, and I'm reasonably confident in crowdsec+coraza+anubis as my security stack.

                                                                      #homelab #selfhosted #selfhosting

                                                                        AodeRelay boosted

                                                                        [?]Fox Ritch :fjoxicon:🇩🇪 » 🌐
                                                                        @fox@social.hostnetwork.xyz

                                                                        so i tried to make a nested proxmox vgpu thingy. but it doesnt work cause when i enabled viommu on the vm the nvidia driver fails(RmInitAdapter failed) but when i disable viommu mdev doesnt work cause it needs /sys/kernel/iommu_groups/ which only exsists with iommu. i fucking hate this bullshit.

                                                                          [?]Elena Rossini on GoToSocial ⁂ » 🌐
                                                                          @elena@aseachange.com

                                                                          Good morning Fedi friends!

                                                                          On the agenda today: writing a first draft explaining to newbies how to self-host #GoToSocial with the help of #YunoHost.

                                                                          Now, to do a step-by-step installation guide I need to create a brand new account, so I can document everything.

                                                                          I'm a little stressed out thinking of which domain name to use and the fact it would be something like my 20th - yes TWENTIETH - ActivityPub account!!! 🫠

                                                                          The things you do for the love of the fediverse 😅​

                                                                          #MySoCalledSudoLife #SelfHosting

                                                                            [?]Geoff » 🌐
                                                                            @sternecker@infosec.exchange

                                                                            A couple things this morning. CVE-2026-46242 "Bad Epoll" Linux kernel, CVSS 7.8, local privilege escalation was already mentioned CVE published around May.
                                                                            1: What's new today: it is now fully weaponized and publicly written up. It's a use-after-free race in the kernel's eventpoll subsystem (ep_remove()/ep_remove_file()). An unprivileged local user can win a race condition and get root.

                                                                            2: Affected: kernel 5.10 through 6.11.
                                                                            3: The Attack surface is broad because epoll underlies nginx, Node.js, Python asyncio, databases, Android's event loop.

                                                                            So, basically anything async I/O.
                                                                            An App can be the foot in the door, the race condition can lead to root.

                                                                            I'm running Kernel 6.12.94+deb13-amd64. So driving on.

                                                                              [?]Ben Arthur Looper [he/him] » 🌐
                                                                              @arthurian@defcon.social

                                                                              Good morrow Fediverse,

                                                                              My name is Ben Looper, I'm a software engineer of five years currently living in Houston, TX...but not for much longer!
                                                                              My wife and I are moving up to Calgary, AB, and I'm taking the opportunity to make some positive changes in my life, one of the first being to write more.

                                                                              I have a few projects that my ADHD brain bounces between, and I want to begin fearlessly talking about them here, rather than verbal vomiting about them to whatever poor soul asks me about them.

                                                                              Maybe (hopefully) these smaller updates will cascade into longer, more detailed pieces, but for now I'll be very happy to just share bits and bites, and to engage with others on stuff they're working on.

                                                                              That last point specifically is what I'm most excited for - I don't have many people in my life that I can full-blown nerd out about this stuff with, and I really hope that I can find a community here to do that with.

                                                                              Thanks, and happy hacking 📎

                                                                                AodeRelay boosted

                                                                                [?]Ricardo Martín :bsdhead: » 🌐
                                                                                @ricardo@mastodon.bsd.cafe

                                                                                Dear CGNAT and GPON 1:64 splits, fuck you.