𝓢𝓮𝓮𝓙𝓪𝔂𝓔𝓶𝓶 @ SeeJayEmm @lemmy.procrastinati.org

Mastodon: [@SeeJayEmm@noc.social](https://noc.social/users/SeeJayEmm)

---

Read more

Posts

20

Comments

545

Joined

2 yr. ago

I meant to replace Ansible automation. Pointing out it's RH is all well and good, but what's the alternative?

It certainly wouldn't be because I've been doing it this way for so long that it never occurred to me. Nope. Certainly not that.

In fairness, I very recently switched from a cobbled together apache web server/rev proxy config I've been carrying along in some form for well over a decade (I remember converting the config to 2.4), to an NPM container. I had some initial trouble switching my certs over to NPM and haven't revisited that yet.

I'm in the middle of a major overhaul of my tech stack. Fixing certs is on my short list.

Thanks for pointing out where I was stuck in my ways.

I'll be the dissenting voice to say, no you don't need it. If you keep things updated and follow best practices you should be fine. Unless you piss off a state actor.

That being said, it would be wise to have 2fa on everything if you can.

What alternative to you suggest?

Ideally I'd like to move in that direction. I have some Ansible roles that I use for initial configuration but I haven't kept current. I'd like to get better about that as part of this project.

I'm just starting to dip my toes in docker. Most of my stuff is kvm and physical.

Due to a desire to get off Ubuntu I have a goal to rebuild everything on Debian and/or containers and would like to document as I go.

@orca@orcas.enjoying.yachts

Link to low cost VPS hosting offers: https://quex.cc/post/29783

My reverse proxy can do automated renewal just fine. The SMTP relay requires a DNS challenge that is manual.

I found out about it here. There was a thread a few weeks back. Search for racknerds in this community.

I think they're still running their 4th of July special.

Damn. I paid racknerds $25/yr for 2cpu and 2.5gb of RAM. Runs great, and rather lean to be honest.

I started mine at home but quickly came to the same decision as you and moved it out to a VPS.

I use Amazon SES for mail relay.

Welcome to the club.

That is quite the diagram. Thanks for sharing.

I'm kinda like that too. But I'm redoing my setup and I wanted to try and redo the way I document things. Or at least try.

I'd like to document what I have, and what I need to do it spin it back up with minimal effort should I need to. Esp, anything that's unique to my setup or that I did to work around a problem. I've shot myself in the foot many a time where I go back to something 6 months later and I've long since forgotten what I did. So, if it's not commented in a config I'm figuring it out all over again.

That makes a lot of sense.

I won't argue. I do think OneNote is a good product and I use it a lot for work.

I think I looked at netbox a while back. I may circle back to it for the actual physical layer. If I remember the ipam didn't include network scanning tho.

I played with GLPI just long enough to realize that was way more than I wanted or needed. I'd like to track changes but I don't want to run a full ticketing/chg mgmt system to do it.

DokuWiki is a name I haven't heard in a long time.