johntash @ johntash @eviltoast.org

Posts

6

Comments

279

Joined

2 yr. ago

Do micro transactions or even battle pass type things count as subscriptions in the data he's referring to? Or buying subscriptions/passes with in game currency that was purchased with real money?

I think it'd be more appropriate to compare the upfront cost of a game (and the revenue from it) vs additional revenue generated by people who already paid that upfront cost.

The second isn't a bad idea if it's in combination with the first. Then you have an image you can restore with most of your config and you can just restore the rest from the normal backups.

What I do right now is I have a rclone sidecar container that uploads files in a directory every few seconds, and I also have another init sidecar that runs before the main application and downloads those files (incl sqlite dbs) to the normal disk. This works okay but feels pretty clunky and can still result in stuff getting corrupted because I'm just backing up the db files and not using any sqlite commands to actually back up the db to another file that isn't in-use first.

How do you handle a job going from one nomad node to another? Or do you pin jobs like grafana to specific hosts?

Thanks! I'll do some testing over the weekend and see how it goes.

While I'd love to be able to use it for postgres, I figured that wouldn't work out well so probably won't try it any time soon. I do have several apps that use sqlite databases though, do you think those would have any issues? e.g. trilium, ntfy, ghost

The main downside to most of the distributed/clustered storage that I've tried is they always seem to corrupt sqlite db files due to not supporting locking or some other posix feature. Reading through some older github issues, it looks like that is something the dev of seaweedfs fixed hopefully.

Hey, your stack is pretty similar to mine. One thing I recently started testing is Seaweedfs. I saw it listed in your repo too, how are you liking it so far? And do you use it on all of your nodes?

UptimeKuma is great, I use it for the simple "are my services up?" and is what I pay most attention to.

I still use zabbix for finer grained monitors though like checking raid status, smartctl, disk space, temperatures, etc.

I've been trying out librenms with more custom snmp checks too and am considering going that route instead of zabbix in the future

Bookstack is really nice and user friendly. It's probably one of my favorites.

Dokuwiki is simple and stores files in plaintext.

I haven't used wiki.js much but I've heard good things about it too.

Another option if you don't need to share the wiki with anyone would be a note tool like Trilium. It has built in support for stuff like mermaid or excalidraw diagrams.

Don't forget to setup backups for whatever wiki you do go with, and make sure you can restore them when your wiki is broken ;)

That makes sense, it does sound better to keep it within nixos! I've mostly been using nixos to bootstrap servers that run nomad+docker, so beyond the system-level config, I haven't done a lot with additional software yet.

Make sure your backups are solid and can't be deleted or altered.

In addition to normal backups, something like zfs snapshots also help and make it easier to restore if needed.

I think I remember seeing a nextcloud plugin that detects mass changes to a lot of files (like ransomware would cause). Maybe something like that would help?

Also enforce good passwords.

Do you have anything exposed to the internet that also has access to either nextcloud or the server it's running on? If so, lock that down as much as possible too.

Fail2ban or similar would help against brute force attacks.

The VM you're running nextcloud on should be as isolated as you can comfortably make it. E.g. if you have a camera/iot vlan, don't let the VM talk to it. Don't let it initiate outbound connections to any of your devices, etc

You can't entirely protect against zero day vulnerabilities, but you can do a lot to limit the risk and blast radius.

I only recently started using nix and NixOS. How's the update process for nextcloud? Can you use the self updater?

Were you downloading master or the latest release? If you're interested in using it, post the issue you have on their GitHub. The main dev is super helpful

I kinda want to know what a Moonie is, but I'm going to choose to believe it's someone who believes the Nazis have colonized the dark side of the moon and are growing genetically engineered dinosaurs.

I'm not 100% sure, but wasn't ssdnodes one of the companies that offers really cheap deals without actually giving you the specs they say?

E.g. they say 64gb ram, but you actually get a VM with memory ballooning enabled and then your account gets suspended if you consistently use that much ram

For backups, consider using rsync.net. for a server, have you looked at dedicated servers before? OVH has some cheap servers every once in a while that should be better in theory than most VPS.

I've tried lot of different apps, but I think I've settled on Trilium for now.

It doesn't have a great mobile experience, but the web app works fine on mobile. The app in general is super customizable and way easier to write scripts / plugins for.

I'm alright with the games that give you daily rewards but they don't have to be consecutive days. It still benefits people who log in everyday, but you at least aren't entirely missing out

I liked the cyclops because of how big it was. I liked the sea truck too though.

I think my ideal combination would be a big cyclops like vehicle you could use as a mobile base, and then something between a sea truck and sea moth for excursions into more dangerous areas.

I didnt see it recommended yet, UptimeKuma is really simple if you just want to monitor the basics like if a url works or ping, tcp, etc without an agent.

It doesn't do CPU/memory style metrics, but I find myself checking it more often because of how simple it is.

Consider still using sendgrid, AWS ses, or some other service for outbound mail. Incoming email isn't bad, but outgoing email is where your more likely to run into issues with your IP being blacklisted/etc