zlacker

[return to "Be a property owner and not a renter on the internet"]
1. sshine+I8[view] [source] 2025-01-03 02:36:47
>>dend+(OP)
tl;dr:

  - Don't depend on other people's software services.
  - Buy a domain and host your own website.
  - Don't pick a sketchy TLD or registrar.
  - Mailing lists beat social media accounts.
  - It's okay to depend on a cloud.
I had the belief that the article was going to say the exact opposite wrt. cloud hosting. You're literally renting space, and if your stuff gets any heat, your cloud provider may simply shut you down without a trial.

Even if you host your own server on your own legal property, most people don't have AS-numbers and peering agreements, so ultimately on the internet most people rent something.

◧◩
2. lyleja+na[view] [source] 2025-01-03 02:49:42
>>sshine+I8
I expected him to mention colocation. Kids these days. shakes his cane.
◧◩◪
3. rmoriz+Fd[view] [source] 2025-01-03 03:17:41
>>lyleja+na
A homelab with an useable uplink can be sufficient for many services like blog,DNS, mail. I have 3 Lenovo ThinkCentre Mini PCs running Proxmox VE in HA mode off my basement. Picture at https://devops.science/
◧◩◪◨
4. sobkas+je[view] [source] 2025-01-03 03:24:06
>>rmoriz+Fd
> A homelab with an useable uplink can be sufficient for many services like blog, DNS, mail.

I always felt like you are painting target on your homelab when you allow outside access.

◧◩◪◨⬒
5. dend+Rg[view] [source] 2025-01-03 03:45:38
>>sobkas+je
You do. That's why I wouldn't recommend it to anyone unless they absolutely know what they're doing. Can't tell you how many friends I had to have a talk with who had plain vanilla port forwarding done on their home router, exposing their entire home network to the web.

Nowadays, I recommend them use Tailscale as an out-of-the-box Wireguard-based VPN to safely connect to their home servers from remote locations.

◧◩◪◨⬒⬓
6. rmoriz+yR[view] [source] 2025-01-03 10:39:21
>>dend+Rg
To be honest, as an IT professional you should have basic knowledge about firewalls. nft/nftables is a big improvement in firewall usability for Linux, I also know many homelab people using OPNSense or even DD-WRT for that job. I prefer plain Linux (distro of your choice, I don't judge) and nft.

Tutorials:

- https://wiki.gentoo.org/wiki/Nftables/Examples

- https://wiki.archlinux.org/title/Nftables

- and probably the best advanced tutorial is a video series https://www.youtube.com/watch?v=K8JPwbcNy_0&list=PLUF494I4KU...

TL;DR One should know firewall fundamentals, nft/nftables as successor of iptables is very convenient to use, a single config document instead of interactiving with 100 cli commands which have to be in a specific order.

[go to top]