I have now accepted the PR from @sunaurus@lemm.ee :) The changes are rolling out and the crawlers are crawling hard 24/7 again.
Sorry for the couple week delay, hit my up here next time :D
I have now accepted the PR from @sunaurus@lemm.ee :) The changes are rolling out and the crawlers are crawling hard 24/7 again.
Sorry for the couple week delay, hit my up here next time :D
Right, I’ve calmed down and had a read. I did notice the instance count reducing. 😅 It makes sense .19 instances can’t be crawlel. I’ll see about the PR tonight
Thanks for pointing it me, I didn’t know about this otherwise 🤣
… I can just update it. I’ll check the PR today…
It still works no? What’s wrong if with it 😆
I’ve moved a couple of domains to dnssec and it’s great, simple DNS.
Yeah the whole app is really responsive, works great on minimal resources. Excellent for sharing hikes and trails!
Have you seen owntracks? They have client apps too.
Same! Two zpools on one Debian VM, shares NFS etc for everything else. I pass through PCIe sata cards to the VM, too.
Still does nothing when scanning the entire ipv4 address space achievable so quickly. You can also use services like shodan to find vulnerable services on any ports.
Use SSH keys, stay upgraded. Make management services (SSH, RDP, admin services) accessible only via VPN (WireGuard). Only expose 80 and 443 to the internet, if necessary.
Never heard of DeSEC before, but it looks damn cool! Been looking to get away from CloudFlare.
Not open source… Kinda trash move.
Thanks for sharing my website! I’m glad people find it useful 😁
Haha, that’s cause the url he copied included his search 😂 https://lemmyverse.net/communities?query=trees&order=subscribers
That’s just how they work. They terminate SSL, and then connect to your source server as a client, this gives them access to read anything submitted to your or any other sites they manage in the clear.
Your did the math! 😁
“for no reason” is laughable. It’s a highly polished app that’s been in development for over 10 years.
6 Containers for one application … And I thought the original Docker setup was annoying. Why include SSL stuff and a reverse proxy? I am pretty sure most people already have that set up.
That’s because each container has a different set of responsibilities. ie. a Database container doesn’t need Rust installed, the database container should not need to go down, even when you upgrade the Lemmy/LemmyUI containers.
Second to this is how Lemmy is distributed - as multiple containers, one for the UI code and one for the backend/API, while pictrs is a completely different project to Lemmy. This is all pretty standard practice, though I agree Lemmy could probably be a single container (combining API+Frontend). The benefit of this is the face you can upgrade just the UI or API at a time, or accept UI changes before upgrading your API.
The original mess is poorly documented, and results in inconsistent results due to how they use multiple levels of nginx reverse proxy, and the fact you need to do a bunch of configuration on top of just installing their repo.
In the instructions, you will see I’ve documented a way to run other containers under Traefik, or you could run it under an existing Traefik reverse proxy installation (which is what I do!)
It reads like you’ve not familiar with Traefik, or how modern stacks fit together. The amount of containers is not the issue, and building a modern service as a single container that bundles the Database and pictrs is not really even possible, or desired (since you might want to run multiple frontend containers to handle more load, and scale the backend seperately)
Also, if you read the title above where you read the "suggestion for rm’in the volume is under “I fucked up - I want to wipe all data and start again” :) That’s demonstrates where the data is stored and how to remove it completely if you want to start again - This is a common practice when developing/testing containers.
Happy to field any further questions about it :)
No problems mate :) As long as I’m still paying for hosting I’ll attempt to keep it updated.
I sometimes go awol and work on other stuff, pinging me here usually works 😊
I’m also glad that people still use and find the site valuable