I have a similar setup. Even for hard drives and slower SSDs on a NAS, 10g has been beneficial. 2.5 gig would probably be sufficient for most of what I do, but even a few years ago when I bought my used mellanox sfp+ cards on eBay it was basically just as cheap to go full 10g (although 2.5 gig Ethernet ports are a bit more common to find built-in these days, so depending on your hardware, that might be a cheaper place to start). But even from a network congestion standpoint, having my own private link to my NAS is really nice.

I’ve dabbled with some monitoring tools in the past, but never really stuck with anything proper for very long. I usually notice issues myself. I self-host my own custom new-tab page that I use across all my devices and between that, Nextcloud clients, and my home-assistant reverse proxy on the same vps, when I do have unexpected downtime, I usually notice within a few minutes.

Other than that I run fail2ban, and have my vps configured to send me a text message/notification whenever someone successfully logs in to a shell via ssh, just in case.

Based on the logs over the years, most bots that try to login try with usernames like admin or root, I have root login disabled for ssh, and the one account that can be used over ssh has a non-obvious username that would also have to be guessed before an attacker could even try passwords, and fail2ban does a good job of blocking ips that fail after a few tries.

If I used containers, I would probably want a way to monitor them, but I personally dislike containers (for myself, I’m not here to “yuck” anyone’s “yum”) and deliberately avoid them.

Just doing a single pass all the same like zeroes, often still leaves the original data recoverable. Doing passes of random data and then zeroing it lowers the chance that the original data can be recovered.

Not saying there aren’t any benefits to docker, migration to a different host distro and dependency conflicts are the big two. But for me they are kinda the only two, I find for what I do it’s just as easy to write a shell script that downloads and unpacks software, and copies my own config files into place than it is to deal with basically doing the same thing, but with docker. I could use ansible or something similar for that, but for me, shell scripts are easier to manage.

Don’t get me wrong, docker has its place. I just find that it gets in my way with it’s own quirks almost as much as it helps in other areas, especially for web apps like Nextcloud that are already just a single folder under the web root and a database.

One additional benefit I get from not using docker, is that I can do more with a lower-powered server, since I’m not running multiple instances of PHP and nginx across multiple containers.

I’ve been self-hosting since before docker and containers were a thing, and even though Nextcloud kinda pushes their container images these days, I still refuse to use them, and use the community archive releases or web installer when reconfiguring my system or setting up a new system to migrate to. Maybe it’s just Nextcloud and the other software I use, or maybe it’s just that I’m not really trying to build scalable server infrastructure with a lot of users, but I generally find that docker causes more problems than it solves, and it does my head in when I see projects that recommend containers as the primary suggested install method.

Totally agree with your assessment of the plugins/apps systems. Feels like you need to stick to official “apps” and hope they don’t get abandoned to have anything close to a good experience because even minor updates can break all the 3rd party apps because of a compatibility check, where you end up waiting for the app developer to release an “update” that only changes the version compatibility number.

Yeah, unless you need the GPIO or the lower power consumption of a Pi, mini PCs are better for 90% of the projects people use single board computers for. Plus you usually get upgradable ram, and more-resilient storage.

I’ve never heard any confirmation of GoDaddy falsely charging a premium for domains, but I definitely experienced that kind of thing with them years ago. Wasn’t really a “few-minutes” thing, but if you left a domain in your cart, within a day or so, it would be sold and available at a premium. Not sure if it was a GoDaddy tactic, or if their data was being sold and used by resellers.

I used to have a self-built, locally-hosted power strip with individual outlet control that served it’s own interface. It was powered by a Model B+. I’ve since moved to home-assistant and zigbee plugs since my self-built solution was pretty bulky, but it was by far my longest lived Pi project.

Looks interesting, although the comments about other git repo services being bloated, complicated, and resource heavy, followed by a paragraph about AI features that have been added, with more planned in the future, seems a touch ironic to me.

I’m using Plex for all my self-hosted streaming (movies, TV, and music.) I’ve tried to move to jellyfin for the video streaming in the past, but for music, I’ve not found anything that works as well as Plex. There are things like Ampache and Navidrome that I have tried, but they didn’t fit my needs that well.

As far as finding new music that I like enough to add to my server, I generally just use YouTube or a paid streaming service. There are technically ways to download songs and albums straight from YouTube, if you are okay with opus format, but I normally try to find FLAC or physical media I can rip to put into my Plex.

Yeah, I’d recommend using rspamd for lower-end hardware over spamassassin. Might be a bit more work to set up, mostly because it’s not as popular, and there are fewer tutorials, but it doesn’t have the overhead from running on perl like spamassassin. That said, while there are people using rspamd on systems with 512MB of ram, they are usually smaller, personal setups that aren’t dealing with hundreds of emails a day.