Does it though? I had a similar setup in the past, but I did not feel good with it. If your first backup corrupts that corruption is then synced to your remote location. Since then I have two separate backup runs for local and remote. But restic as well with resticprofile. Remote is a SFTP server. For restic I am using the rclone backend for SFTP since I had some connection issues with the internal SFTP backend (on connection resets it would just abort and not try to reconnect, but I think it got improved since then)
I only do automated copy to B2 from the local archive, no automated sync, which as far as I understand should be non-destructive with versioning enabled.
If I need to prune, etc. I run will manually sync and then immediately restic check --read-data from a fast VPS to verify B2 version afterwards.
I setup a script to backup my lvm volumes with kopia. About to purchase some cloud storage to send it off site. Been running for a while de duplication working great. Encryption working as far as I can tell. The sync to other repo option was the main seller for me.
Daily backup to backblaze b2 and also to local storage with kopia. Its been running for a year I think, no issues at all. I didnt need a real backup yet, just did some restore tests so far
Nothing aside from losing any traffic if people don’t know the IP address directly to the server. All a domain does is redirect traffic to the website with an easy to remember name.
The domain is pretty important to Lemmy. If you lose control of it, your instance is effectively dead since the federation will not recognize your traffic until you get the domain back. There’s no way to change the domain of an instance so you’d have to start from scratch.
I started out with borg. Basically had no problems with it. Then i moved to Restic. For the past few years i am using it, i never experienced any issue with it. Can only recommend Restic.
It could be an issue with the codecs (browsers are usually pretty limited in what they support). You could try to use a client like Jellyfin Media Player instead. It bundles libmpv, so it plays almost any video format there is.
Back in the day I bought a fridge freezer combo, second hand, no handles. Used to be a built in model. As handles I used two magnets from full height drives, they were ludicrously strong and shaped like a little bit like a handle.
Full height drives were 3.25" high for those who are wondering.
Do not try to host outbound mail on residential IP blocks, delivery will be really bad. Cheap VPS is same story. You best bet is VPS from some not well know provider, they may be avoid to be in blacklist in M$ and Google. Inbound mail is fine anywhere as so long as you can have port 25 open. DDNS works too.
So far so good. The URL is correct, because its the external address. You also don’t need to publish both http and https ports. I only map external https to internal http but you can do https to https. No serious modern browser tries http first and because I always force https anyways, it doesn’t need to be public. Only the reverse proxy may need it, for Let’s Encrypt.
Both UDP aren’t needed for public access. I only have mapped 8096 to my reverse proxy and it works.
Check out the “Open Source Security Podcast” with Kurt Siegfried and Josh Bressers. It’s not about specifics so much as how to build a mindset around security for IOT and hosting, generally dealing with opensource offerings.
I believe the UDP ports are for discovery on your local network so no need to handle them with your reverse proxy. If you’ve got them passed through docker your local devices should pick them up.
They’re also not required since you can always just enter the address manually. I don’t bother passing them into my container.
selfhosted
Active
This magazine is from a federated server and may be incomplete. Browse more on the original instance.