• 0 Posts
  • 17 Comments
Joined 2 years ago
cake
Cake day: June 5th, 2023

help-circle







  • Nis@feddit.dktoAsklemmy@lemmy.mlPassword Managers
    link
    fedilink
    arrow-up
    3
    ·
    2 months ago

    I do selfhost everything I can, but have chosen not to do that with my passwords. It feels to much all-eggs-in-one-basket-y.

    1Password also holds my SSH keys and acts as an ssh-agent on most systems, and I also just found out that you can get secrets from your 1Password vault in Python, which means my PyInfra scripts can use it as well.




  • Nis@feddit.dktoSelfhosted@lemmy.worldPodman rootless and ufw
    link
    fedilink
    English
    arrow-up
    7
    ·
    edit-2
    2 months ago

    Does Podman actually open the ports like Docker do? I was of the impression it did not. But it’s entirely possible that I might be wrong.

    I would be disappointed if it did. I’m moving to Podman as well just because of the firewall issue in Docker.

    Edit: After some searching I’m convinced Podman does not mess with the firewall unless instructed to do so. Have you tested that the ports are actually opened up?






  • As soon as someone else has access to the hardware, assume someone else has access to the data. Depending on your threat model this might be acceptable. If you just don’t want <INSERT GENERIC EVIL BILLIONAIRE> snooping, I’d say a VPS is a perfectly valid solution.

    I use a dedicated server, but in this regard it is similar to a VPS, and I carefully consider what kind of data I put on it. I wouldn’t put very private data on there. Simply because I see no need for it to be there.