eupolicy.social is one of the many independent Mastodon servers you can use to participate in the fediverse.
This Mastodon server is a friendly and respectful discussion space for people working in areas related to EU policy. When you request to create an account, please tell us something about you.

Server stats:

218
active users

#stormux

0 posts0 participants0 posts today
Devin Prater :blind:<p>Okay, so some good news for once. I got the <a href="https://tweesecake.social/tags/stormux" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>stormux</span></a> Raspberry Pi distribution running on a Pi 400. Makes me want to buy a Pi500 later on, but I think once my BTSpeak gets here I'll be all enamored with it. Anyway, it works. The Fenrir key being the Super key takes a second to get used to, but I'll deal with it. I'd so much rather it be the capslock key.</p><p>So, my "Linux in bed" dream is a reality. Of course, with the BTSpeak it'll be even better. But Stormux isn't bad, and even comes with a getting started utility for connecting to Wi-fi, setting location, filling out the SD card space, all that.</p><p><a href="https://stormux.org/" rel="nofollow noopener noreferrer" translate="no" target="_blank"><span class="invisible">https://</span><span class="">stormux.org/</span><span class="invisible"></span></a></p><p><a href="https://tweesecake.social/tags/stormux" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>stormux</span></a> <a href="https://tweesecake.social/tags/foss" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>foss</span></a> <a href="https://tweesecake.social/tags/RaspberryPi" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>RaspberryPi</span></a> <a href="https://tweesecake.social/tags/linux" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>linux</span></a></p>
Lanie Molinar Carmelo<p>To people who use <a href="https://allovertheplace.ca/tags/HomeAssistant" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>HomeAssistant</span></a>, do you need <a href="https://allovertheplace.ca/tags/NodeRed" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>NodeRed</span></a> to get the most out of it? Found <a href="https://pimylifeup.com/home-assistant-docker-compose/" rel="nofollow noopener noreferrer" target="_blank">this guide to setting up HomeAssistant in #Docker</a> that helped me get both installed, but Node-Red's interface is pretty much unusable with a <a href="https://allovertheplace.ca/tags/ScreenReader" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>ScreenReader</span></a>, and I'm thinking of uninstalling it.<br><a href="https://allovertheplace.ca/tags/SelfHosting" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>SelfHosting</span></a> <a href="https://allovertheplace.ca/tags/SelfHosted" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>SelfHosted</span></a> <a href="https://allovertheplace.ca/tags/RaspberryPi" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>RaspberryPi</span></a> <a href="https://allovertheplace.ca/tags/RaspberryPi500" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>RaspberryPi500</span></a> <a href="https://allovertheplace.ca/tags/RPi" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>RPi</span></a> <a href="https://allovertheplace.ca/tags/RPi500" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>RPi500</span></a> <a href="https://allovertheplace.ca/tags/Linux" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Linux</span></a> <a href="https://allovertheplace.ca/tags/Stormux" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Stormux</span></a> <a href="https://allovertheplace.ca/tags/ArchLinuxARM" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>ArchLinuxARM</span></a> <br><span class="h-card" translate="no"><a href="https://a.gup.pe/u/selfhosting" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@<span>selfhosting</span></a></span> <span class="h-card" translate="no"><a href="https://lemmy.ml/c/selfhost" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@<span>selfhost</span></a></span> <span class="h-card" translate="no"><a href="https://lemmy.world/c/selfhosted" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@<span>selfhosted</span></a></span></p>
Lanie Molinar Carmelo<p>I'm curious to hear what others are <a href="https://allovertheplace.ca/tags/SelfHosting" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>SelfHosting</span></a>! Here's my current setup:</p><p><strong>Hardware &amp; OS</strong></p><ul><li><strong>Hardware:</strong> <a href="https://allovertheplace.ca/tags/RaspberryPi500" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>RaspberryPi500</span></a> (8 GB RAM, 512 GB SD card) <a href="https://allovertheplace.ca/tags/RPi" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>RPi</span></a> <a href="https://allovertheplace.ca/tags/RPi500" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>RPi500</span></a> <a href="https://allovertheplace.ca/tags/SingleBoardComputers" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>SingleBoardComputers</span></a> <a href="https://allovertheplace.ca/tags/HomeLab" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>HomeLab</span></a></li><li><strong>OS:</strong> <a href="https://allovertheplace.ca/tags/Stormux" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Stormux</span></a>, an accessible <a href="https://allovertheplace.ca/tags/Linux" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Linux</span></a> distro based on <a href="https://allovertheplace.ca/tags/ArchLinuxARM" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>ArchLinuxARM</span></a> <a href="https://allovertheplace.ca/tags/LinuxAccessibility" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>LinuxAccessibility</span></a> <a href="https://allovertheplace.ca/tags/AccessibleTech" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>AccessibleTech</span></a></li></ul><p><strong>Infrastructure &amp; Networking</strong></p><ul><li><strong>Dashboard:</strong> <a href="https://allovertheplace.ca/tags/Glance" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Glance</span></a> (<a href="https://allovertheplace.ca/tags/Docker" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Docker</span></a>) <a href="https://allovertheplace.ca/tags/DockerApps" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>DockerApps</span></a></li><li><strong>Reverse Proxy:</strong> <a href="https://allovertheplace.ca/tags/Caddy" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Caddy</span></a></li><li><strong>DNS:</strong> <a href="https://allovertheplace.ca/tags/Cloudflare" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Cloudflare</span></a></li><li><strong>Domain Registrar:</strong> <a href="https://allovertheplace.ca/tags/Porkbun" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Porkbun</span></a></li><li><strong>Networking &amp; Remote Access:</strong> <a href="https://allovertheplace.ca/tags/Tailscale" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Tailscale</span></a> (non-Docker), love its SSH agent and magic DNS features. <a href="https://allovertheplace.ca/tags/NetworkSecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>NetworkSecurity</span></a></li></ul><p><strong>Security &amp; Monitoring</strong></p><ul><li><strong>Ad Blocking:</strong> <a href="https://allovertheplace.ca/tags/AdGuardHome" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>AdGuardHome</span></a> (non-Docker). Previously used PiHole but find AdGuardHome slightly faster. <a href="https://allovertheplace.ca/tags/PrivacyTools" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>PrivacyTools</span></a></li><li><strong>Server Monitoring:</strong> <a href="https://allovertheplace.ca/tags/Beszel" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Beszel</span></a> (non-Docker). Tried Grafana/Prometheus/Alertmanager (accessible but overkill) and Netdata (poor screen reader accessibility). Beszel isn't perfect but best compromise so far. <a href="https://allovertheplace.ca/tags/ServerMonitoring" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>ServerMonitoring</span></a></li><li><strong>Server Overview:</strong> <a href="https://allovertheplace.ca/tags/Cockpit" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Cockpit</span></a> (non-Docker)</li><li><strong>Security Tools:</strong> <a href="https://allovertheplace.ca/tags/Fail2ban" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Fail2ban</span></a>, <a href="https://allovertheplace.ca/tags/FirewallD" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>FirewallD</span></a>, <a href="https://allovertheplace.ca/tags/ClamAV" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>ClamAV</span></a>, and <a href="https://allovertheplace.ca/tags/Rkhunter" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Rkhunter</span></a> (non-Docker). Tried CrowdSec but couldn't get it working on Stormux. <a href="https://allovertheplace.ca/tags/CyberSecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>CyberSecurity</span></a></li><li><strong>Service Uptime Monitoring:</strong> <a href="https://allovertheplace.ca/tags/UptimeKuma" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>UptimeKuma</span></a> (Docker), accessible and easy to use. <a href="https://allovertheplace.ca/tags/MonitoringTools" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>MonitoringTools</span></a></li></ul><p><strong>Authentication &amp; Identity Management</strong></p><ul><li><strong>Authelia</strong> (Docker): Just set this up for two-factor authentication and single sign-on. Seems to be working well so far!<br></li><li><strong>LLDAP</strong> (Docker): Lightweight LDAP server for managing authentication. Also seems to be working pretty well!<br><a href="https://allovertheplace.ca/tags/AuthenticationTools" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>AuthenticationTools</span></a> <a href="https://allovertheplace.ca/tags/IdentityManagement" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>IdentityManagement</span></a></li></ul><p><strong>Productivity &amp; Personal Tools</strong></p><ul><li><strong>Docker Management:</strong> <a href="https://allovertheplace.ca/tags/Dockge" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Dockge</span></a> (Docker). More accessible than Portainer; main issue is built-in terminal isn't readable with screen readers. <a href="https://allovertheplace.ca/tags/DockerCompose" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>DockerCompose</span></a></li><li><strong>Docker Logs Viewer:</strong> <a href="https://allovertheplace.ca/tags/Dozzle" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Dozzle</span></a> (Docker), great web interface and easy searching.</li><li><strong>Git Hosting:</strong> <a href="https://allovertheplace.ca/tags/Forgejo" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Forgejo</span></a> (non-Docker), my personal Git server. <a href="https://allovertheplace.ca/tags/GitServer" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>GitServer</span></a></li><li><strong>Backups:</strong> <a href="https://allovertheplace.ca/tags/IDrive" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>IDrive</span></a> (non-Docker), backs up all my devices easily. <a href="https://allovertheplace.ca/tags/BackupSolutions" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>BackupSolutions</span></a></li><li><strong>Notes:</strong> <a href="https://allovertheplace.ca/tags/Joplin" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Joplin</span></a> server (Docker). Accessibility improving; love the VSCode extension. <a href="https://allovertheplace.ca/tags/NoteTakingApps" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>NoteTakingApps</span></a></li><li><strong>Bookmarks:</strong> <a href="https://allovertheplace.ca/tags/Linkding" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Linkding</span></a> (Docker). Accessible bookmark manager with good browser extension support. <a href="https://allovertheplace.ca/tags/BookmarkManager" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>BookmarkManager</span></a></li><li><strong>Recipes:</strong> <a href="https://allovertheplace.ca/tags/Mealie" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Mealie</span></a> (Docker), starting to learn cooking! 🍳📖 &nbsp;<a href="https://allovertheplace.ca/tags/CookingApps" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>CookingApps</span></a></li><li><strong>RSS Feeds:</strong> <a href="https://allovertheplace.ca/tags/Miniflux" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Miniflux</span></a> (non-Docker), excellent accessibility. Originally wanted better podcast support but other options had major accessibility issues.&nbsp;<a href="https://allovertheplace.ca/tags/RSSReader" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>RSSReader</span></a></li><li><strong>Automation &amp; Workflows:</strong>&nbsp;<a href="https://allovertheplace.ca/tags/N8N" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>N8N</span></a>&nbsp;(Docker). Haven't explored deeply yet—open to ideas!&nbsp;<a href="https://allovertheplace.ca/tags/AutomationTools" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>AutomationTools</span></a>&nbsp;<a href="https://allovertheplace.ca/tags/WorkflowAutomation" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>WorkflowAutomation</span></a></li><li><strong>Pastebin Service:</strong>&nbsp;<a href="https://allovertheplace.ca/tags/PrivateBin" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>PrivateBin</span></a>&nbsp;(non-Docker). Considering alternatives or CLI tool for easier console access.&nbsp;<a href="https://allovertheplace.ca/tags/PastebinAlternative" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>PastebinAlternative</span></a></li><li><strong>File Sharing &amp; Editing:</strong>&nbsp;<a href="https://allovertheplace.ca/tags/Samba" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Samba</span></a>&nbsp;(non-Docker), easy file management from my Windows 11 mini PC.&nbsp;<a href="https://allovertheplace.ca/tags/FileSharing" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>FileSharing</span></a>&nbsp;<a href="https://allovertheplace.ca/tags/Windows11" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Windows11</span></a></li><li><strong>Search Engine:</strong>&nbsp;<a href="https://allovertheplace.ca/tags/SearXNG" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>SearXNG</span></a>&nbsp;(non-Docker), accessible and searches multiple engines at once.&nbsp;<a href="https://allovertheplace.ca/tags/PrivacySearchEngine" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>PrivacySearchEngine</span></a></li><li><strong>IRC Client:</strong>&nbsp;<a href="https://allovertheplace.ca/tags/TheLounge" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>TheLounge</span></a>&nbsp;(non-Docker). Some accessibility issues but best I've found so far for always-connected IRC.&nbsp;<a href="https://allovertheplace.ca/tags/IRCClient" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>IRCClient</span></a></li><li><strong>Read Later Service:</strong>&nbsp;<a href="https://allovertheplace.ca/tags/Wallabag" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Wallabag</span></a>&nbsp;(Docker). Biggest issue is Wallabagger Chrome extension doesn't work for me yet.&nbsp;<a href="https://allovertheplace.ca/tags/ReadItLater" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>ReadItLater</span></a></li></ul><p><strong>Notifications &amp; Development Workflow</strong></p><ul><li>Notifications via:&nbsp;<a href="https://allovertheplace.ca/tags/Ntfy" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Ntfy</span></a>&nbsp;(Docker) and Zoho's ZeptoMail (<a href="https://allovertheplace.ca/tags/Zoho" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Zoho</span></a>)</li><li>Development Environment: Mostly using VSCode connected to my server via Remote-SSH extension.&nbsp;<a href="https://allovertheplace.ca/tags/VSCodeRemote" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>VSCodeRemote</span></a></li></ul><p><strong>Accessibility Focus ♿️🖥️</strong></p><p>Accessibility heavily influences my choices—I use a screen reader full-time (<a href="https://allovertheplace.ca/tags/ScreenReader" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>ScreenReader</span></a>), so I prioritize services usable without sight (<a href="https://allovertheplace.ca/tags/InclusiveDesign" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>InclusiveDesign</span></a>,&nbsp;<a href="https://allovertheplace.ca/tags/DigitalAccessibility" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>DigitalAccessibility</span></a>). Always open to discussing accessibility experiences or recommendations!</p><p>I've also experimented with:</p><ul><li>Ollama (<a href="https://allovertheplace.ca/tags/Ollama" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Ollama</span></a>): Not enough RAM on my Pi.</li><li>Habit trackers like Beaver Habit Tracker (<a href="https://allovertheplace.ca/tags/HabitTracking" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>HabitTracking</span></a>): Accessibility issues made it unusable for me.</li></ul><p>I don't really have a media collection, so no Plex or Jellyfin here (<a href="https://allovertheplace.ca/tags/MediaServer" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>MediaServer</span></a>)—but I'm always open to suggestions! I've gotten a bit addicted to exploring new self-hosted services! 😄</p><p>What's your setup like? Any cool services you'd recommend I try?</p><p><a href="https://allovertheplace.ca/tags/SelfHosted" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>SelfHosted</span></a>&nbsp;<a href="https://allovertheplace.ca/tags/LinuxSelfHost" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>LinuxSelfHost</span></a>&nbsp;<a href="https://allovertheplace.ca/tags/OpenSource" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>OpenSource</span></a>&nbsp;<a href="https://allovertheplace.ca/tags/TechCommunity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>TechCommunity</span></a>&nbsp;<a href="https://allovertheplace.ca/tags/FOSS" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>FOSS</span></a>&nbsp;<a href="https://allovertheplace.ca/tags/TechDIY" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>TechDIY</span></a></p><p><span class="h-card" translate="no"><a href="https://lemmy.ml/c/selfhost" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@<span>selfhost</span></a></span> <span class="h-card" translate="no"><a href="https://lemmy.world/c/selfhosted" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@<span>selfhosted</span></a></span> <span class="h-card" translate="no"><a href="https://a.gup.pe/u/selfhosting" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@<span>selfhosting</span></a></span></p>
Lanie Molinar Carmelo<p><strong>🚨 Help Needed: <a href="https://allovertheplace.ca/tags/CORS" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>CORS</span></a> and <a href="https://allovertheplace.ca/tags/Cloudflare" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Cloudflare</span></a> Access Issues with <a href="https://allovertheplace.ca/tags/Nextflux" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Nextflux</span></a> + <a href="https://allovertheplace.ca/tags/MiniFlux" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>MiniFlux</span></a> Setup 🚨</strong></p><p>Hi everyone! I’m struggling with a <a href="https://allovertheplace.ca/tags/SelfHosted" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>SelfHosted</span></a> setup and could really use some advice from the self-hosting community. Lol I've been trying to figure this out for hours with no luck. Here’s my situation:</p><p><strong><strong>Setup</strong></strong></p><ul><li><strong>MiniFlux</strong>: Running in <a href="https://allovertheplace.ca/tags/Docker" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Docker</span></a> on a <a href="https://allovertheplace.ca/tags/RaspberryPi500" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>RaspberryPi500</span></a> (<a href="https://allovertheplace.ca/tags/Stormux" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Stormux</span></a>, based on <a href="https://allovertheplace.ca/tags/ArchLinuxARM" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>ArchLinuxARM</span></a>).</li><li><strong>Nextflux</strong>: Hosted on Cloudflare Pages.</li><li><strong>Reverse Proxy</strong>: <a href="https://allovertheplace.ca/tags/Caddy" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Caddy</span></a> (installed via AUR).</li><li><strong>Cloudflare Access</strong>: Enabled for security and SSO.</li><li><strong>Cloudflared</strong>: Also installed via AUR.</li><li><strong>CORS Settings in Cloudflare Access</strong>: Configured to allow all origins, methods, and headers.</li></ul><p><strong><strong>What’s Working</strong></strong></p><ul><li>MiniFlux is accessible from my home network after removing restrictive CORS settings in both Caddy and MiniFlux.</li><li>Nextflux is properly deployed on Cloudflare Pages.</li></ul><p><strong><strong>The Problem</strong></strong></p><p>Nextflux cannot connect to MiniFlux due to persistent CORS errors and authentication issues with Cloudflare Access. Here are the errors I’m seeing in the browser console:</p><ol><li><strong>CORS Error</strong>:<code>Access to fetch at 'https://rss.laniecarmelo.tech/v1/me' from origin 'https://nextflux.laniecarmelo.tech' has been blocked by CORS policy: No 'Access-Control-Allow-Origin' header is present on the requested resource.</code></li><li><p><strong>Cloudflare Access Redirection</strong>:</p><pre><code>Request redirected to 'https://lifeofararebird.cloudflareaccess.com/cdn-cgi/access/login/rss.laniecarmelo.tech'.<br></code></pre></li><li><p><strong>Failed to Fetch</strong>:</p><pre><code>Failed to fetch: TypeError: Failed to fetch.<br></code></pre></li></ol><p><strong><strong>What I’ve Tried</strong></strong></p><ol><li><p><strong>Service Token Authentication</strong>:</p><ul><li>Generated a service token in Cloudflare Access for Nextflux.</li><li>Added <code>CF-Access-Client-Id</code> and <code>CF-Access-Client-Secret</code> headers in Caddy for <code>rss.laniecarmelo.tech</code>.</li><li>Updated Cloudflare Access policies to include a bypass rule for this service token.</li></ul></li><li><p><strong>CORS Configuration</strong>:</p><ul><li>Tried permissive settings (<code>Access-Control-Allow-Origin: *</code>) in both Caddy and MiniFlux.</li><li>Configured Cloudflare Access CORS settings to allow all origins, methods, and headers.</li></ul></li><li><p><strong>Policy Adjustments</strong>:</p><ul><li>Created a bypass policy for my home IP range and public IP.</li><li>Added an "Allow" policy for authenticated users via email/login methods.</li></ul></li><li><p><strong>Debugging Logs</strong>:</p><ul><li>Checked Cloudflared logs, which show requests being blocked due to missing access tokens (<code>AccessJWTValidator</code> errors).</li></ul></li></ol><p><strong><strong>Current State</strong></strong></p><p>Despite these efforts:</p><ul><li>Requests from Nextflux are still being blocked by Cloudflare Access or failing due to CORS issues.</li><li>The browser console consistently shows "No 'Access-Control-Allow-Origin' header" errors.</li></ul><p><strong><strong>Goals</strong></strong></p><ol><li>Allow Nextflux (hosted on Cloudflare Pages) to connect seamlessly to MiniFlux (behind Cloudflare Access).</li><li>Maintain secure access to MiniFlux for other devices (e.g., my home network or mobile devices).</li></ol><p><strong><strong>My Environment</strong></strong></p><ul><li>Raspberry Pi 500 running Arch Linux ARM.</li><li>Both Caddy and Cloudflared are installed via AUR packages.</li><li>MiniFlux is running in Docker with the following environment variables:<code>CLOUDFLARE_SERVICE_AUTH_ENABLED=trueCLOUDFLARE_CLIENT_ID=&lt;client-id&gt;CLOUDFLARE_CLIENT_SECRET=&lt;client-secret&gt;</code></li></ul><p><strong><strong>Relevant Logs</strong></strong></p><p>From <code>cloudflared</code>:</p><pre><code>ERR error="request filtered by middleware handler (AccessJWTValidator) due to: no access token in request"<br></code></pre><p>From the browser console:</p><pre><code>Access to fetch at 'https://rss.laniecarmelo.tech/v1/me' has been blocked by CORS policy.<br></code></pre><p><strong><strong>Questions</strong></strong></p><ol><li>Is there a better way to configure CORS for this setup?</li><li>Should I be handling authentication differently between Nextflux and MiniFlux?</li><li>How can I ensure that requests from Nextflux include valid access tokens?</li></ol><p>Any help or advice would be greatly appreciated! 🙏</p><p><a href="https://allovertheplace.ca/tags/SelfHosting" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>SelfHosting</span></a> <a href="https://allovertheplace.ca/tags/Cloudflare" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Cloudflare</span></a> <a href="https://allovertheplace.ca/tags/CaddyServer" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>CaddyServer</span></a> <a href="https://allovertheplace.ca/tags/Docker" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Docker</span></a> <a href="https://allovertheplace.ca/tags/RSS" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>RSS</span></a> <a href="https://allovertheplace.ca/tags/CORS" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>CORS</span></a> <a href="https://allovertheplace.ca/tags/Linux" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Linux</span></a> <a href="https://allovertheplace.ca/tags/ArchLinuxARM" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>ArchLinuxARM</span></a> <a href="https://allovertheplace.ca/tags/CloudflarePages" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>CloudflarePages</span></a> <a href="https://allovertheplace.ca/tags/tech" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>tech</span></a> <a href="https://allovertheplace.ca/tags/technology" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>technology</span></a></p>
Lanie Carmelo<p>🌟 Self-Hosting Journey Update! 🌟</p><p>After weeks of work, I'm excited to share my self-hosted setup! 🎉 I'm running everything on a Raspberry Pi 500 with Stormux (Arch Linux ARM-based), 8 GB RAM, and a 512 GB SD card (planning to upgrade to SSD or NAS as soon as I can afford it). Here's what I’ve built so far:</p><p>🔧 Services in Action:<br>- Development: Forgejo, Code-Server, Woodpecker CI <br>- Productivity: Joplin Server, Monica CRM, Homepage dashboard <br>- Monitoring: Prometheus + Alertmanager, Grafana, Netdata, Uptime Kuma <br>- Networking: AdGuardHome + Unbound, Tailscale VPN <br>- Tools: MiniFlux, Linkding, TheLounge <br>- Management: Portainer, Cockpit, Watchtower </p><p>🔒 Security &amp; Access:<br>- Caddy + Cloudflare Zero Trust/Access for reverse proxy &amp; SSO <br>- FirewallD + Fail2ban for extra protection </p><p>📧 Emails Powered by Zoho ZeptoMail: <br>All email-capable services (e.g., Forgejo, Joplin) are configured for reliable notifications. </p><p>💾 Backups: Using IDrive's 5 TB plan for peace of mind. </p><p>This journey has been challenging yet rewarding! 🚀 I'd love to hear your thoughts—especially tips on scaling storage or optimizing performance. Let's chat! 💬</p><p><a href="https://caneandable.social/tags/SelfHosting" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>SelfHosting</span></a> <a href="https://caneandable.social/tags/RaspberryPi" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>RaspberryPi</span></a> <a href="https://caneandable.social/tags/Linux" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Linux</span></a> <a href="https://caneandable.social/tags/ArchLinuxARM" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>ArchLinuxARM</span></a> <a href="https://caneandable.social/tags/Stormux" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Stormux</span></a> <a href="https://caneandable.social/tags/Tech" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Tech</span></a> <a href="https://caneandable.social/tags/OpenSource" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>OpenSource</span></a> <a href="https://caneandable.social/tags/DIYTech" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>DIYTech</span></a> <a href="https://caneandable.social/tags/HomeLab" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>HomeLab</span></a> <a href="https://caneandable.social/tags/CloudComputing" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>CloudComputing</span></a> <a href="https://caneandable.social/tags/AdGuardHome" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>AdGuardHome</span></a> <a href="https://caneandable.social/tags/Grafana" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Grafana</span></a> <a href="https://caneandable.social/tags/Prometheus" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Prometheus</span></a> <a href="https://caneandable.social/tags/CodeServer" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>CodeServer</span></a> <a href="https://caneandable.social/tags/Portainer" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Portainer</span></a> </p><p><span class="h-card" translate="no"><a href="https://lemmy.ml/c/selfhost" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@<span>selfhost</span></a></span> <span class="h-card" translate="no"><a href="https://lemmy.world/c/selfhosted" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@<span>selfhosted</span></a></span> <span class="h-card" translate="no"><a href="https://a.gup.pe/u/selfhosting" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@<span>selfhosting</span></a></span></p>
Lanie Carmelo<p>Hi <a href="https://caneandable.social/tags/SelfHosted" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>SelfHosted</span></a> community. I've figured out a lot of my setup. I now have a new domain, laniesplace.us, just for <a href="https://caneandable.social/tags/HomeServer" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>HomeServer</span></a> stuff. It's set up through Porkbun with Dynu for <a href="https://caneandable.social/tags/DDNS" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>DDNS</span></a>. I've now got <a href="https://caneandable.social/tags/Traefik" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Traefik</span></a>, <a href="https://caneandable.social/tags/TailscaleVPN" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>TailscaleVPN</span></a>, <a href="https://caneandable.social/tags/Linkding" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Linkding</span></a>, <a href="https://caneandable.social/tags/Forgejo" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Forgejo</span></a>, <a href="https://caneandable.social/tags/Dokuwiki" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Dokuwiki</span></a>, Code-Server, <a href="https://caneandable.social/tags/Portainer" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Portainer</span></a>, <a href="https://caneandable.social/tags/Netdata" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Netdata</span></a>, <a href="https://caneandable.social/tags/Watchtower" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Watchtower</span></a>, <a href="https://caneandable.social/tags/Cockpit" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Cockpit</span></a>, <a href="https://caneandable.social/tags/Pihole" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Pihole</span></a>, <a href="https://caneandable.social/tags/MiniFlux" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>MiniFlux</span></a>, <a href="https://caneandable.social/tags/TheLounge" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>TheLounge</span></a>, <a href="https://caneandable.social/tags/Filebrowser" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Filebrowser</span></a>, <a href="https://caneandable.social/tags/UptimeKuma" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>UptimeKuma</span></a>, and the <a href="https://caneandable.social/tags/Homer" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Homer</span></a> dashboard service installed. I'm now trying to set up <a href="https://caneandable.social/tags/Authelia" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Authelia</span></a> so I can have single sign-on to my services. For some, it's working now, but I can't seem to get Linkding to work no matter what I do. This is on a <a href="https://caneandable.social/tags/RaspberryPi" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>RaspberryPi</span></a> 500 with 8 GB RAM and a 512 GB SD card, running <a href="https://caneandable.social/tags/Stormux" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Stormux</span></a>, which is based on <a href="https://caneandable.social/tags/ArchlinuxARM" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>ArchlinuxARM</span></a>. Can anyone help? I'll reply to this post with all my relevant config files in separate posts. What's happening is this: Linkding is supposed to be available at bookmarks.laniesplace.us. When I go there, I see a 401 unauthorized error and a link to sign into Authelia. Once I sign in, though, it redirects back to the page with the 401 error. I've been trying to figure this out for hours with no luck. Files will be in replies to this post.<br><a href="https://caneandable.social/tags/SelfHosting" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>SelfHosting</span></a> <a href="https://caneandable.social/tags/Linux" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Linux</span></a> <a href="https://caneandable.social/tags/HomeLab" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>HomeLab</span></a> <a href="https://caneandable.social/tags/RPi" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>RPi</span></a> <a href="https://caneandable.social/tags/RaspberryPi500" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>RaspberryPi500</span></a> <a href="https://caneandable.social/tags/RPi500" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>RPi500</span></a> <a href="https://caneandable.social/tags/Tech" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Tech</span></a> <a href="https://caneandable.social/tags/Technology" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#<span>Technology</span></a> <br><span class="h-card" translate="no"><a href="https://lemmy.ml/c/selfhost" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@<span>selfhost</span></a></span> <span class="h-card" translate="no"><a href="https://a.gup.pe/u/selfhosting" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@<span>selfhosting</span></a></span> <span class="h-card" translate="no"><a href="https://lemmy.world/c/selfhosted" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@<span>selfhosted</span></a></span> <span class="h-card" translate="no"><a href="https://a.gup.pe/u/linux" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@<span>linux</span></a></span></p>