

If clouds are far away, then self-hosting could be “fog”? Clouds at ground level that you walk around in.


If clouds are far away, then self-hosting could be “fog”? Clouds at ground level that you walk around in.
Interesting, do you remember which didn’t work? I recently set up a simple service (navidrome) as rootless podman with an ansible script, but it was… there were some hoops to jump through, mainly with the uid/gid and machinectl to get it to work.
Always nice to see podman used well! Do you have a dedicated user or is it rootful?
Almost 20 years ago, Theo de Raadt (founder of OpenBSD) said: “you think that a worldwide collection of software engineers who can’t write operating systems or applications without security holes, can then turn around and suddenly write virtualization layers without security holes.” I would like to think that we’ve figured out the security holes since then, but… you know…
My general advice at this point is, if you haven’t already, to document the setup for your future self. It quickly gets out of hand with the amount of passwords, credentials, certificates, firewall settings, docker containers left and right, configs, workarounds, custom shell scripts, ansible scripts, git repos, backup locations and passwords, etc. Right now everything is fresh in your mind, but 6 months from now you may need to restore from a backup or an OS upgrade goes wrong, and then you’ll appreciate being able to remember the details.