🐶🔥 This is fine.
 
 
Go to file
michael d300f534b3 motds 2023-09-30 14:46:08 -07:00
backup doc update 2023-07-27 23:50:53 -07:00
cuddlefish motds 2023-09-30 14:46:08 -07:00
rocktiplex motds 2023-09-30 14:46:08 -07:00
thonkpad motds 2023-09-30 14:46:08 -07:00
.gitignore Merge remote-tracking branch 'origin/cuddlefish-local' 2023-06-25 09:24:41 -07:00
README.md update hostlist 2023-09-28 22:55:56 -07:00

README.md

Michael's Homelab

Hosts

Host OS Services
Cuddlefish CentOS Gitea
Thonkpad (portable) Fedora Misc. Projects
Rocktiplex Rocky Linux Fathom, Status Proxy, RSF Analytics
Cloud8 (under repair) Rocky Linux NextCloud
Backup (off-site) Ubuntu Backup Storage

SELinux Notes

Docker volumes violate some SELinux policies. Use setenforce 0 to disable it temporarily, or make the following permanent change to /etc/sysconfig/selinux:

# SELINUX=enforcing
SELINUX=permissive

Dockerized Cloudflared Notes

If a docker-compose file looks like this:

services:
  gitea-server:
    image: gitea/gitea:1.19.3
    ...
  gitea-cloudflared:
    image: cloudflare/cloudflared
    ...

Then in this case the name of the target service is gitea-server, and (per Docker's networking shenanigans), should be specified directly by service name, e.g.

https://git.michaellisano.com -> http://gitea-server:3000

Backup Decryption Notes

Everything is encrypted with age.

All keys are generated using age-keygen and stored in a text file, e.g.

backup-key.txt

# created: 2023-06-24T18:01:36-07:00
# public key: age12345...
AGE-SECRET-KEY-xyz123...

Decrypting a file:

age -d -i backup-key.txt -o NAME.tar.gz NAME.tar.gz.enc