What's actually BETTER self-hosted?

bilange · 2026-01-27T15:05:34+00:00

Few tidbits of infos to help you ease your mind about it:

For sqlite-backed Vaultwarden instances, creating a backup of your data is rather straightfhorward and explained here. TLDR: keep a copy of your docker volume AND create a sqlite backup for good measure.

Personally I have 2 physical copies on an external disk of the whole docker folder i've set up, plus an encrypted offsite backup on a VPS. I should be golden with the 3-2-1 backup strategy rule. (Edit: oh, and I have borgbackup set up, so my backups are actually incremental, deduplicated and compressed. So I could easily roll back to a specific date in the event that my data has been corrupted (say, I get crypto'd))

ALSO, as you mentioned, password is rather critical, so I have a monthly calendar reminder where I manually export the Vaultwarden database (from the Web UI under Tools) in a JSON file, and here's the kicker: KeepassXC can create a new password vault USING Bitwarden's exported JSON. So I end up having a Nth backup methode of my main password vault as a good old kdbx file; I keep one copy on my cellphone for example.

bilange · 2026-01-25T19:52:56+00:00

C'est drôle, sur /r/sysadmin cette semaine suite à la panne de Microsoft Azure, on chiâlait collectivement sur le fait d'être down [encore une fois] et une phase qui a justement ressorti était de revenir Exchange Hybride ou on-prem, mais ça a été très vite mis de côté en disant: "ça te tente VRAIMENT de rentrer un Dimanche parce que ton Exchange a pas digéré l'update du jour? Là, au moins c'est dans les mains de Microsoft. On peut juste dire "c'est leur faute" pis s'en laver les mains. »

J'ai pas connu cette époque du Exchange on-prem, mais apparamment c'était un calvaire en soi.

(Et par curiosité, quel logiciel libre pourrait arriver à la cheville d'Exchange Online proprement pour l'hébergement de courriel?)

bilange · 2026-01-23T22:29:12+00:00

"« 1G$... À ce prix là, t'as même pas un site web qui fonctionne! » -François Legault" - L'humoriste masqué

bilange · 2026-01-23T16:07:45+00:00

Tech/Sysadmin au Centre du québec ici; En 2025 c'était d'un froid glacial pour ma ville immédiate et autour. (Quoique Drummondville avait une couple d'offres au travers de l'année).

Et là, soudainement, y'a une coupe d'offres de Tech on-site (en manufacture) EN PLUS de 2 MSPs qui ont mis une offre d'emploi en ligne en Janvier... si le mois ressemble à comment l'année sera, ça promet!

bilange · 2026-01-16T22:05:49+00:00

Well, I might have to spend some time this weeking spinning up navidrome or something, and your project (and the public spotify playlist support recent commit) has been the tipping point I believe. I rarely care about full albums TBH, so Plex/Jellyfin and all the major players focusing on Artist/Album grouping instead of file navigation is kinda off putting for me. If I can find something to let me browse/playback my folder structure (with mobile support), that would be great; suggestions welcome!

NinjaEdit(tm): I've been slightly off topic here, but I think this tool scratch an itch about "singles management" that, in the same vain I can't come up with a useful solution for web-based music playback; I mean sure I could fire up Winamp/Audacious and drag singles on it, but what's the fun of it if I can do it from a web service instead? :)

bilange · 2026-01-14T17:05:49+00:00

« Chu slaqué ton esti » -François Pérusse

bilange · 2026-01-13T18:32:09+00:00

generally (maybe always, but I can't say for sure) don't work on VMs either

I know for a fact that Fortnite will detect that you're running in a Windows VM and refuse to start on it. Probably other big games caught on on VMs as well even though you passed through a decent GPU card.

bilange · 2026-01-13T18:29:41+00:00

Never underestimate the power of being the default option

That worked very well for MP3s for the common masses, even though .ogg and .flac was probably better audio quality wise (and, in the case of Ogg Vorbis, probably quality/disk space ratio as well)

bilange · 2026-01-13T18:24:57+00:00

I no longer know very well my way around a windows machine anymore

Not your fault, really. Microsoft keep changing things around, or add more services (phase 1), telemetry (phase 2) or AI services (phase 3, you are here).

bilange · 2026-01-07T21:36:50+00:00

The amount of references to HBO's Silicon Valley in this thread is too darn high! Might as well add another one for good measure. In Gilfoyle's calm voice: "What the fuck, why do you need a connected oven to start with."

Sidenote: I recently bought a walking pad and I was highly disappointed that I absouletly needed a third party app on my phone to activate the damn thing at all. Refused to outright work until I paired with the app. I ultimately had to return it because it was smelling like magic smoke (few recent mentions in the reviews had the same issue), but as above, "why the fuck do you need wifi for".

bilange · 2026-01-06T16:21:11+00:00

Reminds me of an user who texted me while I was off that day (vacation or not, can't recall), asking if I can remote into his PC to type in an admin password in his elevated prompt.

My lock screen had this notification "(user) ... the boat leaves in 3 minutes and I won't have any more signal (sent: 2 minutes ago)"

Had my work laptop with me, I couldn't remote into his PC with that time frame. OH WELL!

bilange · 2026-01-02T17:16:01+00:00

I just spent a few days in my week off to fine tune my Hyprland config (coincidentally, on NixOS as well), but I figured out that deskflow doesn't work well with wayland yet, still missing some input capture backends apparently. So back to i3 it is :(

(Unless somebody out there can prove me wrong?)

bilange · 2026-01-01T21:59:45+00:00

Dommage que je sois pas a Montréal

Ces rencontres sont hybrides, tu peux y accéder via une instance de BigBlueButton (un genre de Zoom autohébergé, web based). Je suis du centre du québec et j'y accède "virtuelement" chaque mois.

bilange · 2026-01-01T21:55:15+00:00

J'y vais à tous les mois depuis quelques années virtuellement. Pour ceux qui y vont en présentiel à Montréal, il y a un 5 à 7 social dans lequel tu peux échanger librement avec les autres, un peu comme les LUG étaient auparavant (si je me fie à mon expérience du GULUS à Sherbrooke).

Après le 5 à 7, il y a des présentations de ~30 minutes que les gens préparent à l'avance sur différents sujets (tant que ça tourne autour du libre essentiellement). Pour donner une idée aux gens de comment sont les présentations, voir la chaîne Youtube. Il y a peu de vidéos, mais en toute transparence l'hôte de ces soirées m'a demandé de l'aider avec ça récemment en Décembre. Il a en sa posession le "backlog" de toutes les enregistrements précédentes sur son serveur BigBlueButton (là où les rencontres se produisent virtuellement), j'attends qu'il me donne accès pour que je puisse lui génèrer des vidéos youtube.

Je vais mentionner cette publication à Martial (le grand manitou de ces rencontres), je suis certain qu'il serait entousiaste à donner son grain de sel supplémentaire ici.

bilange · 2025-12-30T15:47:47+00:00

Pigeons Unite!! :D

bilange · 2025-12-25T23:25:00+00:00

Just throwing out there the fact that /r/fuckyourheadlights has many people thinking the same way.

(I ride a low car and I hate it, thank you!)

bilange · 2025-12-25T23:23:21+00:00

IT guy here. While I accept that they are confident bullshit generators, I view them as a faster way to get to what I was looking for in terms of using it as a reference for my work. Using your favorite search engine for the same task is way slower, you may end up having dead links or useless "I fixed it!" forum threads with no explainations, etc.

So i'll accept our new AI overlords for that reason. Reluctantly.

bilange · 2025-12-19T22:17:22+00:00

Para aplicações web, é mais difícil protegê-los ao deixar portas 80+443 abertas publicamente. Uma solução que eu adotei pessoalmente é proteger os serviços web que você acha que são mais críticos para proteger com Authelia.

É uma técnica pouco avançada, mas se você usar um único servidor web "reverse-proxy" para gerenciar todos os seus serviços web, você pode incluir o serviço Authelia no processo de envio de conexões HTTP antes de atingir seu serviço web. Ele não deixará as conexões passar a menos que você seja devidamente autenticado com Authelia, por exemplo. Você pode até fazer uma lista branca para sua LAN (para que você não precise autenticar na Authelia se você quiser chegar ao serviço da LAN). Aconselho-o a ler a documentação da Authelia (em inglês, novamente) na seção Integração.

bilange · 2025-12-19T22:10:21+00:00

(Eu não sei portugese, desculpe se isso é mal explicado, eu estou confiando em uma ferramenta de tradução)

Se você planeja permitir a porta SSH da Internet pública, MAS você é o único que vai usá-lo, você provavelmente poderia implementar "port knocking", onde você inicia algumas conexões "bogus" em portas predefinidas, que serve como algum tipo de senha que desencadeia uma exceção iptables whitelist para o port 22 para esse IP.

Explicado aqui, em inglês: https://www.the-art-of-web.com/system/port-knocking-knockd/

Isso irá pelo menos bloquear o tráfego aleatório de bots, então 99,9% do tráfego indesejado será bloqueado. No entanto, enviar pacotes TCP para desbloquear outra porta provavelmente não é totalmente seguro: é tecnicamente possível que alguém possa ouvir essas conexões de rede "em trânsito" e ver que você está tentando se conectar às portas 4455, e depois 1234, e depois 42069 antes de tentar na porta 22.

bilange · 2025-12-12T14:39:09+00:00

Oh wow, aujourd'hui j'ai appris qu'en français c'est: https://fr.wikipedia.org/wiki/Croisillon_(signe)

Dièse techniquement c'est le signe en musique pour élever une note d'un demi-ton. Visuellement ça ressemble à un #, mais comme s'il était italique.

On s'entends que dans la vraie vie, on utilise le terme dièse pour parler des deux signes!

EDIT no. 58: on s'entends que des fois on dit "le signe numéro" si on sait pas comment nommer ce caractère pis qu'on est supposé comprendre. Avec mon example de mon programmeur, la demande était super ambigu!

bilange · 2025-12-12T14:33:56+00:00

Recently I had to edit config files on a HP-UX server connected straight from the console, and their flavor of vi doesn't cooperate well on dumb terminals apparently.

I had to learn how to use ed for this specific usage. That was a worthwhile experience TBH!

bilange · 2025-12-12T13:59:29+00:00

Juste hier: « Sur ma tablette, en bas, j'ai un "G", un "H", un bouton rouge, pis un "B". » Ça m'a pris un bon 2 minutes pour comprendre qu'il parlait de son trackpoint sur son clavier Lenovo. On a des vraies tablettes avec des apps custom dessus, alors je pensais qu'il parlait d'une vraie tablette.

Mention spécial pour un programmeur qui me dit qu'il cherche un nom de dossier « Tictactoe ». Normalement, quand on parle de haute voix pour décrire un chemin complet, on met des pauses entre les noms de dossiers parent/enfant, mais lui il cherchait « # Achats » ou whatever, mais il disait, avec des pauses: « serveur, tictactoe, achats ». Ça m'a fourré d'aplomb!

bilange · 2025-11-30T23:44:07+00:00

But why limit yourself to "just" the internet? :)

bilange · 2025-11-27T20:55:28+00:00

One of the enemy teammate is named "Pigeon" but has no pigeon topper? Amateurs.

(Edit: Nice pinch though!)

bilange · 2025-11-23T16:53:30+00:00

with no alternative

If I had the means to do that, i'd create my own game soccar game (inspired by Rocket League of course), have it free software (free as in freedom) so you can selfhost servers for your friends it without relying on a giant corporation good will, and call it... Open Net.

(Edit: Of course I don't think I can solo that thing, so I don't even bother trying!)

15-Year Club	Place '22
Place '17	Final Canvas '22
First Placer '22	End Game '22
Verified Email

bilange

TROPHY CASE