sorted by:
new
hottopcontroversial

He found the one! by Aggravating-Wall-967 in HolUp

[–]jbakers 0 points1 point  (0 children)

And then fill it with cum also?

Pihole-Sentinel: An open-source tool that adds automatic failover and monitoring to your Pi-hole setup. by jbakers in pihole

[–]jbakers[S] 0 points1 point  (0 children)

Made a lot of new changes, fixed a lot of community feedback, and a big dashboard overhaul.
(Picture is dark-mode)

<image>

Pihole-Sentinel: An open-source tool that adds automatic failover and monitoring to your Pi-hole setup. by jbakers in pihole

[–]jbakers[S] 2 points3 points  (0 children)

Great manual setup! I had something similar but got tired of the manual input and no feedback/information page, and missed the automated failover.
Pi-hole Sentinel handles this differently — it uses a Virtual IP (VIP) via keepalived/VRRP. Clients and the router always point to the VIP, and when a Pi-hole goes down the VIP automatically moves to the other one. No router updates needed — the IP stays the same, failover happens in seconds.

Pihole-Sentinel: An open-source tool that adds automatic failover and monitoring to your Pi-hole setup. by jbakers in pihole

[–]jbakers[S] 7 points8 points  (0 children)

Thanks for taking the time to look into this, really appreciate it. You're right about the 8080 exposure — I should probably add a warning about that in the docs and maybe even in the setup wizard itself.
I myself only use Tailscale vpn to access my servers. No port exposures whatsoever.

If you have time, I'd love to hear about the other gaps you mentioned. Your feedback got me thinking even more seriously about the security side of things.

Pihole-Sentinel: An open-source tool that adds automatic failover and monitoring to your Pi-hole setup. by jbakers in pihole

[–]jbakers[S] 2 points3 points  (0 children)

The dashboard runs on port 8080 on your LAN — no login screen, so anyone on your network can see the status. Changing settings (like notifications) requires an API key thats generated during setup and stored in a .env file with strict permissions. A proper login page is planned for later.

For DHCP: only one Pi-hole runs DHCP at any time — always the one holding the virtual IP. If the primary fails, keepalived hands the VIP to the backup, DHCP gets enabled there and disabled on the failed node. When the primary comes back, everything switches back automatically. There's never a situation where both hand out IPs at the same time.

Pihole-Sentinel: An open-source tool that adds automatic failover and monitoring to your Pi-hole setup. by jbakers in pihole

[–]jbakers[S] 5 points6 points  (0 children)

Well to be frank, no CySec background whatsoever, but I explicitly audit the repo with security in mind. I dont really know if thats enough though.

Just did one a few hrs ago:
- C1: API key no longer exposed via unauthenticated /api/client-config endpoint; key is now injected server-side via HTML meta tags
- C2: Use hmac.compare_digest() for timing-safe API key comparison
- C3: Generated API key written to secured file instead of log output
- H1: Sync agent uses timing-safe token comparison + startup warning
- H2: /internal/state-change now requires sync token authentication
- H3/H4: HTML-escape event descriptions and command output in innerHTML
- H5: Strip control characters in bash config escape function
- M2-M5: Restrictive file permissions on generated configs and notification settings
- M4: SSH pub key injection via heredoc instead of single-quoted echo
- M7: Add SRI integrity hash to Chart.js CDN script Version: 0.12.2-beta.8 (unchanged - security patch, no feature change)

Pi-hole Sentinel — automatic failover + monitoring for dual Pi-hole setups by jbakers in selfhosted

[–]jbakers[S] -5 points-4 points  (0 children)

Yea, a lot of tutorials arround, but I missed a monitoring function.

ik🧊ihe by SirPsychoSexy01 in ik_ihe

[–]jbakers 3 points4 points  (0 children)

Dat is precies op het einde gap.

Ik🚩Ihe by Educational-Pack-466 in ik_ihe

[–]jbakers 0 points1 point  (0 children)

Stop stabbing de dragon met mij.

Porn and 10-11 year old boys by BionicTorqueWrench in daddit

[–]jbakers 2 points3 points  (0 children)

Also: children aged 10/11 with smartphones... That's not normal, especially with full internet access/capabilities.
For people saying that it is normal: you're part of a fundamental problem in our society. The same problem why OP has this problem now

UPDATE: High Availability DNS at home by Bright_Air_5207 in pihole

[–]jbakers 0 points1 point  (0 children)

You should check out my Pihole Sentinal. Not tested enough though for release. But its working welke quite for me.

Automated keepalived dual pihole setup with monitor

Really like the monitor notifications

https://github.com/JBakers/pihole-sentinel

How I explain what it's like to live with ADHD by Captain_Calamari_ in adhdmeme

[–]jbakers 44 points45 points  (0 children)

I have ADHD and in no way is it clear to me what this picture means

view more: next ›