1
Fork 0

Fix some broken links

This commit is contained in:
Jake Howard 2022-01-02 21:45:16 +00:00
parent 9cd4226be4
commit 55157818bb
Signed by: jake
GPG key ID: 57AFB45680EDD477
11 changed files with 11 additions and 13 deletions

View file

@ -64,7 +64,7 @@ Recently, I moved my off-site backup mechanism from [Duplicati](https://www.dupl
Rather than using an existing orchestration tool like [autorestic](https://github.com/cupcakearmy/autorestic/) or [resticprofile](https://github.com/creativeprojects/resticprofile), I wrote [my own](https://github.com/RealOrangeOne/infrastructure/blob/master/ansible/roles/restic/files/backrest.sh) (yes, that's really what I named it). The others never did quite what I want, and I wanted something which "just worked", and had a tight integration with [healthchecks.io](https://healthchecks.io/). Using my [Ansible repo](https://github.com/RealOrangeOne/infrastructure/tree/master/ansible/roles/restic), it gets installed on all my servers, and scheduled with cron. Rather than using an existing orchestration tool like [autorestic](https://github.com/cupcakearmy/autorestic/) or [resticprofile](https://github.com/creativeprojects/resticprofile), I wrote [my own](https://github.com/RealOrangeOne/infrastructure/blob/master/ansible/roles/restic/files/backrest.sh) (yes, that's really what I named it). The others never did quite what I want, and I wanted something which "just worked", and had a tight integration with [healthchecks.io](https://healthchecks.io/). Using my [Ansible repo](https://github.com/RealOrangeOne/infrastructure/tree/master/ansible/roles/restic), it gets installed on all my servers, and scheduled with cron.
For the storage, I use [Backblaze](https://www.backblaze.com/), specifically [B2](https://www.backblaze.com/b2/cloud-storage.html) - There really is nothing quite like it. The S3-compatible API makes integrating with it a breeze, the prices are great, and as a company Backblaze do some great things for the community, especially their [quarterly drive stats](https://www.backblaze.com/b2/hard-drive-test-data.html). Backblaze supports encryption at rest (on top of what restic provides), and lets me store ~200 GB for the low-low price of $0.70/mo. Backblaze is a US-based company, but there is a less-than-obvious [EU data centre setting](https://help.backblaze.com/hc/en-us/articles/360034620773?input_string=region+moving) which does move things at least closer to where I am, which is good both in terms of latency and data residency. For the storage, I use [Backblaze](https://www.backblaze.com/), specifically [B2](https://www.backblaze.com/b2/cloud-storage.html) - There really is nothing quite like it. The S3-compatible API makes integrating with it a breeze, the prices are great, and as a company Backblaze do some great things for the community, especially their [quarterly drive stats](https://www.backblaze.com/b2/hard-drive-test-data.html). Backblaze supports encryption at rest (on top of what restic provides), and lets me store ~200 GB for the low-low price of $0.70/mo. Backblaze is a US-based company, but there is a less-than-obvious [EU data centre setting](https://help.backblaze.com/hc/en-us/articles/360034620773) which does move things at least closer to where I am, which is good both in terms of latency and data residency.
Probably the most annoying thing about my off-site backup strategy actually has nothing to do with it: my upload speed. The initial sync of data takes a hell of a long time, as does the subsequent syncs. 2MB/s isn't strictly slow, but it definitely makes the initial sync quite slow. Probably the most annoying thing about my off-site backup strategy actually has nothing to do with it: my upload speed. The initial sync of data takes a hell of a long time, as does the subsequent syncs. 2MB/s isn't strictly slow, but it definitely makes the initial sync quite slow.

View file

@ -13,8 +13,6 @@ As someone who does a lot of development on GitHub, the messages behind hacktobe
## My Contributions ## My Contributions
This year, DigitalOcean have an [official status checker](https://hacktoberfest.digitalocean.com/stats/RealOrangeOne). It reports my progress, as well as some global statistics on contributions.
### 3 Contributions to [`srobo/team-emails`](https://github.com/srobo/team-emails) ### 3 Contributions to [`srobo/team-emails`](https://github.com/srobo/team-emails)
- [Add email confirming places for SR2019](https://github.com/srobo/team-emails/pull/4) - [Add email confirming places for SR2019](https://github.com/srobo/team-emails/pull/4)

View file

@ -1,7 +1,7 @@
--- ---
title: Hacktoberfest 2019 title: Hacktoberfest 2019
date: 2019-11-01 date: 2019-11-01
image: https://hacktoberfest.digitalocean.com/assets/HF19_social-744d976f227e4aff6866443abcede8c651b309ec9c7c9f7410f5944f8e1299b9.png image: https://42coders.com/storage/45/hacktoberfest_2019-min.png
tags: [programming] tags: [programming]
--- ---

View file

@ -273,7 +273,7 @@ Save the file, and restart Traefik, and it'll start routing. Future edits won't
A common requirement for reverse proxies is to forcefully redirect traffic from HTTP to HTTPS. A common requirement for reverse proxies is to forcefully redirect traffic from HTTP to HTTPS.
The first way most people think to do this is to apply the [redirectscheme](https://docs.traefik.io/middlewares/redirectscheme/) middleware to each and every router. Whilst this does work, it'd be far better if this only needed to be defined once, and magically reused for each application, right? The first way most people think to do this is to apply the [redirectscheme](https://doc.traefik.io/traefik/middlewares/http/redirectscheme/) middleware to each and every router. Whilst this does work, it'd be far better if this only needed to be defined once, and magically reused for each application, right?
Fortunately, Traefik's got you covered. Entrypoints allow you to set a [`redirection`](https://docs.traefik.io/routing/entrypoints/#redirection) on them, such that all traffic to them is redirected to a different entrypoint on a given scheme. Fortunately, Traefik's got you covered. Entrypoints allow you to set a [`redirection`](https://docs.traefik.io/routing/entrypoints/#redirection) on them, such that all traffic to them is redirected to a different entrypoint on a given scheme.

View file

@ -1,7 +1,7 @@
--- ---
title: ProtonMail - Can it replace your email provider? title: ProtonMail - Can it replace your email provider?
date: 2016-06-28 date: 2016-06-28
image: https://protonmail.com/images/main-banner.jpg image: https://protonmail.com/images/main-banner.png
subtitle: Incredibly secure, easy to use, but are it's trade-offs worth it? subtitle: Incredibly secure, easy to use, but are it's trade-offs worth it?
tags: [security] tags: [security]
--- ---

View file

@ -40,7 +40,7 @@ In LXC, a container may be unprivileged or privileged. In docker containers, use
For reasons I don't understand, this seems to have something to do with the backup process. Presumably it runs as a different user during the backup depending on the container type, who knows. Either way, it needs solving. I need my backups! For reasons I don't understand, this seems to have something to do with the backup process. Presumably it runs as a different user during the backup depending on the container type, who knows. Either way, it needs solving. I need my backups!
After a bunch of searching around, I finally found the solution. I stumbled upon [this thread](https://forum.proxmox.com/threads/lxc-unprivileged-backup-task-failing.48565/1), which mentions a completely unrelated issue, with a very similar symptom. By this point, I had been wrestling with this issue for a few weeks, so blind config changes was something I was more than happy to do. After a bunch of searching around, I finally found the solution. I stumbled upon [this thread](https://forum.proxmox.com/threads/lxc-unprivileged-backup-task-failing.48565), which mentions a completely unrelated issue, with a very similar symptom. By this point, I had been wrestling with this issue for a few weeks, so blind config changes was something I was more than happy to do.
The thread mentioned setting the `tmpdir` setting on `vzdump`. This directory controls where `vzdump` stores the container data during a "suspend" mode snapshot. My guess is `vzdump` runs as a different user on an unprivileged LXC dump vs a privileged dump. If you do know why this happens in some more detail, [please tell me]({{<relref "contact">}}). For security reasons, my backups are not world readable, only being writeable by `root`, but given that works fine The thread mentioned setting the `tmpdir` setting on `vzdump`. This directory controls where `vzdump` stores the container data during a "suspend" mode snapshot. My guess is `vzdump` runs as a different user on an unprivileged LXC dump vs a privileged dump. If you do know why this happens in some more detail, [please tell me]({{<relref "contact">}}). For security reasons, my backups are not world readable, only being writeable by `root`, but given that works fine

View file

@ -2,7 +2,7 @@
title: Antergos to vanilla Arch title: Antergos to vanilla Arch
date: 2019-05-25 date: 2019-05-25
subtitle: With Antergos unsupported, what's next? subtitle: With Antergos unsupported, what's next?
image: https://antergos.com/wp-content/uploads/2014/09/antergos-wallpaper.png image: https://2.bp.blogspot.com/-Sqy8eqqY4Kg/VzeTtm1RtEI/AAAAAAAAAw4/nP7ql0Py2-MhTfexWfOnCDI5pPelo6mYgCLcB/s1600/antergos-everyone-bg.jpg
tags: [arch] tags: [arch]
--- ---

View file

@ -157,7 +157,7 @@ When I originally set up the network, I was feeling lazy, so I set up a DHCP ser
## Storage ## Storage
My storage setup isn't the fanciest, nor the most complicated. It's far from anything which would feel at home on [r/datahorder](reddit.com/r/datahoarder). The most important thing is that I feel confident storing my data on it, without worrying that it's going to suddenly vanish whilst I sleep. My storage setup isn't the fanciest, nor the most complicated. It's far from anything which would feel at home on [r/datahorder](https://reddit.com/r/datahoarder). The most important thing is that I feel confident storing my data on it, without worrying that it's going to suddenly vanish whilst I sleep.
### Disks ### Disks
@ -197,7 +197,7 @@ There are a couple pain points which are next on my list:
Currently, Nebula [doesn't support](https://github.com/slackhq/nebula/issues/318) specifying a custom DNS server like WireGuard (or more specifically `wg-quick`) does, so routing things with DNS rather than IPs isn't especially clean. Having bookmarks with a load of IPs and ports is my current solution, I'd also like to add some firewalling to the Nebula network, as currently it's far flatter than it really should be. Currently, Nebula [doesn't support](https://github.com/slackhq/nebula/issues/318) specifying a custom DNS server like WireGuard (or more specifically `wg-quick`) does, so routing things with DNS rather than IPs isn't especially clean. Having bookmarks with a load of IPs and ports is my current solution, I'd also like to add some firewalling to the Nebula network, as currently it's far flatter than it really should be.
As mentioned, my media storage isn't great. At some point soon, I really need to get a couple extra drives, and create a pool out of these. My current intention is to use [mergerFS](https://github.com/trapexit/mergerfs) and [snapraid](https://www.snapraid.it/), as recommended by [PMS](https://perfectmediaserver.com/tech-stack/snapraid/), although I am having a few dirty BTRFS-related thoughts, because the compression and integrations aren't something I want to miss out on - even though BTRFS has a very [checkered](https://btrfs.wiki.kernel.org/index.php/Gotchas) past. I'll almost certainly go snapraid, but I'm still keeping an eye out. As mentioned, my media storage isn't great. At some point soon, I really need to get a couple extra drives, and create a pool out of these. My current intention is to use [mergerFS](https://github.com/trapexit/mergerfs) and [snapraid](https://www.snapraid.it/), as recommended by [PMS](https://perfectmediaserver.com/tech-stack/snapraid.html), although I am having a few dirty BTRFS-related thoughts, because the compression and integrations aren't something I want to miss out on - even though BTRFS has a very [checkered](https://btrfs.wiki.kernel.org/index.php/Gotchas) past. I'll almost certainly go snapraid, but I'm still keeping an eye out.
As strange as it might sound, I'd like to base fewer things off Debian if I can help it. Debian is a great OS, don't get me wrong, leaps better than Ubuntu, but its reliability comes at the cost of using older releases, and that's a trade-off I'd rather not make for certain things. I've recently become a big fan of Alpine for some use cases, and my most recent VPS provision is based on arch ([I use Arch]({{<relref "state-of-the-apps-2021">}}) BTW). Debian is working fine, but perhaps the grass running arch is greener. As strange as it might sound, I'd like to base fewer things off Debian if I can help it. Debian is a great OS, don't get me wrong, leaps better than Ubuntu, but its reliability comes at the cost of using older releases, and that's a trade-off I'd rather not make for certain things. I've recently become a big fan of Alpine for some use cases, and my most recent VPS provision is based on arch ([I use Arch]({{<relref "state-of-the-apps-2021">}}) BTW). Debian is working fine, but perhaps the grass running arch is greener.

View file

@ -23,7 +23,7 @@ If a server isn't monitored, does it really exist? How else do you know if it's
For the monitoring itself, I really wanted to like [statping](https://github.com/statping/statping), but recent versions were horrifically buggy, and support basically stopped altogether. Instead, I use [uptime-kuma](https://github.com/louislam/uptime-kuma), a fantastic uptimerobot-inspired monitoring tool to check services are accessible. When an application goes down, uptime-kuma sends both an email and a message to a Matrix room. For the monitoring itself, I really wanted to like [statping](https://github.com/statping/statping), but recent versions were horrifically buggy, and support basically stopped altogether. Instead, I use [uptime-kuma](https://github.com/louislam/uptime-kuma), a fantastic uptimerobot-inspired monitoring tool to check services are accessible. When an application goes down, uptime-kuma sends both an email and a message to a Matrix room.
I'm also a very big fan of [healthchecks](https://heathchecks.io) for monitoring scheduled tasks, using it for anything I can. I'm currently using the healthchecks hosted service, but in the spirit of self-hosting, I'm planning on hosting that myself too at some point. I'm also a very big fan of [healthchecks](https://healthchecks.io) for monitoring scheduled tasks, using it for anything I can. I'm currently using the healthchecks hosted service, but in the spirit of self-hosting, I'm planning on hosting that myself too at some point.
## Gateway ## Gateway

View file

@ -37,7 +37,7 @@ Somewhat recently, The folks at System76 [mentioned](https://www.omgubuntu.co.uk
### Shell ### Shell
My shell hasn't changed since last year, and probably won't change next year. [Alacritty](https://alacritty.org/), [ZSH](https://www.zsh.org/) and [tmux]([alacritty](https://github.com/alacritty/alacritty)) are at its heart, and that's probably not going to change. I've considered switching back to bash for a more cohesive setup across devices, but given I don't use many of the zsh-specific features, it doesn't make a difference, and having some [oh-my-zsh](https://ohmyz.sh/) plugins can be rather nice. My shell hasn't changed since last year, and probably won't change next year. [Alacritty](https://alacritty.org/), [ZSH](https://www.zsh.org/) and [tmux] are at its heart, and that's probably not going to change. I've considered switching back to bash for a more cohesive setup across devices, but given I don't use many of the zsh-specific features, it doesn't make a difference, and having some [oh-my-zsh](https://ohmyz.sh/) plugins can be rather nice.
I still haven't had a proper look into my clipboard issues, but my brain has trained itself to just ignore it and work around it. Some parts have got better, others haven't. Hopefully by the time I get really annoyed by it, it'll magically solve itself. I still haven't had a proper look into my clipboard issues, but my brain has trained itself to just ignore it and work around it. Some parts have got better, others haven't. Hopefully by the time I get really annoyed by it, it'll magically solve itself.

View file

@ -50,4 +50,4 @@ In the past I've also used a [custom nginx container](https://git.theorangeone.n
I'm not one to really sit still, and keep things the way they are. I've not been especially happy with Hugo for a while, nor my website. I'm likely to completely rebuild it this year, but I don't know exactly how or what in. Given I now professionally build sites with [Wagtail](https://wagtail.io/), I suspect that could play a part. I'm not one to really sit still, and keep things the way they are. I've not been especially happy with Hugo for a while, nor my website. I'm likely to completely rebuild it this year, but I don't know exactly how or what in. Given I now professionally build sites with [Wagtail](https://wagtail.io/), I suspect that could play a part.
Until that time, when you see a new post deployed, and get notified about it through [RSS](/index.rss), this is how it happens. Until that time, when you see a new post deployed, and get notified about it through [RSS](/index.xml), this is how it happens.