#nginx Timeline

1y

Sysadmin extraordinaire Stefano Marinelli (<a href="https://mastodon.bsd.cafe/@stefano" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@stefano</a>) has written this great, concise article on how to tune <a href="/tags/nginx/" rel="tag">#nginx</a> to improve <a href="/tags/snac/" rel="tag">#snac</a> performance while serving media like images or videos. <a href="https://it-notes.dragas.net/2025/01/29/improving-snac-performance-with-nginx-proxy-cache/" rel="nofollow" class="ellipsis" title="it-notes.dragas.net/2025/01/29/improving-snac-performance-with-nginx-proxy-cache/">https://it-notes.dragas.net/2025/01/29/improving-snac-performance-with-nginx-proxy-cache/</a>

Edited 1y ago

0 0 1 View Post & Replies See Original

126d

⁂ Postawiłem sobie dzisiaj pl-fe od Nicole <a href="https://pl.fediverse.pl/users/mkljczk" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@mkljczk</a> dla mojego <a href="/tags/gotosocial/" rel="tag">#GoToSocial</a> Fedika.pl Z małym zgrzytem. <a href="/tags/nginx/" rel="tag">#Nginx</a> wymagał drobnej korekty location. To pomyślałem że podzielę się, bo może ktoś się odbije od tego samego. Tu akurat domyślna konfiguracja nginx w <a href="/tags/yunohost/" rel="tag">#YunoHost</a>-owej apce "My webapp" nie zadziałała. Wyskakiwały 404 przy logowaniu do domeny instancji.Domyślne location było:try_files $uri $uri/ /index.php?$args =404; a powinien być dodany index.html, bo to przecież <a href="/tags/spa/" rel="tag">#SPA</a> / <a href="/tags/pwa/" rel="tag">#PWA</a>:try_files $uri $uri/ /index.html =404;Niniejszym macie receptę jak do swoich GtSów na YunoHost dodać własne <a href="/tags/plfe/" rel="tag">#plfe</a>. Polecam, to najlepszy klient webowy i na telefon 👍 P.S. Zacznę chyba nazywać <a href="/tags/nicolefe/" rel="tag">#NicoleFE</a> bo mi się pl-fe średnio podoba 😉<a href="/tags/fedipomoc/" rel="tag">#FediPomoc</a> <a href="/tags/feditipspl/" rel="tag">#FediTipsPL</a>

Ekran pl-fe na mojej instancji GtS Fedika.pl
Niebieska ciemna skórka, widać timeline i moje konto.

ALT

Edited 126d ago

1 0 1 View Post & Replies See Original

247d

Anyone else use NGINX Proxy Manager in their homelab? I’ve had some real issues with caching enabled on some self hosted fedi apps. <a href="/tags/homelab/" rel="tag">#HomeLab</a> <a href="/tags/nginx/" rel="tag">#Nginx</a>

0 0 1 View Post & Replies See Original

38d

Dear fellow or potential fellow gotosocial instance admins, I've come up with a novel way to set up a <a href="/tags/gotosocial/" rel="tag">#gotosocial</a> server behind a reverse proxy, which avoids the use of making new firewalling rules - both on a VPS, and creating port forwarding on one's home router. This method is ideal for minimizing the cost of running one's own <a href="/tags/activitypub/" rel="tag">#ActivityPub</a>/<a href="/tags/mastodon/" rel="tag">#Mastodon</a> server, in a way that leverages inexpensive fast storage on the backend (say, on a <a href="/tags/raspberrypi/" rel="tag">#RaspberryPi</a> 5, 2GB of RAM, with an NVMe). As many valiant and praiseworthy Mastodon server admins might attest to, renting cloud VPS' can cost a lot, especially when storing many tens or hundreds of GB of user data.My method avoids the need of forwarding ports 443 and 80 into one's home LAN, using DNAT (on the VPS) and port forwarding (on one's home router). In a nutshell, it's a novel use of <a href="/tags/wireguard/" rel="tag">#Wireguard</a>, in conjunction with <a href="/tags/nginx/" rel="tag">#nginx</a> on the frontend, and gotosocial on the backend. This can save the cost of renting a dedicated VPS, to get the exclusive use of ports 443 and 80, in conjunction with static IPv4 and IPv6 addresses. My method optimizes on reliability and cheapness, but it's not the most secure - decryption and re-encryption happens on the VPS, before the data travels down the Wireguard tunnel. This exposes the data to any underlying hypervisor at one's hosting company. So full disclosure there.I've run my method by the helpful gotosocial furries in their <a href="/tags/matrix/" rel="tag">#Matrix</a> Help chatroom (and I'm grateful for their help to debug subtle warts the method had), and got their blessing, at least to the technical soundness of the method.I have a testing instance of gotosocial 0.21.0 set up with this new method: <a href="https://g.toque.im" rel="nofollow">https://g.toque.im</a>I'm the user <a href="https://g.toque.im/@owl" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@owl</a> on that instance, should you wish to befriend me there.I'll make a longer blog post on this in the days to come, and post it in a reply to this post. (I also cross-posted this on another account of mine, please forgive the duplicate: <a href="https://wiseowl.club/@gtsadmin" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@gtsadmin</a> )<a href="/tags/devops/" rel="tag">#DevOps</a> <a href="/tags/linux/" rel="tag">#Linux</a> <a href="/tags/infosec/" rel="tag">#infosec</a> <a href="/tags/selfhosting/" rel="tag">#SelfHosting</a> <a href="/tags/datasovereignty/" rel="tag">#DataSovereignty</a> <a href="/tags/opensource/" rel="tag">#OpenSource</a>

Edited 38d ago

0 0 0 View Post & Replies See Original

200d

🎬 Skryptowanie nginx-a za pomocą js-a. Case study na rzecz wydajności i prywatności<a href="https://toot.kuba-orlik.name/@kuba" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@kuba</a> z Fundacji <a href="https://mastodon.internet-czas-dzialac.pl/@icd" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@icd</a> pokazuje, jak wykorzystać <a href="/tags/javascript/" rel="tag">#JavaScript</a> do skryptowania <a href="/tags/nginx/" rel="tag">#NGINX</a> oraz jak ta technika może poprawić wydajność i zwiększyć prywatność użytkowników.👉 PeerTube: <a href="https://tube.pol.social/w/2BbPBaXKQU1c2QCEThGQNR" rel="nofollow" class="ellipsis" title="tube.pol.social/w/2BbPBaXKQU1c2QCEThGQNR">https://tube.pol.social/w/2BbPBaXKQU1c2QCEThGQNR</a> 👉 YouTube: <a href="https://www.youtube.com/watch?v=O8wkSDxssLw" rel="nofollow" class="ellipsis" title="www.youtube.com/watch?v=O8wkSDxssLw">https://www.youtube.com/watch?v=O8wkSDxssLw</a><a href="/tags/piwo/" rel="tag">#PIWO</a> <a href="/tags/piwo2025/" rel="tag">#PIWO2025</a> <a href="/tags/opensource/" rel="tag">#opensource</a> <a href="/tags/freesoftware/" rel="tag">#freesoftware</a> <a href="/tags/prywatność/" rel="tag">#prywatność</a> <a href="/tags/poznań/" rel="tag">#poznań</a>

0 0 1 View Post & Replies See Original

48d

Sooooo my recent mishaps with server administration are making me speed up my plans of shifting towards community-owned and -maintained hosting.Ever since my conversation with <a href="https://cosocial.ca/@boris" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@boris</a> almost one year ago, I took his quote “self-hosting is selfish” as a mantra. It’s time to act accordingly.Together with <a href="https://pan.rent/@Holly" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@Holly</a> and <a href="https://pan.rent/@youjungnoh" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@youjungnoh</a>, we are putting together a group of tech-savy people who want to, respectively:Learn more about system administration Get their hands dirty while doing so Maintain our own shared server Host their own things (be them websites, projects, or services) together with comrades instead of individual infrastructure.There are many super cool collectives that are doing this already, and we intend to draw inspiration from their work and their documentation, but we really want to do this together!Who wants to join? Please, do reach out! I already spun up a small-ish VPS that is now hosting all my static websites. If you’d like to get involved, reach out and I would be happy to give you SSH access 🌻We would also be very grateful if more experienced sysAds want to help us out by hosting workshops or brief classes.We intend to meet for the first time in South Holland (but maybe virtually too) sometime during the first two weeks of March.Next steps:Find a name for this group/server/mission Plan a series of (free, open) intro lessons with guests Start hosting some things Migrate things I am already hosting with YunoHost in our community server Migrate to a physical device in a home of ours?EDIT: I forgot to add this, but it goes without saying that ours would be a queer and transfeminist server<a href="/tags/communityhosting/" rel="tag">#communityHosting</a> <a href="/tags/linux/" rel="tag">#Linux</a> <a href="/tags/sysad/" rel="tag">#sysAd</a> <a href="/tags/systemadministration/" rel="tag">#systemAdministration</a> <a href="/tags/selfhosting/" rel="tag">#selfHosting</a> <a href="/tags/yunohost/" rel="tag">#YunoHost</a> <a href="/tags/nginx/" rel="tag">#Nginx</a> <a href="/tags/hosting/" rel="tag">#hosting</a> <a href="/tags/server/" rel="tag">#server</a> <a href="/tags/vps/" rel="tag">#VPS</a>

Edited 48d ago

1 0 0 View Post & Replies See Original

44d

My <a href="/tags/starterpack/" rel="tag">#StarterPack</a> for <a href="/tags/linux/" rel="tag">#Linux</a> <a href="/tags/selfhosting/" rel="tag">#SelfHosting</a> 1) Heimdall start page for your LAN 2) Shiori bookmarks 3) Copyparty for filesharing through web or FTP 4) Kanboard Kanban board 5) Kiwix for offline website content 6) calibre-web for ebooks 7) Hyper8 for self-hosted video content, like a poor man's <a href="/tags/youtube/" rel="tag">#Youtube</a>. 8) mkdocs for a markdown-based wikiI self-host all of these, using <a href="/tags/nginx/" rel="tag">#nginx</a> as the web server in all cases. These all consume very little RAM and CPU, and would run very performantly on a Raspberry Pi 5 2GB, with a decent SSD. No <a href="/tags/docker/" rel="tag">#docker</a> needed for any of them. <a href="/tags/opensource/" rel="tag">#OpenSource</a> <a href="/tags/datasovereignty/" rel="tag">#DataSovereignty</a>

Edited 44d ago

0 0 0 View Post & Replies See Original