overview for xrun

Divided Loyalties? 62 Taiwanese Military Members Found With Chinese Residency Permits in c/world@lemmy.world

[–] xrun_detected@programming.dev 3 points 1 week ago

Each one is one too many

How do I use HTTPS on a private LAN without self-signed certs? in c/selfhosted@lemmy.world

[–] xrun_detected@programming.dev 33 points 3 weeks ago (2 children)

+1 for the letsencrypt wildcard with DNS verification, been using this for years. with dehydrated (https://github.com/dehydrated-io/dehydrated) you can automate renewing the certs, pretty convenient.

One thing i didn't see mentioned yet - you can also easily create a wildcard for a subdomain of your domain, e.g. *.local.example.com. Most DNS providers let you define something like _acme-challenge.local IN TXT ... so you don't even need to define an extra zone for local.example.com. Probably makes no big difference, but i like it ^^

American Century of Humiliation Incoming in c/memes@lemmy.ml

[–] xrun_detected@programming.dev 12 points 3 weeks ago

#im14andthisisdeep

Encrypting data on local servers? in c/selfhosted@lemmy.world

[–] xrun_detected@programming.dev 8 points 4 weeks ago (1 children)

I'm using https://github.com/dracut-crypt-ssh/dracut-crypt-ssh on some of my servers. The initrd opens an ssh port where you can login and enter the passphrase. Setting it up is non-trivial, but it works well. Haven't tried it on Debian but there should be something similar.