JASN_DE

Check out Dockge. It provides a simple yet very usable and useful web UI for managing Docker compose stacks.

Cut out the middleman and go Debian on bare metal?

There is no hiding in that sense. Bots will scan all IPs on all ports over time.

Will it be less on nonstandard ports? Likely. Will it matter? Not really, the attack vectors would be exactly the same.

Secure your systems and running on default or nonstandard ports won’t be an issue.

I use a combination of Dockge, diun with gotify and Beszel for managing update notifications, stacks and container usage.

It will certainly not fit all of your requirements, but it’s a not too complicated setup which gets me the most important infos.

Goaccess reads the Traefik log and spits out an HTML file you can then serve via e.g. Nginx. Works for me.

Realistically though, you could still use a VPN and have it be pretty easy for your family members IF you have access to their router console and IF said router supports network wide wireguard or openVPN connections. Having both networks tied in to eachother that way makes it so that nobody ever has to use a VPN client to connect, but still only devices from their network (or yours) will be able to connect.

Realistically this plan dies the moment someone takes their phone outside of the WiFi range. It’s fine in theory, but fails miserably in non-techie real life.

There is no need to run Traefik if you already have a working reverse proxy. Also, unless your nginx is running on non-standard ports, the ports 80 and 443 should not be available for traefik, which will prevent it from working correctly.

You can narrow it down: attach to the container, this’ll give you a life “feed” of all messages the container produces. Then with that running, open your app and see if the container has anything to say about the sync process.

As always: have you checked the logs?

Not for a Synology, but I doubt Hetzner cares where the data comes from. Works well, especially once you got the keys in place. Have stored and restored, it’s a simple file storage.

Do you think the fediverse has a civility problem

This has little to do with the Fediverse itself and mostly with the people involved. It would be the same on any other platform, so simply switching the software stack or whatever would do exactly zilch.

A fraction of people are going to be assholes. Sad but inevitable.

and is there anything we can do about it?

You can ban the dickheads, but that’ll only get you so far.

Try Beszel

As much as I hate it, I think I’ll have to go through the logs after all.

Selfhosting without checking the logs to hunt down errors? That’s not going to be pretty.

Let’s Encrypt is fully automated and will issue certificates as long as you provide an email address AND have a proper, working config. Don’t get stuck on that email “issue”, your problems will lie somewhere else.

As always when problems arise: check the log files.

Sorry to burst your bubble. That article is from 2020 and that vehicle never materialised.

There is no way the didn’t know when naming their software.

I haven’t tested that part of it yet, but the self-hostable StirlingPDF offers conversion from PDF to a number of formats.

The rest I use it for works fine, so maybe that could be an option.

If you’re doing a fresh instance it will solve a lot of issues. Personally I run a Nextcloud instance which got its own 2TB SSD. I mounted the disk at /nextcloud, then used bind mounts in docker compose for db and NC.

Which part is your problem, serving the media from disk, or transcoding and serving that stream?

A big portion of that is caused by the drives, so you’d have to compare the empty QNAP vs your empty machine. Also, depending on which NAS appliance, check that the CPU is actually powerful enough to run all your services.