SRE working in email. Gay. Married. Doggy daddy.

I like Star Trek, genealogy, O scale model trains, history, Pokemon, LEGO, coin collecting, books, music, board gaming, video gaming, camping, 420, and more.

Mastodon: @leopardboy@netmonkey.xyz

  • 2 Posts
  • 52 Comments
Joined 1 year ago
cake
Cake day: June 14th, 2023

help-circle







  • Matt@netmonkey.techtoSelfhosted@lemmy.worldHow much swap?
    link
    fedilink
    English
    arrow-up
    8
    ·
    1 year ago

    It’s something that Linux users have been saying for 20 years and it’s outdated. It makes sense when maybe your computer came with less than a GB of RAM, but these days I usually configure a server with a small amount of swap (like a couple of GB), and I set swappiness to something very low like 5.




  • Depends on the context, I think. For me, I rarely do it for personal stuff. If I wanted to be perfect, I could do it, assuming a signature is available to verify, but I’m lazy. I would venture to say most folks don’t do it either.

    With that being said, where I have been consistent about doing it has been writing config management code at work. If I need to have it download an installer from an untrusted source, I can verify that I’m installing the same package on all servers by verifying the signature before installation. This doesn’t always work well in all circumstances, though.


  • I tend to prefer installing Debian on a server, but recently I did install Ubuntu’s recent LTS on a box because I was running into an issue with the latest version of Debian. I didn’t want to revert to an earlier version of Debian or spend a bunch of time figuring out the problem I was having with Python, so I opted to use Ubuntu, which worked.

    Ubuntu is based on Debian, so it’s like using the same operating system, as far as I’m concerned.







  • For personal Linux servers, I tend to run Debian or Ubuntu, with a pretty simple “base” setup that I just run through manually in my head.

    • Setup my personal account.
    • Upload my SSH keys.
    • Configure the hostname (usually after something in Star Trek 🖖).
    • Configure the /etc/hotss file.
    • Make sure it is fully patched.
    • Setup ZeroTier.
    • Setup Telegraf to ship some metrics.
    • Reboot.

    I don’t automate any of this because I don’t see a whole of point in doing it.