From e302041fc48993c21629fa2857dbe93733429054 Mon Sep 17 00:00:00 2001 From: Muhammad Nauman Raza Date: Mon, 6 Jan 2025 12:09:19 +0000 Subject: [PATCH] feat: (bring back) umami analytics --- public/404.html | 2 +- public/blog/adblock-blocky/index.html | 2 +- public/blog/btrfs-raid-setup/index.html | 2 +- public/blog/hoaxes-overview/index.html | 2 +- public/blog/home-server-security/index.html | 2 +- public/blog/index.html | 2 +- public/blog/nfc-misconceptions/index.html | 2 +- public/blog/selfhost-search-engine/index.html | 2 +- public/blog/selfhost-tailscale/index.html | 2 +- public/blog/server-hardware-selection/index.html | 2 +- public/blog/setting-up-zola-nixos/index.html | 2 +- public/index.html | 2 +- public/projects/index.html | 2 +- public/tags/adblock/index.html | 2 +- public/tags/blocky/index.html | 2 +- public/tags/btrfs/index.html | 2 +- public/tags/hacking/index.html | 2 +- public/tags/hardening/index.html | 2 +- public/tags/hardware/index.html | 2 +- public/tags/headscale/index.html | 2 +- public/tags/hoax/index.html | 2 +- public/tags/home-lab/index.html | 2 +- public/tags/homelab/index.html | 2 +- public/tags/index.html | 2 +- public/tags/nas/index.html | 2 +- public/tags/nfc/index.html | 2 +- public/tags/nixos/index.html | 2 +- public/tags/privacy/index.html | 2 +- public/tags/raid/index.html | 2 +- public/tags/raid0/index.html | 2 +- public/tags/raid1/index.html | 2 +- public/tags/raid10/index.html | 2 +- public/tags/searxng/index.html | 2 +- public/tags/selfhosted/index.html | 2 +- public/tags/social-engineering/index.html | 2 +- public/tags/sysadmin/index.html | 2 +- public/tags/tailscale/index.html | 2 +- public/tags/zola/index.html | 2 +- templates/_custom_css.html | 3 +++ 39 files changed, 41 insertions(+), 38 deletions(-) diff --git a/public/404.html b/public/404.html index 07ba7cc..0679e1d 100644 --- a/public/404.html +++ b/public/404.html @@ -1 +1 @@ -404
404
Not Found
« back to home »
\ No newline at end of file +404
404
Not Found
« back to home »
\ No newline at end of file diff --git a/public/blog/adblock-blocky/index.html b/public/blog/adblock-blocky/index.html index 05cf660..673bf21 100644 --- a/public/blog/adblock-blocky/index.html +++ b/public/blog/adblock-blocky/index.html @@ -1,4 +1,4 @@ -DNS-level adblock on the go with blocky

DNS-level adblock on the go with blocky

2024-05-31

Introduction#

An adblocker is something you commonly find installed in browsers, usually through an extension. However, what if you wanted an adblocking system that was a bit deeper? Something that doesn't require a browser extension, and gives you a consistent adblocking system? This is where DNS-level adblockers like AdGuard Home or Pi-hole come in.

DNS?#

DNS stands for Domain Name System. It's what points URLs like https://duck.com to an IP address (like 52.142.124.215), making it much easier to find things on the internet.

DNS-level adblockers work by filtering out queries for URLs pointing to IP addresses serving ads. In this blog post, I'll use blocky as an example of one such adblocker for demonstration purposes.

Setting up blocky#

NixOS configuration#

There's a configuration option for blocky provided by NixOS, so you can enable and configure it in your NixOS config:

1services.blocky = { +DNS-level adblock on the go with blocky

DNS-level adblock on the go with blocky

2024-05-31

Introduction#

An adblocker is something you commonly find installed in browsers, usually through an extension. However, what if you wanted an adblocking system that was a bit deeper? Something that doesn't require a browser extension, and gives you a consistent adblocking system? This is where DNS-level adblockers like AdGuard Home or Pi-hole come in.

DNS?#

DNS stands for Domain Name System. It's what points URLs like https://duck.com to an IP address (like 52.142.124.215), making it much easier to find things on the internet.

DNS-level adblockers work by filtering out queries for URLs pointing to IP addresses serving ads. In this blog post, I'll use blocky as an example of one such adblocker for demonstration purposes.

Setting up blocky#

NixOS configuration#

There's a configuration option for blocky provided by NixOS, so you can enable and configure it in your NixOS config:

1services.blocky = {
2 enable = true;
3 settings = {
4 prometheus.enable = true; diff --git a/public/blog/btrfs-raid-setup/index.html b/public/blog/btrfs-raid-setup/index.html index 953aaa4..bb24606 100644 --- a/public/blog/btrfs-raid-setup/index.html +++ b/public/blog/btrfs-raid-setup/index.html @@ -1,4 +1,4 @@ -RAID with btrfs

RAID with btrfs

2024-12-30

Introduction#

What is RAID?#

Shamelessly copying from the relevant Wikipedia page:

RAID (/reɪd/; redundant array of inexpensive disks or redundant array of independent disks) is a data storage virtualization technology that combines multiple physical data storage components into one or more logical units for the purposes of data redundancy, performance improvement, or both.

That definition works well enough in case you don't already know what RAID is, which I doubt is the case for anyone reading this post.

Why use it?#

Ever had a hard drive containing important data - without any backups - fail? Or, a little less likely, had a mission-critical file server break for a few hours because a drive failed? These are the two biggest problems that RAID solves.

That's great, but how do I use it?#

And finally, we have the main body of this blog post! While frustatingly looking up how to do slightly weird things with RAID using btrfs, I found the lack of documentation annoying - so, I thought I'd make this blog post to aggregate a bunch of commands.

And so, the list:

RAID1#

  • Setting up RAID1 with two disks:
    mkdir /mnt/raid1 # make the RAID1 pool
    +RAID with btrfs

    RAID with btrfs

    2024-12-30

    Introduction#

    What is RAID?#

    Shamelessly copying from the relevant Wikipedia page:

    RAID (/reɪd/; redundant array of inexpensive disks or redundant array of independent disks) is a data storage virtualization technology that combines multiple physical data storage components into one or more logical units for the purposes of data redundancy, performance improvement, or both.

    That definition works well enough in case you don't already know what RAID is, which I doubt is the case for anyone reading this post.

    Why use it?#

    Ever had a hard drive containing important data - without any backups - fail? Or, a little less likely, had a mission-critical file server break for a few hours because a drive failed? These are the two biggest problems that RAID solves.

    That's great, but how do I use it?#

    And finally, we have the main body of this blog post! While frustatingly looking up how to do slightly weird things with RAID using btrfs, I found the lack of documentation annoying - so, I thought I'd make this blog post to aggregate a bunch of commands.

    And so, the list:

    RAID1#

    • Setting up RAID1 with two disks:
      mkdir /mnt/raid1 # make the RAID1 pool
       btrfs device add /dev/sdA1 /mnt/raid1 # add the first device
       btrfs device add /dev/sdB1 /mnt/raid1 # add the second device
       
    • Setting up RAID1 when you already have a disk with some data on it and want to add another:
      btrfs device add /dev/sdB1 /mnt/raid1 # add the second device
      diff --git a/public/blog/hoaxes-overview/index.html b/public/blog/hoaxes-overview/index.html
      index 684b8a8..7b58532 100644
      --- a/public/blog/hoaxes-overview/index.html
      +++ b/public/blog/hoaxes-overview/index.html
      @@ -1 +1 @@
      -An overview on hoaxes

      An overview on hoaxes

      2024-01-04

      Introduction#

      In recent times, hoaxes have become increasingly prevalent as the internet continues to expand and as more people use social media. Misinformation is on a rise - though this is information which isn't really new, the current state of things is horrible, and things really shouldn't be the way they are.

      I aim for this to be a brief blog post detailing the effect of hoaxes on society, focusing on why they're so harmful.

      What exactly is a hoax?#

      Put simply, a hoax is made-up information, be it a story or something else. Hoaxes are created with the intent of spreading false information - for a immense variety of reasons, from jokes and causing embarrassment to provoking politic or social change1. I won't discuss the causes of hoaxes further in this blog post.

      The effect of hoaxes#

      Hoaxes can cause significant damage to their targets if formulated cleverly. For example:

      The stock price of Apple Inc. fell significantly in October 2008 after a hoax story was submitted to CNN's user-generated news site iReport.com claiming that company CEO Steve Jobs had suffered a major heart attack. The source of the story was traced back to 4chan.

      With the incredible presence of social media in our lives, spreading harmful misinformation like that above can be as simple as making a few posts - they don't even need to be very convincing! What makes matters worse is how gullible the general population is, even those educated in this sort of thing - this shows just how much influence the internet and it's contents have on us.

      I would like to clarify that I'm not suggesting that people should avoid using the internet to gather information - while its reliability is incredibly questionable, the accessibility and openness it provides far beats traditional methods of gathering information (books and such). My suggestion is that people should be much more careful with how they interpret information on the internet, and perform their due diligence in their research into whatever they're aiming to learn; people should make sure that what they're reading is accurate before absorbing any information (here's your tl;dr).

      That's about it for this blog post, as it was meant to be a brief way of expressing my thoughts on the matter. Thanks for reading!

      powered by zola and serene
      \ No newline at end of file +An overview on hoaxes

      An overview on hoaxes

      2024-01-04

      Introduction#

      In recent times, hoaxes have become increasingly prevalent as the internet continues to expand and as more people use social media. Misinformation is on a rise - though this is information which isn't really new, the current state of things is horrible, and things really shouldn't be the way they are.

      I aim for this to be a brief blog post detailing the effect of hoaxes on society, focusing on why they're so harmful.

      What exactly is a hoax?#

      Put simply, a hoax is made-up information, be it a story or something else. Hoaxes are created with the intent of spreading false information - for a immense variety of reasons, from jokes and causing embarrassment to provoking politic or social change1. I won't discuss the causes of hoaxes further in this blog post.

      The effect of hoaxes#

      Hoaxes can cause significant damage to their targets if formulated cleverly. For example:

      The stock price of Apple Inc. fell significantly in October 2008 after a hoax story was submitted to CNN's user-generated news site iReport.com claiming that company CEO Steve Jobs had suffered a major heart attack. The source of the story was traced back to 4chan.

      With the incredible presence of social media in our lives, spreading harmful misinformation like that above can be as simple as making a few posts - they don't even need to be very convincing! What makes matters worse is how gullible the general population is, even those educated in this sort of thing - this shows just how much influence the internet and it's contents have on us.

      I would like to clarify that I'm not suggesting that people should avoid using the internet to gather information - while its reliability is incredibly questionable, the accessibility and openness it provides far beats traditional methods of gathering information (books and such). My suggestion is that people should be much more careful with how they interpret information on the internet, and perform their due diligence in their research into whatever they're aiming to learn; people should make sure that what they're reading is accurate before absorbing any information (here's your tl;dr).

      That's about it for this blog post, as it was meant to be a brief way of expressing my thoughts on the matter. Thanks for reading!

      powered by zola and serene
      \ No newline at end of file diff --git a/public/blog/home-server-security/index.html b/public/blog/home-server-security/index.html index ff24c89..ba67f5d 100644 --- a/public/blog/home-server-security/index.html +++ b/public/blog/home-server-security/index.html @@ -1,4 +1,4 @@ -Home server security

      Home server security

      2024-03-28

      Introduction#

      Home server security is pretty often overlooked from what I can tell. Any device accessible from the internet has some degree of vulnerability in the current era of the internet. I aim for this document to detail methods to amend the contemporary cybersecurity challenges faced by most homelabbers.

      Justification in Depth#

      Of course, my statements about home servers needing some security measures put in place aren't baseless. My own experience, as well as that of a sizable number of people on the wonderful lemmy community at selfhosted@lemmy.world shows that home servers are endlessly 'knocked' on, and that login attempts to services like SSH are made. Here's a snippet from my fail2ban filter to verify this point:

      Mar 29 14:38:13 icefall fail2ban.filter[1097]: INFO [...] Found 176.126.240.158 - 2024-03-29 14:38:13
      +Home server security

      Home server security

      2024-03-28

      Introduction#

      Home server security is pretty often overlooked from what I can tell. Any device accessible from the internet has some degree of vulnerability in the current era of the internet. I aim for this document to detail methods to amend the contemporary cybersecurity challenges faced by most homelabbers.

      Justification in Depth#

      Of course, my statements about home servers needing some security measures put in place aren't baseless. My own experience, as well as that of a sizable number of people on the wonderful lemmy community at selfhosted@lemmy.world shows that home servers are endlessly 'knocked' on, and that login attempts to services like SSH are made. Here's a snippet from my fail2ban filter to verify this point:

      Mar 29 14:38:13 icefall fail2ban.filter[1097]: INFO [...] Found 176.126.240.158 - 2024-03-29 14:38:13
       Mar 29 14:40:11 icefall fail2ban.filter[1097]: INFO [...] Found 176.126.240.158 - 2024-03-29 14:40:11
       Mar 29 14:40:29 icefall fail2ban.filter[1097]: INFO [...] Found 185.8.165.204 - 2024-03-29 14:40:29
       Mar 29 14:40:40 icefall fail2ban.filter[1097]: INFO [...] Found 162.212.154.58 - 2024-03-29 14:40:40
      diff --git a/public/blog/index.html b/public/blog/index.html
      index 239749a..8272c29 100644
      --- a/public/blog/index.html
      +++ b/public/blog/index.html
      @@ -1 +1 @@
      -Blog Posts
      \ No newline at end of file +Blog Posts
      \ No newline at end of file diff --git a/public/blog/nfc-misconceptions/index.html b/public/blog/nfc-misconceptions/index.html index 2b7e56f..6c84f9d 100644 --- a/public/blog/nfc-misconceptions/index.html +++ b/public/blog/nfc-misconceptions/index.html @@ -1 +1 @@ -Misconceptions about NFC

      Misconceptions about NFC

      2024-01-19

      Alert

      I made a mistake while writing this blog post - somehow forgetting that security isn't unambiguous. You can actually skim NFC chips from a certain distance (having a limited distance is still an important factor though!), and though I think some of what I said below still applies you're better off ignoring it all.

      There are, of course, a whole range of problems with skimming NFC chips from a distance so my point - don't be so worried - would still stand.

      Either way, I recommend you take this with a grain of salt.

      Introduction#

      NFC (short for Near-Field Communication) is the set of communication protocols which allow for near-field communication between two electronic devices. One of the most prominent uses of this technology are contactless transactions - this includes services like Google and Apple Pay as well as all of your contactless-enabled cards.

      It's been a while since my last blog past, but this one will be brief too - I'm writing here for the sake of clearing up some misconceptions people have about NFC.

      The Misconceptions#

      Inspiration#

      While talking with a friend on a WhatsApp group chat a few days ago about a program I found on my jailbroken iOS device - Aemulo - I was informed of 'subway skimmers'; devices that could supposedly read data from contactless-enabled devices (via NFC) and would be able to emulate them.

      The idea behind the above example was that someone with malicious intent could place such a device in a public location and take their contactless devices for their malicious purposes. When I heard of this, my first thought was: hoax, and I think that it was rightfully so.

      What exactly is wrong with this?#

      Several things. I'm no expert in cybersecurity - everyone's a student in some way, but I was sure that NFC was, as it's name implies, for near-field communication. I'm repeating myself here, but that's kind of the point. Various reliable resources, including Wikipedia, show that NFC has a maximum range of only a few centimetres - which makes sense, no?

      And yet, whatever source my friend had for 'subway skimmers' gave the impression, or otherwise stated, that it would work within a radius of a few feet, which is just impossible. Upon voicing my doubts, I was then told that 'with a powerful enough antenna, it's possible'. Hoaxes sure are convincing, aren't they? Unfortunately, I am not able to find the source of my friend's misinformation.

      See, NFC only works within a few centimetres anyways. Even if it could magically work within a radius of a few feet, you've got to take in the electromagnetic interference that the clothes and wallets people have would bring to any malicious device. The point of electromagnetic interference is especially true over a huge area of a few feet (relatively), where you've got several NFC-enabled devices.

      Where it's actually an issue#

      Of course, that isn't to say there aren't any issues with NFC and malicious readers - I'm just saying that the word getting around is horribly unrealistic. For example, a realistic example of a malicious NFC reader would be one placed on the card slots in cash machines - you get:

      • The short range (< ~20 cm)
      • Only one device
      • Lots of devices to read!

      And so, you've got someone so much more realistic that poses an actual threat!

      Conclusion#

      The information above, which I deem accurate, is there. What I suggest be taken away from this is pretty much the same as what is was for my blog post on hoaxes - do some fact-checking!

      powered by zola and serene
      \ No newline at end of file +Misconceptions about NFC

      Misconceptions about NFC

      2024-01-19

      Alert

      I made a mistake while writing this blog post - somehow forgetting that security isn't unambiguous. You can actually skim NFC chips from a certain distance (having a limited distance is still an important factor though!), and though I think some of what I said below still applies you're better off ignoring it all.

      There are, of course, a whole range of problems with skimming NFC chips from a distance so my point - don't be so worried - would still stand.

      Either way, I recommend you take this with a grain of salt.

      Introduction#

      NFC (short for Near-Field Communication) is the set of communication protocols which allow for near-field communication between two electronic devices. One of the most prominent uses of this technology are contactless transactions - this includes services like Google and Apple Pay as well as all of your contactless-enabled cards.

      It's been a while since my last blog past, but this one will be brief too - I'm writing here for the sake of clearing up some misconceptions people have about NFC.

      The Misconceptions#

      Inspiration#

      While talking with a friend on a WhatsApp group chat a few days ago about a program I found on my jailbroken iOS device - Aemulo - I was informed of 'subway skimmers'; devices that could supposedly read data from contactless-enabled devices (via NFC) and would be able to emulate them.

      The idea behind the above example was that someone with malicious intent could place such a device in a public location and take their contactless devices for their malicious purposes. When I heard of this, my first thought was: hoax, and I think that it was rightfully so.

      What exactly is wrong with this?#

      Several things. I'm no expert in cybersecurity - everyone's a student in some way, but I was sure that NFC was, as it's name implies, for near-field communication. I'm repeating myself here, but that's kind of the point. Various reliable resources, including Wikipedia, show that NFC has a maximum range of only a few centimetres - which makes sense, no?

      And yet, whatever source my friend had for 'subway skimmers' gave the impression, or otherwise stated, that it would work within a radius of a few feet, which is just impossible. Upon voicing my doubts, I was then told that 'with a powerful enough antenna, it's possible'. Hoaxes sure are convincing, aren't they? Unfortunately, I am not able to find the source of my friend's misinformation.

      See, NFC only works within a few centimetres anyways. Even if it could magically work within a radius of a few feet, you've got to take in the electromagnetic interference that the clothes and wallets people have would bring to any malicious device. The point of electromagnetic interference is especially true over a huge area of a few feet (relatively), where you've got several NFC-enabled devices.

      Where it's actually an issue#

      Of course, that isn't to say there aren't any issues with NFC and malicious readers - I'm just saying that the word getting around is horribly unrealistic. For example, a realistic example of a malicious NFC reader would be one placed on the card slots in cash machines - you get:

      • The short range (< ~20 cm)
      • Only one device
      • Lots of devices to read!

      And so, you've got someone so much more realistic that poses an actual threat!

      Conclusion#

      The information above, which I deem accurate, is there. What I suggest be taken away from this is pretty much the same as what is was for my blog post on hoaxes - do some fact-checking!

      powered by zola and serene
      \ No newline at end of file diff --git a/public/blog/selfhost-search-engine/index.html b/public/blog/selfhost-search-engine/index.html index d3aaf3b..15ce4ec 100644 --- a/public/blog/selfhost-search-engine/index.html +++ b/public/blog/selfhost-search-engine/index.html @@ -1,4 +1,4 @@ -Host your own private search engine with SearXNG

      Host your own private search engine with SearXNG

      2023-12-31

      Introduction#

      SearXNG, put in its own words, is a 'free internet metasearch engine'. Note that it describes itself as a metasearch engine specifically - unlike your traditional search engine like Google or Bing, SearXNG does things a little bit differently: It aggregrates the results produced by search services like those aforementioned, and feeds them back to you.

      Because of this key detail and a great deal of effort by those who've helped shape it, SearXNG protects your privacy, and does so very well:

      • Private data from requests going to the search services it aggregrates results from is removed
      • It does not forward anything to any third parties through search services
      • Private data is also removed from requests going to the results pages

      Furthermore, SearXNG can be configured to use Tor.

      However, the aspect of privacy isn't the only great selling feature of the engine; from my use of the engine so far, it's also great at...searching (is that a surprise?). The fact that it's a metasearch engine plays a key role in this, as it provides SearXNG the ability to pull content more efficiently and gives you the ability to further tailor your experience.

      Setting up SearXNG#

      Installing the service#

      As you may have expected if you've used NixOS for a while, searxng is packaged and has a service on NixOS. This makes setting it up just that much easier.

      To get started, place somewhere in your system config the following:

      {
      +Host your own private search engine with SearXNG

      Host your own private search engine with SearXNG

      2023-12-31

      Introduction#

      SearXNG, put in its own words, is a 'free internet metasearch engine'. Note that it describes itself as a metasearch engine specifically - unlike your traditional search engine like Google or Bing, SearXNG does things a little bit differently: It aggregrates the results produced by search services like those aforementioned, and feeds them back to you.

      Because of this key detail and a great deal of effort by those who've helped shape it, SearXNG protects your privacy, and does so very well:

      • Private data from requests going to the search services it aggregrates results from is removed
      • It does not forward anything to any third parties through search services
      • Private data is also removed from requests going to the results pages

      Furthermore, SearXNG can be configured to use Tor.

      However, the aspect of privacy isn't the only great selling feature of the engine; from my use of the engine so far, it's also great at...searching (is that a surprise?). The fact that it's a metasearch engine plays a key role in this, as it provides SearXNG the ability to pull content more efficiently and gives you the ability to further tailor your experience.

      Setting up SearXNG#

      Installing the service#

      As you may have expected if you've used NixOS for a while, searxng is packaged and has a service on NixOS. This makes setting it up just that much easier.

      To get started, place somewhere in your system config the following:

      {
           # ...
           services.searx = {
           enable = true;
      diff --git a/public/blog/selfhost-tailscale/index.html b/public/blog/selfhost-tailscale/index.html
      index 2f41b5d..0498429 100644
      --- a/public/blog/selfhost-tailscale/index.html
      +++ b/public/blog/selfhost-tailscale/index.html
      @@ -1,4 +1,4 @@
      -Take control of tailscale with headscale

      Take control of tailscale with headscale

      2024-01-10

      Tailscale#

      Tailscale is a modern tunnel VPN service based on WireGuard® which provides a 'free' and secure means of communication between devices within a tailnet - a private network which Tailscale provides its users.

      Essentially, it provides a private and secure way of accessing any of your devices, no matter where you are in the world - a personal WAN encompassing the entire world.

      And on top of this, Tailscale is completely free and open-source! At least, on the surface...

      Not FOSS? What do you mean?#

      There's a quite popular saying within the free and open-source software community, which goes along the lines of:

      If you aren't paying for the product, then you are the product.

      Which makes perfect sense. It's the modern era so anything significant is powered by some form of modern technology, data is the new oil, and so on. In exchange for offering you 'free' services, companies collect and use your data; while there supposedly are laws in place preventing the inconcensual collection of data in most countries around the world, your personal data may still be traded unethically and inconsensually.

      I personally am of the opinion that these laws are worth absolutely nothing if people aren't educated in how their data is being used, and what specifically is being collected. But I digress, and that's a blog post for another time.

      I also think it's quite unfortunate that users of paid services still have their personal data collected in the unethical manner outlined above, despite the fact that they are paying for the service...

      In the context of Tailscale: while their clients are all open-source, their control server - the thing that's managing and rerouting everything going through what they advertise as your 'secure' VPN, isn't. You've got no idea what this thing is doing with the traffic it recieves.

      Headscale#

      For every problem, there's probably a solution somewhere. And luckily for this one (which may or may not actually be a problem for you), we've got Headscale as our solution. Headscale's a self-hostable, open-source alternative to the Tailscale control server, and aims to 'provide self-hosters and hobbyists with an open-source server they can use for their projects and labs'.

      Installing on NixOS#

      Moving on to installing and setting up Headscale on NixOS.

      # ...
      +Take control of tailscale with headscale

      Take control of tailscale with headscale

      2024-01-10

      Tailscale#

      Tailscale is a modern tunnel VPN service based on WireGuard® which provides a 'free' and secure means of communication between devices within a tailnet - a private network which Tailscale provides its users.

      Essentially, it provides a private and secure way of accessing any of your devices, no matter where you are in the world - a personal WAN encompassing the entire world.

      And on top of this, Tailscale is completely free and open-source! At least, on the surface...

      Not FOSS? What do you mean?#

      There's a quite popular saying within the free and open-source software community, which goes along the lines of:

      If you aren't paying for the product, then you are the product.

      Which makes perfect sense. It's the modern era so anything significant is powered by some form of modern technology, data is the new oil, and so on. In exchange for offering you 'free' services, companies collect and use your data; while there supposedly are laws in place preventing the inconcensual collection of data in most countries around the world, your personal data may still be traded unethically and inconsensually.

      I personally am of the opinion that these laws are worth absolutely nothing if people aren't educated in how their data is being used, and what specifically is being collected. But I digress, and that's a blog post for another time.

      I also think it's quite unfortunate that users of paid services still have their personal data collected in the unethical manner outlined above, despite the fact that they are paying for the service...

      In the context of Tailscale: while their clients are all open-source, their control server - the thing that's managing and rerouting everything going through what they advertise as your 'secure' VPN, isn't. You've got no idea what this thing is doing with the traffic it recieves.

      Headscale#

      For every problem, there's probably a solution somewhere. And luckily for this one (which may or may not actually be a problem for you), we've got Headscale as our solution. Headscale's a self-hostable, open-source alternative to the Tailscale control server, and aims to 'provide self-hosters and hobbyists with an open-source server they can use for their projects and labs'.

      Installing on NixOS#

      Moving on to installing and setting up Headscale on NixOS.

      # ...
       {
         # ...
         services.headscale = {
      diff --git a/public/blog/server-hardware-selection/index.html b/public/blog/server-hardware-selection/index.html
      index 5712ef4..7b6ec17 100644
      --- a/public/blog/server-hardware-selection/index.html
      +++ b/public/blog/server-hardware-selection/index.html
      @@ -1 +1 @@
      -Selecting hardware for a (home) server

      Selecting hardware for a (home) server

      2024-01-31

      Introduction#

      I see a lot of people worryingly mistaken about what a server needs (specifically, a home server). Some think that a bland and incredibly ignorant '20% budget for CPU, 30% for GPU, and the rest for the rest' plan for selecting hardware is good enough (at least, before choosing specific items) - you can't exactly be wrong when choosing hardware, but this is very, very far from right.

      Requirements#

      Server hardware needs to be low-power and resource-efficient - so as not to waste any money unnessarily, obviously. Your budget will strongly impact the specifications you can get your hands on, but I would think that even $200 is enough for a decent home server - depending on what you want to do with it. Keep in mind that you could always repurpose an old laptop or desktop lying around; it's cheap, and you get what may be a surprisingly decent machine.

      Power consumption#

      The difference between low peak and low idle power should be noted in particular. Running costs can get very high if you don't work to moderate power consumption, and probably wouldn't be something you would ignore when it comes to home servers.

      Usage of the server#

      Naturally, how a server will be used will affect pretty much everything about the hardware chosen for it. For example, if you're looking to stream games remotely, you'd go for a (perhaps powerful) dedicated GPU and would likely invest in some high-speed internet solution. As indicated by the above example of the GPU, you need to be very specific with what you choose - do you need a powerful GPU or do you not? After all, one of the last things you would want, ever, is money going to waste on something you don't need, or failing to buy something that meets your expectations.

      Conclusion#

      I only gave two points of interest when selecting a server - looking at the numbers alone, this might seem like hardly anything to consider at all. My reasons for this are:

      • Power comumption is one factor that people often forego thinking about, and an extremely important one at that.
      • Building on top of the previous point, you (probably) aren't stupid. Knowing (albeit at a very basic level) what to look out for should be enough.
      • It would be extremely difficult for me, or anyone else for that matter, to provide a truly complete solution to everyone's needs for a home server.

      Well, that's it. I wish you luck in selecting your hardware.

      powered by zola and serene
      \ No newline at end of file +Selecting hardware for a (home) server

      Selecting hardware for a (home) server

      2024-01-31

      Introduction#

      I see a lot of people worryingly mistaken about what a server needs (specifically, a home server). Some think that a bland and incredibly ignorant '20% budget for CPU, 30% for GPU, and the rest for the rest' plan for selecting hardware is good enough (at least, before choosing specific items) - you can't exactly be wrong when choosing hardware, but this is very, very far from right.

      Requirements#

      Server hardware needs to be low-power and resource-efficient - so as not to waste any money unnessarily, obviously. Your budget will strongly impact the specifications you can get your hands on, but I would think that even $200 is enough for a decent home server - depending on what you want to do with it. Keep in mind that you could always repurpose an old laptop or desktop lying around; it's cheap, and you get what may be a surprisingly decent machine.

      Power consumption#

      The difference between low peak and low idle power should be noted in particular. Running costs can get very high if you don't work to moderate power consumption, and probably wouldn't be something you would ignore when it comes to home servers.

      Usage of the server#

      Naturally, how a server will be used will affect pretty much everything about the hardware chosen for it. For example, if you're looking to stream games remotely, you'd go for a (perhaps powerful) dedicated GPU and would likely invest in some high-speed internet solution. As indicated by the above example of the GPU, you need to be very specific with what you choose - do you need a powerful GPU or do you not? After all, one of the last things you would want, ever, is money going to waste on something you don't need, or failing to buy something that meets your expectations.

      Conclusion#

      I only gave two points of interest when selecting a server - looking at the numbers alone, this might seem like hardly anything to consider at all. My reasons for this are:

      • Power comumption is one factor that people often forego thinking about, and an extremely important one at that.
      • Building on top of the previous point, you (probably) aren't stupid. Knowing (albeit at a very basic level) what to look out for should be enough.
      • It would be extremely difficult for me, or anyone else for that matter, to provide a truly complete solution to everyone's needs for a home server.

      Well, that's it. I wish you luck in selecting your hardware.

      powered by zola and serene
      \ No newline at end of file diff --git a/public/blog/setting-up-zola-nixos/index.html b/public/blog/setting-up-zola-nixos/index.html index 4d4e1f3..62b34d7 100644 --- a/public/blog/setting-up-zola-nixos/index.html +++ b/public/blog/setting-up-zola-nixos/index.html @@ -1,4 +1,4 @@ -Setting up Zola on NixOS

      Setting up Zola on NixOS

      2023-12-29

      Introduction#

      Zola is a static site generator (similarly to the infamous Hugo, which you may have already heard of) and is written in Rust. It also happens to be the framework that this site is built on!

      This blog post is a guide on setting up the site engine on NixOS specifically.

      Installation#

      Installing the package#

      zola is packaged in the nix package repository, so you just declaratively add the package to your configuration as usual: For the purposes of this guide, zola can be installed either as a system or user package.

      • As a system package:
      { pkgs, ... }: {
      +Setting up Zola on NixOS

      Setting up Zola on NixOS

      2023-12-29

      Introduction#

      Zola is a static site generator (similarly to the infamous Hugo, which you may have already heard of) and is written in Rust. It also happens to be the framework that this site is built on!

      This blog post is a guide on setting up the site engine on NixOS specifically.

      Installation#

      Installing the package#

      zola is packaged in the nix package repository, so you just declaratively add the package to your configuration as usual: For the purposes of this guide, zola can be installed either as a system or user package.

      • As a system package:
      { pkgs, ... }: {
           # ...
           environment.systemPackages = with pkgs; [
               zola # Append the package name to the list
      diff --git a/public/index.html b/public/index.html
      index bb69c8b..b9dc879 100644
      --- a/public/index.html
      +++ b/public/index.html
      @@ -1 +1 @@
      -Devraza
      avatar
      Muhammad Nauman Raza@devraza
      Programming and cybersecurity

      I'm a programmer, entry-level cybersecurity specialist, system administrator, and aspiring graphic designer. NixOS is my operating system of choice, and radiant.nvim (my bespoke distribution of neovim) is my text editor of choice.

      I also happen to be a devoted rustacean and a devout follower of the self-hosted way of life.

      My skills in programming and scripting languages I've used so far are as follows:

      • Advanced: Python, Nix
      • Intermediate: Rust, Go, E-Lisp
      • Beginner: Julia, Lua

      However, I consider myself able to work to a reasonable degree with any modern programming language.

      Other tools that I can work with include git, linux, inkscape, and GIMP.

      \ No newline at end of file +Devraza
      avatar
      Muhammad Nauman Raza@devraza
      Programming and cybersecurity

      I'm a programmer, entry-level cybersecurity specialist, system administrator, and aspiring graphic designer. NixOS is my operating system of choice, and radiant.nvim (my bespoke distribution of neovim) is my text editor of choice.

      I also happen to be a devoted rustacean and a devout follower of the self-hosted way of life.

      My skills in programming and scripting languages I've used so far are as follows:

      • Advanced: Python, Nix
      • Intermediate: Rust, Go, E-Lisp
      • Beginner: Julia, Lua

      However, I consider myself able to work to a reasonable degree with any modern programming language.

      Other tools that I can work with include git, linux, inkscape, and GIMP.

      \ No newline at end of file diff --git a/public/projects/index.html b/public/projects/index.html index 7661112..433594e 100644 --- a/public/projects/index.html +++ b/public/projects/index.html @@ -1 +1 @@ -Projects

      webchain

      A fast and minimal bookmark manager.

      #rocket
      #web
      #rust
      #bookmark
      #links

      bunbun

      A simple and adorable sysinfo utility.

      #sysinfo
      #neofetch
      #rust
      #cli

      vaporise

      A simple, featureful and blazingly fast memory-safe alternative to rm.

      #rm
      #rust
      #alternative
      #cli

      Ambition

      A fast-paced 2D MMORPG.

      #rust
      #bevy
      #mmorpg

      sage

      A collection of utilities for my home lab.

      #rust
      #homelab
      #selfhosted
      #utility
      #cli

      rustboyadvance-ng

      A rusty Nintendo™ Game Boy Advance emulator and debugger. [Deprecated]

      #rust
      #gameboy
      #emulator

      radiant.nvim

      A fast and minimal Neovim configuration framework.

      #neovim

      kagayaki.nvim

      A gorgeously soft colorscheme for Neovim.

      #neovim
      #colorscheme

      DianciEmacs

      A minimal and elegant Emacs configuration framework. [Deprecated]

      #emacs
      #config
      #diancie

      Kagayaki for Emacs

      A gorgeously soft colorscheme for Emacs. [Deprecated]

      #emacs
      #colorscheme
      #theme
      #dark

      Ambition (legacy)

      A fast-paced, text-based massively multiplayer role-playing game. [Deprecated]

      #go
      #ebiten
      #game
      #mmorpg

      Catchtwo

      A second generation, free Pokétwo autocatcher, made to stop people from wasting their money on 'premium' alternatives. [Deprecated]

      #pokétwo
      #pokémon
      #discord
      #userbot
      powered by zola and serene
      \ No newline at end of file +Projects

      webchain

      A fast and minimal bookmark manager.

      #rocket
      #web
      #rust
      #bookmark
      #links

      bunbun

      A simple and adorable sysinfo utility.

      #sysinfo
      #neofetch
      #rust
      #cli

      vaporise

      A simple, featureful and blazingly fast memory-safe alternative to rm.

      #rm
      #rust
      #alternative
      #cli

      Ambition

      A fast-paced 2D MMORPG.

      #rust
      #bevy
      #mmorpg

      sage

      A collection of utilities for my home lab.

      #rust
      #homelab
      #selfhosted
      #utility
      #cli

      rustboyadvance-ng

      A rusty Nintendo™ Game Boy Advance emulator and debugger. [Deprecated]

      #rust
      #gameboy
      #emulator

      radiant.nvim

      A fast and minimal Neovim configuration framework.

      #neovim

      kagayaki.nvim

      A gorgeously soft colorscheme for Neovim.

      #neovim
      #colorscheme

      DianciEmacs

      A minimal and elegant Emacs configuration framework. [Deprecated]

      #emacs
      #config
      #diancie

      Kagayaki for Emacs

      A gorgeously soft colorscheme for Emacs. [Deprecated]

      #emacs
      #colorscheme
      #theme
      #dark

      Ambition (legacy)

      A fast-paced, text-based massively multiplayer role-playing game. [Deprecated]

      #go
      #ebiten
      #game
      #mmorpg

      Catchtwo

      A second generation, free Pokétwo autocatcher, made to stop people from wasting their money on 'premium' alternatives. [Deprecated]

      #pokétwo
      #pokémon
      #discord
      #userbot
      powered by zola and serene
      \ No newline at end of file diff --git a/public/tags/adblock/index.html b/public/tags/adblock/index.html index 81c5ed2..b8a40be 100644 --- a/public/tags/adblock/index.html +++ b/public/tags/adblock/index.html @@ -1,3 +1,3 @@ Blog Posts
      # adblockAll Tags
      DNS-level adblock on the go with blocky 2024-05-31
      powered by zola and serene
      \ No newline at end of file +en">Blog Posts
      # adblockAll Tags
      DNS-level adblock on the go with blocky 2024-05-31
      powered by zola and serene
      \ No newline at end of file diff --git a/public/tags/blocky/index.html b/public/tags/blocky/index.html index c2d0627..92673de 100644 --- a/public/tags/blocky/index.html +++ b/public/tags/blocky/index.html @@ -1,3 +1,3 @@ Blog Posts
      # blockyAll Tags
      DNS-level adblock on the go with blocky 2024-05-31
      powered by zola and serene
      \ No newline at end of file +en">Blog Posts
      # blockyAll Tags
      DNS-level adblock on the go with blocky 2024-05-31
      powered by zola and serene
      \ No newline at end of file diff --git a/public/tags/btrfs/index.html b/public/tags/btrfs/index.html index b69d602..d9e72ed 100644 --- a/public/tags/btrfs/index.html +++ b/public/tags/btrfs/index.html @@ -1,3 +1,3 @@ Blog Posts
      # btrfsAll Tags
      RAID with btrfs 2024-12-30
      powered by zola and serene
      \ No newline at end of file +en">Blog Posts
      # btrfsAll Tags
      RAID with btrfs 2024-12-30
      powered by zola and serene
      \ No newline at end of file diff --git a/public/tags/hacking/index.html b/public/tags/hacking/index.html index c34dbca..c018990 100644 --- a/public/tags/hacking/index.html +++ b/public/tags/hacking/index.html @@ -1,3 +1,3 @@ Blog Posts
      # hackingAll Tags
      Misconceptions about NFC 2024-01-19
      powered by zola and serene
      \ No newline at end of file +en">Blog Posts
      # hackingAll Tags
      Misconceptions about NFC 2024-01-19
      powered by zola and serene
      \ No newline at end of file diff --git a/public/tags/hardening/index.html b/public/tags/hardening/index.html index ac326c0..3105cf9 100644 --- a/public/tags/hardening/index.html +++ b/public/tags/hardening/index.html @@ -1,3 +1,3 @@ Blog Posts
      # hardeningAll Tags
      Home server security 2024-03-28
      powered by zola and serene
      \ No newline at end of file +en">Blog Posts
      # hardeningAll Tags
      Home server security 2024-03-28
      powered by zola and serene
      \ No newline at end of file diff --git a/public/tags/hardware/index.html b/public/tags/hardware/index.html index 4b8de00..96c3c77 100644 --- a/public/tags/hardware/index.html +++ b/public/tags/hardware/index.html @@ -1,3 +1,3 @@ Blog Posts
      # hardwareAll Tags
      Selecting hardware for a (home) server 2024-01-31
      powered by zola and serene
      \ No newline at end of file +en">Blog Posts
      # hardwareAll Tags
      Selecting hardware for a (home) server 2024-01-31
      powered by zola and serene
      \ No newline at end of file diff --git a/public/tags/headscale/index.html b/public/tags/headscale/index.html index 5e695fa..bd94116 100644 --- a/public/tags/headscale/index.html +++ b/public/tags/headscale/index.html @@ -1,3 +1,3 @@ Blog Posts
      \ No newline at end of file +en">Blog Posts
      \ No newline at end of file diff --git a/public/tags/hoax/index.html b/public/tags/hoax/index.html index 8a91c56..2f545d8 100644 --- a/public/tags/hoax/index.html +++ b/public/tags/hoax/index.html @@ -1,3 +1,3 @@ Blog Posts
      # hoaxAll Tags
      An overview on hoaxes 2024-01-04
      powered by zola and serene
      \ No newline at end of file +en">Blog Posts
      # hoaxAll Tags
      An overview on hoaxes 2024-01-04
      powered by zola and serene
      \ No newline at end of file diff --git a/public/tags/home-lab/index.html b/public/tags/home-lab/index.html index 2c3c933..fa9b014 100644 --- a/public/tags/home-lab/index.html +++ b/public/tags/home-lab/index.html @@ -1,3 +1,3 @@ Blog Posts
      # home labAll Tags
      Selecting hardware for a (home) server 2024-01-31
      powered by zola and serene
      \ No newline at end of file +en">Blog Posts
      # home labAll Tags
      Selecting hardware for a (home) server 2024-01-31
      powered by zola and serene
      \ No newline at end of file diff --git a/public/tags/homelab/index.html b/public/tags/homelab/index.html index 2dbe86f..3048496 100644 --- a/public/tags/homelab/index.html +++ b/public/tags/homelab/index.html @@ -1,3 +1,3 @@ Blog Posts
      # homelabAll Tags
      Home server security 2024-03-28
      powered by zola and serene
      \ No newline at end of file +en">Blog Posts
      # homelabAll Tags
      Home server security 2024-03-28
      powered by zola and serene
      \ No newline at end of file diff --git a/public/tags/index.html b/public/tags/index.html index 1b35d23..f6efc77 100644 --- a/public/tags/index.html +++ b/public/tags/index.html @@ -1,3 +1,3 @@ Tags
      \ No newline at end of file +en">Tags
      \ No newline at end of file diff --git a/public/tags/nas/index.html b/public/tags/nas/index.html index d35f47d..0cd6897 100644 --- a/public/tags/nas/index.html +++ b/public/tags/nas/index.html @@ -1,3 +1,3 @@ Blog Posts
      RAID with btrfs 2024-12-30
      powered by zola and serene
      \ No newline at end of file +en">Blog Posts
      RAID with btrfs 2024-12-30
      powered by zola and serene
      \ No newline at end of file diff --git a/public/tags/nfc/index.html b/public/tags/nfc/index.html index c1f3960..eed0d8e 100644 --- a/public/tags/nfc/index.html +++ b/public/tags/nfc/index.html @@ -1,3 +1,3 @@ Blog Posts
      Misconceptions about NFC 2024-01-19
      powered by zola and serene
      \ No newline at end of file +en">Blog Posts
      Misconceptions about NFC 2024-01-19
      powered by zola and serene
      \ No newline at end of file diff --git a/public/tags/nixos/index.html b/public/tags/nixos/index.html index 2267952..9950030 100644 --- a/public/tags/nixos/index.html +++ b/public/tags/nixos/index.html @@ -1,3 +1,3 @@ Blog Posts
      \ No newline at end of file +en">Blog Posts
      \ No newline at end of file diff --git a/public/tags/privacy/index.html b/public/tags/privacy/index.html index 764a1d7..2b5eb92 100644 --- a/public/tags/privacy/index.html +++ b/public/tags/privacy/index.html @@ -1,3 +1,3 @@ Blog Posts
      \ No newline at end of file +en">Blog Posts
      \ No newline at end of file diff --git a/public/tags/raid/index.html b/public/tags/raid/index.html index 1a1b5d1..6b273ec 100644 --- a/public/tags/raid/index.html +++ b/public/tags/raid/index.html @@ -1,3 +1,3 @@ Blog Posts
      # RAIDAll Tags
      RAID with btrfs 2024-12-30
      powered by zola and serene
      \ No newline at end of file +en">Blog Posts
      # RAIDAll Tags
      RAID with btrfs 2024-12-30
      powered by zola and serene
      \ No newline at end of file diff --git a/public/tags/raid0/index.html b/public/tags/raid0/index.html index 063a945..5846a1e 100644 --- a/public/tags/raid0/index.html +++ b/public/tags/raid0/index.html @@ -1,3 +1,3 @@ Blog Posts
      # RAID0All Tags
      RAID with btrfs 2024-12-30
      powered by zola and serene
      \ No newline at end of file +en">Blog Posts
      # RAID0All Tags
      RAID with btrfs 2024-12-30
      powered by zola and serene
      \ No newline at end of file diff --git a/public/tags/raid1/index.html b/public/tags/raid1/index.html index 0513985..e893604 100644 --- a/public/tags/raid1/index.html +++ b/public/tags/raid1/index.html @@ -1,3 +1,3 @@ Blog Posts
      # RAID1All Tags
      RAID with btrfs 2024-12-30
      powered by zola and serene
      \ No newline at end of file +en">Blog Posts
      # RAID1All Tags
      RAID with btrfs 2024-12-30
      powered by zola and serene
      \ No newline at end of file diff --git a/public/tags/raid10/index.html b/public/tags/raid10/index.html index 97ffd2c..3d0581f 100644 --- a/public/tags/raid10/index.html +++ b/public/tags/raid10/index.html @@ -1,3 +1,3 @@ Blog Posts
      # RAID10All Tags
      RAID with btrfs 2024-12-30
      powered by zola and serene
      \ No newline at end of file +en">Blog Posts
      # RAID10All Tags
      RAID with btrfs 2024-12-30
      powered by zola and serene
      \ No newline at end of file diff --git a/public/tags/searxng/index.html b/public/tags/searxng/index.html index 38c45c4..627f25d 100644 --- a/public/tags/searxng/index.html +++ b/public/tags/searxng/index.html @@ -1,3 +1,3 @@ Blog Posts
      # searxngAll Tags
      Host your own private search engine with SearXNG 2023-12-31
      powered by zola and serene
      \ No newline at end of file +en">Blog Posts
      # searxngAll Tags
      Host your own private search engine with SearXNG 2023-12-31
      powered by zola and serene
      \ No newline at end of file diff --git a/public/tags/selfhosted/index.html b/public/tags/selfhosted/index.html index a6617c2..f21326e 100644 --- a/public/tags/selfhosted/index.html +++ b/public/tags/selfhosted/index.html @@ -1,3 +1,3 @@ Blog Posts
      \ No newline at end of file +en">Blog Posts
      \ No newline at end of file diff --git a/public/tags/social-engineering/index.html b/public/tags/social-engineering/index.html index 3ac34ee..7907c94 100644 --- a/public/tags/social-engineering/index.html +++ b/public/tags/social-engineering/index.html @@ -1,3 +1,3 @@ Blog Posts
      # social engineeringAll Tags
      Misconceptions about NFC 2024-01-19 An overview on hoaxes 2024-01-04
      powered by zola and serene
      \ No newline at end of file +en">Blog Posts
      # social engineeringAll Tags
      Misconceptions about NFC 2024-01-19 An overview on hoaxes 2024-01-04
      powered by zola and serene
      \ No newline at end of file diff --git a/public/tags/sysadmin/index.html b/public/tags/sysadmin/index.html index a1fcb3c..9450d35 100644 --- a/public/tags/sysadmin/index.html +++ b/public/tags/sysadmin/index.html @@ -1,3 +1,3 @@ Blog Posts
      # sysadminAll Tags
      Selecting hardware for a (home) server 2024-01-31
      powered by zola and serene
      \ No newline at end of file +en">Blog Posts
      # sysadminAll Tags
      Selecting hardware for a (home) server 2024-01-31
      powered by zola and serene
      \ No newline at end of file diff --git a/public/tags/tailscale/index.html b/public/tags/tailscale/index.html index b3d5127..e72b63b 100644 --- a/public/tags/tailscale/index.html +++ b/public/tags/tailscale/index.html @@ -1,3 +1,3 @@ Blog Posts
      \ No newline at end of file +en">Blog Posts
      \ No newline at end of file diff --git a/public/tags/zola/index.html b/public/tags/zola/index.html index ae6f0fa..59a5e7f 100644 --- a/public/tags/zola/index.html +++ b/public/tags/zola/index.html @@ -1,3 +1,3 @@ Blog Posts
      # zolaAll Tags
      Setting up Zola on NixOS 2023-12-29
      powered by zola and serene
      \ No newline at end of file +en">Blog Posts
      # zolaAll Tags
      Setting up Zola on NixOS 2023-12-29
      powered by zola and serene
      \ No newline at end of file diff --git a/templates/_custom_css.html b/templates/_custom_css.html index 0762df3..86d77f2 100644 --- a/templates/_custom_css.html +++ b/templates/_custom_css.html @@ -1,3 +1,6 @@ + + +