A comprehensive hands-on guide to deploying web apps with a low-cost and simple self-managed solution.
I don’t like this. The post tells you to do so many unnecessary things and gives zero explanation. Of course AI is mentioned in the first paragraph already, and this screams vibe coding with no understanding.
Why the Cloudflare stuff?
What do you need request caching for?
Why use a nonstandard SSH port? Obscurity is not security.
What is the purpose of all the other SSH config changes, which heavily alter the defaults in a way that people might not expect?
Your configuration makes the system reboot automatically, but you fail to mention that.
Then the rest just quickly glosses over setting up some obscure container management frontend and deploying something to it. Again, no explanations. Who needs this?
Edit: I only now realize that we’re in /c/buyeuropean. Why would you recommend Cloudflare, Docker and GitHub here? Is this a joke?
Good points, but nonstandard SSH port is pretty useful to detect malicious connection attempts.
No it’s not. That’s what
/var/log/auth.logis for.
non-standard ssh port is actually a pretty good security measure. there are thousands of automated tools just hammering the standard ports of every ip they can reach, and if you have password auth enabled they’ll get in eventually.
Then disable password auth and ban their IP? SSH is not even a common intrusion path, those crawlers look for open gates, nothing else.
oh yeah that’s better. but it’s also harder for a newbie. not a lot harder, but still.
- I’m not the author of the blog post
- The blog post indeed mentions Cloudflare, Docker and Github, but at least it’s using Hetzner. Perfect is the enemy of the good.
- Feel free to post “100% EU stack” content. It’s quite difficult to find.
You’re not the author and I still think you should not have posted this, especially not in this community.
The post makes heavy use of Cloudflare and Docker, which are both either unnecessary for the task or have more open alternatives. The post mentions AWS, Google Cloud, and Azure, which is fair, and was not a point of my criticism. Using a European server hoster just doesn’t even meet my idea of a bare minimum for a community like this.
You want a European stack? Use Proxmox, which is German, or just straight LXC. Cloudflare really serves no purpose here, kick it out. Then host your sources on Codeberg which is also German. How difficult was that?
You want a European stack? Use Proxmox, which is German, or just straight LXC. Cloudflare really serves no purpose here, kick it out. Then host your sources on Codeberg which is also German. How difficult was that?
I had a quick look.
I found this blog article which explains how to install Proxmox: https://blog.louis-vallat.dev/proxmox-with-zfs-full-disk-encryption-and-remote-unlocking-on-hetzner/
But it uses a GitHub script
wget https://github.com/stcz/initramfs-tools-network-hook/archive/main.zip
So by your logic it shouldn’t be posted either.
As I said in the above comment, you are more than welcome to post articles you find that use 100% EU elements. As you said yourself, it can’t be that difficult to find.
My personal experience is that there is always a GitHub or GitLab dependency at some point, or the blog is hosted on a US-based platform, or it is displayed using a US CMS.
Now you’re going out of your way, to find more dubious third party scripts, instead of going through the official docs, just to try and prove a point wrong which I haven’t even made? Welcome to my block list.
