hamsda

Thank you for the tipp!

Though I gotta ask: would ZFS still bring an advantage, considering that the RAID is going to be managed inside the external RAID enclosure, so ZFS would never see the actual disks? Or did I misunderstand how these enclosures work?

Are the documents you edit with the online editor files which are visible in the online drive? Does nextcloud use the open document specifications for saving documents (e.g. .odt, .ods)? Can you view these files without opening them in the editor (like the preview in google drive)?

If so, that is acceptable. The document thing is more for completion, I don't handle documents all too often. And if the online editor is bad or not working but the files are visible and offline-syncable in the drive to some desktop client and they are using the open document format, I can edit them with libreoffice.

Thanks for the heads-up!

Oh, it's nice to hear somebody already did that, thank you!

Did you have any hiccups or general problems with nextcloud or calendar/contacts/photos sync? Did you do any specific thing to harden security, other than using ufw, fail2ban and changing sshd config?

Thank you for your input!

I also thought about the 3-2-1 backup rule, but am unsure if that is overkill.

My VM-backups and file-level-backups are proxmox backup server (pbs) backups. Meaning, to have them offsite, I'd need to rent a dedicated root server on which I am able to install pbs to act as an offsite sync-target. With TB of backups, this is gonna get very costly very fast.

I thought about regularly exporting encrypted calendar and contacts onto some free online storage, hoping I can automate this process.

With what I have layed out in my post, to lose contacts and calendar events, both my intel NUC and the zotac mini-PC have to be corrupted at the same time. Or both RAIDs simultaniously failing both drives. Am I not paranoid enough or is that an acceptable level of failure-safety?

I will. Thank you for your advice!

I'm a little reassured that at least I am not the only one seeing no problems with this plan :)

All of this will be sitting in my living room somewhere, so I'd like to keep the number of devices and the space I need for the setup to a minimum.

I do know Synology has very solid products, but I'd rather do it myself and have full control over the servers. I use Fedora and my VMs all run debian. I also try to deploy as many services as possible with docker, as that makes it very easy to migrate stuff to another machine and test the next version before using it in production, if the need arises.

I have some old mini-PC in my living room that's running a hypervisor and a few VMs. One of those VMs is used for pihole. I used docker and docker compose for this.

My docker-compose.yaml is a little more fancy than that because I deploy it via GitLab CI, but here's the kind of config you can expect:

# More Info and full example docker-compose here:
#   https://github.com/pi-hole/docker-pi-hole/#running-pi-hole-docker
services:
  pihole:
    container_name: pihole
    hostname: pihole
    image: pihole/pihole:latest
    ports:
      - "53:53/tcp"
      - "53:53/udp"
      - "80:80/tcp"
      - "443:443/tcp"
    environment:
      PIHOLE_UID: '1000'
      PIHOLE_GID: '1000'
      TZ: 'YOUR_SERVER_TIMEZONE'
      FTLCONF_webserver_api_password: "YOUR_PIHOLE_ADMIN_PASSWORD"
      FTLCONF_dns_listeningMode: 'all'
    volumes:
      - etc-pihole:/etc/pihole
    restart: unless-stopped

I mostly copy-pasted that from the official pihole docker compose quick-start example.

To update, you would just need to run the following in the same directory as the docker-compose.yml file.

docker compose stop
docker compose pull
docker compose up -d

If pihole is the only thing you really want to run, a new machine and hypervisor are too much for just that. If ad-free surfing is all you want, you can just get a raspberry pi and setup pihole on that thing. You can still use docker compose, as the pihole images are available for ARMv6, ARMv7 and ARM64.

Thanks for the info! Glad I never bought one of those :)

You're welcome!

What's so bad about the QVO drives?

but maybe not when you wrap up the HMB drive in a SATA shell.

That makes sense, with HMB being an NVME feature. I tried searching for HMB and SATA, but did not find any information about if it will or won't work, so it's probably best to assume that it won't.

I always use Samsung for my SSD drives. I bought my first Samsung 250 GB SSD back in 2017, only purchased Samsung SSDs since then. Not one has died yet.

You can get a Samsung EVO 870 (1TB SATA SSD) for ~90$ on amazon.

Debian will literally take any storage you throw at it anyway.

I do not know anything about HMB, does it really bring performance improvements, considering that SSD disks are pretty fast anyway?

And then you critize the government, get a sham trial and are marked for your crime as some kind of "garbage person" without rights. Afterwards, execution or locking away and maybe throw in some torture for the fun of it. This is reality already. It just hasn't been done to you.

You can feel about it however you want, I may even feel the same with some people, but as an adult, we have to use logic.

The point is, there must never be an official group of people without rights you can just "get rid of" im some way. This limit is not for the punished, it exists to shield the innocent.

Isn't being jailed forever also an "easy way out"? I'm sure there are people on this planet who are not in jail, but, because of too little money or other circumstances, have less and get treated worse than people in jail.

Also, if being alive really is hell to you, you might want to do something about this.

[edit]

It seems this has been unclear. By "do something about this" I meant speaking about the problem or therapy or the like. Yes, life sucks some times, but if being alive is hell for you, you got a problem to fix.