I’ve run Yunohost for quite a while and a few of these are inaccurate

1). maybe, if you’re putting it in a VPS. But there’s also VPN, Tailscale, and I believe Headscale apps available 2). I’ve barely ever run the CLI, especially for Yunohost commands. Even for system and package updates, its not necessary. I do wish there was a built in terminal tho 3). eh, I mean sometimes but its per-app and its either-or. so typically I’ll check the install page for subdomain and set that up. And remember, some of that is upstream constraints 4). yeah, that’s the most annoying one, tbh. But the ones that are starred or maintained are typically very good, 5). I’ve had good times and bad on the forums, about par for FOSS. heard gokd things about the chat. And for maintained packaged, github issues are answered quickly IMHO 6). I mean, its 12 now and you want it stable. Update your sources.list if ya want 7). this is only true of some few apps, but almost always its listed in the install screen.

I kinda agree, but I’ve been very impressed with Cosmos Cloud. I ve got the full 400 package marketplace, and having all that on docker, auto-updates, and good user auth is nice.

I’m using it as a frontend/services and Yunohost as a backend/datacloud/DevOps since it seems to be more robust and reliable long-term. The user management, email, XMPP, and (mostly) transferrable auth is top notch, not to mention default hardening like fail2ban, GUI ssh port shift, LEcerts, etc. Just wish they’d add in a docker system like Cosmos, it’d really fix most of the problems, IMHO

{well-ackshully-glasses} Debian 12 {/well-ackshully-glasses}

So idk if this is the same thing as what you’re looking for, but I’ve been planning something similar but with a lower budget, lol

Eventually I’m going to run something like OwnTone on a local server to play my personal collection. I have Google Nest Audio around (mic off) to have large sound but small footprint. And for other speakers or systems that don’t automatically connect to OwnTone, something like a WiiM Mini could work well as a bridge streaming device.

Don’t do Waydroid, its way too slow and buggy for what you’re wanting. I’d highly suggest Genymotion and have been using it on touchscreen 2in1s for a few months without issue, even with Play Store

Checks out: while they CAN move forward, they highly prefer to move side to side

If you’re wanting to do something like that, you’re probably best running Proxmox as a bit of a hypervisor, then Yunohost in a Debian VM on top, and assign something like “home.domain.tld” to Yunohost and get your “stable” family services running.

Then you can try out other stuff like Coop, Cosmos, OMV, Caprover, Tipi, etc as other VMs if you wanna try adding something Yunohost can’t or doesn’t do well. Or if you wanna extend your DevOps skills without messing up family-prod. I mean, you could even have another Yunohost as a “sandbox.domain.tld” before new service deploy.

I’ve had Yunohost running in some way for probably 4+ years? It’s relatively solid, I can mostly depend on it without any issues. I like the SSO/LDAP user auth and perms, and the default fail2ban and ability to change ssh port from the UI. The update and system services pages are nice.

What I don’t like is how apps are all installed locally instead of using containers or VMs. And resources are shared, so if one app uses, for instance, MongoDB, and another app needs it as well, they have to share the same one. It makes things run a bit leaner, but I do worry a bit about data bleed if there’s some vulnerability. And the apps are really hit and miss, since they have to be packaged, managed, and issue-tracked independently for this platform instead of the main app/project. So you find lots of orphaned or half-maintained apps that should be great otherwise.

So you either suck it up and deal, or become a bit of a hacker/maintainer yourself on apps you care the most about. But if I wanted to get that involved I’d just roll a manual build myself. I submit issues and try to help where I can, but that’s not where I want to be.

You could probably install something like Portainer and manually edit the NGINX config/homepage to hack some docker in there, but idk if I care enough to do that.

Eh, it is what it is. I have a full family life and a job screwing with computers all week. I don’t want to deal with spinning up, troubleshooting, and maintaining a mini devops stack.

I don’t want to spend so much personal time to keep up with all the management and config, but I don’t think that means someone like me should have to live in a big tech world. If there’s a good framework that helps keep things easy to manage and secure for a minimal amount of input and time, even if I could run most of it myself manually with a lot more time investment, there’s no reason not to, IMHO.

Yeah, I know they’re different. I was just giving some background about what was going on, sorry if I confused.

Just wondering if anyone has used what seems to be their compose/swarm config tool “abra”, especially multiserver, and have any feedback about it. I like that it seems to be pretty agnostic after doing its work, they say you can backup and export the config and use it elsewhere mostly as-is. Just can’t see much anywhere else about it.

Dodge City, maybe

There’s magic in those old 90s Hondas, I’ve seen it. I had a stripped valve cover bolt and couldn’t figure out how I could fix it short of a head replacement. The answer? Plug it with a rubber and metal washer sandwich and a bolt, and tighten the ones next to it a lil more. Never leaked. Thing was a champ

Absolutely, oil and car companies. And they were behind the push for highway bypasses (conveniently running through immigrant and PoC neighborhoods) and suburbs (many of them redlined and outright racial exclusionary.

Dude, thank you for saying that about the Mexican food. I’ve been saying this online for a while and it’s not well understood how good it is all the way across the US, even in small towns. Now, there are regional differences, as you would expect, but it’s only a bit worse than Mexico and way better than just about anywhere else in the world

Americans don’t play about Mexican food. We want it high quality, high quantity, and we’ll support it

Unless its something like Bitwarden where you can use it even if they go offline, can take an encrypted or unencrypted backup of your local passwords/accounts, and are FOSS so you can easily self-host your own version if anything happens where you want to cut ties (thanks Vaultwarden!). They’re an awesome company and one I highly suggest supporting with a paid account

Thank you, I missed that

Most of this is right, but needs some things corrected.

LOS is kept up by individual maintainers of the devices, and so it can cover more of them. But that also means you expand your attack surface to lineage, maintainer, microg, etc. And that’s just on supported devices. Unofficial devices are even more wild-west, having much delayed releases, OS updates, security updates, everything.

Not only that, but Lineage requires that you unlock your bootloader and often have your phone rooted to be able to do everything. This introduces special points of insecurity and possible issues in the future.

GOS is from a single source, for a single line of phones, and uses a designed method to load cryptographically signed ROMs onto the device, and then validate updates using the same method. The Play Services are sandboxed and disabled by default, so you can just never use them if you want. Overall, this makes for a more cohesive device. One that is more private and more secure. Especially so, when you can buy a new Pixel device and have guaranteed updates for as long as Google will do so for the same device.

Ew

Highly agreed, and I came from Standard Notes most recently. Desktop, web, mobile, syncing, and does it all well enough I bought the upgraded pro version to support the model

Try Flex Launcher: https://complexlogic.github.io/flex-launcher/

Or, given 10 million years head start plus building time, you could use a Caplan Thruster stellar engine to make that 100% sure