5 days ago
I'm excited to see this in production!
V
visamp
@visamp
Posts
-
Postiz - social media scheduling tool -
New Hetzner Server Installation Best Practices5 days agoHello,
I am new to this and wanted to ask a couple questions. I am planning on installing at Hetzner and using a domain I picked up through Cloudflare. There is no one-click install, but I am not sure that would be the best idea for me regardless to not know what's going on fully.
I understand this script is all I need to run on the latest version of Ubuntu LTS, which right now is 24.04.
wget https://cloudron.io/cloudron-setup chmod +x ./cloudron-setup ./cloudron-setupMy question is twofold:
- Since my plan is to use Cloudron for my own company and in the future roll out to clients we have, is it wiser for me to go the route of a dedicated vCPU or a shared VCPU?
- Second, I want to make sure that I secure this as best as we can. Should I, or should I not, 1. disable the root user, 2. setup the non-root user and enable its keygen, 3. install Fail2Ban, and/or 4. install Crowdsec BEFORE I go through the installation as described with the wget command? Should I do this after I install Cloudron or does Cloudron do some of these items itself? Are any of these four steps here unnecessary?
Thank you for the help in advance. If there is anything that a NEW user should ask but I am missing here, please let me know where to look for insight. Cloudron seems like the best solution for me right now, but I just want to make sure I get the initial install done right so that I can focus on deploying the apps and not on the integrity of my initial installation.
Matt
- Since my plan is to use Cloudron for my own company and in the future roll out to clients we have, is it wiser for me to go the route of a dedicated vCPU or a shared VCPU?
-
Lock libretranslate to only users with api keys2 days agoIf I install a key, do I need to comment out the line below so that it is locked down to only users with api keys?
-
New Hetzner Server Installation Best Practices4 days agoThank you all so much. This is extremely helpful and will guide how I set up things. I appreciate better now that you can migrate very easily with Cloudron. So that part doesn't give me any reservations.
I didn't think of email and blacklists so thanks for pointing out a blindspot.
One more quick question. Do you recommend installing CrowdSec or not? Maybe it's overkill?
-
Lock libretranslate to only users with api keys2 days agoSo, basically, these codes work:
Add a new key:
su - cloudron -c 'source /app/code/.venv/bin/activate; ltmanage keys --api-keys-db-path /app/data/db/api_keys.db add 120'
Show all created keys:
su - cloudron -c 'source /app/code/.venv/bin/activate; ltmanage keys --api-keys-db-path /app/data/db/api_keys.db'But, the remove key doesn't seem to work for me (I don't understand the formatting) and it would be great to have a character set version as well such as from LibreTranslate: ltmanage keys add 120 --char-limit 5000
Okay, sorry for the rapid fire.