TY for mentioning/explaining scoping.

I thought I had a lot of RAM with 64

Import it into the trust store in the browser/OS. It should be the same (or very similar) operation for a self-signed cert and a CA that isn’t subordinate to the standard internet root CAs.

If you can’t import your own root CA cert then you’re probably screwed on both fronts and are going to have to use certs issued by a public CA that’s subordinate to a commonly trusted root CA.

My point here is that there’s little distinguishing a self-signed cert and a cert issued by your own private CA for most people that are self-hosting.

Trust the self signed cert. Works similarly to trusting a CA.

Running your own CA is essentially still a form of self signed. Though it will work better for some use cases (at the cost of more complexity)

You don’t need a public DNS record for https to work. You can just use public external certs as long as it’s for a domain you own. You don’t need to setup the same domains externally.

If you want certs for a domain you own, then yeah you’re looking at self signed.

I dunno, they pretty much all work the same for me.

Just to cover the obvious:

1. Double check the cable is plugged in
2. Double check that you have a green light on the NIC

It has to be in the same subnet as your router.

Let’s Encrypt is just as secure as paid certs. They’re held to the same security standard.

Truly a Taco Bell-level take.

Doesn’t it do dx12 translation?

Yes, they are.

I believe this replaces esync and fsync. IIRC it’s slightly faster and has the benefit of being mainlined.

Ceph is a huge amount of overhead, both engineering and compute resources, for this usecase.

Sometimes I think this community should be called homelab instead of selfhosted based on the kinds of questions

What’s the cost and impact of downtime for you? If you’re doing this for personal use it’s probably minimal for both so doesn’t really matter. If you want to try the new thing and you’re not afraid of the time investment or potential downtime then go for it

Runc is native.

It’s been a long time since I took it but these are two I recall being helpful. There is a ton of material out there on this cert. I think I recall the official book being helpful too.

https://www.professormesser.com/network-plus/n10-008/n10-008-video/n10-008-training-course/

https://youtu.be/_QBY29dmr-M?si=hmUo22xwjU6oa7Aj

Part 1 and part 5 look most applicable to you. You’re unlikely to ever need or want to mess with dynamic routing unless you’re doing networking for very large networks for example.

What you’re looking for is a backup. RAID is not a backup, as another poster said it’s a tool for enduring high availability, and possibly higher throughput.

Buy a second pi and put it in another location in your house or even better at friends house then configure regular backups of your important data to it. There are also cloud services for doing backups which are great because having a location to do off-site backups to can be really hard to get as an individual.