In my homelab I use Bitnami’s sealed secrets to commit the encrypted secrets to git and deploy with ArgoCD.
- 0 Posts
- 6 Comments
Joined 8 months ago
Cake day: September 18th, 2024
You are not logged in. If you use a Fediverse account that is able to follow users, you can follow this user.
Which user do you use to run the podman command? Confirm with
whoamiNote that the sysctl
net.ipv4.ip_unprivileged_port_startcan be used to allow non-root users to bind to ports <1024, this might be configured in MicroOS, I don’t know.
1·1 month agoI run some containers based on Fedora, mainly because I know the userspace and I don’t care about the size.
I use fail2ban to ban IPs that fall to login and also IPs that perform common scans in the reverse proxy
On the other hand I value Authelia single configuration file which I can version control in git. Authentik is a click-ops burden.
The Ansible playbooks I use to deploy it are the documentation.