my adventures in #selfhosting - day 212 (consolidating edition)

If you followed my (mis)adventures yesterday and all the issues I had with caching and #CDN for my #Wordpress site, well, I found a solution.

​ Something that had been in front of me the whole time
​ ZERO additional costs

Ta-da: ​

​: https://news.elenarossini.com/my-so-called-sudo-life/my-adventures-in-self-hosting-day-212-consolidating-edition/

#Ghost #VarnishCache

Never a dull day in this #selfhosting journey: editing important #DNS records while your child is on summer holiday - and may come see you every few minutes - is a very interesting exercise in concentration.

Special thanks to nonna (grandma) for helping with childcare this morning ​

I'm hoping I'm successful in setting up a more solid #CDN for my personal website because I keep DDOS'ing myself (from a simple Mastodon reply to a federated Wordpress post - 8k followers will do that).

Wish me luck!

P.S.: another moment of gratitude / deep appreciation for #VarnishCache which has been providing rock solid caching to my #Ghost site. Now I need to take care of my #Wordpress site with a pro CDN solution (Varnish isn't an option sadly bc of the Wordpress setup / I don't have direct access to the server)

my adventures in #selfhosting - day 186 (bandwidth edition)

A moment of gratitude for #VarnishCache and how incredibly it has protected my self-hosted #Ghost blog from the so-called "Mastodon stampede" / "Mastodon hug of death":

Yesterday I published a page on my site with the French-language version of the Fediverse promo video https://news.elenarossini.com/fedivers-video/

Then I posted a message on my Mastodon account about it, asking people to boost it, so that people in the Francophone world could see it.

How many boosts did I get? 1300 so far (you people are amazing).

Well, my Ghost blog is still standing and super fast. Varnish is INCREDIBLE and I could not recommend it more.

Oh and my VPS with PeerTube is also still standing because I embedded the French version of the video on my Ghost site, so that hundreds of Mastodon servers attempted to fetch the cover image of the POST and not the cover image of the video.

Bandwidth consumption (for my VPS with GoToSocial and PeerTube) so far this month: 0.457 TB (my limit is 8 TB)

Bandwidth consumption for my VPS with Ghost: 0.06 TB (limit: 4 TB)

So far so good ​

#MySoCalledSudoLife

I'm 100% on board with this:

https://gitlab.gnome.org/GNOME/libxml2/-/issues/913

Both that the security theater is that. (In #VarnishCache we could not get a CVE under embargo because we did not have enough bugs calling for a CVE!)

But also that unpaid FOSS maintainers dont owe anybody nothing:

https://queue.acm.org/detail.cfm?id=3674985

#varnishcache uses miniobj.h by @bsdphk which puts an unsigned int magic value at the start of each "thing pointed to", which is really helpful to guard against stray pointers, use-after-free and whatnot.

today i ran sth like

od -A None -t x4 -w 4 | grep -E <all possible magics> | sort | uniq -c | sort -rn

on a 170gb core dump to make sure that i do not overlook a memory leak. not particularly efficient, but very reliable through simplicity.

I am somewhat torn on bug-bounties, but we'll leave that for another day.

The combination of bug-bounties and AI generates a "make-money-fast" economic opportunity, at the cost of FOSS maintainers.

https://www.theregister.com/2025/05/07/curl_ai_bug_reports/

For the record: #VarnishCache does not pay out bug-bounties (even if we wanted to, we have no money) and this shit-show will certainly not make us start.

Your periodic reminder that #microsoft is not a competent or serious company:

https://blog.orange.tw/posts/2025-01-worstfit-unveiling-hidden-transformers-in-windows-ansi/

(@bagder is remarkably restrained in the quoted responses. I would have gone off the rails, but do not need to, because we decided on day one that #varnishcache would not run on Windows).

If you think that is not bad enough, read the Cyber Safety Review Board's report about the Microsoft Exchange clowncar:

https://www.cisa.gov/sites/default/files/2024-04/CSRB_Review_of_the_Summer_2023_MEO_Intrusion_Final_508c.pdf

vmod-dynamic, our #varnishcache module for dynamic backends from #dns (A/CNAME and SRV records) has received some bug fixes and workarounds for issues in Varnish-Cache 7.5 and 7.6.

The new wait_timeout and wait_limits parameters are now supported.

See the changelog for details: https://github.com/nigoroll/libvmod-dynamic/blob/master/CHANGES.rst#76-branch

A release branch for 7.6 has been created: https://github.com/nigoroll/libvmod-dynamic/tree/7.6

HAPPY 18TH BIRTHDAY #VarnishCache ! To celebrate this memorable occasion, we have just tagged Version 1.0.0-rc1 of https://gitlab.com/uplex/varnish/slash, which contains fellow, our advanced, #io_uring based, high performance, eventually persistent, always consistent #opensource storage engine.
Read the full announcement: https://varnish-cache.org/lists/pipermail/varnish-announce/2024-February/000762.html
And the changelog: https://gitlab.com/uplex/varnish/slash/-/blob/master/CHANGES.rst?ref_type=heads