Yeah, basically. It does bundle wireguard so that it can reverse proxy services over that. That’s probably what you were thinking of.

Pangolin Is a reverse proxy for TLS/https. Headscale is the self hosted Tailscale.

I have Tailscale (actually headscale) set up on all my devices and the performance is good enough I don’t turn it off when I’m home and on the same lan as my server. The connection is p2p so it’s just a little encryption overhead. When I travel to other networks like my mobile network, or various corp wifi networks, it continues to try to get a p2p connection. Only sometimes corporate wifi networks block p2p and the traffic round trips through my VPS. It does take a lot of load off the VPS compared to the old way with openVPN. It also continues to work “for a while” if the VPS is down.

Exactly. Plex could have been “profitable” in the sense that revenue covered infrastructure and paid a handful of full time employees, but that’s not what VC money needs.

If you are using wireguard from the VPS to your home server, it buys you nothing more. If you have mobile devices connecting directly to the home server, Tailscale will let them connect directly in most cases, which is nice.

I’m willing to recommend Tailscale because I run headscale and it does basically everything a selfhoster needs. When the free version is passable, it’s harder to enshitify the commercial version.

Wordtsar looks fun. I may try it out. I feel like converting to markdown and then using a plugin to push it into Wordpress is maybe just the precursor to going full-on static site generator ;)

I used phi3:mini-4k for tagging all my bookmarks and don’t think it was any worse than a big model for that kind of job. It will run on a 10 year old cpu and a few gb of ram. (note: ai tagging of bookmarks isn’t that great, regardless, but it helps with search).

Yeah, I don’t bother sorting and organizing old files/bookmarks/whatever. Automatic tagging and full-text search solve that need. I try to keep recent stuff organized nicely though.

And you can put a secure note in there that has all the instructions necessary for them to access anything they might need (either by taking that note to someone skilled enough to follow the instructions, or by making it dead simple enough for them to just extract everything to an empty external ntfs hard drive in a simple file hierarchy).

I found that going back to bookmarking (and subscribing to RSS) is the best way to pull away from the algorithm-feed-trough of the social media websites and SEO bullshit. As I got more and more bookmarks of interesting sites, and found lots of feeds to subscribe too, I found I naturally gravitated away from the corporate web. It’s a requirement now if you are interested at all in indie-web type stuff, forums for esoteric hobbies or software communities, or personal web pages of interesting people -those things just don’t show up on search engines or social media anymore.

Does it still count as “self hosting” if one of your backups uses something like restic to push to b2 or hetzner storage boxes? It’s not consumer point and click.

I have one copy going there, and one going to a $50 thinkstation usff connected to a single external hard drive. It’s not raid, but if it dies, it just gets quickly replaced while I rely on the hosted backup.

NAT punching and proxying when a p2p connection between any 2 nodes cannot be achieved. It’s a world of difference with mobile devices when they always see each other, all the time. However, headscale does all that.

I switched from Tailscale to headscale, and I still would suggest Tailscale to anyone. It’s just really done well and they seem to actually love that self-hosters and hobbyists use their stuff.

Well, that’s what you are doing with ssh tunnels and remote browsers. If you want separation, they can put your computer in their router’s DMZ (demilitarized zone), so it doesn’t have access to their devices. Additionally, If you use the Tailscale IPs (or host names) instead of their local IPs on his network, they won’t ever change.