Great blog post, always nice to read about other people’s experiences. I was curious if you’d switch back to NixOS, but that’s not the case. Cubes OS looks interesting, I checked it out a few years ago. I should give it another look.
neo
joined 2 years ago
Great plan! We need more independently hosted email. I’ve been self hosting email for 20 years. Still running Postfix and Dovecot, but don’t have all the features you’d like though. I just wanted to chime in that I’ve moved from spamassassin to rspamd. And I’m happy about that. Given your experience in the hosting business I think you’ll like rspamd. One thing I have changed since a few months is have outgoing mail go through Amazon SES. I moved hosting from Linode to Hetzner and that turned out to be not so great for outbound delivery reputation. I didn’t want to migrate back to Linode so I bit the bullet and compromised with SES. That has been really working well, but I admit it is a bit of a step back from fully self hosting.
I’m on Hetzner too. You’re right, it is a bit of a hassle. I wish they’d just include a native image into the interface. I use infect and it works quite seamless though https://github.com/elitak/nixos-infect?tab=readme-ov-file#hetzner-cloud
Try it! Here’s a proof of concept that I’ve made that shows NixOS could even be used as a base for a very simple OS that abstracts the Nix away almost completely. Maybe the source code is of interest to you.
Technically NixOS is all compiled from source too (if you disable the binary caches). It has since taken away Gentoo’s raison d’être a bit in my head. Debian still holds a special place in my heart too, for its simplicity and stability!
Interesting. I’ve using NixOS many years on servers but recently also started using it as a base for docker hosts. Before that I used Ubuntu or Debian for docker hosts, but I figured out I still like the declarative approach even for simple servers like docker hosts. There’s your basic security config, ssh keys and monitoring setup that I used to do imperatively, but I much rather have declaratively now, no matter how small. And enabling docker on NixOS is just a virtualisation.docker.enable = true; anyway.
Tell me about it.
Do you have more information? Haven’t looked into it for a while. What happened?
Since I started using the Nix package manager and switched to NixOS, the notion of a “Linux distribution” faded into little more than “A bootloader + the Linux kernel + some userspace programs”.
Vim is mentioned 5 times in the article!
OP mentioned a Minecraft server, iirc that can be pretty noisy in the logs.
I believe the ISPMail tutorials I was following during my rebuild recommended it as the successor to self hosted anti spam. Touting better performance, written in C vs. Perl for spamassassin iirc. The tutorials may have indicated that SA was no longer actively maintained, but that may be a figment of my imagination. Better fact check all of this. But I’ve been very happy with rspamd’s web interface to see what’s going on with the process. There’s a great history view in the dashboard that helps you better understand why a message got flagged as spam. It helped me better fine tune white and blacklists for example. Supposedly it also has a rich module system to enable more advanced filtering techniques like LLM’s and whatnot. But I haven’t looked into that yet. Granted rspamd is also used by ISPs that have massive throughput. I’m definitely not in that category :p