Deploy #Castopod on #AlmaLinux #VPS

This article provides a production-ready, step-by-step guide to deploy Castopod on AlmaLinux VPS using Nginx + PHP-FPM + MariaDB + HTTPS.
What is Castopod?
Castopod is an open-source #podcast hosting platform designed to give podcasters control over their content while supporting the latest podcasting innovations, such as ...
Continued 👉 https://blog.radwebhosting.com/deploy-castopod-on-almalinux-vps/?utm_source=mastodon&utm_medium=social&utm_campaign=mastodon.social #podcasthosting #selfhosting #fediverse #activitypub #selfhosted #letsencrypt #opensource

Deploy #Castopod on #AlmaLinux #VPS

This article provides a production-ready, step-by-step guide to deploy Castopod on AlmaLinux VPS using Nginx + PHP-FPM + MariaDB + HTTPS.
What is Castopod?
Castopod is an open-source #podcast hosting platform designed to give podcasters control over their content while supporting the latest podcasting innovations, such as ...
Continued 👉 https://blog.radwebhosting.com/deploy-castopod-on-almalinux-vps/?utm_source=mastodon&utm_medium=social&utm_campaign=mastodon.social #fediverse #selfhosted #activitypub #podcasthosting #opensource #letsencrypt #selfhosting

7 Steps to Easily Configure #OpenLiteSpeed as a Reverse #Proxy for #Metabase

This article provides a guide to configure OpenLiteSpeed as a reverse proxy for Metabase.
What is OpenLiteSpeed?
OpenLiteSpeed Web Server is great for building and deploying web applications. The WebAdmin Console enables you to quickly configure features that allow you to deliver a fast web ...
Continued 👉 https://blog.radwebhosting.com/configure-openlitespeed-as-a-reverse-proxy-for-metabase/?utm_source=mastodon&utm_medium=social&utm_campaign=mastodon.raddemo.host #debian #letsencrypt #proxyserver #openjdk #installguide #jre #reverseproxy #vps

How to Install and Run #Zulip on #Debian #VPS This article provides a detailed step-by-step guide outlining how to install and run Zulip on Debian VPS.
What is Zulip?
Zulip is an open-source team chat platform designed to combine the best aspects of real-time messaging (like Slack or Discord) with the structured organization of email-style threads.
🔑 Key Features:

Threaded Conversations (Topics): ...
Continued 👉 https://blog.radwebhosting.com/how-to-install-and-run-zulip-on-debian-vps/?utm_source=mastodon&utm_medium=social&utm_campaign=mastodon.social #selfhosted #letsencrypt #opensource #selfhosting

🚀 How to Deploy #Funkwhale on #Debian #VPS

This article provides a guide demonstrating how to deploy Funkwhale on Debian VPS.
What is Funkwhale?
Funkwhale is a self-hosted, federated audio platform for streaming and sharing music & podcasts. It uses #ActivityPub so libraries can follow/feature content across instances (like Mastodon), and it offers a web UI plus ...
Continued 👉 https://blog.radwebhosting.com/deploy-funkwhale-on-debian-vps/?utm_source=mastodon&utm_medium=social&utm_campaign=mastodon.social #redis #python #opensource #selfhosted #letsencrypt #certbot #selfhosting #postgresql

Certbot OVH DNS Challenge in Debian 13 kaputt

Erst gestern weise ich jemanden im Fediverse darauf hin das seine TLS Zertifikate abgelaufen sind, schon kommt heute morgen der Boomerang und bei den Diensten die ich auf meinem Intel NUC hier zu Hause laufen habe schlagen die TLS Verbindungen fehl. Joa Karma halt.

Ich gehe einfach mal davon aus das es mein Fehler war und ich nach meinem Server Upgrade von Debian 12 auf Debian 13 nicht geprüft habe ob certbot tut was es soll. Die Zertifikate waren noch frisch. Dazu kommt das ich leider kein Monitoring für meine Server Zertifikate habe, das sollte ich vielleicht mal ändern.

Was ist also der Fehler gewesen. Naja ich habe nicht mitbekommen das Debian 13 das Paket python3-certbot-dns-ovh nicht mehr bereitstellt. Das lustige ist es ist in bullseye, bookworm, forky und sid vorhanden, nur halt nicht in Trixie. Warum weiss ich nicht, wenn da jemand nähere Infos dürfen Sie gerne geteilt werden. Ich kann mir vorstellen das es daran liegt weil das Paket python3-lexicon auch aus irgendeinem Grund fehlt, welches eine dependancy von python3-certbot-dns-ovh darstellt. Aber gut ohne python3-certbot-dns-ovh funktioniert die DNS Challenge bei OVH halt nicht. Einfach nur ärgerlich.

Wenn man in die Github Issues bei Certbot schaut dann gibt es mit dem Modul aber wohl schon länger Probleme vor allem was das aufräumen der acme-challenge txt Einträge angeht und im Zusammenspiel mit Wildcard Zertifikaten.

Bei mir kommt leider noch hinzu das mein Webserver zuhause,aus Gründen, nicht via Port 80 erreichbar ist. Die schnelle Umstellung auf die Webroot Methode ist also keine Alternative.

Was ich jetzt gemacht habe: ich nutze den Certbot Docker den es auch in Ausprägungen für die verschiedenen DNS Provider gibt. Ich gehe mal davon aus das hier die Dependancys vernünftig gepflegt werden. Eine schöne Anleitung wie man das ganze umsetzen kann habe ich hier gefunden: https://github.com/boujrafh/TLS-certificates-with-Let-s-Encrypt-Certbot-OVH-DNS-Docker-

Eine andere Möglichkeit wäre sicher das ganze via pip zu nutzen, eine Anleitung dafür findet man auf der Certbot Homepage.

Allgemein muss ich sagen das ich es ziemlich unschön finde das solch eine fundamentale Funktionalität beim Upgrade auf eine neue Stable einfach kaputt geht, aber gut wieder was gelernt.

Certbot OVH DNS Challenge in Debian 13 is broken

Just yesterday, I pointed out to someone in the Fediverse that their TLS certificates had expired, and now this morning, the boomerang comes back and the TLS connections for the services I run on my Intel NUC at home are failing. Well, karma is a b**ch.

I’m just going to assume it was my fault and that I didn’t check if certbot was working after I upgraded my server from Debian 12 to Debian 13. The certificates were still quite new. On top of that, I unfortunately don’t have any monitoring for my server certificates, which I should change maybe.

So, what was the issue? Well, I didn’t notice that Debian 13 no longer provides the package python3-certbot-dns-ovh. The funny thing is, it’s available in bullseye, bookworm, forky, and sid, just not in Trixie. I don’t know why, if someone has more info feel free to share. I can imagine it’s because the package python3-lexicon is also missing for some reason, which is a dependency of python3-certbot-dns-ovh. But without python3-certbot-dns-ovh, the DNS challenge with OVH just doesn’t work. Really annoying.

If you look at the GitHub issues for Certbot, there have been problems with this module for a while, especially when it comes to cleaning up the acme-challenge TXT entries and how it interacts with wildcard certificates.

In my case, it’s even worse because my web server at home isn’t accessible via port 80. So, quickly switching to the webroot method isn’t an option.

What I did now: I’m using the Certbot Docker container, which also comes in versions for different DNS providers. I’m assuming (or hope) the dependencies are properly maintained there. I found a nice guide on how to set it all up here: https://github.com/boujrafh/TLS-certificates-with-Let-s-Encrypt-Certbot-OVH-DNS-Docker-

Another option would probably be to use everything via pip. There’s a guide for that on the Certbot homepage.

Overall, I have to say I find it pretty annoying that such a fundamental feature just breaks when upgrading to a new stable release, but well, you live and learn.

🚀 Deploy #Zonemaster on #Debian #VPS

This article provides a guide demonstrating how to deploy Zonemaster on Debian VPS.
What is Zonemaster?
Zonemaster is an open-source #DNS testing and validation framework designed to thoroughly analyze the health, correctness, and performance of a domain’s DNS configuration. It is jointly developed and maintained by AFNIC (registry for .fr) and ...
Continued 👉 https://blog.radwebhosting.com/deploy-zonemaster-on-debian-vps/?utm_source=mastodon&utm_medium=social&utm_campaign=mastodon.raddemo.host #selfhosted #letsencrypt #opensource #nodejs #redis #selfhosting