Gemini Server Hosting. There are some three or four topics on hosting a gemini server on my own Rasspberry Pi or alternatives. 1) Setting up a Raspberry Pi, 2) Setting up a Gemini Server and put content to your Capsule, 3) Connect to a DynDNS Service and online.
For most topics I find tutorials here on Gemini. But I do not find a tutorial explicitly for hardening the Raspberry Pi for using it as a Gemini Server. Aren´t there still a lot more things to consider before getting online with the Gemini Server?
Thanx
8 months ago · 👍 m0xee, mimas, clseibold, lykso
.. and to run the website on Raspberry PI, dedicated IP required. If your IP is not, there is a way to connect VPS with local device using Yggdrasil, by proxy like gmid · 8 months ago
of course, I post those pages using wallet, but have an idea to write some UI like kevachat one, just microblog-oriented, for localhost.
lot of websites gone offline with time, and that would be cool solution to keep content permanently as decentralized · 8 months ago
Even lot of options to host the website, I have small experiment to host my pages in kevacoin blockchain, where pages permanently available trough any explorer like: kvazar.duckdns.org/Nhoa9D3wNZNrYyY6DS96sqahCp9gcAXvtx · 8 months ago
Thank you first, that sounds logical to me. I will try it out. · 8 months ago
Gemini software is so simple that the attack surface is relatively small, most servers don't even support cgi and don't run any scripts, but they are also so varied that chance that someone will target the particular one you use is very narrow.
But I agree with @clseibold of course — running with as few privileges as possible is never a bad idea. · 8 months ago
I don't think there's much else to do really. You'd want to make sure ssh is configured to require keys for login. Also, enable the firewall and make sure the port for the gemini server is open. And finally, run the gemini server under its own user and set the correct permissions for the directory/directories that it will be serving.
I can't really think of anything else, unless you also want to start a pubnix, then you'll have to manage groups and user permissions for that. · 8 months ago