Login

Recent searches

No recent searches

Search options

Not available on photog.social.
photog.social is one of the many independent Mastodon servers you can use to participate in the fediverse.
A place for your photos and banter. Photog first is our motto Please refer to the site rules before posting.

Administered by:

Server stats:

268
active users

photog.social: AboutProfiles directoryPrivacy policy

Mastodon: AboutGet the appKeyboard shortcutsView source codev4.3.8

#hetzner

12 posts11 participants0 posts today
Continued thread
Public
scy

Now, if #Hetzner had a way for servers to actually make their SSH keys available through the API, I wouldn't need to do stupid shit like this, but alas.

I've talked about this in the past (in German):

chaos.social/@scy/113601766837

There, I'm using Magic Wormhole to transfer the host keys to my laptop automatically, over a secure channel, without any trust on first use shenanigans. But it would be so much easier if Hetzner provided an automated way to do this.

chaos.socialscy (@scy@chaos.social)Erstellt jemand von euch (halb)automatisch neue Cloud-Server bei #Hetzner? Bestimmt, oder? Der Perfektionist in mir hätte gern den #SSH-Host-Key des neu erstellten Servers _vor_ dem ersten Verbindungsversuch schon in meiner known_hosts. Auf dem Server kann ich dafür z.B. `ssh-keyscan ::1` laufen lassen (und den Hostnamen dann durch sed ersetzen lassen oder so). Das könnte ich per cloud-init beim ersten Start ausführen. Aber: Wie krieg ich den Text auf meinen Laptop? Wie macht ihr das?
Continued thread
Public
scy

Why am I doing this in the first place? As an experiment whether it would be possible to store the SSH host key in a metadata label of a #Hetzner cloud server, which is limited to 63 alphanumeric characters.

docs.hetzner.cloud/#labels

So yes, it works. You'd still need to replace the +, /, and = characters that may appear in base64 but are invalid in Hetzner labels, and make sure the label ends with an alphanumeric character.

sed -n -e 'y#/+=#-_.#' -e 's/^AAAAC3NzaC1lZDI1NTE5\
(.\{48\}\)$/\1X/p'

docs.hetzner.cloudAPI ReferenceThis is the official reference for the Hetzner Cloud API.
Public *
Linke :verified:

EDIT:
Danke an alle & die dank dem #Fediverse, für die Vernetzung und schnelle Reaktion! Wahnsinn! Das Problem war wohl eventuell Lokal. Dank @DerSchulze@elbmatsch.de der mich auf die Simple idee gebracht hat, das Bild neu hochzuladen (um es quasi zu erneut zu Pushen), löste das Problem. Zumindest das Profilbild Problem ^^ :D
Für das Icon wird jetzt einfach nen Emoji genutzt. :D



Ich brauche mal etwas Hilfe: Ich betreibe eine eigene Mastodon-Instanz (bzw. Sharkey), aber irgendwas mache ich wohl falsch. Mein Profilbild und das Verifizierungs-Icon neben meinem Namen werden nur lokal angezeigt – auf anderen Instanzen scheint es nicht synchronisiert zu werden.

Woran könnte das liegen?

#Mastodon #Sharkey #Fediverse #Selfhosting #InstanceAdmin #TechSupport #Linux #Docker #Hetzner #FediAdmin #ActivityPub #Profilbild

Public
scy

Die #Hetzner-API zum Rescalen von virtuellen Servern (also Up- oder Downgrade von CPU, RAM und evtl. Platte) ist ein bisschen seltsam.

Der Server muss dazu aus sein (ok, macht Sinn), aber der Rescale-API-Endpunkt kann ihn nicht runterfahren. Das musst du vorher selbst anstoßen, mit nem anderen Endpunkt. Und dann warten, bis der Server wirklich aus ist, indem du nen dritten Endpunkt pollst.

Nach dem Rescale fährt der Server dann aber automatisch wieder hoch, ob du das willst oder nicht.

🤨

Public
stfn

New blog post!

This time I talk about the two recent migrations I did with my data:

I migrated my main VPS from a US based VPS provider to @hetzner because I want to have my stuff in Europe.

The second one was the migration of this exact account from which I send this toot, I moved it from Fosstodon to my own GoToSocial instance which I am self-hosting on that Hetzner server.

I hope you will find it useful!

https://stfn.pl/blog/69-migrating-servers-migrating-instances/

stfn.plMigrating servers, leaving Fosstodon, moving to my own GoToSocial
More from stfn :raspberrypi: :python:
#gotosocial#fosstodon#fediadmin
Continued thread
Public
scy

In the #Hetzner Cloud API, you can refer to resources by their ID (an integer) or their name. Both are unique. The name is user-defined and designed to be human-readable, but needs to be identifier-like.

For example, you'd name a server "db01" or a volume "db-main" or an IP address "db01-v6".

However, in #pyinfra, "name" is a reserved word and I can't use it, but "id" is something else, too.

For now I've used "handle" instead of "name", but I wonder whether you have better suggestions.

Screenshot of the following Python code: from hcloud.firewalls import ( FirewallResource, FirewallResourceLabelSelector, FirewallRule, ) from pyinfra import host from pyinfra_hcloud import operations as hco WHOLE_INTERNET = ["0.0.0.0/0", "::/0"] hco.firewall( name="default firewall", handle="default", rules=[ FirewallRule( description="allow all ICMP", direction="in", protocol="icmp", source_ips=WHOLE_INTERNET, ), FirewallRule( description="allow SSH from anywhere", direction="in", protocol="tcp", port="22", source_ips=WHOLE_INTERNET, ), ],
Screenshot of the following Python code: for handle, pubkey in host.data.get("ssh_keys", {}).items(): hco.ssh_key( name=f"SSH key: {handle}", handle=handle, public_key=pubkey, ) for i in range(1, host.data.map_servers + 1): inum = f"{i:02}" hco.volume( name=f"volume: mapdata{inum}", handle=f"mapdata{inum}", location=host.data.location, size=host.data.mapdata_volume_size_gb, format="ext4", labels={"contents": "mapdata", "filesystem": "ext4"}, ) for ipv in ["v4", "v6"]: hco.primary_ip( name=f"primary IP{ipv}: map{inum}", handle=f"map{inum}_{ipv}", type=f"ip{ipv}", datacenter=host.data.datacenter, dns_ptr=f"map{inum}.{host.data.domain}", ) hco.server( name=f"server: map{inum}", handle=f"map{inum}.{host.data.domain}", server_type=host.data.map_server_type, image=host.data.map_server_image, datacenter=host.data.datacenter, ipv4=f"map{inum}_v4", ipv6=f"map{inum}_v6", ssh_keys=host.data.ssh_keys, volumes=[f"mapdata{inum}"], labels={"application": "map"}, )
Public
Bfritz0815

Hat jemand Erfahrung mit den nextcloud hostern:

- tab-digital
oder
- wolkesicher
oder
- hosting de

Da ich suche um selbst zu nutzen und Anderen weiter zu empfehlen, interessieren mich besonders die Aspekte:

-Zuverlässigkeit
- backups
- Nutzungs-Erfahrungen
- onlyoffice/collabora-office inklusive ja/nein

Bei Hetzner zum Beispiel sieht es sonst ganz ok aus, nur collabora ist prinzipiell nicht inklusive und onlyoffice ist laut Hetzner "aktuell" nicht unterstützt wegen "Kompatibilitätsproblemen" (seit 2019). Deswegen überlege ich, von hetzner weg zu wechseln.

#nextcloud#Hetzner#wechselcafe
Public
Victoria (K8VSY) (she/her)

I couldn't export my .adi file from Wavelog on my "cheap" DigitalOcean droplet due to OOM errors (it only had 1 GB of RAM), so I went down a mini-rabbit hole and migrated to a new server with 8 GB of RAM for the same price over at Hetzner (I already have an account there for other servers)

I should have done this a while ago, but I didn't realize how little the specs were on my droplet

if anyone runs across any issues accessing my blog, ping me, 🙂

#Wavelog#DigitalOcean#Hetzner
Public
Michael

“When looking at where the DDoS attacks originate from, specifically HTTP DDoS attacks, there are a few autonomous systems that stand out. In 2025 Q1, the German-based Hetzner (AS24940) retained its position as the largest source of HTTP DDoS attacks. It was followed by the French-based OVH (AS16276) in second, the US-based DigitalOcean (AS14061) in third, and another German-based provider, Contabo (AS51167), in fourth.”

Yikes! Sounds like a who is who of our favourite hosting providers 😬

blog.cloudflare.com/ddos-threa

The Cloudflare Blog · Targeted by 20.5 million DDoS attacks, up 358% year-over-year: Cloudflare’s 2025 Q1 DDoS Threat ReportDDoS attacks are surging. In 2025 Q1, Cloudflare blocked +20M attacks (a 358% YoY spike) along with 5.6 Tbps and 4.8 Bpps record-breaking attacks. And that's just the beginning. Read more in our latest DDoS Threat Report.
#hetzner#cloudflare#ddos
Public
scy

How many HTTP requests would you expect this code to make?

My assumption would be: one. The constructor shouldn't make one, but get_all() surely does.

It's about 250. Each server_type's attributes are requested via HTTP, for each server_type_kind, for each datacenter.

Even though there's only about 20 types in total. They're requested over and over again.

I don't know about you, but HTTP requests on attribute access feel wrong to me.

Also, at least cache the damn things!

Python code that creates an "hcloud.Client" with some token, then iterates over the result of client.datacenters.get_all(). For each of these datacenters, it's accessing the attributes dc.server_types.available, dc.server_types.supported, and dc.server_types.available_for_migration, and joins the names of each of the server types together. Except for print, getattr, and str.join, there are no function calls after the initial get_all().
Console output showing that there's one HTTP request to /v1/server_types/n (with n being an integer) for each of the server types. A lot of the numbers repeat between each of the sections.
#Python#Hetzner
Public
PhantaNews ✅

Bei #Hosteurope herrscht offenbar ein ziemlich hoher Lackkonsum. Ich höre gerade von einem Kunden, dass die ernsthaft und trotz der Entwicklungen in den USA Email zwangsweise auf #Microsoft365 umstellen. Dem entgehen kann man als Kunde nur durch Löschen der Emailkonten, also de facto Beenden der Geschäftsbeziehung (was der Kunde [KMU] auch tun wird). #Hetzner beispielsweise bietet schon Migrationspfade dafür, aber sind halt "ein paar" Adressen.

Un-fucking-fassbar.

Public
Prince Lucija

looks like #hetzner mastodon instance blocked weirder.earth .. perhaps because of posted animation of two girls kissing?

also looking at their tos, indeed:

"obscene material, extremist content or content that offends common decency, gambling, material that could seriously endanger the morals of children or young people"

is a wide net that can get your account terminated immediately, and possibly without any communication (like in case of kiwix )

are photos of our theatre shows that sometimes show lots of skin offending common decency? who can tell?

meanwhile... they host AfD.

https://weirder.earth/@daughterofrao/114344260894325002

weirder.earthNia Valentine (@daughterofrao@weirder.earth)Content warning: depol, hetzner, transphobia, :boost_request:
SearchLive feeds
About