w33k in g33k: May 16, 2025
·
Sean P. McAdam
Miscellaneous
- I finally got TLS certificates working with the Docker API: Docker Docs: Use TLS (HTTPS) to protect the Docker daemon socket
- I just went with a separate CA from my SSL certificates instead of trying to get it working with Step-CA.
# Client Key:
openssl genrsa -out Homepage-client.key.pem 4096
openssl req -subj '/CN=Homepage-client' -new -key Homepage-client.key.pem -out Homepage-client.csr
echo extendedKeyUsage = clientAuth > extfile-Homepage-client.cnf
openssl x509 -req -days 365 -sha256 -in Homepage-client.csr -CA Docker_API-CA.pem -CAkey Docker_API-CA.key.pem \
-CAcreateserial -out Homepage-client.cert.pem -extfile extfile-Homepage-client.cnf
-
- I had to “reinstall” Docker on my rootless hosts for an unknown reason, but did finally get those working again:
/usr/bin/dockerd-rootless-setuptool.sh uninstall -f ; /usr/bin/rootlesskit rm -rf /home/smc/.local/share/docker
/usr/bin/rootlesskit rm -rf /home/smc/.local/share/docker
sudo apt-get purge docker-ce docker-ce-cli containerd.io docker-buildx-plugin docker-compose-plugin docker-ce-rootless-extras
autoremove; autoclean
sudo rm -rf /var/lib/docker
sudo rm -rf /var/lib/containerd
sudo rm /etc/apt/sources.list.d/docker.list
sudo rm /etc/apt/keyrings/docker.asc
for pkg in docker.io docker-doc docker-compose docker-compose-v2 podman-docker containerd runc; do sudo apt-get remove $pkg; done
# Add Docker's official GPG key:
sudo apt-get update
sudo apt-get install ca-certificates curl
sudo install -m 0755 -d /etc/apt/keyrings
sudo curl -fsSL https://download.docker.com/linux/ubuntu/gpg -o /etc/apt/keyrings/docker.asc
sudo chmod a+r /etc/apt/keyrings/docker.asc
# Add the repository to Apt sources:
echo \
"deb [arch=$(dpkg --print-architecture) signed-by=/etc/apt/keyrings/docker.asc] https://download.docker.com/linux/ubuntu \
$(. /etc/os-release && echo "${UBUNTU_CODENAME:-$VERSION_CODENAME}") stable" | \
sudo tee /etc/apt/sources.list.d/docker.list > /dev/null
sudo apt-get update
sudo apt-get install docker-ce docker-ce-cli containerd.io docker-buildx-plugin docker-compose-plugin
sudo systemctl disable --now docker.service docker.socket
sudo rm /var/run/docker.sock
dockerd-rootless-setuptool.sh install
selfh.st
- selfh.st: Self-Host Weekly (16 May 2025)
- GitHub: glanceapp / glance: “A self-hosted dashboard that puts all your feeds in one place”
- GitHub: papra-hq / papra: “The minimalistic document archiving platform.”
- GitHub: gelbphoenix / autocaliweb: “📚 Web managing platform for eBooks, eComics and PDFs”
- GitHub: sinandredemption / kath: “Kath is a lightweight, retro-style, ephemeral chat app with a small twist: you can see what the other people in the room are typing in real-time.”
- GitHub: murtaza-nasir / maestro: “MAESTRO is an AI-powered research application designed to streamline complex research tasks.”
- GitHub: openconstruct / Peersuite: “Peer to peer workspace”
- GitHub: blinkospace / blinko: “An open-source, self-hosted personal AI note tool prioritizing privacy, built using TypeScript .”
- GitHub: dhop90 / homelab: “How I document my homelab”
- GitHub: glanceapp / glance: “A self-hosted dashboard that puts all your feeds in one place”