Update core configuration files
- Update CLAUDE.md with comprehensive homelab documentation - Update TODO.md with current task status - Configure copyparty file server settings - Update nginx reverse proxy configuration - Refresh homelab homepage - Update services documentation
This commit is contained in:
17
TODO.md
17
TODO.md
@@ -5,6 +5,19 @@
|
||||
- [x] SSH security hardening *(documented in network-security.md)*
|
||||
- [x] Figure out why laptop IP changes: Different eth ports have different MAC?
|
||||
- [x] Router port forwarding configuration
|
||||
- [ ] !!! Modify syncthing to sync the NAS folders where appropriate (e.g. Logseq)
|
||||
- [ ] !!! IMPORTANT: Run setup scripts made by security reviewer agent
|
||||
- [ ] Ran out of AI quota mid-security review so continue where we left off. Some scripts created but it's not
|
||||
complete yet
|
||||
- [ ] Some logs saved to ~/audit
|
||||
- [ ] ENCRYPTED FOLDER idea:
|
||||
- Use tomb to create an encrypted vault e.g. /mnt/nas/nas_encrypted
|
||||
- Have a local folder that's empty e.g. <something>/nas_plain
|
||||
- Use tomb to unlock and mount /mnt/nas/nas_encrypted to <something>/nas_plain
|
||||
- Jellyfin is set up to look at nas_plain
|
||||
- When locked: Jellyfin sees empty folder
|
||||
- When unlocked: Jellyfin has access
|
||||
- TO TEST: What about preview pictures etc. within Jellyfin? Adult content may still be visible
|
||||
- [ ] WireGuard VPN server configuration
|
||||
- [ ] UFW firewall setup and rules
|
||||
- [ ] fail2ban for intrusion prevention
|
||||
@@ -53,7 +66,7 @@ Lower priority - mostly using SSH or TTY anyways
|
||||
- [ ] Copy any media files from other devices
|
||||
|
||||
## Music Collection Management
|
||||
- [ ] Extract playlists from YouTube Music and SoundCloud
|
||||
- [ ] Extract playlists from YouTube Music and SoundCloud
|
||||
- Store metadata (author, song title) in plaintext format
|
||||
- Tools to consider: ytmusicapi (YouTube Music), scdl (SoundCloud), Google Takeout
|
||||
- Output formats: CSV, JSON, M3U with metadata, plain text lists
|
||||
@@ -88,7 +101,7 @@ Lower priority - mostly using SSH or TTY anyways
|
||||
- [x] Set up reverse proxy with SSL certificates *(completed - HTTPS working with auto-renewal)*
|
||||
- [ ] Make sure all services are dockerized unless we have a good reason not to
|
||||
- Gitea: ✅ Docker
|
||||
- Jellyfin: ✅ Docker
|
||||
- Jellyfin: ✅ Docker
|
||||
- Copyparty: ❌ systemd service (consider dockerizing)
|
||||
- Nginx: ❌ system package (fine as-is for reverse proxy)
|
||||
- Portainer: ✅ Docker
|
||||
|
||||
Reference in New Issue
Block a user