From d0727bd8a77d871050ff69d7bfe96a4f01105f4f Mon Sep 17 00:00:00 2001 From: Arpad Krejczinger Date: Mon, 6 Oct 2025 22:45:58 +0200 Subject: [PATCH] Document dockerization decisions and status - Mark dockerization task as complete - Document reasons for non-dockerized services: - Glances/Netdata: Need full system access for monitoring - Syncthing: Docker permission issues with config directory - Nginx: Reverse proxy requires system integration - Update service status: Copyparty now dockerized - Remove Cockpit references (removed from system) - Update VNC documentation to reflect temporary usage pattern --- TODO.md | 19 ++++++++++--------- 1 file changed, 10 insertions(+), 9 deletions(-) diff --git a/TODO.md b/TODO.md index dba4e0d..b1bf824 100644 --- a/TODO.md +++ b/TODO.md @@ -23,7 +23,7 @@ - [ ] WireGuard VPN server configuration - [ ] UFW firewall setup and rules - [ ] fail2ban for intrusion prevention -- [ ] Security enhancement for VNC connections (in the meantime: only run the vnc service for short time while we are using it) +- [x] VNC setup for remote desktop access *(TigerVNC installed, enabled temporarily via SSH when needed)* ## Git & Development - [x] Gitea Docker container setup *(completed - running on port 3000)* @@ -91,9 +91,8 @@ Lower priority - mostly using SSH or TTY anyways - [x] Shared media folders with Copyparty (Music, Videos, shared) - [ ] Set up self-hosted chat server (Matrix or Mattermost) - [ ] Install monitoring and management tools *(in progress)* - - [ ] Portainer (Docker management with built-in auth) - - [ ] Glances (system monitoring with nginx basic auth) - - [ ] Cockpit (system administration with PAM auth) + - [x] Portainer (Docker management with built-in auth) + - [x] Glances (system monitoring with nginx basic auth) - [ ] lazydocker (terminal Docker management) - [ ] Configure nginx basic auth for Glances endpoint - [ ] Update nginx reverse proxy config for new admin services @@ -101,14 +100,16 @@ Lower priority - mostly using SSH or TTY anyways - [ ] Set up Nextcloud for advanced file synchronization features - Copyparty covers basic file sharing needs - [x] Set up reverse proxy with SSL certificates *(completed - HTTPS working with auto-renewal)* -- [ ] Make sure all services are dockerized unless we have a good reason not to +- [x] Make sure all services are dockerized unless we have a good reason not to - Gitea: ✅ Docker - Jellyfin: ✅ Docker - - Copyparty: ❌ systemd service (consider dockerizing) - - Nginx: ❌ system package (fine as-is for reverse proxy) + - qBittorrent: ✅ Docker - Portainer: ✅ Docker - - Glances: ❌ system package (web server mode) - - Cockpit: ❌ system package (system integration required) + - Copyparty: ✅ Docker + - Glances: ❌ systemd (needs full system access for accurate monitoring) + - Netdata: ❌ systemd (needs full system access for accurate monitoring) + - Syncthing: ❌ systemd (Docker permission issues with config directory) + - Nginx: ❌ system package (reverse proxy, system integration required) ## Hardware & Troubleshooting - [ ] Fix bluetooth audio connectivity issues