frontpage.
newsnewestaskshowjobs

Open Source @Github

fp.

Open in hackernews

I Don't Maintain My Homelab

https://cleberg.net/blog/homelab-maintenance.html
43•surprisetalk•1d ago

Comments

owaislone•1h ago
Interesting. For me if I want to keep my lab stable, I have to ensure I pin all images and components to a specific version. I rarely but deliberately upgrade them (2-3 months). I feel putting things on auto-update is bound to break stuff and force you to spend time on it at the worst possible times.
endre•1h ago
that's cruise control for supply chain attacks, at the bare minimum
KaiserPro•1h ago
I mean is it really, more than any other update technique?
nicomt•47m ago
I think if you set cooldowns and stick to more reputable sources, it might be okay. I do pin my versions and do manual updates in my home lab, but that's more for stability and so it increases the chances I'll catch update issues while I'm already there. I don't pretend that gives me any extra security, though, because I don't have the time to review updates beyond surface-level changelogs. I don't think the solution to supply chain issues is for every developer to be paranoid at all times. I think we need better systems built on top of existing package managers to check provenance and integrity, and to allow security researchers and automated tools to vet releases before they're distributed more broadly.
bittumenEntity•1h ago
Definitely opened this thinking it would be a story of handing the keys to AI. Refreshing, simple and to the point
kamov•1h ago
> I've approximated it somewhere around 15 minutes of maintenance per month, barring an emergency. If that's normal to you, congrats - you've peaked in life. However, that's absolutely absurd to me. I used to spend days on end building, maintaining, and debugging various aspects of my servers, databases, apps, etc.

It's been normal for me for the past 3 years thanks to using NixOS for all server infrastructure.

embedding-shape•34m ago
Same. As someone who is OK with a small amount of maintenance every N months, but keeps forgetting how things are setup or what I did, moving absolutely everything into Nix and running NixOS made things a hell of a lot simpler when you come back after 6 months and can easily find where and what to change, as long as you take care to declaratively set things up via Nix as much as possible, and use git.

Helps that things are really easy to test too, spin up a new test VM with your new config and copy of real data, check if it works, then apply the change to the real hardware and you're good to go. Alternatively, do it live with a copy of real data, then rollback in case it doesn't work.

ochoseis•13m ago
Options still get deprecated in NixOS and require working around, and while debugging has gotten easier it can be a pain to debug when there’s an error somewhere deep in your configs. I’ve found that NixOS is like 0 maintenance most months and then half a Saturday two or three times a year figuring out why I can’t update.
28304283409234•1h ago
Is it still a lab then? Or selfhosted services on auto-pilot?
cyberjunkie•1h ago
No slop. Love it.
Havoc•59m ago
tbh most of my time is making active changes and trying new things. Or say moving from say LXC to kubernetes

Don’t super care about updates. If it isn’t too ancient and not internet facing then it’s probably ok

cheschire•57m ago
I suspect my approach is even more controversial… I just open Claude code and type /routine-maintenance and it reads the skill file, logs into all my systems on my home network and runs updates, validate backups are still healthy, update any docker images, checks SMART stats, reviews some logs, and then fires off an email using brevo to tell me any future maintenance concerns I might have.

Edit: zero minutes old already downvoted.

bilekas•54m ago
But using AI is not the point of the article.
cheschire•29m ago
The headline: “It's true. I don't maintain my homelab… it maintains itself.”

So using AI is not the point of the article but neither was it mine.

My point was I also attempt to implement homelab automation rather than manual maintenance, and I listed a few things that are onerous to do regularly by hand just like the article.

But I totally expected people to just skim my message, see “AI” and dismiss it, so I’m not terribly upset.

botfriendsarent•50m ago
This "home lab" stuff is kind of nice hobbyist talk. I wish we had fancy words like that back in the 80s.

Technology has come along way. But I think that in tech we should be careful to not fall prey to monkey see monkey do.

We should not be deploying technology in our homes to "mimick our employers"

Remember they are miserable for a reason.

itomato•49m ago
We did. We just didn’t classify it with a hashtag.

Frankenstein couldn’t build a monster without influence. Same thing here.

“CCNA? I’ll show you CCNA…”

botfriendsarent•40m ago
I had a friend back in the 90s who referred to his desktop computer as "his mainframe" lol
itomato•50m ago
Yes, but you didn’t mention anything that would suggest a need to ‘maintain’.

It doesn’t change.

Many people keep swapping gear in so they can learn BGP on Cisco edge gear or run clusters on salvaged IB.

OP is not that person.

NBJack•42m ago
I gotta agree. I setup a homelab originally to start learning more about virtualization, Kubernetes, etc. It was painful, required time to fix my mistakes, and I hit my head on the ugly realities of distributed hardware. But it was also experience I could (and did) apply to my job.
stego-tech•50m ago
This has been a similar approach to what I did for my own homelab. I still need to setup some sort of GitOps so I don’t have to ssh into the box and manually bootstrap whatever compose file I’ve thrown on there, but that’s honestly about it.

* Docker Compose files and various folders for containers live on an NFS share

* SQLite and other databases run off a local SATA SSD for speed and reliability

* Cronjob tarballs the critical stuff nightly and throws it on another NFS share to get ingested into Backblaze B2.

Now I just get to kick back and actually experiment with new things instead of babysitting a convoluted Proxmox upgrade or shunt onto a new container standard.

Does it run rootless? Not atm (blame FreshRSS, my sole holdout). Is it super secure? Probably not, but I’m not doing anything goofy like mounting the Unix socket into a container at the very least, and the server credentials don’t work anywhere else should it get popped. The blast radius is contained, and that’s more important to me than Enterprise-grade security for my homelab (a la Wazuh, another backlog project TBD).

NBJack•47m ago
Damn. That was boring. Putting all updates on autopilot is certainly a choice. But, hey, it's their homelab.
kordlessagain•47m ago
I've had "servers" or a "homelab" at home for de3cades. I stopped a while ago when I burned out. About 4 month ago, I bought a new motherboard and graphics card for my desktop and dropped the old ones into a $70 case I got from Best Buy and put Ubuntu on it. I think I spent 10x that on memory for my new desktop, but that's just a passing grumble. The new server now runs transcription and embeddings for me on the old GPU. That motherboard is still plenty fast, but pushing 8 years old now. That's the advantage of buying a nice board from the outset.

The rest of the lab is a few ephemeral instances on Google, with dual A100s that spin up when I need to train things.

I put Ubuntu on the old beast, and never touch it. If the power goes out, it automatically comes on and Docker launches all the services when it comes up.

About the only thing that needs watching is the tiny SDR radio plugged into it, which I use for pure random numbers and talking to it with a hand held radio from the other house. Sometimes I have to unplug it and then plug it back in to get it back into service. No amount of finagling seems to fix it from software.

freedomben•13m ago
> About the only thing that needs watching is the tiny SDR radio plugged into it, which I use for pure random numbers and talking to it with a hand held radio from the other house.

You are an interesting person! We would be friends IRL :-)

May I ask what you use the pure random numbers for? And what you use the radio link for?

pshirshov•46m ago
> UniFi supports automatic and scheduled updates,

Yeah, right until the moment it bricks after an update.

Arainach•26m ago
I've had automatic updates on for a decade without issue.
_pdp_•42m ago
I wrote a small agent (single go binary) that does all the monitoring and maintenance for me. Possibly overkill but it is amusing to think there is a little ghost in the machine.
jmbwell•33m ago
I’m so almost here. The thing holding me back is projects that don’t do their own migrations reliably. Through no fault of their own, perhaps, though at this point I would argue LLMs should eliminate any good reason not to have alembic integrated or something. And even Home Assistant is bizarrely averse to fully automated system wide updates. Updating system and core and addons all independently is bonkers. But yes, the simplest implementation is often the best
meindnoch•29m ago
Yeah, and what happens when every now and then upstream changes break your config? Like when Debian removed systemd-resolved, breaking mDNS.
rcxdude•23m ago
Then you spend a bit of time fixing it. With the right stack, these things are rare and not often difficult to resolve.
szszrk•14m ago
It breaks. So you fix it and go back to previous mode.

I'm not sure what's here to talk about. Things break. We don't have to overthink this. But if you want more predictability, stable distros exist.

silversmith•26m ago
I also have a "homelab" with minimal maintenance requirements. I'd wager it works out to much less than 15 minutes a month over a year. The strategy is as follows: pin all services to known good versions, deny access from outside LAN, and don't touch it unless there's a new service release with new features I want. Not something I would do at work, but perfectly fine for home setting.
PunchyHamster•18m ago
Debian + unatteneded-upgrade package (+ some setup like telling it at which time it can reboot itself) is essentially "forget for 2 years then do dist-upgrade and forget for another 2 years" setup
s_ting765•17m ago
Same here. Even though my homelab runs on a VPS. https://github.com/rhee876527/expert-octo-robot
teekert•14m ago
I thought this was going towards the "I have an agent do it". glad it didn't :)

What this skips though is the complexity of services like NextCloud (stuck in maintenance mode again?), Immich (needs a compose file edit?), MineCraft worlds (Dad! my client is on another version again!), (dmn) AlbyHub (needs re-login and closed its channel).

But to be fair this is really getting quite minimal these days indeed. I didn't really realize it but I too have a mostly hand-off home-lab... Ok, then it's not really a lab anymore, its more "stable home-infra" ;)

colordrops•11m ago
I'm working on an all-in-one box that has OTA updates, requiring virtually zero maintenance after setup. It's currently at the pre-alpha stage. It bundles a router, app server, and NAS. Not trying to be everything to everyone, but covers the basic functionality most people would need. Automatically handles DDNS, TLS certs, backups, and SSO wiring. Entire config is in a single JSON file, but the system can be extended using plugins. It's based on NixOS but doesn't require the user to know that.

https://HomeFree.host

Longer term goal is a sleek plug-and-play box anyone can connect between their ISP modem and wifi AP with minimal technical knowledge.

I'm currently running it on a Aoostar WTR Max NAS with my AT&T connection. Got another NUC connected to a Spectrum modem. My goal is to be able to flip back and forth between the two with a backup bundle within minutes.

Considering breaking up the router and app server functionality so they can be run separately. Another idea is to use custom a 3D printed case with Framework laptop motherboard and battery, switch, and wifi AP to make a true all-in-one box. I currently need an external switch, backup battery, and wifi access point.

Once the system feels mature, next steps would be things like federated tailnets with friends and family for things like distributed backups, compute/GPU, CDN, social networking, etc. Hoping that decentralized model training is cracked by someone at some point.

freedomben•5m ago
Getting to this point with my homelab has always been my goal, and I've also arrived. I mainly just want a stable, reliable Jellyfin, Audiobookshelf, archivebox, Navidrome, ollama/openwebui, and a place with plenty of RAM and CPU to spin up and run a half-dozen various VMs at a time, without having to mess around to use them.

Building/tinkering/playing around is fun, but once you are actually self-hosting services you rely on, it needs to "just work" or you will eventually burn out or lose interest. Especialy when you take on more users than just yourself. The day my wife cancelled her audible subscription because audiobookshelf was just as good (IMHO better) was a good day, but that only happens because it is stable/reliable.

Asahi Linux 7.1 Progress Report

https://asahilinux.org/2026/06/progress-report-7-1/
155•pantalaimon•1h ago•27 comments

Claude Code is steganographically marking requests

https://thereallo.dev/blog/claude-code-prompt-steganography
2139•kirushik•20h ago•619 comments

Newly discovered spider builds spring loaded snare to catch ants

https://phys.org/news/2026-06-newly-australian-ballista-spider-snare.html
77•chimpanzee•2d ago•18 comments

Claude Sonnet 5

https://www.anthropic.com/news/claude-sonnet-5
1157•marinesebastian•17h ago•685 comments

ArXiv's Next Chapter

https://blog.arxiv.org/2026/06/30/arxivs-next-chapter/
150•subset•8h ago•46 comments

Godot will no longer accept AI-authored code contributions

https://www.pcgamer.com/gaming-industry/open-source-game-engine-godot-will-no-longer-accept-ai-au...
241•pjmlp•4h ago•151 comments

Single Dose of Frog-Derived Gut Bacterium Eradicates 100% of Tumors in Mice

https://www.thefocalpoints.com/p/new-study-frog-derived-gut-bacterium
14•mpweiher•2h ago•3 comments

I Don't Maintain My Homelab

https://cleberg.net/blog/homelab-maintenance.html
44•surprisetalk•1d ago•36 comments

Google copybara: moving code between repositories

https://github.com/google/copybara
233•reconnecting•12h ago•44 comments

Claude Science

https://claude.com/product/claude-science
506•lebovic•18h ago•149 comments

Dexter (YC F24) Is Hiring a Founding Engineer in Berlin

1•garriguv•2h ago

Matrix Orthogonalization Improves Memory in Recurrent Models

https://ayushtambde.com/blog/matrix-orthogonalization-improves-memory-in-recurrent-models/
52•at2005•6h ago•5 comments

Register Korea's First PC 'SE-8001' as a National Important Material

https://www.dongascience.com/en/news/30374
13•mushstory•3h ago•3 comments

Nano Banana 2 Lite

https://deepmind.google/models/gemini-image/flash-lite/
393•minimaxir•19h ago•157 comments

Department of Commerce has lifted export controls on Claude Fable 5 and Mythos 5

https://twitter.com/AnthropicAI/status/2072106151890809341
734•Pragmata•11h ago•436 comments

Leanstral 1.5

https://docs.mistral.ai/models/model-cards/leanstral-1-5-26-06
245•vetronauta•15h ago•95 comments

Obfuscation: Building the final boss of cryptography (Part I)

https://vitalik.eth.limo/general/2026/06/29/obfuscation1.html
5•fbrusch•1d ago•0 comments

How does a pull-back car work? Illustrated teardown

https://mechanical-pencil.com/products/car
212•Muhammad523•2d ago•38 comments

The Internet I Grew Up with Doesn't Exist Anymore

https://cleberg.net/blog/internet.html
10•felixdoerp•1h ago•4 comments

CERN bids farewell to the LHC and enters Long Shutdown 3

https://home.cern/cern-bids-farewell-to-the-lhc-and-enters-long-shutdown-3/
257•HelloUsername•1d ago•79 comments

Pine64 launch $50 smart speaker for Home Assistant tinkerers

https://www.omgubuntu.co.uk/2026/06/pine64-pinevoice-riscv-smart-speaker-launch
41•edward•1h ago•9 comments

The first early human eggs from stem cells

https://www.conception.bio/science-and-updates/the-first-early-human-eggs-from-stem-cells
136•dsr12•6h ago•91 comments

Forestiere Underground Gardens

https://en.wikipedia.org/wiki/Forestiere_Underground_Gardens
75•onemoresoop•10h ago•17 comments

I ported Kubernetes to the browser

https://ngrok.com/blog/i-ported-kubernetes-to-the-browser
287•peterdemin•15h ago•83 comments

Pystd, similar-ish functionality with a fraction of the compile time

https://nibblestew.blogspot.com/2026/06/pystd-standard-library-similar-ish.html
34•ibobev•4d ago•29 comments

Building a custom octocopter from scratch with no prior hardware experience

https://karolina.mgdubiel.com/drone/
383•noleary•3d ago•79 comments

Tokyo has only two barley tea makers, we visited one to see how mugicha is made

https://soranews24.com/2026/06/30/tokyo-has-only-two-barley-tea-makers-and-we-visited-one-to-see-...
145•zdw•16h ago•38 comments

Single header Parser Combinators for C

https://github.com/steve-chavez/CParseC
44•steve-chavez•7h ago•6 comments

Ante: A new way to blend borrow checking and reference counting

https://verdagon.dev/blog/ante-blending-borrowing-rc
100•g0xA52A2A•2d ago•23 comments

From brain waves to words: a new path to communication without surgery

https://ai.meta.com/blog/brain2qwerty-brain-ai-human-communication/?_fb_noscript=1
169•alok-g•14h ago•83 comments