## Sovereignty Decision Filter — 7 Criteria
Applied to every tool, platform, or service before adopting it:
1. **Sovereignty first** — own/control it, or don't use it
2. **Minimal KYC** — minimize identity exposure
3. **Jurisdiction** — EU/Iceland > US for privacy
4. **Funding** — who owns it, what are their incentives
5. **Censorship trajectory** — more or less restrictive over time?
6. **Exit cost** — how hard to leave if it turns
7. **Payment privacy** — crypto/cash preferred
This filter applies to infrastructure, AI platforms, email providers, social platforms — everything.
sovereignty,philosophy,decision_framework,tools
2026-03-19
## SSH Voice & Tone — Hard Rules (Non-Negotiable)
**In three words:** Direct. Data-driven. Calm.
**Active archetype:** Teacher/Sage from stillpoint.
**Retired archetype:** Warrior/KalaVira — actively phased out of all content.
### Hard Prohibitions
- No warrior/battle/fight/war language about the body
- No "wellness journey," "self-care," "holistic," "detox," "cleanse"
- No fear-mongering or catastrophizing
- No "revolutionary," "breakthrough," "quick fix"
- No creating external enemies (big pharma, medical establishment)
- No excessive bullet points — prose default
- No corporate or salesy language
### 7-Point Content Litmus Test (Apply Before Publishing)
1. Direct and clear? No fluff?
2. Sounds like a calm expert teaching?
3. Evidence-based?
4. Empowers the reader?
5. Resonates with exhausted professional?
6. Actionable?
7. Maintains sovereignty — no enemies, no combat?
ssh_site,voice_and_tone,content_strategy,writing
2026-03-19
## System Checkpoint — March 19, 2026
Full migration from Bastion (Starlink/CGNAT) to Citadel (ImOn fiber, real WAN IP) is complete. This is the stable baseline.
### What's Live and Working
- **Citadel** (192.168.1.163 / 100.79.212.58): Ubuntu Server 24.04, LUKS, NVIDIA GTX 1650, Docker, Ollama GPU
- **All 15 Docker services** running on Citadel — see "Citadel Docker Stack" thought for full table
- **Morning email** (Jyotish + ACIM): cron 6am, Ollama qwen2.5:7b, sending to Kyle + Heather ✅
- **OpenBrain**: PostgreSQL+pgvector on Citadel, MCP server on Bohica, 132 thoughts ✅
- **SSH site** (sovereignselfhealth.com): Hugo, live, deploy via `ssh-publish` ✅
- **FTR site** (fromtherubble.pro): Hugo, live ✅
- **Gitea**: set up on Bohica and Citadel ✅
- **Server hardened**: SSH key-only, PermitRootLogin no, fail2ban, unattended-upgrades ✅
- **YouTube→Obsidian pipeline**: live, systemd timer 9am+6pm on Bohica, Ollama distillation ✅
- **VSCodium Remote-SSH**: open-remote-ssh (jeanp413) installed, connects to Citadel ✅
### What's Pending
- [ ] Miniflux: re-add RSS feeds
- [ ] Bastion: clean install EndeavourOS (multimedia machine) — after Citadel proven stable
- [ ] Usememos pattern audit: Claude pulls memos via API, finds themes, writes reflection to Obsidian (wait a few weeks for content first)
- [ ] OpenBrain master seed v2: on Extreme SSD — ingest when ready
### Bohica (Daily Driver)
Dell Latitude, EndeavourOS — Brave, VSCodium, Obsidian, Claude Code terminal. Vault: `/home/kyle/_vaults/Filen/`
## AI & MCP Integration — Current State (March 2026)
- **Claude Code** (CLI) on Bohica — primary AI interface
- **OpenBrain MCP**: live, `~/scripts/openbrain_mcp.py` on Bohica, connected to Citadel PostgreSQL — persistent cross-session context
- **Open WebUI**: chat.fromtherubble.pro (port 3003) — browser-based Ollama frontend
- **AnythingLLM**: ai.fromtherubble.pro (port 3002) — RAG interface, model: mistral:7b
- **Ollama on Citadel**: GPU-accelerated (GTX 1650), accessible at 172.17.0.1:11434 from Docker, 192.168.1.163:11434 from Bohica
- **Claude Code settings**: `~/.claude/settings.json` on Bohica — MCP servers configured here
ai,mcp,ollama,openbrain,infrastructure
2026-03-19
## Human Optimization Course Processing Pipeline
Used to transcribe and structure MP3 course recordings into Obsidian notes.
- **Transcription**: `faster_whisper` (model=base, cpu, int8) on MP3s
- **Output format**: TLDR + H2/H3 headers + tables; one master file per course
- **Storage**: Obsidian vault under Resources/
### Completed Courses
- Red Light Therapy
- Eat For Energy
## FTR Site — Starlink CGNAT / IPv6 Fix
**Problem**: fromtherubble.pro wasn't loading from outside the LAN.
**Root cause**: Starlink uses CGNAT — inbound IPv4 (153.66.215.192) is blocked from the internet. SSH site worked because it had an AAAA (IPv6) DNS record; FTR only had an A record.
**Fix**: Added AAAA record in Porkbun → `2605:59ca:6df5:1808:caf7:50ff:fe4e:1b47`
**Rule for future**: Any site hosted on Bastion (Starlink) MUST have both A + AAAA records in DNS. IPv4 won't work inbound on Starlink.
Note: This is now historical — all sites migrated to Citadel (ImOn fiber, real WAN IP 138.28.66.59). No CGNAT issue on Citadel.
ftr_site,networking,starlink,dns,gotchas
2026-03-19
## Listmonk — Working SMTP Config (Mailgun)
**URL**: lists.sovereignselfhealth.com (Docker on Citadel, port 9000)
**List**: "Sovereign Self Health" — UUID `49f73d8a-b576-4527-9dca-c9509eefbed4`
### Verified Working Config (as of Mar 2026)
- **SMTP host**: smtp.mailgun.org
- **Port**: 587
- **Encryption**: STARTTLS
- **Auth**: login
- **From**: postmaster@mail.sovereignselfhealth.com
- **Double opt-in**: working end-to-end
- **Campaign template**: branded with FTR theme (bone/rust/IBM Plex Sans, FTR logo)
### Past Gotchas Fixed
- Was using port 465 + STARTTLS (wrong) → corrected to 587 + STARTTLS + login auth
- Root URL had trailing spaces in DB — fixed via direct `psql UPDATE` + docker restart
listmonk,email,smtp,mailgun
2026-03-19
## Hugo Sites — SSH & FTR (Live on Citadel)
### sovereignselfhealth.com (SSH)
- **Site path**: `/home/ssh-ftr/sites/ssh/` on Citadel · Theme: `sovereign`
- **Deploy**: `ssh-publish` script (hugo --minify + rsync → `~/docker/caddy/www/ssh/`)
- **Theme**: CSS from Ghost sovereign-theme_3 `screen.css`; self-hosted fonts in `themes/sovereign/static/fonts/` (Barlow 400/500/600/italic, Barlow Condensed 700/800/900, Share Tech Mono 400 — WOFF2)
- **Colors**: Accent `#8B0000`, BG `#f2f0eb`
- **Pages**: `/` homepage, `/about/`, `/work-with-me/`, `/articles/`, `/articles/why-fdn/`
- **Newsletter form**: `action="https://lists.sovereignselfhealth.com/subscription/form"`, list UUID `49f73d8a-b576-4527-9dca-c9509eefbed4`
### fromtherubble.pro (FTR)
- **Site path**: `/home/ssh-ftr/sites/ftr/` · Theme: `rubble`
- **Caddy**: `file_server` from `~/docker/caddy/www/ftr`
### Key Hugo Gotchas
- Layouts MUST be in `layouts/_default/` — not `layouts/page/`
- `markup.goldmark.renderer.unsafe = true` in hugo.toml (enables raw HTML)
- Adding articles: `content/articles/[slug].md` with frontmatter (title, date, excerpt, tags), then run `ssh-publish`
hugo,ssh_site,ftr_site,web,deploy
2026-03-19
## OpenBrain — Setup on Citadel (Live March 19, 2026)
- **DB**: PostgreSQL + pgvector, Docker container `openbrain-postgres` on Citadel, port 5432
- **Compose**: `~/docker/openbrain/docker-compose.yml` on Citadel
- **Schema**: `thoughts` table, vector(768), HNSW index, embeddings via nomic-embed-text (Ollama)
- **MCP server**: `~/scripts/openbrain_mcp.py` on Bohica (stdio transport)
- **Venv**: `~/venv/openbrain/` on Bohica (packages: mcp, psycopg2-binary, requests)
- **settings.json**: MCP entry uses `/home/kyle/venv/openbrain/bin/python3` + `~/scripts/openbrain_mcp.py`
- **Seed script**: `~/scripts/openbrain_seed.py` on Bohica — re-run to add files, `--force` to re-ingest
- **111 thoughts seeded** from 6 vault docs at launch
- **Credentials**: DB pass in `~/scripts/openbrain_mcp.py` CONFIG, also loadable from `~/.openbrain_secrets`
- **UFW**: port 5432 open from Bohica (192.168.1.207) on Citadel
- **Tools**: search_brain, add_thought, recent_thoughts, update_thought, archive_thought, brain_stats, list_topics
- **To activate MCP in a session**: restart Claude Code or run `/hooks` to reload config
- **Master seed v2**: on `/run/media/kyle/Extreme SSD/...` — ingest when Bastion comes back online
openbrain,mcp,infrastructure,citadel
2026-03-19
## Known Gotchas — Citadel (Ubuntu Server 24.04)
- `docker compose` (v2 plugin) NOT available — use `docker-compose` (hyphenated, v1)
- Ollama accessible from Docker containers via `172.17.0.1:11434` (not localhost) — UFW allows 11434
- Silverbullet password has special chars — stored in `.env`, referenced as `${SB_USER}` in compose
- Immich compose: remove `name:` field (legacy docker-compose incompatibility)
- `sudo` requires a TTY — can't run sudo via SSH non-interactively without workaround
- `pip`/`pip3` not installed by default — bootstrap: `curl https://bootstrap.pypa.io/get-pip.py | python3 - --user --break-system-packages` → installs to `~/.local/bin/`
- `python3-venv` not installed by default — needs `sudo apt install python3.12-venv`
- Always use absolute paths in cron jobs (PATH not set)
citadel,gotchas,docker,ubuntu
2026-03-19
## Morning Email Script — Jyotish + ACIM (Live March 19, 2026)
- **Script**: `~/scripts/morning_email.py` on Citadel
- **Logs**: `~/logs/morning_email.log`
- **Source of truth**: `/home/kyle/_vaults/Filen/Resources/ACIM/morning_email.py` (vault copy)
- **Cron**: 6am daily on Citadel
- **LLM**: Ollama locally (`qwen2.5:7b`) — NOT Claude API
- **Panchang**: pyswisseph with Lahiri ayanamsa — accurate, not fallback
- **ACIM lessons**: `~/ACIM/workbook/` on Citadel (all 365 scraped from lessons.acim.org)
- **Personalized**: each recipient gets only their own Jyotish section
### Recipients & Natal Profiles
- **Kyle**: Aries ASC, Moon Libra, Mercury/Mercury Mahadasha 2025–2042
- **Heather**: Cancer ASC, Moon Aquarius, Mercury/Mercury Mahadasha 2017–2034
To add recipients: add name+email+natal profile to `CONFIG["recipients"]` in the script and Ollama prompt.
## Citadel Setup — Complete (March 18, 2026)
- Ubuntu Server 24.04.4 LTS, LUKS+LVM, full disk encryption (465GB expanded)
- NVIDIA drivers 580 + CUDA 13.0 ✅
- Docker + Ollama (GPU, 3148MiB VRAM) ✅
- Ollama models loaded: qwen2.5:7b, mistral:7b, phi4-mini, llama3.2:3b, nomic-embed-text
- Tailscale ✅, UFW (22/80/443 open) ✅
- DHCP reservations: Citadel .163, Bohica .207 ✅
- Router port forwards 80/443 → Citadel ✅
- Ollama bound to 0.0.0.0 via systemd override (UFW allows 11434)
- Docker services path: `~/docker/[service]/docker-compose.yml`
- Caddy config: `~/docker/caddy/Caddyfile` on Citadel (copy at `~/Caddyfile` on Bohica)
citadel,infrastructure,setup
2026-03-19
## Machine Roles (as of March 18, 2026)
| Machine | Hardware | OS | Role |
|---|---|---|---|
| Bohica | Dell Latitude | EndeavourOS | Daily driver — Brave, VSCodium, Obsidian, terminal. LAN: 192.168.1.207 |
| Citadel | HP Pavilion, GTX 1650, 16GB RAM | Ubuntu Server 24.04 | Headless home lab server on ImOn fiber. LAN: 192.168.1.163, Tailscale: 100.79.212.58, SSH: `ssh kyle@citadel`. ALL self-hosted services live here. |
| Bastion | Dell Latitude | Offline/standby | Starlink connection. Offline — to become multimedia machine after Citadel proven stable. Tailscale: 100.82.253.59 |
- WAN IP (ImOn fiber): 138.28.66.59
- Vault path (Bohica): `/home/kyle/_vaults/Filen/`
- All services on `fromtherubble.pro` subdomains or `sovereignselfhealth.com`
- Domain `cyclesage.life` → retiring, let expire
machines,infrastructure,network
2026-03-19
FLAGS FOR FUTURE AI
1. **The reorganization:** Kyle agreed the 3-tier structure made sense but there's no confirmation it was executed. Don't assume the baseline docs live in "FDN Source Docs" yet — they may still be here.
2. **Personal protocol:** Files exist (Diet Master Reset, Metabolic Type Report, diet sheets) but were never discussed in conversation. His status as his own client is real but underspecified in the chats.
3. **FDN Master Resources project:** Referenced as the methodology/protocols home, but I've never seen inside it. When helping with protocols, ask if relevant docs are there.
4. **"Tested with Opus":** Session 1 ended with intent to test baselines using Opus for actual client work. Whether this happened is unknown.
5. **Client work:** No actual client cases appear in this project's chats. This project has been entirely infrastructure/build phase. First real client case may be incoming.
---
*Synthesized from 3 project conversations. Files analyzed: none (per instructions). Confidence: High on methodology and library structure; Medium on organizational decisions (some inferred); Low on personal protocol details and current client caseload.*
flags_for_future_ai
2026-03-19
ACTIVE STATUS & OPEN THREADS
| Item | Status |
|------|--------|
| 35-doc baseline library | ✅ Complete |
| Personal lab gap analysis | ✅ Complete |
| Client project template | ✅ Complete (v1.0) |
| Project reorganization (3-tier) | ⏳ Planned, not executed |
| FDN Master Resources project | ⚠️ Referenced but contents unknown to me |
| First actual client R&R using baselines | ⚠️ Not yet observed in chats — may have happened outside this project |
| Personal protocol implementation | ⚠️ Files exist but not discussed in chat |
---
active_status_&_open_threads
2026-03-19
WORKING PREFERENCES & PATTERNS
**Batch creation:** You prefer Claude to batch-process all related documents in one session rather than spread across turns. You tested this in the desktop app context.
**Document quality bar:** Professional, thorough, no shortcuts. Clinical pearls section was consistently emphasized as important.
**Client-agnostic rule:** Non-negotiable. Any document intended as a baseline resource must contain zero client-specific identifiers or data.
**Tool workflow that worked well (for future Claude instances):**
1. `project_knowledge_search` for marker research
2. `create_file` for document generation
3. `bash_tool` for batch copying (`cp /home/claude/*.md /mnt/user-data/outputs/`)
4. `present_files` for final review of multiple docs simultaneously
**Communication style:** You prefer direct, organized output. You don't need concepts over-explained — you know your methodology.
---
working_preferences_&_patterns
2026-03-19
THE CLIENT PROJECT TEMPLATE
The message that prompted this Open Brain document contained a **fully built Client Project Instructions Template** — version 1.0, February 2026, Sovereign Self Health. It covers:
- Client overview, complaints, goals
- Health history snapshot (diagnoses, meds, supplements, red flags)
- Dominant Hidden Areas + initial hypothesis
- Lab results timeline
- Current D.R.E.S.S. protocol and phase
- Session prep and notes
- Communication log
- Progress tracking (1–10 scales, baseline + check-ins)
- Metabolic Type and food sensitivities
- Special considerations (lifestyle, communication preferences, personality)
- Claude's defined role and explicit limitations
**Key design principle baked into the template:** Claude should NOT make diagnoses, override clinical judgment, or share information outside the project.
---
the_client_project_template
2026-03-19
YOUR PERSONAL LAB FINDINGS (Kyle as Client)
Notable abnormal markers from your own panels:
- **DHEA-S:** Elevated
- **Cortisol:DHEA Ratio:** Low (despite elevated DHEA-S)
- **Faecalibacterium prausnitzii:** Very low
- **Bacteroidetes phylum:** Low
- **Staphylococcus aureus:** High
- **Streptococcus spp.:** High
⚠️ *Specific values, full panel results, and any protocol you built for yourself are in the project files (PDFs) — not captured in chat text. This summary only reflects what was discussed conversationally.*
You also have a **Diet Master Reset plan**, a **Metabolic Type Report**, and **diet sheets** (gluten-free, histamine) in the project — suggesting active dietary intervention underway for yourself.
---
your_personal_lab_findings_(kyle_as_client)
2026-03-19
ORGANIZATIONAL ARCHITECTURE (Proposed — Not Yet Finalized)
**Current State:** All baseline files live in this project (as of the last session).
**Proposed Three-Tier Structure:**
- **FDN Source Docs** — baseline deep dives, marker interpretation references (the 35 docs)
- **FDN Master Resources** — D.R.E.S.S. methodology, Metabolic Typing, protocols
- **Individual Client Projects** — case management, sessions, progress tracking (reference both above)
**Decision Status:** ⚠️ *Inferred as "agreed in principle, not yet executed."* The migration was recommended and you appeared to agree with the logic, but no confirmation that files were actually moved. The current project was being considered for repurposing as "FDN Practice Templates" or "FDN Workflows."
**Practical Blocker:** Claude Projects don't allow cross-project file referencing natively — you'd need to copy/upload relevant baseline docs into each client project as needed, or reference them from a Master project that stays open.
---