Hello,

I am hosting a shared Minecraft server (10-15 users usually) on dedicated hardware somewhere at OVH. I am considering moving this server to my home. I would save 25$ per month doing this, which would be my main motivation.

I am aware of other considerations (I'll mention them later) but maybe I am missing something? Is there anyone who did the reverse (hosting a service with multiple users, moving them from your home to a hosting company) and what was your reason

Things I already considered:

• when my electricity/connection goes down the server goes down (that's ok it's just a game and my connection has always been very very stable)
• hosting at home eats bandwidth (I have 50mbit which is way more than I use, I don't stream or download much)
• electricity costs money too
• when the server is compromised my home network is compromised (handling servers and networks is my hobby and my job, I think I can make it safe)

Thank you for your thoughts!

I currently run servers via VM in Proxmox.

Two of these VMs are:

1. FreshRSS, RSS-Bridge, and Nginx Proxy Manager
2. Audiobookshelf

Nginx Proxy Manager is currently being used to reverse proxy FreshRSS & RSS-Bridge. Should I use my currently installed NPM from VM 1 to reverse proxy Audiobookshelf on VM 2? Or should I also install NPM in VM 2 to manage that reverse proxy?

I suffer several micro cuts a day since a couple weeks. I'd like to monitor these cuts to help diagnose the issue with my ISP.

Is there any docker image that allows to do this ? I only found internet speed monitoring.

Is there an active self-hostable solution similar to Dropbox, GDrive? NextCloud not considered, too bloated, not polished.

I made this stack based on my own deployment of Lemmy, it should allow anyone to run a Lemmy stack in Compose, with LE SSL behind Traefik. I've tested it behind docker-compose on Windows and Ubuntu. Interested in any feedback or PRs :)

I have a handful of NodeJS websites that are almost ready to be deployed publicly. All of them are very simple sites which I don't expect to get much traffic.

I'm thinking I could make a docker container for each website using the NodeJS docker image, then route them using traefik or nginx. This way there's a good degree of separation between the sites and everything will be organized and easy to backup/transfer around if needed.

Is it a decent plan? Got any better ideas or tips?

geteilt von: https://kerala.party/post/34434

I tried to install pixelfed on my server using the docker compose file from the pixelfed repository. The installation was not straightforward and there were many problems. So I created an ansible playbook to automate the installation. Hope this is helpful and let me know your feedback.

cross-posted from: https://sh.itjust.works/post/1386745

Anytype has finally followed through on their promise and open sourced their repositories. Self hosting is now possible though there is no docker container available.

This is a major step forward for all PKMS and I wholeheartedly congratulate them.

btw Anytype is free, even their included sync service, which is the best of any offline-first style PKMS I have experienced. Anytype is top 3 PKMS for me, followed by Logseq and SiYuan. They're in good company and now it's only going to improve!

Resources:

Self hosting documentation

Contributor discussions

Hi everyone,

My router went from IPv4 to IPv6 after an update from my ISP back in April, and so I decided to try and get my selfhosted Raspberry Pi server to work with it. It's been less trivial than I hoped it would be, though. It worked and was reachable when it still used IPv4, but it's been out of the air since April.

I'm running Arch Linux ARM on the device and use networkd to connect it to the internet. I use https://now-dns.com to get a dynamic DNS and have connected it to my server using their Linux script.

This is my Caddyfile:

{
	debug
	
}

# Jellyfin:
myserver.now-dns.net:26347,
myserver.now-dns.net:443,
[my ipv6]:26347 {
	header / {
		# Enable cross-site filter (XSS) 
		# and tell browser to block detected attacks    
		X-Frame-Options "Deny"
		Content-Security-Policy "
	            default-src 'self' data: blob:;
	            style-src 'self' 'unsafe-inline' bootstrapcdn.com *.bootstrapcdn.com https://ctalvio.github.io/Monochromic/default_style.css https://ctalvio.github.io/Monochromic/jfblue_style.css https://ctalvio.github.io/Monochromic/jfpurple_style.css https://ctalvio.github.io/Monochromic/bottom-progress_style.css https://ctalvio.github.io/Monochromic/customcolor-advanced_style.css https://ctalvio.github.io/Monochromic/improve-performance_style.css https://fonts.googleapis.com/css2;
	            script-src 'self' 'unsafe-inline' bootstrapcdn.com *.bootstrapcdn.com googleapis.com *.googleapis.com https://www.gstatic.com/cv/js/sender/v1/cast_sender.js worker-src 'self' blob:;
	            font-src 'self' bootstrapcdn.com *.bootstrapcdn.com;
	            img-src data: 'self' imgur.com *.imgur.com;
	            form-action 'self';
	            connect-src 'self' pokeapi.co;
	            frame-ancestors 'self';
	            report-uri {$CSP_REPORT_URI}
	        "
	}
	reverse_proxy 127.0.0.1:8093
	#reverse_proxy localhost:8093
}

# Nextcloud:
myserver.now-dns.net:65001 {
	root * /usr/share/webapps/nextcloud
	file_server
	#        log {
	#                output file     /var/log/caddy/myserver.now-dns.net.log
	#                format single_field common_log
	#        }

	#php_fastcgi 127.0.0.1:9000
	#php_fastcgi unix//run/php-fpm/php-fpm.sock # veranderd naar correcte adres uit /etc/php/php-fpm.d/www.conf
	php_fastcgi unix//run/nextcloud/nextcloud.sock # veranderd naar nieuwe correcte adres uit /etc/php/php-fpm.d/nextcloud.conf

	header {
		# enable HSTS
		Strict-Transport-Security max-age=31536000;
	}

	redir /.well-known/carddav /remote.php/dav 301
	redir /.well-known/caldav /remote.php/dav 301

	# .htaccess / data / config / ... shouldn't be accessible from outside
	@forbidden {
		path /.htaccess
		path /data/*
		path /config/*
		path /db_structure
		path /.xml
		path /README
		path /3rdparty/*
		path /lib/*
		path /templates/*
		path /occ
		path /console.php
	}

	respond @forbidden 404
}

Figuring out how to open the necessary ports took some doing on my router, but now when I test with an IPv6 port scanner (like this one) it shows me that ports 80 and 443 are open, as well as ports 65001 and 26347. It works both when I fill in my public IPv6 address as well as the address I get from now-dns. I still cannot connect to the server with a browser, though.

I have been whittling away at this issue on and off since April and haven't really made any big breakthroughs. What would be your first steps in troubleshooting this issue?

journalctl -f -u caddy gives the following:

Jul 18 16:28:13 baspi2 caddy[422]: {"level":"debug","ts":1689690493.3595114,"logger":"http.stdlib","msg":"http: TLS handshake error from 198.199.97.61:43266: no certificate available for '192.168.1.96'"}
Jul 18 16:28:16 baspi2 caddy[422]: {"level":"debug","ts":1689690496.401284,"logger":"http.stdlib","msg":"http: TLS handshake error from [2604:a880:400:d0::20e2:c001]:46636: EOF"}
Jul 18 16:28:45 baspi2 caddy[422]: {"level":"debug","ts":1689690525.159631,"logger":"http.stdlib","msg":"http: TLS handshake error from [2607:5300:201:3100::7911]:42978: read tcp [2a02:a465:1b91:1:dea6:32ff:fe54:67fb]:65001->[2607:5300:201:3100::7911]:42978: read: connection reset by peer"}
Jul 18 16:35:44 baspi2 caddy[422]: {"level":"debug","ts":1689690944.3032691,"logger":"http.stdlib","msg":"http: TLS handshake error from [2a01:4f8:1c1c:2d4e::1]:31497: EOF"}
Jul 18 16:41:15 baspi2 caddy[422]: {"level":"debug","ts":1689691275.666184,"logger":"http.stdlib","msg":"http: TLS handshake error from 45.227.254.49:65421: tls: first record does not look like a TLS handshake"}
Jul 18 16:48:14 baspi2 caddy[422]: {"level":"debug","ts":1689691694.1229563,"logger":"events","msg":"event","name":"tls_get_certificate","id":"f6540cc3-dce9-4f75-995a-9d313ad6a9a8","origin":"tls","data":{"client_hello":{"CipherSuites":[49199,49195,49169,49159,49171,49161,49172,49162,5,47,53,49170,10],"ServerName":"","SupportedCurves":[23,24,25],"SupportedPoints":"AA==","SignatureSchemes":[1025,1027,513,515,1025,1281,1537],"SupportedProtos":null,"SupportedVersions":[771,770,769],"Conn":{}}}}
Jul 18 16:48:14 baspi2 caddy[422]: {"level":"debug","ts":1689691694.1232002,"logger":"tls.handshake","msg":"no matching certificates and no custom selection logic","identifier":"192.168.1.96"}
Jul 18 16:48:14 baspi2 caddy[422]: {"level":"debug","ts":1689691694.1232479,"logger":"tls.handshake","msg":"all external certificate managers yielded no certificates and no errors","remote_ip":"192.241.226.31","remote_port":"60480","sni":""}
Jul 18 16:48:14 baspi2 caddy[422]: {"level":"debug","ts":1689691694.1233048,"logger":"tls.handshake","msg":"no certificate matching TLS ClientHello","remote_ip":"192.241.226.31","remote_port":"60480","server_name":"","remote":"192.241.226.31:60480","identifier":"192.168.1.96","cipher_suites":[49199,49195,49169,49159,49171,49161,49172,49162,5,47,53,49170,10],"cert_cache_fill":0.0003,"load_if_necessary":true,"obtain_if_necessary":true,"on_demand":false}
Jul 18 16:48:14 baspi2 caddy[422]: {"level":"debug","ts":1689691694.1235263,"logger":"http.stdlib","msg":"http: TLS handshake error from 192.241.226.31:60480: no certificate available for '192.168.1.96'"}

(Those handshake errors show up when I scan the ports with an online tool.)

I used to have this working, but I haven't used it in a while and had to rebuild the server in between, and now it doesn't. How do you set up the PAT in the URL in order to access private repos when building using docker compose?

build: 'https://PAT@github.com/username/repo.git#branch' is what I'm trying to use, but I get:

failed to solve: failed to read downloaded context: failed to load cache key: invalid response status 404

EDIT: See comment for (silly) resolution. The above works.

I have a vps where I host a few things and I tried adding jellyfin. It worked and while scanning media railed the CPU/ram, once it was done everything was smooth. However, despite having all dependencies a bunch of videos didn't play. I also don't need the music and ebooks side of jellyfin as I'll be using other things for those (funkwhale for music, still looking into the books and comics ) So, which self hosted alternatives do I have for videos and books/comic books? I need things that only do that but don't well. The video one needs to have a client I can install on a android device I have plugged ony tv

I'm excited about this MPL licensed tool and wanted to share; it's aiming to be a replacement to Notion, but self-hosted. It's not as feature rich (still in Beta) but it's a modern KMS/Collaboration tool that's looks to be on par with other proprietary options in the market. They seem to have some sort of capital backing because they have a team working on development.

My concern is how the pricing model will work and what features they will lock. They say that it will be free to self-host, but I feel like they will lock some features (most definitely their cloud service.) But if they only lock cloud hosting but allow self-hosting it will be pretty amazing for the self-hosting community.

publication croisée depuis : https://lemmy.world/post/1474932

Hi there.

I wanted to run LLMs locally on my server (for better privacy), and was wondering if:

1. I could use Intel ARC/AMD GPUs - these are often less expensive and AMD has open source drivers, which is something I like.
2. If a PCIe x4 Gen 3 slot would be enough (it's an x16 slot with x4 speeds) - this is an important consideration.
3. Would 8GB of RAM (in the GPU, I believe it's called VRAM?) be enough?

I'm looking at language models to train on my Reddit and Lemmy content, in an aim to make it write like me (and maybe even better than me? Who knows). I don't quite know which models I will train, or how I will do so (I certainly won't be writing anything from scratch), but I was wondering; with the explosion of FOSS AI models, maybe something like this would be possible with the hardware constraints I mentioned above?

Does the speed of the connection between the GPU and the CPU really matter in such applications?

Thanks!

A while ago I made an app for tracking baby activities because I became a parent and was horrified at how many permissions the existing apps required and how much tracking they contained. Both the app and the server are open source.

This is a web-app which also has an Android version in the Play Store (F-Droid didn't accept it because they don't feel like web-apps should be welcome in their store). On iPhones it can be installed as a PWA to the home screen.

Features:

• No tracking whatsoever
• End-to-end encrypted, no personal information is stored on the server unencrypted
• Track baby's feeding, diaper changes, breast pumping and sleeping (more to come)

Links:

• https://baby-journal.app - the PWA itself
• https://play.google.com/store/apps/details?id=app.baby_journal.twa - the Play Store Android wrapper
• https://github.com/RikudouSage/BabyJournalApi - the server source code
• https://github.com/RikudouSage/BabyJournalUi - the PWA source code

Hey All,

Newbie selfhoster here trying to figure out next best steps for my UnRAID install. Essentially, I got a little overzealous in my setup and didn't quite provision things optimally, so I'm hoping to avoid having to start completely from scratch.

My drives: 2x8tb HDD, 2x14tb HDD, 1x1tb Nvme SSD, 1x2tb Nvme SSD

Array: all 4 HDDs, 1 parity, all formatted in ZFS

ZFS Pools: 1tb is standard UnRAID cache drive, 2tb is a slog (not certain if I'm using this term right; it's used as temp storage for downloads before data gets moved to the array)

My issue: didn't realize that the array in UnRAID doesn't allow for actual zpool/raid configuration, so writes to the array are pretty slow. I want to speed it up.

What I want to do: move the 2x8tb HDDs off the array, wipe them, reconfigure them into a new pool in raid0 (insert equivalent z-term for ZFS here). Leave the 2x14tb HDDs in the array, keeping the 1 that's there as parity.

My existing data: currently in the array, solely on the 14tb HDD not being used for parity. Nothing incredibly important, just media files and about 200gbs worth, but I'd like to keep that in tact.

My question(s): Because I have no data on the existing 2x8tb HDDs that are in the array, can I safely move them off the array and wipe them without concern for my data that currently exists on the array?

Will I have to rebuild the parity drive?

Should I preclear the drives I am looking to wipe?

Any other potential concerns I'm overlooking?

Sorry for going full noob on you all. I've been reading docs for what feels like a better part of a week, watching the guides, and I guess I'm just slow on the pickup and looking for some layman guidance. Also, sorry if this isn't the right place to ask. I've got a secondary backup solution available, so I'm not worried about ZFS and it's relatively new intro to UnRAID.

I self host all of my services but utilize a VPS as a gateway for access. Primarily to allow access to a media server and file storage for friends and family.

Recently I’ve been shut down by my VPS provider on multiple occasions because they claim my server was DDoS’d at 2gigabits/s. I don’t see any evidence of this in my logs.

Regardless, I set up Traefik proxy to geoblock any IPs outside of my country. Literally a few mins after doing so and confirming via VPN that it was working I got shut down and received an email that my network was severed temporarily due to a DDoS Blackhole event.

The questionable nature of their detection system aside, it’s got me wondering…does ip blocking actually help mitigate DDoS attacks?

The server still needs to process the incoming connection before it filters it, so I’m assuming the attack is still accomplishing it’s intent which is to overload the server. Can somebody more knowledgeable provide some insight?

My dad also used to self-host. Now I run all of the services he used to, and more.

Anyway, his server is still around so I thought I might as well use it for an offsite backup box, I run a matrix instance and nextcloud, as well as other things. But those two are the contents of which matter most.

How would you set this up?

Just a nightly rsync over sftp? That seems ineffecient. Is there a best way ro do this?

cross-posted from: https://lemmy.lucitt.social/post/77727

I made a guide on how to go from zero to hero: Self hosting a lemmy server. All you need is an old pc, a thumb drive, and some time.

Please let me know if there are errors. This is the first draft. Thank you!!!

What the title says. Are there any good ChatGPT alts that can be self hosted?

I'm reaching you all asking for advice. Given the recent news about some social networks attempting to rule my/our content I want all of it to be free forever. To avoid vendor lockout I've decided to host all my tweets and Reddit posts in my own site. Probably will delete original posts too, but not thought about it much yet

Do you think this is a good solution to achieve the goal? What issues are present in doing it this way? Should I do it in a different way? What about deleting the original posts after being published on my site?

All voices are welcome!

Hi,

I want to self-host my own web server for nextcloud, jellyfin, gittea, and a bunch of other things to move away from big tech. I'm planning on having a VM for each of those apps, and running each of them in docker. I could then use Apache or Nginx to access it from outside my network. I've looked into virtual machines and found that QEMU would be the best option, especially for using the CLI. How would your recommend setting it up?

I ask this because I don't want my server being used in some kind of botnet or some shit like that. I don't think that will happen, but I'd prefer to just employ good practices to begin with just in case. Is it even worthwhile having a virtual machine for each of those services anyway?

Keep in mind that my PC I'm using is scrapped from spare parts with an R5 3600 and 16GB of memory. If I need to upgrade it I'm happy to get a bit more, but it shouldn't be an issue.

This is also my first post on programming.dev. I'm not sure if it is a good place to post this on but hopefully there are some people

Thanks!___

I know cloudlfare and other cloud providers often provide geoblocking features if you host with them.

Does anybody know of any similar foss packages for us self-hosters?

I know I don't have any need for somebody outside of my country to access my server, so geoblocking IPs would be a great security feature.

Is it possible/practical to host multiple websites from the same VPS server?

I have a number of domains (for example): bilbobaggins.com, rx4free.com, mypersonalblog.com

I don’t get much traffic and I’m not interested in paying for separate servers for each domain. But I still want https certificates to work properly.

Now I’m familiar with setting up wildcard subdomains with traefik and letsencrypt. But can I do the same or similar with completely different domains such as listed above?

I have a pi zero laying around and I have no use for it as of now. I was wondering if I could host a matrix server on it, I worry it might just not be powerful enough as the title would imply.