I know it's odd, but I have this Chinese setup box with S905x processor, 2GB of RAM, and 500GB of USB Storage. I love it. Really really love it. I unlocked it and It runs OpenWRT with Docker installed and I wonder whether or not this board can be my OnlyOffice server. Thanks.

[Question] Podcast streaming to Raspberry Pi

@selfhost

I'm planning on setting up a #rasberrypi music streamer. I'll be throwing headless #plexamp to play my music library and I'll probably use #moodeaudio as the base image to get me bluetooth, airplay and a few other bits. Does anyone know how I can integrate podcasts into the platform? I was thinking of setting up an #audiobookshelf server and clients on my mobile devices but I'm not sure how to stream a podcast to the pi so that it keeps track of my position across all my devices.

#selfhosted

Hi all. I recently (yesterday) set up a TrueNAS Core server from some old hardware I had lying around, and it feels great to be self-hosting!

I currently only have Syncthing set up on it for a couple of files, but I'd like to be able to manage all the files on the pool from my phone if I need to. What would be the best software to accomplish this?

can other instances see this post?

[Question] Harbor registry with Ingress on a k3d cluster

Hi, Has anyone tried to enable #ingress + #certmanager on a #k3d cluster while installing #harbor registry via #helm ? Any inputs on how to achieve this on macos? TIA

@selfhost

Hi,

I've been trying to host my own lemmy instance for a while. i've almost got it working (i think). But my problem now is that whenever i try to post something with a picture i get an error SyntaxError: JSON.parse: unexpected character at line 1 column 1 of the JSON data. In firefox i get a 502 bad gateway error pointing to https://lemmy.emphisia.nl/pictrs/image I don't really know why because everything seems to be working

Hello,

I am hosting a shared Minecraft server (10-15 users usually) on dedicated hardware somewhere at OVH. I am considering moving this server to my home. I would save 25$ per month doing this, which would be my main motivation.

I am aware of other considerations (I'll mention them later) but maybe I am missing something? Is there anyone who did the reverse (hosting a service with multiple users, moving them from your home to a hosting company) and what was your reason

Things I already considered:

• when my electricity/connection goes down the server goes down (that's ok it's just a game and my connection has always been very very stable)
• hosting at home eats bandwidth (I have 50mbit which is way more than I use, I don't stream or download much)
• electricity costs money too
• when the server is compromised my home network is compromised (handling servers and networks is my hobby and my job, I think I can make it safe)

Thank you for your thoughts!

I currently run servers via VM in Proxmox.

Two of these VMs are:

1. FreshRSS, RSS-Bridge, and Nginx Proxy Manager
2. Audiobookshelf

Nginx Proxy Manager is currently being used to reverse proxy FreshRSS & RSS-Bridge. Should I use my currently installed NPM from VM 1 to reverse proxy Audiobookshelf on VM 2? Or should I also install NPM in VM 2 to manage that reverse proxy?

I suffer several micro cuts a day since a couple weeks. I'd like to monitor these cuts to help diagnose the issue with my ISP.

Is there any docker image that allows to do this ? I only found internet speed monitoring.

Is there an active self-hostable solution similar to Dropbox, GDrive? NextCloud not considered, too bloated, not polished.

I made this stack based on my own deployment of Lemmy, it should allow anyone to run a Lemmy stack in Compose, with LE SSL behind Traefik. I've tested it behind docker-compose on Windows and Ubuntu. Interested in any feedback or PRs :)

I have a handful of NodeJS websites that are almost ready to be deployed publicly. All of them are very simple sites which I don't expect to get much traffic.

I'm thinking I could make a docker container for each website using the NodeJS docker image, then route them using traefik or nginx. This way there's a good degree of separation between the sites and everything will be organized and easy to backup/transfer around if needed.

Is it a decent plan? Got any better ideas or tips?

geteilt von: https://kerala.party/post/34434

I tried to install pixelfed on my server using the docker compose file from the pixelfed repository. The installation was not straightforward and there were many problems. So I created an ansible playbook to automate the installation. Hope this is helpful and let me know your feedback.

cross-posted from: https://sh.itjust.works/post/1386745

Anytype has finally followed through on their promise and open sourced their repositories. Self hosting is now possible though there is no docker container available.

This is a major step forward for all PKMS and I wholeheartedly congratulate them.

btw Anytype is free, even their included sync service, which is the best of any offline-first style PKMS I have experienced. Anytype is top 3 PKMS for me, followed by Logseq and SiYuan. They're in good company and now it's only going to improve!

Resources:

Self hosting documentation

Contributor discussions

Hi everyone,

My router went from IPv4 to IPv6 after an update from my ISP back in April, and so I decided to try and get my selfhosted Raspberry Pi server to work with it. It's been less trivial than I hoped it would be, though. It worked and was reachable when it still used IPv4, but it's been out of the air since April.

I'm running Arch Linux ARM on the device and use networkd to connect it to the internet. I use https://now-dns.com to get a dynamic DNS and have connected it to my server using their Linux script.

This is my Caddyfile:

{
	debug
	
}

# Jellyfin:
myserver.now-dns.net:26347,
myserver.now-dns.net:443,
[my ipv6]:26347 {
	header / {
		# Enable cross-site filter (XSS) 
		# and tell browser to block detected attacks    
		X-Frame-Options "Deny"
		Content-Security-Policy "
	            default-src 'self' data: blob:;
	            style-src 'self' 'unsafe-inline' bootstrapcdn.com *.bootstrapcdn.com https://ctalvio.github.io/Monochromic/default_style.css https://ctalvio.github.io/Monochromic/jfblue_style.css https://ctalvio.github.io/Monochromic/jfpurple_style.css https://ctalvio.github.io/Monochromic/bottom-progress_style.css https://ctalvio.github.io/Monochromic/customcolor-advanced_style.css https://ctalvio.github.io/Monochromic/improve-performance_style.css https://fonts.googleapis.com/css2;
	            script-src 'self' 'unsafe-inline' bootstrapcdn.com *.bootstrapcdn.com googleapis.com *.googleapis.com https://www.gstatic.com/cv/js/sender/v1/cast_sender.js worker-src 'self' blob:;
	            font-src 'self' bootstrapcdn.com *.bootstrapcdn.com;
	            img-src data: 'self' imgur.com *.imgur.com;
	            form-action 'self';
	            connect-src 'self' pokeapi.co;
	            frame-ancestors 'self';
	            report-uri {$CSP_REPORT_URI}
	        "
	}
	reverse_proxy 127.0.0.1:8093
	#reverse_proxy localhost:8093
}

# Nextcloud:
myserver.now-dns.net:65001 {
	root * /usr/share/webapps/nextcloud
	file_server
	#        log {
	#                output file     /var/log/caddy/myserver.now-dns.net.log
	#                format single_field common_log
	#        }

	#php_fastcgi 127.0.0.1:9000
	#php_fastcgi unix//run/php-fpm/php-fpm.sock # veranderd naar correcte adres uit /etc/php/php-fpm.d/www.conf
	php_fastcgi unix//run/nextcloud/nextcloud.sock # veranderd naar nieuwe correcte adres uit /etc/php/php-fpm.d/nextcloud.conf

	header {
		# enable HSTS
		Strict-Transport-Security max-age=31536000;
	}

	redir /.well-known/carddav /remote.php/dav 301
	redir /.well-known/caldav /remote.php/dav 301

	# .htaccess / data / config / ... shouldn't be accessible from outside
	@forbidden {
		path /.htaccess
		path /data/*
		path /config/*
		path /db_structure
		path /.xml
		path /README
		path /3rdparty/*
		path /lib/*
		path /templates/*
		path /occ
		path /console.php
	}

	respond @forbidden 404
}

Figuring out how to open the necessary ports took some doing on my router, but now when I test with an IPv6 port scanner (like this one) it shows me that ports 80 and 443 are open, as well as ports 65001 and 26347. It works both when I fill in my public IPv6 address as well as the address I get from now-dns. I still cannot connect to the server with a browser, though.

I have been whittling away at this issue on and off since April and haven't really made any big breakthroughs. What would be your first steps in troubleshooting this issue?

journalctl -f -u caddy gives the following:

Jul 18 16:28:13 baspi2 caddy[422]: {"level":"debug","ts":1689690493.3595114,"logger":"http.stdlib","msg":"http: TLS handshake error from 198.199.97.61:43266: no certificate available for '192.168.1.96'"}
Jul 18 16:28:16 baspi2 caddy[422]: {"level":"debug","ts":1689690496.401284,"logger":"http.stdlib","msg":"http: TLS handshake error from [2604:a880:400:d0::20e2:c001]:46636: EOF"}
Jul 18 16:28:45 baspi2 caddy[422]: {"level":"debug","ts":1689690525.159631,"logger":"http.stdlib","msg":"http: TLS handshake error from [2607:5300:201:3100::7911]:42978: read tcp [2a02:a465:1b91:1:dea6:32ff:fe54:67fb]:65001->[2607:5300:201:3100::7911]:42978: read: connection reset by peer"}
Jul 18 16:35:44 baspi2 caddy[422]: {"level":"debug","ts":1689690944.3032691,"logger":"http.stdlib","msg":"http: TLS handshake error from [2a01:4f8:1c1c:2d4e::1]:31497: EOF"}
Jul 18 16:41:15 baspi2 caddy[422]: {"level":"debug","ts":1689691275.666184,"logger":"http.stdlib","msg":"http: TLS handshake error from 45.227.254.49:65421: tls: first record does not look like a TLS handshake"}
Jul 18 16:48:14 baspi2 caddy[422]: {"level":"debug","ts":1689691694.1229563,"logger":"events","msg":"event","name":"tls_get_certificate","id":"f6540cc3-dce9-4f75-995a-9d313ad6a9a8","origin":"tls","data":{"client_hello":{"CipherSuites":[49199,49195,49169,49159,49171,49161,49172,49162,5,47,53,49170,10],"ServerName":"","SupportedCurves":[23,24,25],"SupportedPoints":"AA==","SignatureSchemes":[1025,1027,513,515,1025,1281,1537],"SupportedProtos":null,"SupportedVersions":[771,770,769],"Conn":{}}}}
Jul 18 16:48:14 baspi2 caddy[422]: {"level":"debug","ts":1689691694.1232002,"logger":"tls.handshake","msg":"no matching certificates and no custom selection logic","identifier":"192.168.1.96"}
Jul 18 16:48:14 baspi2 caddy[422]: {"level":"debug","ts":1689691694.1232479,"logger":"tls.handshake","msg":"all external certificate managers yielded no certificates and no errors","remote_ip":"192.241.226.31","remote_port":"60480","sni":""}
Jul 18 16:48:14 baspi2 caddy[422]: {"level":"debug","ts":1689691694.1233048,"logger":"tls.handshake","msg":"no certificate matching TLS ClientHello","remote_ip":"192.241.226.31","remote_port":"60480","server_name":"","remote":"192.241.226.31:60480","identifier":"192.168.1.96","cipher_suites":[49199,49195,49169,49159,49171,49161,49172,49162,5,47,53,49170,10],"cert_cache_fill":0.0003,"load_if_necessary":true,"obtain_if_necessary":true,"on_demand":false}
Jul 18 16:48:14 baspi2 caddy[422]: {"level":"debug","ts":1689691694.1235263,"logger":"http.stdlib","msg":"http: TLS handshake error from 192.241.226.31:60480: no certificate available for '192.168.1.96'"}

(Those handshake errors show up when I scan the ports with an online tool.)

I used to have this working, but I haven't used it in a while and had to rebuild the server in between, and now it doesn't. How do you set up the PAT in the URL in order to access private repos when building using docker compose?

build: 'https://PAT@github.com/username/repo.git#branch' is what I'm trying to use, but I get:

failed to solve: failed to read downloaded context: failed to load cache key: invalid response status 404

EDIT: See comment for (silly) resolution. The above works.

I have a vps where I host a few things and I tried adding jellyfin. It worked and while scanning media railed the CPU/ram, once it was done everything was smooth. However, despite having all dependencies a bunch of videos didn't play. I also don't need the music and ebooks side of jellyfin as I'll be using other things for those (funkwhale for music, still looking into the books and comics ) So, which self hosted alternatives do I have for videos and books/comic books? I need things that only do that but don't well. The video one needs to have a client I can install on a android device I have plugged ony tv

I'm excited about this MPL licensed tool and wanted to share; it's aiming to be a replacement to Notion, but self-hosted. It's not as feature rich (still in Beta) but it's a modern KMS/Collaboration tool that's looks to be on par with other proprietary options in the market. They seem to have some sort of capital backing because they have a team working on development.

My concern is how the pricing model will work and what features they will lock. They say that it will be free to self-host, but I feel like they will lock some features (most definitely their cloud service.) But if they only lock cloud hosting but allow self-hosting it will be pretty amazing for the self-hosting community.

publication croisée depuis : https://lemmy.world/post/1474932

Hi there.

I wanted to run LLMs locally on my server (for better privacy), and was wondering if:

1. I could use Intel ARC/AMD GPUs - these are often less expensive and AMD has open source drivers, which is something I like.
2. If a PCIe x4 Gen 3 slot would be enough (it's an x16 slot with x4 speeds) - this is an important consideration.
3. Would 8GB of RAM (in the GPU, I believe it's called VRAM?) be enough?

I'm looking at language models to train on my Reddit and Lemmy content, in an aim to make it write like me (and maybe even better than me? Who knows). I don't quite know which models I will train, or how I will do so (I certainly won't be writing anything from scratch), but I was wondering; with the explosion of FOSS AI models, maybe something like this would be possible with the hardware constraints I mentioned above?

Does the speed of the connection between the GPU and the CPU really matter in such applications?

Thanks!

A while ago I made an app for tracking baby activities because I became a parent and was horrified at how many permissions the existing apps required and how much tracking they contained. Both the app and the server are open source.

This is a web-app which also has an Android version in the Play Store (F-Droid didn't accept it because they don't feel like web-apps should be welcome in their store). On iPhones it can be installed as a PWA to the home screen.

Features:

• No tracking whatsoever
• End-to-end encrypted, no personal information is stored on the server unencrypted
• Track baby's feeding, diaper changes, breast pumping and sleeping (more to come)

Links:

• https://baby-journal.app - the PWA itself
• https://play.google.com/store/apps/details?id=app.baby_journal.twa - the Play Store Android wrapper
• https://github.com/RikudouSage/BabyJournalApi - the server source code
• https://github.com/RikudouSage/BabyJournalUi - the PWA source code

Hey All,

Newbie selfhoster here trying to figure out next best steps for my UnRAID install. Essentially, I got a little overzealous in my setup and didn't quite provision things optimally, so I'm hoping to avoid having to start completely from scratch.

My drives: 2x8tb HDD, 2x14tb HDD, 1x1tb Nvme SSD, 1x2tb Nvme SSD

Array: all 4 HDDs, 1 parity, all formatted in ZFS

ZFS Pools: 1tb is standard UnRAID cache drive, 2tb is a slog (not certain if I'm using this term right; it's used as temp storage for downloads before data gets moved to the array)

My issue: didn't realize that the array in UnRAID doesn't allow for actual zpool/raid configuration, so writes to the array are pretty slow. I want to speed it up.

What I want to do: move the 2x8tb HDDs off the array, wipe them, reconfigure them into a new pool in raid0 (insert equivalent z-term for ZFS here). Leave the 2x14tb HDDs in the array, keeping the 1 that's there as parity.

My existing data: currently in the array, solely on the 14tb HDD not being used for parity. Nothing incredibly important, just media files and about 200gbs worth, but I'd like to keep that in tact.

My question(s): Because I have no data on the existing 2x8tb HDDs that are in the array, can I safely move them off the array and wipe them without concern for my data that currently exists on the array?

Will I have to rebuild the parity drive?

Should I preclear the drives I am looking to wipe?

Any other potential concerns I'm overlooking?

Sorry for going full noob on you all. I've been reading docs for what feels like a better part of a week, watching the guides, and I guess I'm just slow on the pickup and looking for some layman guidance. Also, sorry if this isn't the right place to ask. I've got a secondary backup solution available, so I'm not worried about ZFS and it's relatively new intro to UnRAID.

I self host all of my services but utilize a VPS as a gateway for access. Primarily to allow access to a media server and file storage for friends and family.

Recently I’ve been shut down by my VPS provider on multiple occasions because they claim my server was DDoS’d at 2gigabits/s. I don’t see any evidence of this in my logs.

Regardless, I set up Traefik proxy to geoblock any IPs outside of my country. Literally a few mins after doing so and confirming via VPN that it was working I got shut down and received an email that my network was severed temporarily due to a DDoS Blackhole event.

The questionable nature of their detection system aside, it’s got me wondering…does ip blocking actually help mitigate DDoS attacks?

The server still needs to process the incoming connection before it filters it, so I’m assuming the attack is still accomplishing it’s intent which is to overload the server. Can somebody more knowledgeable provide some insight?

My dad also used to self-host. Now I run all of the services he used to, and more.

Anyway, his server is still around so I thought I might as well use it for an offsite backup box, I run a matrix instance and nextcloud, as well as other things. But those two are the contents of which matter most.

How would you set this up?

Just a nightly rsync over sftp? That seems ineffecient. Is there a best way ro do this?

cross-posted from: https://lemmy.lucitt.social/post/77727

I made a guide on how to go from zero to hero: Self hosting a lemmy server. All you need is an old pc, a thumb drive, and some time.

Please let me know if there are errors. This is the first draft. Thank you!!!