I fixed it. It seems to work now. For future reference:
Due to my reverse proxy setup the php container identified it’s own URL as being accessed via HTTP. Settings HTTPS=on in the config did the trick. This will force symfony to assume HTTPS for all communication.
Edit: it seems my comments are not being federated so I could still use some help. Edit 2: it seems all it needed was some patience
I think Neko might fit the bill. I used it for a couple years on a VPS and it was perfectly adequate for my needs. Keep in mind that it's a resource hog and has no arm64 support the last time I checked. It's hosting an X11 session with a chrome browser window (by default) and streaming it over webrtc.
That's great! Hopefully you get some use out of it. IIRC it was relatively straight forward to get stood up. I probably have a docker-compose kicking around somewhere. If you'd like to see it, just let me know.
im just surprised that there weren't any checks that could have prevented an unknowing customer from exposing their devices. Nothing on the fiber modem was labeled, so im kinda worried how many things could be potentially exposed
LetsEncrypt provides free certificates. I would setup Nginx Proxy Manager and use DNS challenge with your dyndns provider to get HTTPS on your home services.
My problem - and I'm not alone - is that I really don't want to expose anything publicly. Is there a way to do this without exposing anything to the Internet?
I am new at this, but from my understanding, if you want to not expose anything to internet, you would need to create your own CA server to create your own certificates and have the necessary encryption certs for your own https on your home lab.
You can setup a VPS between the internet and your home network to limit the exposition of your home network. When a client pings yourdomain.com, it sees the ip of the VPS and not the IP of your home network.
Otherwise, a VPN + home CA server will make your home network accessible and encrypted as well
Gotta live on the edge, man. Open up your router. All ports. Firewalls are for pansies. Connect your laptop directly to the modem. Enable ssh and rdp. What could go wrong?
I have a public domain that I only use internally on my home network. I have a local DNS server that handles all my internal DNS records. So I just point my DNS records to my nginx proxy manager's local IP address and let it create certs using DNS Challenge. So I don't need to expose anything external to make it work.
You don’t have to expose Nginx publicly. It can exist privately on your network. I have my own domain and DNS server internally. For example nginx.home.datallboy.com and jellyfin.home.datallboy.com will resolve to NPM server at 192.168.1.10. Then nginx can listen for jellyfin.home.datallboy.com, and proxy those connections to my Jellyfin VM at 192.168.1.20.
Since I own my domain (datallboy.com), I let Nginx Proxy Manager do DNS challenge which is only used to authenticate that I own the domain. This will insert a TXT record on public DNS records for verification, and it can be removed afterwards. LetsEncrypt will then issue a certificate for https://jellyfin.home.datallboy.com which I can only access locally on my network since it only resolves to private IP addresses. The only thing “exposed” is that LetsEncrypt issued a certificate to your domain, which isn’t accessible to the internet anyways.
I did the hawaiian islands because my wife is from Hawaii. I regret it, it was cute and clever, now it is harder to troubleshoot and I max out at 9 (if you count vegas), and I forget which “island” is attached to which, that now I just use IPs which then defeats the purpose. I’m starting to switch back to functional naming, I’m about to destroy and rebuild everything so it’ll be a good chance to start over and get it “right”.
I look at this route and didn't have a use case that merited the hassle, heat, and cost. I use my CPU to tinker and spin up cloud resources if I need more oompf. Can I ask, what are you planning to do with the compute power?
One thing I'd like to do is generate a podcast by scraping news articles, generating a script of two characters discussing the content of the article, then render it using an AI voice. With larger context lengths becoming a thing, I think it's doable now, especially with so much VRAM in one of these things. I'd also like to run a Stable Diffusion bot for the small chatroom I host for me and my friends. I'm sure ill be able to come up with some more uses as time goes on.
IDrive Is the cheapest and it's what I use. They allow Linux backups and it's 1/3 the price of backblaze buckets. They also give the same amount of backup storage in cloud storage. Encryption is done locally before uploading. I think I got 5TB for $70? That's all I need for critical data. All the rest of my 100 TB of data is Linux ISOs.
It's really clean super fast and works really well as a webapp on all devices. Works well with all kinds of fileformats and does a decent job of finding meta data.
I haven’t used it (yet), but I came across it recently as what looks like the best alternative to Pocket. Pocket just changed their app for the worse (in my opinion).
I'm working through the selfhost install now! we'll see how it goes and works. I asked them yesterday about their app support for mobile and custom domains. iOS is supported and they are working on adding that support for Android.
The way it's set up it likes to error out because it takes a while to get the elasticsearch container up and running. If you do docker-compose up again 10-15 seconds later, it should spin up and run the migration script.
I tried removing everything and stating over. Made sure NodeJS was also on v14 as well according to the website. Still no dice. Is there a way to exec the migration script otherwise?
They generally seem to be shifting away from it being a basic “read it later” app primarily used to save articles that you come across and want to read later and are putting content discovery more front and center. When I opened the app recently a home page came up that had a few of my saved articles but it was mostly filled with suggested articles from the editors or recommended based on an algorithm. I then have to navigate to a different tab that has my “saves”. Looking at the list there is no longer an “archive” button, though I found out swiping will archive the article. Generally the UI has changed to be less intuitive and less focused on the articles that have already been saved.
I used the app to quickly save articles I want to read but don’t have time in the moment and then to go back and read later with a cleaner, more standard format.
How does federation work on kbin? I've got a lemmy account and I can see a few people aggregating around !selfhosted. Tried to search for selfhosted on kbin and absolutely nothing coming from the lemmy fediverse
Just chiming in to say that after several false starts in keeping a journal / knowledge base (including a false start with SilverBullet) I’m finally keeping up with one now since I installed SilverBullet on a raspberry pi and got a daily note template installed. It’s just so clean and easy to use that I’m actually happy to open it and crank out some notes a few times a day, or when I’m sitting down for deeper research.
Thanks for the detailed writeup! I've been troubled by the way that the server required for self-hosting is such a huge hurdle to get over at the beginning. Once you have one, doing more with it is easy, but I've often talked to friends who might be interested in hosting something who get stuck at that point. I hope things like this could help!
Of course, as you noted, many of these only really work on the same network. I still wonder if some clever new method of NAT traversal will come along that could help solve the problem.
I also wanted to mention, your comment about "...as you only need to keep one spare phone turned on and connected to your Wi-Fi." really got me thinking. Usually when someone is going to get started self hosting, they do it with a Raspberry Pi or maybe an old computer. But, could a phone do it?
A phone without a SIM card but on the Wi-Fi, old and so likely has a worn-out battery anyway so it's fine to always leave plugged in could maybe be a gateway to self-hosting for some people. I'm definitely going to think more about this!
As for your main question about using serverless systems, I've always found it to be annoyingly limiting when I try, but I would love for the tools to improve, because it feels so much more robust.
I was thinking about the same thing - using the spare phone as a server for other things that Briar. If you're on Android, I know you can install Termux and basically get access to a bunch of Linux commands and tools, but I'm not sure about its limitations.
Maybe someone can make a similar guide or list about this? Idk 🤔
Selfhosting
Hot