I’m using Heimdall to easily access my self hosted stuff ATM. I would like for my family to use them too if they’re so inclined, but there’s no way they will be able to remember the IP addresses, I know I can’t!...
This is how I do it. It works internally and externally, though it's more than OP needs. :)
To add to what's been said (in case it's useful to others), it's worth looking at SWAG and Authelia to do the proxying for services visible to the Internet. I run them in a Docker container and it does all the proxying, takes care of the SSL certificate and auto-renews it, and adds MFA to the services you run that support it (all browsing, MFA-aware apps, etc).
Another thing I like about SWAG's setup is that you select which services/hostnames you want to expose, name them in the SUBDOMAINS environment variable in Docker (easy to remove one if you take a service down, for maintenance, etc), and then each has its own config file in Nginx's proxy-confs directory that does the https://name.domain -> http://IP:port redirection for that service (e.g. wordpress.subdomain.conf), assuming the traffic has met whatever MFA and geo-whitelisting stuff you have set up.
I also have Cloudflare protecting the traffic (proxying the domain's A record and the wildcard CNAME) to my public address, which adds another layer.
but before I do, I figured I’d ask if anyone’s aware of any tools/software that covers my basic needs of setting something basic that may alert me if there are any intruders in the network?...
The Honeynet Project, related to the SANS Institute when I last checked, has a lot of resources on honeypots that are worth a look, if you haven't already.
I’ve had a “home lab server” for a while now, it’s nothing special but I think I can do more with it, I just don’t know what to do with it… I currently use it just for a pihole and (sometimes) a Minecraft server or a web server… I used to also have a nexcloud and a searxng instance (which I will probably bring...
That's a really open-ended question. Depends purely upon your interests and appetite for risk, etc.
Might be worth looking at, from a Docker perspective:
AdGuard Home (I think it's better than Pi-Hole)
Wireguard or similar. Great for reaching your services when away from home.
Audiobookshelf. Audiobooks. There are good apps.
Calibre-Web. Ebooks.
RSS feed reader, for non-social media websites you visit. Plenty to choose from: FreshRSS, TT-RSS, Sismics, etc.
Gitlab CE. If you're a developer or can otherwise make use of version control.
Gotify. Alerting on your containers. Has a good mobile app.
Heimdall. A dashboard for everything you're running.
Komga. If you're into manga. The best iOS app is meh, but the best Android app is awesome.
Mealie. Recipe database.
Paperless-ngx. Excellent for storing your PDFs and other digital life.
PhotoPrism. Basically Google Photos.
Portainer. Great for managing Docker containers/stacks.
qBitTorrent. Guess what that's for.
SWAG with Authelia. SWAG does reverse proxying with a Let's Encrypt certificate, and automatically renews it for you. Authelia provides MFA (Authy, Google Authenticator, etc) on top of it.
Vikunja. Todoist or Toodledoo without having to pay for features.
Wallabag. Basically Pocket.
Watchtower. Automatically updates containers for you. Can exclude the ones you don't want to update, etc.
Webtrees. Family tree research, if that's your thing.
YouTransfer. Useful for sharing files without having to use Dropbox, etc.
I have in the past run a Valheim server and a VRising server, too. FWIW.
I think a big problem behind the reluctance of alternatives to the strictly chronical timeline on Mastodon is that people fear that too much power is taken out of their hands if they are introduced. But the fact is: it is already the case that we put a lot of trust in administrators to put the correct software in place. A...
I have zero problem with curated or algorithmic timelines. I have a 100% problem when there isn't a chronology timeline option.
It's simple really: give me the permanent option of chronological without the dark pattern fuckery of having to reset it periodically, or fuck off forever.
The assumption is that centrally managed social media is bad because their algorithm is bad. But actually, they are bad because they are centrally managed and force one algorithm onto you. I’m not even advocating algorithm-by-choice. Even instance-specific algorithms would already work and would make the whole experience much...
Every time a social media site has offered, pleaded, cajoled or forced me to take a non-chronological timeline, I've refused. And if that refusal eventually becomes impossible (no option, addons no longer work, etc), I take my eyeballs elsewhere.
I am at a high-beginner/low-intermediate level in Python, and one thing that drives me nuts is how poorly I am able to read the Python official documentation and grok how to use the described code....
Agreed. The lack of varied examples in documentation is my common tripping point. When I hate myself, I use visit SarcasmStackOverflow to find examples, and then reference those against the module's documentation.
And it's definitely become an easier process as I've read more documentation.
I use my desktop PC for Jellyfin and torrenting, but I’m looking for something that I can keep on 24/7 that draws less power and run other self-hosted services on Linux. I would like to have at least 2x 14 TB 3.5" hard drives in or attached to it with the possibility of expanding in the future....
Do you have a NAS? It can be a good way to get decent functionality without extra hardware, especially if you're doing proof of concept or temporary stuff.
My self-hosting Docker setup is split between 12 permanent stacks on a Synology DS920+ NAS (with upgraded RAM) and 4 on a Raspberry Pi 4B, using Portainer and its agent on the Pi to manage them. The NAS is also using Synology's Drive (like Dropbox or GDrive) and Photos (like Google Photos).
I've had the NAS running servers for Valheim and VRising in the past, but they require that fewer containers be running, as game servers running on Linux usually have no optimisation and/or are emulating Windows.
If I decide to host a game server again, I'll probably look at a NUC. I've done the DIY mini-ITX route in the past (for an XBMC-based media centre with HDMI output) and it was great, so that's another option.
I used Linuxserver's Docker container of Dokuwiki when I migrated my notes from Evernote a few years ago. It was easy to setup and configure, has a number of plugins that further improve it, and it did the job really well.
I ended up migrating it all to Obsidian this year, as it serves my needs better, but otherwise I'd still be using Dokuwiki.
This is what I do. I find keeping 20-odd docker-compose files (almost always static content) backed up to be straightforward.
Each is configured to bring up/down the whole stack in the right order, so any Watchtower-triggered update is seamless. My Gotify container sends me an update every time one changes. I use Portainer to manage them across two devices, but that's just about convenience.
I disable Watchtower for twitchy containers, and handle them manually. For the rest, the only issue I've seen is if there's a major change in how the container/stack is built (a change in database, etc), but that's happened twice and I've been able to recover.
Yeah, it make for a nice workflow, doesn't it. It doesn't give you the "fully automated" achievement, but it's not much of a chore. :)
Have you considered something like borgbackup? It does good deduplication, so you won't have umpteen copies of unchanged files.
I use it mostly for my daily driver laptop to backup to my NAS, and the Gitlab CE container running on the NAS acts as the equivalent for its local Git repos, which are then straightforward to copy elsewhere. Though haven't got it scripting anything like bouncing containers or DB dumps.
I migrated away from Evernote a few years ago, where I kept my "paperless life" (PDFs of receipts, bills, etc) and general notes (work, study, etc). Opting to self-host most of the things I can, I moved the notes to Dokuwiki and the rest to what is now Paperless-ngx.
This year I realised that Obsidian suits my needs better than a wiki, so migrated the notes to that. If it's just for your stuff, I'd recommend the same. (Though if you collaborate with anyone, I've heard Notion is a better option specifically for that.) Obsidian has a lot of extensibility, which will steepen the learning curve, but it's worth it.
I sync Obsidian's Vault using my Synology NAS's "Drive" client, and Obsidian works perfectly with Windows, Mac, Linux, and Android. The only shortcoming is iOS (because iOS), though I believe you can work around it using Obsidian Sync or at least one other tool I've seen mentioned. It might also be possible via the Obsidian Git extension, but I've not tried it with iOS and requires (from a self-hosting perspective) that you have a local Git server (for example).
Like 10-15 years ago I was into linux and tried a bunch of different distros (PCLinuxOS, Mint, CentOS, OpenSuse...) and was quite happy with the, then, limited options of gaming on linux (It was the time Valve released TF2 for linux)...
I've been using Linux - off and mostly on - since a year after Linus released his kernel, and so have tried a bunch of flavours. I agree with aperson: you'll receive lots of recommendations, but only you know what you like.
My daily driver is Ubuntu on an i5-7200U (Lenovo ThinkPad), and before that it was Kubuntu. My main PC is an i7-7900K, so similarly long in the tooth as yours, and both CPUs run the Ubuntu flavours just fine.
My personal preference is currently Kubuntu (faster, lighter, and fewer "this is how it is, and you'll be glad for it" decisions). But there are so many others to try. Find a bunch that support Proton and gaming, grab their "live CD" versions, and see which ones work for you.
FWIW, I have an LG LED smart TV (2xHDMI, 1xDVB-S2, WiFi, NIC, etc) and it's only been connected to my network once, for a post-purchase firmware update through my AdGuard Home. WiFi and Ethernet is disabled, and I use it with my Nvidia ShieldTV (Plex*, Netflix, ChromeCast, etc).
I won't let it go online as I expect it already phones home if you let it, and don't imagine LG will be able to resist ad injection into content, like Samsung and others do. So it's an excellent quality dumb TV, which meets my needs perfectly.
*Plex Media Server runs on my NAS. The Shield and my mobile devices are Plex clients.
Maybe I’m using the wrong terms, but what I’m wondering is if people are running services at home that they’ve made accessible from the internet. I.e. not open to the public, only so that they can use their own services from anywhere....
I am looking into getting a NAS setup at home, but have to consider wanting it to just work and work for my family who are not technically advanced. They use computers fine, but being asked to open a terminal would require letter by letter instructions....
When my old NetGear ReadyNAS Duo (2 bays, SPARC, 100Mb NIC) was reaching its EOL I looked into a purpose built server, a mini of some kind (NUC, etc), or a standard QNAP or Synology NAS. Eventually settled on a Synology DS 920+ (4 bays, x86_64, 1Gb NIC).
It's been rock solid and amazing value for the 2.5 years I've had it. It's running the majority of my Docker containers, Plex Media Server, a Linux VM, and a few other things. It also has its own shell/CLI, which is useful. I don't use Synology's "phone home"/remote access stuff, but Synology Drive and Synology Photos are great - they provide the equivalents of Dropbox and Google Photos respectively, and it works across Windows, Linux, Mac, iOS, and Android (via VPN when outside the house). No regrets at all.
I've had gitlab/gitlab-ce running on my NAS for 6+ months and it's been reliable, mostly as a central repository and off-device backup. It has CI/CD and other capabilities (gitlab/gitlab-runner, etc), but I've not implemented them.
Hey guys, I recently bought an orange pi zero 2 and, as the title suggests, I want to put an ad blocker on it. Those are the options. I also will put openvpn for external connection to my network. Does anyone have experience with them? What would you suggest?
This is what I did, too. Used Pi-Hole for a year or so, and it required regular tinkering and repairing. Planned to test AGH for a short time in Docker container on a Pi4B, and it's been running that way for 2 years without any issues.
Easier to administer, more functionality and rock solid. I've never looked back.
TT-RSS is fantastic, providing you hold your nose and wear as asbestos suit if you ever dare ask a question or raise a valid issue. The dev is... well, I'm not a fan. I won't use it out of principle.
FreshRSS is a good-looking and skinnable alternative with a good Docker image, but I had issues with the inability to flush old items. Has a decent web UI.
DNS-O-Matic (recommended by CloudFlare, among others) combined with SWAG and Authelia will handle dynamic DNS, reverse proxying, SSL certificates, and MFA. SWAG (nginx, Let's Encrypt and Certbot) and Authelia (MFA) run nicely in a 2 container Docker stack.
Mine have been running for ~18 months on my NAS, though I have a fixed IP so no longer use a DDNS provider.
I would really like the ability to create my own algorithm. For example, I follow communities for my local sportsball team and memes. Memes, I really just want to see what’s “hot” for the last day but my sportsball I want to see everything posted for the last week....
It would be good, but I'm not sure if the expected Multireddit-style behaviour will ever appear on the threadiverse - at least not in the way I use them (I don't subscribe to any sub in a multireddit) - for the same reason that Lists are limited in value on Mastodon: there appears to be a "safety and privacy" policy in place that prevents you from adding accounts to a List that you're not subscribed to.
The only reason I use them is to remove their noise from my feed/timeline. Looking at you, Cory Doctorow... 👀
Maybe it will change, or maybe it will be different here (threadiverse) compared to Mastodon. I guess we'll see.
Help a noob find what I'm looking for please. I have a bunch of IP addresses and I wanna give em names.
I’m using Heimdall to easily access my self hosted stuff ATM. I would like for my family to use them too if they’re so inclined, but there’s no way they will be able to remember the IP addresses, I know I can’t!...
Was thinking of creating a honeypot
but before I do, I figured I’d ask if anyone’s aware of any tools/software that covers my basic needs of setting something basic that may alert me if there are any intruders in the network?...
Ideas for self-hosted services
I’ve had a “home lab server” for a while now, it’s nothing special but I think I can do more with it, I just don’t know what to do with it… I currently use it just for a pihole and (sometimes) a Minecraft server or a web server… I used to also have a nexcloud and a searxng instance (which I will probably bring...
Just finished wiring the garage to the house - and find that the wire is damaged! Now what?
I mean, the simplest answer is to lay a new cable, and that is definitely what I am going to do - that’s not my question....
Would you agree to algorithm-generated timelines if there were sufficient tools to check whether the timeline on an instance work as promised?
I think a big problem behind the reluctance of alternatives to the strictly chronical timeline on Mastodon is that people fear that too much power is taken out of their hands if they are introduced. But the fact is: it is already the case that we put a lot of trust in administrators to put the correct software in place. A...
Is Mastodon’s strictly chronological news feed based on a wrong assumption?
The assumption is that centrally managed social media is bad because their algorithm is bad. But actually, they are bad because they are centrally managed and force one algorithm onto you. I’m not even advocating algorithm-by-choice. Even instance-specific algorithms would already work and would make the whole experience much...
Reading the Python Official Documentation is rugged
I am at a high-beginner/low-intermediate level in Python, and one thing that drives me nuts is how poorly I am able to read the Python official documentation and grok how to use the described code....
Best current hardware solution for selfhosting?
I use my desktop PC for Jellyfin and torrenting, but I’m looking for something that I can keep on 24/7 that draws less power and run other self-hosted services on Linux. I would like to have at least 2x 14 TB 3.5" hard drives in or attached to it with the possibility of expanding in the future....
What wiki?
I saw a mention of Wiki.js today and I looked at the landscape of wiki software. There’s plenty to choose from. What do you host?...
Git based Workflow for updating containers
TL;DR: I want to keep my containers up to date, currently Portainer based compose files updated by renovate. How do you do it?...
Notes taking app
I’m looking for a good notes taking app to replace The Bad Ones like Evernote....
I want to return to Linux. Recomendations?
Like 10-15 years ago I was into linux and tried a bunch of different distros (PCLinuxOS, Mint, CentOS, OpenSuse...) and was quite happy with the, then, limited options of gaming on linux (It was the time Valve released TF2 for linux)...
Should I be aware of something when buying a TV?
Hey guys, so I moved recently and started tipping my toes in self-hosting, currently managed to set up Pihole and Jellyfin....
How safe is Bitwarden?
I’m currently using 1Password but I’m no longer satisfied with it.
Are you exposing any ports on your home server?
Maybe I’m using the wrong terms, but what I’m wondering is if people are running services at home that they’ve made accessible from the internet. I.e. not open to the public, only so that they can use their own services from anywhere....
what is the current recommendation for a simple home NAS?
I am looking into getting a NAS setup at home, but have to consider wanting it to just work and work for my family who are not technically advanced. They use computers fine, but being asked to open a terminal would require letter by letter instructions....
What do you recommend to selfhost code repositories?
To use with Git
Pihole, Adguard home or blocky
Hey guys, I recently bought an orange pi zero 2 and, as the title suggests, I want to put an ad blocker on it. Those are the options. I also will put openvpn for external connection to my network. Does anyone have experience with them? What would you suggest?
what's your favorite self hosted RSS solution?
As per the title, what are you using? I am testing miniflux + read you on mobile.
Which Dynamic DNS Service are you using?
I would like to host my own web server with a domain name I purchased but my public IP isn’t static.
Is there a way to personalize your feed?
I would really like the ability to create my own algorithm. For example, I follow communities for my local sportsball team and memes. Memes, I really just want to see what’s “hot” for the last day but my sportsball I want to see everything posted for the last week....
Never thought I would get emotional about losing an app
I was with Reddit for 12 years and bounced between Rif and Apollo, I am sad I am losing both