Selfhosted

I'm planning on, eventually, putting together a NAS for myself. I've basically narrowed down the selection to either trying NixOS or going for TrueNAS, however I can't figure out how to decide between those two, as they are fundamentally quite different.

TrueNAS is a dedicated NAS OS so that's obviously enticing for me, but I heard if you also want to do some server stuff like hosting some things and not just storing data it is subpar? I never got the information out of people what exactly is supposed to be subpar about it, but I've seen those complaints a handful of times.

Meanwhile NixOS is just a Linux distro. I'm familiar enough with Linux, although NixOS is its own beast and from what I heard its documentation isn't quite what you'd get out of for instance the Arch Wiki, but it being declarative and easy to restore old versions in case something breaks allegedly makes it rock solid, so that also sounds interesting.

So, after thinking about those things, I was wondering if any of you who use either of them could share your experiences and what you like or dislike about either option?

Hi all,

I run a private self-hosted Synapse server with bridges for:

• Signal
• WhatsApp
• Doscord
• IRC
• Google Voice
• Custom APIs

I am thinking of switching to XMPP. Can anyone recommend a good Docker-based server and transport combo that I could test out?

Hi! I'm just checking, as it seems Jellyfin takes only the IMDB score at the time of the movie/series release, which might not be the most accurate one. After some months have passed, it would be good to have an updated score. Is it possible to run metadata updates periodically for all movies/tv series?

I have a vtiger crm installation that has been running for over 10 years. Its been a couple since I last updated it but I've fallen out with it as it way over complex for what I do. All I want to do is manage my professional networking and key to this is a good android app. Has anyone had some good experience they want to share. Migration will obviously end up being a problem that I will need to solve ... But one problem at a time ...

I’ve been planning out a proxmox server for when I eventually have money. (Shut up. It can happen. Shut up!) but I saw something today that got me thinking. Minisforums makes some pretty nice shit at a reasonable price. The entire minis market has actually become pretty great while I wasn’t looking.

I need proxmox hosting opnsense, frigate, jellyfin, homeassistant, BitTorrent, immich, sunshine, steam, and i2pd.

So there are obvious advantages to building my own shit with a trip to microcenter. But maybe these micro machines could actually handle this shit anymore. Opinions?

Does anybody here use ownCloud?

I know it's less popular than NextCloud, and I understand the reasons, but I'm not interested in setting up nextcloud at the moment.

I had owncloud contacts working very well and syncing across my devices through tailscale. Unfortunately, after updating some contacts, the entire contact functionality seems to be frozen. I have my contacts backed up on another device, so I'm fine with wiping it and starting over, but I don't want to erase my calendar or files that are also hosted through ownCloud.

I haven't been able to get help on their dedicated forums, but if someone has an idea of a better place to ask, let me know.

Has anyone run into this? Do you know how to erase and reset the contact functionality in owncloud? At the moment, anytime I open up the contacts app, it just spins and spins, and external devices no longer connect. I don't have the time to relearn a new piece of software at the moment. I suspect that any other card dav that I set up will interfere with what I currently have. I've read that running different software of this type from the same server can cause some issues, especially since they tend to want to use the same ports. I just want to reset the contact portion of my owncloud.

I'm running the latest version through Docker. I'm using MariaDB for my database. I'm not sure what details will be useful, but please let me know what I can supply and if necessary how to locate it. TIA

Edit:

Checking the log again, I think it may be related to:

{"reqId":"7e34c78e-49b9-4a97-87db-da79ab0d33bd","level":3,"time":"2025-06-19T22:18:31+00:00","remoteAddr":"XXX.XX.X.X","user":"USERNAME","app":"PHP","method":"GET","url":"\/remote.php\/dav\/files\/USERNAME\/misc\/m-t0627-01511-00434%20(2).jpg?x=336&y=336&c=&preview=1","message":"exif_read_data(): Incorrect APP1 Exif Identifier Code at \/var\/www\/owncloud\/lib\/private\/legacy\/image.php#399"}

(I've removed my name and the IP Address listed)

Following this message, there are about 30 errors related to different contacts that look like:

{"reqId":"6fptn8sCXT16xmUGIWc6","level":2,"time":"2025-06-19T09:06:07+00:00","remoteAddr":"XXX.XX.X.X","user":"USERNAME","app":"dav","method":"DELETE","url":"\/remote.php\/dav\/addressbooks\/users\/USERNAME\/contacts\/04bc3d9c-f55a-4241-96a2-929245fe8433.vcf","message":"Could not get node for path: \"addressbooks\/users\/USERNAME\/contacts\/04bc3d9c-f55a-4241-96a2-929245fe8433.vcf\" : Card not found"}

With some searching, it looks like there is something wrong with an image, presumably a contact image, which I was updating around the time the service went down.

I still have no idea what do do with this information.

I'll preface by saying networking and especially netsec are arguably my weakest areas in all of this.

Been running a home server (technically 2 since my NAS is a separate box) for about 3 months ago with about 40 services running. Works great. It's almost entirely for myself while my wife uses a few things here and there. Remote access has been perfectly fine through Wireguard - I have a chained VPN setup where wg-easy allows LAN access while also tunneling outbound traffic through Proton, mostly because Android devices don't let you use multiple VPNs at a time and I didn't want to keep switching back and forth.

But I realized it'd be nice to have a few services more accessible. Sharing photo albums and jellyfin with family, and my wife wants a music stack and audiobooks for herself - teaching her Wireguard was easy, but it'd be more convenient to just not have to remember to that.

So here's the barrage of questions.

1. Pangolin seems undoubtedly the best way to do this. I plan to set up a VPS running Pangolin and Headscale (I've already done the latter once, got it working perfectly before learning it doesn't really work when running on the same network you want to remotely access, oops)

2. What's the trick for DNS? I do run Pihole + Unbound but I really haven't touched the configuration for the latter much. From what I understand I can "override" my domain in Unbound to point to the local IP? If that's the case, any guidance to the exact configuration/syntax needed would be very helpful.

3. I obviously don't want to expose everything. I assume I can keep running Caddy locally, while only proxying what's necessary on Pangolin's end? I'm currently using a Cloudflare DNS record pointed to my private IP to skirt around certificate bullshit, last time I tried Caddy's internal cert I got an annoying "are you sure??" prompt when trying to access any subdomain, and I'd like to avoid that, so I'm not sure what the Caddy reconfiguration would involve here to prevent that prompt without manually installing the cert on every single device and browser.

4. What would I need to look at for security? I did see Crowdsec is bundled with Pangolin. Is that sufficient? Can I set up geoblocks on the Pangolin end? And regarding docker networks, I assume it would be best practice to keep any exposed services on their own isolated networks? What about ufw, is there any specific approach to setting that up?

5. I mentioned Headscale in passing - I plan to ditch wg-easy and move to a tailscale setup to remotely access any services that I don't expose through Pangolin. Last time I dabbled with it it seems simple enough, and I liked Headplane for a UI. Any gotchas I should worry about? I'd be able to close the Wireguard UDP port I had to forward for wg-easy, right? Could I route Headscale through a gluetun container to achieve a similar chained VPN setup as I have now?

6. Authentication - I have Authelia OIDC configured for every service that supports it, and a forwardAuth in caddy for anything that doesn't. How would this play together with Pangolin, which from what I understand has its own authentication system?

Any advice would be much appreciated. This would be a huge change to the way I'm currently running this thing, but would be a worthwhile upgrade for sure.

akarisarea.nohost.me is new but born. finally. :)

Hi folks, we're managing a museum where se don't issue tickets to avoid being taxed. But we can accept donations which are not taxable. I was wondering if there was sonlme self hosted tool out there that would help us record the donation and maybe even allow us to print a receipt for the visitor so that they can claim tax relief on the donation. If the tool could also help us track the sales of souvenirs, that would be a bonus.

i just created a lemmy instance, akarisarea.nohost.me, so i'm wondering how to see all the upvotes and comments from communities i subscribed to

Hey y'all, I know getting a setup that feels "right" can be a process. We all have different goals, tech preferences, etc.

I wanted to a share my blog post walking through how I finally built a setup that I can just be happy with and use. It goes over my goals, requirements, tech choices, layout, and some specific problems I've resolved.

Where I've landed of course isn't where everyone else will, but I hope it can serve as a good reference. I’ve really benefited from the content and software folks have freely shared, and hope I can continue that and help others.

Happy to answer questions!

This post is a bit borderline, so I can take it down if you think it's inappropriate for this community (tag @otter@lemmy.ca for a faster response). These computers are often suggested by various selfhosting tutorials so it might be interesting to see how they're made.

No awards are needed, just wanted to share my excitement that while my Jellyfin server still keeps loosing my entire library every 24 hours at least now it has a domain and ssl cert!

That is all. Happy Friday everyone

I've been hopping between idrive e2 plans to save money for my cloud backups (which I've never had to restore from). But this time, even with their discounts, it's just going to be too expensive to sustain.

I read that a Hetzner Storage Box might be a good option. It's relatively cheap ~$13 USD / 5tb a month (I'm in Canada, so currency conversion will make that higher).

They are located in Germany, and support Hyperbackup via Rsync.

I've never used their service, so I'm looking for feedback.

Edit: Thank you so much guys. Before my idrive e2 subscription ends, I'll be setting up a Storage Box!

I've been working on a Threadiverse frontend for almost a year called Blorp. Originally it was Lemmy only, but now it also includes PieFed. (source code) (try web version)

I just Dockerized the frontend and started publishing the Docker image, and I would love your feedback!

• REACT_APP_DEFAULT_INSTANCE (e.g. https: //lemmy.zip no trailing slash)
  • Changes the default instance
• REACT_APP_LOCK_TO_DEFAULT_INSTANCE set this to "true" or "false"
  • When true, this prevents the frontend from logging into other instances. Perfect if you host your own Lemmy instance and want this frontend to exclusively be used with your instance. You can still log into multiple accounts on the locked instance
  • When false, you can log into as many accounts across as many instances as you want. You can even mix and mach Lemmy and PieFed

# pull the latest Blorp image
docker pull christianjuth/blorp:latest

# run it on port 8080 (host → container), passing any runtime env‑vars you need
docker run -d \
  --name blorp \
  -p 8080:80 \
  -e REACT_APP_DEFAULT_INSTANCE="https://lemmy.zip/" \ # BUT without the trailing slash!
  -e REACT_APP_NAME="Blorp" \
  -e REACT_APP_LOCK_TO_DEFAULT_INSTANCE="false" \
  christianjuth/blorp:latest

Edit: I cannot get the trailing slash in https://lemmy.zip/ to go away, but make sure you exclude it. Idk what sorcery is going on with Lemmy, but it seems impossible to link a domain without a trailing slash. I'll make the docker image more forgiving in the next update.

I mean, this and the reddit board are /r/selfhosted. We self-host, yet I see so much about people relying on 1.1.1.1 and Cloudflare's proxy services that they never second-guess.

I don't care about Cloudflare. My server doesn't exist to use their proxies and services when the entire point is to divide from reliance on third-parties.

I already found Anubis, I'm sure many of you are familiar with it. Are there any other useful tools or similar that you guys have been using?

I am tired of paying for roaming, of being location tracked by my provider and running out of SIM slots.

So I have decided to connect some SIM capabilities to my server and set it up as a sort of proxy that I could access over the internet to send regular SMS and make regular calls through the server.

As far as I can tell it seems to be really complicated to do in linux and I just couldn't find anyway that would actually support sound over calls.

The only solutions I found right now are to get an old phone (not ideal because of the price, battery and reliability) or use something like

https://www.makerfabs.com/maduino-zero-4g-lte-sim7600.html

Which can be connected to the server on the aux and serial ports. This is not too pricey but still seems like a bit much for my needs.

My question is, are there better ways? Really all I need is SMS and calls.

Hi !

I started my selfhosted journey with a synology nas. But the nas was crap, so I ended using it only as storage and backup solution, providing NFS shares. I added SBC like raspberry pi, then upgraded it to a elitedesk running debian.

I would like to upgrade my nas to a more powerful device but I'm also considering adding a sata extension dock and rely only on my elitedesk minipc instead of two devices.

Can I get remarks and advices?

Thanks!

Just got all the hardware set up and working today, super stoked!

In the pic:

• Raspberry Pi 5
• Radxa Penta SATA hat for Pi
• 5x WD Blue 8TB HDD
• Noctua 140mm fan
• 12V -> 5V buck convertor
• 12V (red), 5V (white), and GND (black) distribution blocks

I went with the Raspberry Pi to save some money and keep my power consumption low. I'm planning to use the NAS for streaming TV shows and movies (probably with Jellyfin), replacing my google photos account (probably with Immich), and maybe steaming music (not sure what I might use for that yet). The Pi is running Raspberry Pi Desktop OS, might switch to the server version. I've got all 5 drives set up and I've tested out streaming some stuff locally including some 4K movies, so far so good!

For those wondering, I added the 5V buck convertor because some people online said the SATA hat doesn't do a great job of supplying power to the Pi if you're only providing 12V to the barrel jack, so I'm going to run a USB C cable to the Pi. Also using it to send 5V to the PWM pin on the fan. Might add some LEDs too, fuck it.

Next steps:

• Set up ~~RAID 5~~ ZFS RAIDz1?
• 3D print an enclosure with panel mount connectors

Any tips/suggestions are welcome! Will post again once I get the enclosure set up.

I've seen a couple articles about an android tv alternative and it's got me thinking about a streaming box again. A while back i gave kodi a try and didn't care for the experience. Granted, it was on a pi so expectations were low but it missed the mark for me. This time around i've got a modest nuc with proxmox i was thinking of moving to the living room and standing up a fresh vm of kodi to stream to.

I could just access the files over the network but i'm already running both plex and jellyfin so why not use either for my watch history. All that being said is kodi still my best bet?

Why proxmox? At some point down the road i'd like to get a capture card in the mix to stream games and that feels like the most flexible way to do everything.

Excerpts from the Changelog:

What's Changed

• add blitzw.in instance by @gigirassy in https://github.com/LibreTranslate/LibreTranslate/pull/770
• 🌏 i18n: Improve Catalan translation by @seicifarre in https://github.com/LibreTranslate/LibreTranslate/pull/777
• Support for ISO 639-1 - 15924 codes by @pierotofy in https://github.com/LibreTranslate/LibreTranslate/pull/780
• Update Dockerfile #737 by @jpralves in https://github.com/LibreTranslate/LibreTranslate/pull/785
• Update Requirements: argos-translate-files srt support by @theUnrealSamurai in https://github.com/LibreTranslate/LibreTranslate/pull/786
• Add fingerprinting mechanism by @pierotofy in https://github.com/LibreTranslate/LibreTranslate/pull/787
• Attack mode support by @pierotofy in https://github.com/LibreTranslate/LibreTranslate/pull/788
• Mark Chinese as reviewed in the README's UI Languages list by @LTSlw in https://github.com/LibreTranslate/LibreTranslate/pull/789
• Add 2 variations of Dockerfile by @warren-bank in https://github.com/LibreTranslate/LibreTranslate/pull/790
• Added full Spanish translation (README.es.md) and link in main README by @KerySeverino in https://github.com/LibreTranslate/LibreTranslate/pull/793
• Added full spanish translation (TRADEMARK.es.md) and small bug fixes. by @KerySeverino in https://github.com/LibreTranslate/LibreTranslate/pull/795
• Added full spanish translation (CONTRIBUTING.es.md) and Synced latests. by @KerySeverino in https://github.com/LibreTranslate/LibreTranslate/pull/799
• Synced latests. by @KerySeverino in https://github.com/LibreTranslate/LibreTranslate/pull/802
• Add Kazakh locale to libretranslate/locales/kk/ by @AnmiTaliDev in https://github.com/LibreTranslate/LibreTranslate/pull/805
• Support LT_PORT in healtcheck script by @DL6ER in https://github.com/LibreTranslate/LibreTranslate/pull/810
• Add new option --frontend-language by @DL6ER in https://github.com/LibreTranslate/LibreTranslate/pull/811
• Add --hide-api to hide the API request/response fields from the web interface by @DL6ER in https://github.com/LibreTranslate/LibreTranslate/pull/812
• Add user-customizable by @DL6ER in https://github.com/LibreTranslate/LibreTranslate/pull/814
• Hide API-related extra buttons if --hide-api is specified by @DL6ER in https://github.com/LibreTranslate/LibreTranslate/pull/813
• healthcheck.py: Fail on non 200 status by @736-c41-2c1-e464fc974 in https://github.com/LibreTranslate/LibreTranslate/pull/822
• Improve swagger definitions by @pierotofy in https://github.com/LibreTranslate/LibreTranslate/pull/823
• Link to docs, move readme information by @pierotofy in https://github.com/LibreTranslate/LibreTranslate/pull/825

I was trying to set up mail for my server, to send status emails, gitlab emails, etc. I know this can be done with relays but I was interested in sending mail directly using SMTP. Apparently my ATT residential internet blocks outbound signals on that port by default, although there are several reports of people calling customer support and getting that changed.

The most recent thing I can find was someone on Reddit 3 years ago:

xnojack: Probably depends on the rep. Just got mine unblocked a week ago. I read online though its better to say you're looking to allow SMTP outbound rather than port 25 outbound. Cause on the reps end its called something like SMTP outbound filter. (link)

I tried to call in and get this changed, the rep was very helpful but either something's changed on their end or he was looking in the wrong place. Anyways, I was wondering if any of you have gone through this process recently and know if this is still a thing, or have any advice.