Selfhosted

Hi folks. So, I know due to a myriad of reasons I should not allow Jellyfin access to the open internet. However, in trying to switch family over from Plex, I'll need something that "just works".

How are people solving this problem? I've thought about a few solutions, like whitelisting ips (which can change of course), or setting up VPN or tail scale (but then that is more work than they will be willing to do on their side). I can even add some level of auth into my reverse proxy, but that would break Jellyfin clients.

Wondering what others have thought about for this problem

uSentry is a lightweight, self-hosted Identity and Access Management (IAM) and Single Sign-On (SSO) solution designed for homelab and small-scale environments.

⚡ A single PHP file. < 400 lines of code. No database. No background processes. No cloud. Just works. ⚡

Most IAM and SSO solutions require databases, certificates and background services baked into a dozen containers. This is all fine but also also overkill for homelabs and impossible for low-power ARM devices. uSentry is different, it isn't pretty but it sucks less for a lot of use cases.

Enjoy!

I tried Nextcloud a while back and was not impressed - I had issues withe the speed of the Windows sync that were determined to be "normal" with no roadmap to getting fixed. I'm now planning to move off Windows desktop so that won't be an issue - so I thought I'd try again.

I went to nextcloud.com, clicked on Download-> Nextcloud server -> All-in-one -> Docker image - Setup AIO. This took me to the github README at Docker section. I'm already running docker for other things so I read the instructions, setup a new filesystem for my data directory and ran the suggested docker command with an appropriate "--env NEXTCLOUD_DATADIR=". I'm then left with a terminal running docker in the foreground - not a great way to run a background server but ok, I've been around for a while and can figure out how to make it autostart in the background ongoing. So I move on to the next step - open my browser at the appropriate URL and I'm presented with a simple page asking me to "Log in using your Nextcloud AIO passphrase:". I don't have a Nextcloud AIO passphrase and nothing I've read so far has mentioned it. When I search for it I get some results on how to reset it, but not much help. I could probably figure that out too, but after reading some more I found that Nextcloud requires a public hostname and can't work with a local name or IP address. I'm already running my home LAN with OpenVPN and access it from anywhere as "local" - I don't really want to create a new path into my home network just for Nextcloud.

I'm sorry - I know this sounds like a disgruntled rant and I guess it is. I just want to check that I'm not missing obvious things before I give up again. All I want is a simple file sync setup like onedrive but without the microsoft.

Has anyone here ever used Slimtoolkit or any similar app? I think there are a few of them out there that claim lighter containers and thus faster load times.

I came across it while doing some reading. It intrigues me. Do these apps actually work or is it just SoftRam v2? Is the end result safe for production?

I have never built a Docker container before, however, why make them 'bloated' in the first place?

My first blog series on headscale with traefik through podman quadlets was pretty well received on here. I'm just getting started with this blog, and thought the second topic I recently worked on might be popular in this crowd too: a lower resource method of centralizing logs for OPNSense with Grafana Loki (and Alloy) including geoIP!

I'm moving my music library to a funkwhale instance, but I don't want to have to keep two copies of every song (one imported to Funkwhale, one on a local drive).

It looks like Funkwhale will let you download a single song at a time from your own library , but there doesn't seem to be a similar button for albums or playlists.

The files themselves are obfuscated in whatever indexing system it uses, so there's nothing to be done there.

Anyone know how this is possible?

Are there any guides out there for this? I can't seem to find anything. Renovates docs are good, but don't have a lot of detail on setting up the docker image for self hosting.

Thanks!

I’m slightly freaking out. I recently ran some updates on my Linux Mint server computer. Afterwards, my modules, like Porkbun, had been removed and kept giving a 400 error when trying to add-package. Without the porkbun dns module, caddy can’t pass the keys and nothing with reverse proxy from me. The porkbun git page mentions some upgrade to the DNS system a few days ago that they said was connected to this. Any ideas of what to do? Do I downgrade Caddy until they resolve? I’m not the most computer savvy so I appreciate the help.

Hi! I'm looking for an open-source, preferably FOSS video transcoding web interface.

I would like the transcoding to be done on the server side, be secured by a password if possible (so people don't 100% the server), and I want no data sharing. Most important feature: must allow web uploads. I don't want to automate transcoding, or transcode files that are in the server: I want clients to be able to upload their media and get it transcoded.

The transcoding aspect is important: not just a change in container / file extension, but a real transcoding (changing video codec). Being able to change the bitrate is a plus.

I've been looking at many projects and most are sadly either too simple for my needs (only container change, no real ability to choose the codec, or unchangeable bitrate), or focused on files that are already on the server.

(something like a ffmpeg web UI that runs on the server would be great)

Thanks :)

I have nextcloud AIO running, and I see there is ONLYOFFICE Nextcloud Office Libre Office Markdown Editor etc.

Lots to choose from and many combinations possible, What setup are your running and what would your recommend?

Does anyone self-host any recipe/meal planner/shopping list software? I've been looking at Tandoor or Mealie but I am not too sure which one will best serve my needs. I would really like to be able to go through my saved recipes, easily plan out a weeks worth of meals and have that exported to a shopping list of some kind.

Most of the discussion I could find online appears to be somewhat dated (2-3 years) and I know that can be a long time for some projects. Does anyone host either if these two programs and if so, which one did you choose and why? I'm open to any other projects that may be better for my use case. It would only be used on my located network and maybe accessed via tailscale occasionally. I'm fairly new to self-hosting but this is one thing that my partner was excited about. Thanks in advance!

I have 3 servers:

• my house
• my sister house
• my parents house

My server has a lot of services (Nextcloud and Immich the ones that use more space), the other 2 servers only have Home Assistant, Frigate and some shared folders. On my server I use Backrest to backup locally and on Wasabi, the other 2...well...are not backed up 🙈 ...yet!

I was thinking to buy a couple of 14/20TB drives and install them in my parents and sister servers so that each server can backup data on the other 2. The backup will be done locally on all the servers with Backrest. How do I copy the backups across servers? Should I use Syncthing or is it better to use one repository per location on each Backrest? Or...other ideas?

Thanks!

I have a Synology DS923+ as my NAS which currently runs Plex, Immich and a couple other things.

I also have a Intel NUC (8th gen) which has Proxmox on it which mainly does PiHole and HomePage. I would like to use the NUC for PiHole, Immich, Plex, HomePage and Home Assistant.

Is Proxmox the best system to use for these applications? Would it be easier to just install Debian and Docker and run everything through containers on one OS instead of splitting them all up into LXC or VMs?

I would also like the convenience of easily updating containers through a GUI. I am not afraid of SSH and CLI but it's nice to go to a browser address and see everything in one place. Kind of like how DSM7 is set up on Synology.

Hello, I want to install searxng without using Docker on my homeserver so I basically run the install script from the official documentation. Already tried to use the automatic script for setting up apache and it basically worked by exposing /searxng. But I would like to do something simpler as I like that apache would only expose localhost:80 (for example) to use a reverse proxy later to point to it. Just wondering how this configuration work and how I could do something that applicates to my use case :

# -*- coding: utf-8; mode: apache -*-

LoadModule ssl_module           /mod_ssl.so
LoadModule headers_module       /mod_headers.so
LoadModule proxy_module         /mod_proxy.so
LoadModule proxy_uwsgi_module   /mod_proxy_uwsgi.so
# LoadModule setenvif_module      /mod_setenvif.so
#
# SetEnvIf Request_URI /searxng dontlog
# CustomLog /dev/null combined env=dontlog

<Location /searxng>

    Require all granted
    Order deny,allow
    Deny from all
    # Allow from fd00::/8 192.168.0.0/16 fe80::/10 127.0.0.0/8 ::1
    Allow from all

    # add the trailing slash
    RedirectMatch  308 /searxng$ /searxng/

    ProxyPreserveHost On
    ProxyPass unix:/usr/local/searxng/run/socket|uwsgi://uwsgi-uds-searxng/

    # see flaskfix.py
    RequestHeader set X-Scheme %{REQUEST_SCHEME}s
    RequestHeader set X-Script-Name /searxng

    # see limiter.py
    RequestHeader set X-Real-IP %{REMOTE_ADDR}s
    RequestHeader append X-Forwarded-For %{REMOTE_ADDR}s

</Location>

# uWSGI serves the static files and in settings.yml we use::
#
#   ui:
#     static_use_hash: true
#
# Alias /searxng/static/ /usr/local/searxng/searxng-src/searx/static/

Any help here? Thank you very much

cross-posted from: https://lemmy.world/post/28493612

Open WebUI lets you download and run large language models (LLMs) on your device using Ollama.

Install Ollama

See this guide: https://lemmy.world/post/27013201

Install Docker (recommended Open WebUI installation method)

1. Open Console, type the following command and press return. This may ask for your password but not show you typing it.

sudo pacman -S docker

2. Enable the Docker service [on-device and runs in the background] to start with your device and start it now.

sudo systemctl enable --now docker

3. Allow your current user to use Docker.

sudo usermod -aG docker $(whoami)

4. Log out and log in again, for the previous command to take effect.

Install Open WebUI on Docker

1. Check whether your device has an NVIDIA GPU.
2. Use only one of the following commands.

Your device has an NVIDIA GPU:

docker run -d -p 3000:8080 --gpus all --add-host=host.docker.internal:host-gateway -v open-webui:/app/backend/data --name open-webui --restart always ghcr.io/open-webui/open-webui:cuda

Your device has no NVIDIA GPU:

docker run -d -p 3000:8080 --add-host=host.docker.internal:host-gateway -v open-webui:/app/backend/data --name open-webui --restart always ghcr.io/open-webui/open-webui:main

Configure Ollama access

1. Edit the Ollama service file. This uses the text editor set in the $SYSTEMD_EDITOR environment variable.

sudo systemctl edit ollama.service

2. Add the following, save and exit.

[Service]
Environment="OLLAMA_HOST=0.0.0.0"

3. Restart the Ollama service.

sudo systemctl restart ollama

Get automatic updates for Open WebUI (not models, Ollama or Docker)

1. Create a new service file to get updates using Watchtower once everytime Docker starts.

sudoedit /etc/systemd/system/watchtower-open-webui.service

2. Add the following, save and exit.

[Unit]
Description=Watchtower Open WebUI
After=docker.service
Requires=docker.service

[Service]
Type=oneshot
ExecStart=/usr/bin/docker run --rm --volume /var/run/docker.sock:/var/run/docker.sock containrrr/watchtower --run-once open-webui
RemainAfterExit=true

[Install]
WantedBy=multi-user.target

3. Enable this new service to start with your device and start it now.

sudo systemctl enable --now watchtower-open-webui

4. (Optional) Get updates at regular intervals after Docker has started.

docker run --rm --volume /var/run/docker.sock:/var/run/docker.sock containrrr/watchtower --run-once open-webui

Use Open WebUI

1. Open localhost:3000 in a web browser.
2. Create an on-device Open WebUI account as shown.

The following was asked on a #Mastodon forum on #Reddit - I replied and a sort of converation started. I felt that it wa better to have the discussion where others with valuable inside could chip in so I have- with the OP's permission posted the following:

For years I have the same question:

Is it useful to create your own Mastodon instance or any other fediverse instance?

Many admins say it is a lot of work and they put a lot of effort, money and energy in it. Some even close their instance after few years, because it is just too much.

After the new political development in the USA, the fediverse got a new wave of interested people from all over the world, but the question stays.

In my opinion it makes only sense if you already have a community, like, if you're an influencer or part of an NGO or similar projects with several people, who will support you creating and maintaining it with money and own time.

What do you think and do you own an instance or work on one?

Hi,

I've been trying to set up fail2ban for jellyfin both running in docker from compose and I'm doing something wrong.

Can someone tell me what path in the docker compose file you use for jellyfin logs and what path you use in the jail.d and the filter in filter.d?

Thanks

PS. Sorry for low detail, but I'm on phone and don't have my current conf readily available. Will provide if necessary.

I am planning to host a test instance of discourse for an NGO I volunteer for on my VPS. It is supposed to accompany an event with around 100-150 participants so I expect some traffic over the weekend of the event. The only unanswered question I currently have is the mail setup. I considered self-hosting the SMTP relay myself but found a lot of recommendations to rather outsource it to an external service. I have thus been wondering if there are recommendations for an SMTP relay service? GDPR compliance on a European server is a must. Ideally, it would be inexpensive, easy to cancel, or even free as I am planning to take the instance down after the event and learn from the experiences and comments of the users.

Any ideas or recommendations? Thanks in advance!

Like, from inside China to the outside, but a bilateral solution would be fine with me, too.

Papra is a minimalistic document management and archiving platform. It is designed to be simple to use and accessible to everyone. Papra is a platform for long-term document storage and management, like a digital archive for your documents.

Forget about that receipt of that gift you bought for your friend last year, or that warranty for your new phone. With Papra, you can easily store, forget, and retrieve your documents whenever you need them.

A live demo of the platform is available at demo.papra.app (no backend, client-side local storage only).

Github Project: https://github.com/papra-hq/papra

Feature List

Part 1 of my Headscale and Traefik blog post seems to have gotten some good traction, so I just wanted to share with the community that I just published part 2!