So, I'm trying to set up gluetun. I linked a Firefox container to it and apparently every check of DNS leaks shows that it's leaking. Cloudflare and quad9 are the servers, the same names that I've set to dot providers. So I am gathering from all of this that these leaks are to be expected? And non of the DNS servers show my real IP, always one of mullvad IPS. Am I getting this right?

Hey there!

I'm thinking about starting a blog about privacy guides, security, self-hosting, and other shenanigans, just for my own pleasure. I have my own server running Unraid and have been looking at self-hosting Ghost as the blog platform. However, I am wondering how "safe" it is to use one's own homelab for this. If you have any experience regarding this topic, I would gladly appreciate some tips.

I understand that it's relatively cheap to get a VPS, and that is always an option, but it is always more fun to self-host on one's own bare metal! :)

I'm afraid this is going to attract the "why use podman when docker exists"-folks, so let me put this under the supposition that you're already sold on (considering) using podman for whatever reason. (For me, it has been the existence of pods, to be used in situations where pods make sense, but in a non-redundant, single-node setup.)

Now, I was trying to understand the purpose of quadlets and, frankly, I don't get it. It seems to me that as soon as I want a pod with more than one container, what I'll be writing is effectively a kubernetes configuration plus some systemd unit-like file, whereas with podman compose I just have the (arguably) simpler compose file and a systemd file (which works for all pod setups).

I would get that it's sort of simpler, more streamlined and possibly more stable using quadlets to let systemd manage single containers instead of putting podman run commands in systemd service files. Is that all there is to it, or do people utilise quadlets as a kind of lightweight almost-kubernetes distro which leverages systemd in a supposedly reasonable way? (Why would you want to do that if lightweight, fully compliant kubernetes distros are a thing, nowadays?)

Am I missing or misunderstanding something?

I’m happily serving a few websites and services publicly. Now I would like to host my Navidrome server, but keep the contents private on the web to stay out of trouble. I’m afraid that when I install a reverse proxy, it’ll take my other stuff ~~online~~ offline and causes me various headaches that I’m not really in the headspace for at the moment. Is there a safe way to go about doing this selectively?

cross-posted from: https://lemmy.ca/post/30126699

I created this guide on how to install Jellyfin as a Podman Quadlet on your server. Enjoy.

Last June, fans of Comedy Central – the long-running channel behind beloved programmes such as The Daily Show and South Park – received an unwelcome surprise. Paramount Global, Comedy Central’s parent company, unceremoniously purged the vast repository of video content on the channel’s website, which dated back to the late 1990s.

Over time I've been on the lookout for social media for family to use. I haven't really found anything suitable, key thing is that posting photos and videos needs to be user friendly. For example, Friendica all but requiring you to upload your video to YouTube and post the embedded video is just not gonna fly.

I've seen Zusam in the past, which looks like it could become something but I don't think it's ready for me to try to get extended family into. (It's worth mentioning here that certain extended family have shown interest in using something like this)

Recently I've had a look around at some Enterprise social solutions, and have had a play with HumHub. It has a much more familiar look, things are separated into spaces that are similar to Facebook groups, and while media uploads aren't perfect I think they will work well enough.

HumHub has modules, many of which cost a decent amount of money, because they target the enterprise market. However, the community version is open source and the base features and free modules seem to work well.

Does anyone have experience using it? Any warnings I should know about? Any similar software that does a better job?

Recently I bought vps which have only ipv6. It's obviously that I don't have ipv6 home. So, here is question: how do you interact with such servers?

This is my guide for generating playlists for your local music library using ListenBrainz and the troi recommendation engine. troi is still being developed and the official documentation isn't great so I figured documenting my process might help others who are interested. I've tried this both with local folders on my Debian server and with my Navidrome library from my Macbook so I will do my best to explain both.

There are a few requirements

1. Your music must be tagged with MusicBrainz. I use beets for this but you can also use the MusicBrainz desktop client.
2. You need a ListenBrainz account. Data can be imported from Last.fm or Libre.fm if you have it.

Install troi

Install troi and nmslib with pip

pip install troi
pip install nmslib-metabrainz

If you're on a managed python install use pipx and add the virtual environment to your PATH (don't forget to reload)

pipx install troi
pipx inject troi nmslib-metabrainz
export PATH="$PATH":"$HOME/.local/bin"
source ~/.zshrc

Configure troi

Create a folder for your troi configuration files. I used ~/.config/troi. Create a file config.py in your configuration folder using the example format below. Edit DATABASE_FILE and MUSIC_DIRECTORIES to match your setup.

If you're using a Subsonic library (like Navidrome) you can fill in SUBSONIC_HOST with your instance url, SUBSONIC_USER and SUBSONIC_PASSWORD with your login and SUBSONIC_PORT with 443 (this is the only port that I could get to work with my docker setup)

# Where to find the database file
# If path is passed with -d flag, this list is ignored.
DATABASE_FILE = "/users/sillyhatsonly/.config/troi/troi-db.db"

# To connect to a Subsonic API
SUBSONIC_HOST = "https://music.myserver.dev"  # include http:// or https://
SUBSONIC_USER = "admin"
SUBSONIC_PASSWORD = "thisisnotmypassword"
SUBSONIC_PORT = 443

# List of music directories to scan by default
# If paths are passed to scan command, this list is ignored.
# Invalid directories are skipped.
MUSIC_DIRECTORIES = [
    'My/Music/Directory 1',
    'My/Music/Directory 2',
]

Create your music database

Now create the database, scan the local directories specified in config.py and pull ListenBrainz tag/popularity metadata for all files. If you're using a Subsonic library run troi db subsonic instead of troi db scan

# create database
troi db create
# scan music directories
troi db scan
# pull music metadata
troi db metadata

Generate playlists

Generate playlists for your local library using ListenBrainz Radio Local. Specify a mode which sets how closely the resulting playlist will meet the prompt (easy/medium/hard from closest to furthest) and an entity reference either artist or tag. More details in the docs: LB Prompt Radio Reference

# tracks by Thou and similar artists
troi lb-radio easy 'artist:(thou)' -m <playlist-name>.m3u

# tracks tagged 'jazz' and tracks tagged 'hip-hop'
troi lb-radio medium 'tag:(jazz)::or tag:(hip-hop)'

# tracks tagged both 'indie rock' and 'experimental'
troi lb-radio medium 'tag:(indie rock, experimental)'

Another option is to generate weekly recommendations playlists for your ListenBrainz account

# -m flag saves to the specified m3u playlist
troi weekly-jams <username> -m <playlist-name>.m3u

# -u flag uploads the playlist via Subsonic API
troi weekly-jams <username> -u

Automate weekly playlists

You can automate weekly playlists with a script. I wrote a script that scans my music directory, removes missing files, generates a playlist, and saves it locally as an m3u

#!/bin/sh

# scan music directory and pull metadata using the database in our troi config folder
troi db scan 'My/Music/Directory 1' -q -d '/users/sillyhatsonly/.config/troi/troi-db.db'
troi db metadata 'My/Music/Directory 1' -q -d '/users/sillyhatsonly/.config/troi/troi-db.db'
# clean up the database and remove any missing files
troi db cleanup --remove -q -d '/users/sillyhatsonly/.config/troi/troi-db.db'
# generate weekly playlist and save locally to m3u
troi weekly-jams <username> -d '/users/sillyhatsonly/.config/troi/troi-db.db' -y -q -m /users/sillyhatsonly/music/playlists/weekly-$(date +%Y%m%d).m3u

Then set it up to run weekly as a cron job.

That's all I've done so far. Hopefully this makes sense. I welcome comments or questions. If anyone else has been using troi with their local music libraries I'd love to hear about your experience. Playlist generation was the one feature I really missed when I stopped using streaming platforms so I'm excited about this tool!

Hi. I've installed Filestash in a Docker container, which included passing a previously generated Dropbox access token to Filestash, as per the yaml file on the gihub page.

• DROPBOX_CLIENT_ID=<dropbox_key>

When I connect to Filestash (just set up locally for now), and then click to connect to Dropbox, I get the following error from the Dropbox webpage that opens:

**Error (400) It seems the app you were using submitted a bad request. If you would like to report this error to the app's developer, include the information below.

More details for developers

Invalid client_id: .**

There's nothing that looks like an error in the Filestash logs. I've generated new tokens and tried again, same result.

Has anyone managed to add Dropbox to Filestash, and if so, would you mind explaining the steps you took?

(I've since set it up for external access via my domain, and npm, same error).

Thanks Rob

Hi folks,

Just set up Nginx Proxy Manager + Pihole and a new domain with Porkbun. All is working and I have all my services service.mydomain.com, however some services such as pihole seem to be strictly reachable with /admin at the end. This means with my current setup it only directs me to pihole.mydomain.com which leads to a 403 Forbidden.

This is what I have tried, but with no prevail. Not really getting the hang of this so would really appriciate a pinpoint on this :)

Background

Hello fellow self-hosters and homelabbers, A few weeks ago I was able to fill my new NAS with the proper hardware I needed to expand on my earlier setup.
Due to the new capabilities I also wanted a fresh restart. But the more I think about doing one thing, the more I hit other road blocks amd think about doing Y.
So I wanted to ask how you would solve my goal.

My current (main) setup:

• Hardware: 11th Gen i5 Nuc with a 8TB HDD attached via USB
• OS: Debian 11
• Software: OMV6 for management and Docker for a diverse set of containers
• Current containers: HortusFox + MongoDB, *arrs-stack, Jellyfin, uptime kuma, unifi network application + mariaDB, traefik, wallos

Current available hardware for use:

1x 13th gen i3 NUC running Proxmox 8.2
1x 11th gen i5 NUC
1x uGreen DXP4800+ NAS with 4x15TB HDDs in Raidz2. The OS is TrueNAS scale

My plans:

• NAS storage made accessible via NFS to the proxmox VE.
• NAS storage mainly planned as mass-storage for Jellyfin.
• Reimage my 11th gen NUC with a bare-metal Debian install for Docker.
  (I will not virtualize on the 11th Gen NUC because I can't pass the iGPU to the VM and not really interested in LXC containers)

Problems and questions I have at this moment:

1: Should I do a media-storage VM only utilized for serving media and do the computing on another VM or do a general VM for both?

• Upside to an all-in-one VM: Less problems with serving storage between many different nodes and keeping it organized.
  Upside to specialized VMs (storage & compute VM): Better focus on ressources like CPU and RAM.
  2: Should I place my whole docker stack again on the 11th Gen NUC or place the stacks in their own VM(s)? Example:
  service stack in service-focused VM
  media-focused stack in media VM (which also serves the files for jellyfin)
  Jellyfin bare-metal/dockerized on NUC 11th Gen

I hope someone can maybe help me untangle my grown mess and plans. My skills with Linux are not very deep and very beginner level. If you are willing to help please be patient with stupid questions.

If you have any better solutions, pointers to research, (blog) articles on architecting such solutions, examples how you solved storage/management or just willing to help me, I'd be very grateful :)

Hello everyone! I was thinking about starting a website where to dump some guides on stuff Iearn about selfhosting and general IT stuff.

I don't want a WordPress or similar. I want static pages (but I'm ok with some JavaScript for navigation maybe, or for proper display on different kind of devices). Ideally I'd like to host it on an AWS S3 bucket since it has the built-in option for static hosting.

I could even go back to the '90s and do it myself from scratch in textedit and html by hand, but I'm pretty sure there are better options out there.

I took a look at Hugo but even that it seems overly complicated for what I need.

Any ideas or suggestions?

Thanks!

Is anyone using dockge?

I used it for a bit and found it very intuitive but checking their github makes me wonder if it is still developed? Last commit was five months ago.

Hello there,

I'm looking for a self-hosted rental system. It's for a smaller institution, which is renting out hardware (for free and non-commercial use), and the current system (EasyJob) is way too bloated.

The service should be publishable to the internet, ideally hostable via Docker or a ProxMox VM, and should have a user-management.

I was thinking about using something like an e-commerce service?

Do you have a good idea regarding this topic?

Best regards

Any recommendations for a good non-subscription-based alternative? I could setup syncthing for files, and I have URbackup for images, but I always relied on Macrium more than URbackup. What do other people use?

Why have you removed the one-time license option?

Many of our home customers' feedback indicated a preference for the certainty provided by an annual plan. The annual plan offers assurance that you always have access to the latest version with innovations such as improvements we’ve made in compression speeds and algorithms. It also ensures you have access to critical updates and are protected against new threats and risks. Lastly, our annual plan ensures you always have access to technical support (one-time licenses only offer 12 months of support).

Who can suggest an ethical SMTP provider for low volume transactional mail? I'm willing to pay up to 2€/month for a few hundred mails per month.

Hello everyone, I have some questions and need food for thought about clamAV. First, do you use it and why ? If yes, how are you running it ? I plan to maybe use it for nextcloud (and *arr stack later)