this post was submitted on 01 Feb 2026
82 points (98.8% liked)

Selfhosted

55572 readers
693 users here now

A place to share alternatives to popular online services that can be self-hosted without giving up privacy or locking you into a service you don't control.

Rules:

  1. Be civil: we're here to support and learn from one another. Insults won't be tolerated. Flame wars are frowned upon.

  2. No spam posting.

  3. Posts have to be centered around self-hosting. There are other communities for discussing hardware or home computing. If it's not obvious why your post topic revolves around selfhosting, please include details to make it clear.

  4. Don't duplicate the full text of your blog or github here. Just post the link for folks to click.

  5. Submission headline should match the article title (don’t cherry-pick information from the title to fit your agenda).

  6. No trolling.

  7. No low-effort posts. This is subjective and will largely be determined by the community member reports.

Resources:

Any issues on the community? Report it using the report flag.

Questions? DM the mods!

founded 2 years ago
MODERATORS
ruud@lemmy.world
Loki@lemmy.world
CannaVet@lemmy.world
devve@lemmy.world
HybridSarcasm@lemmy.world
HybridSarcasm@lemmy.hybridsarcasm.xyz
82
Self hosting Sunday! What's up and how long? (lemmy.nocturnal.garden)
submitted 2 days ago by tofu@lemmy.nocturnal.garden to c/selfhosted@lemmy.world
53 comments fedilink hide all child comments
 

It's been a while, let's go! Any major fuckups lately or smooth sailing?

I had to change the local DNS setup yesterday. I finally installed my wife Linux Mint and wanted to set her up for Vaultwarden real quick which became an hour long debug session since apparently CNAME entries for hostnames don't work as I thought. Never came up the recent year as all my machines took it, but resolved refused to and so I eventually deleted the entries in the Pihole and created them as A records pointing to the VM with the reverse proxy, hoping I won't need to change the IP anytime soon. It's always DNS!

In other news I think I moved all my local dockered services to forgejo+komodo now and applying updates by merging renovate MRs still feels super smooth. I just updated my calibre web automated with a single click. Only exception is home assistant where I have yet to find a good split in what to throw in a docker volume and what to check in git and bindmount.

you are viewing a single comment's thread
view the rest of the comments
[–] 9488fcea02a9@sh.itjust.works 4 points 1 day ago* (last edited 1 day ago)

Some of the things in my house were set up so long ago, and running so smoothly, i havent looked at them in years (other than auto updates) now i'm afraid i've accidentally left some security hole without realizing it

For example, i set up cerbot 10 years ago and back then there was no DNS challenge, so i had to open my webserver to port 80 to renew.... well since everything was running from https/443, i decided to block port 80

so i edited the systemctl unit for certbot to temporarily open port 80 for the renewal, and close it right after...

It was only 5 years later i realized i made a mistake and port 80 had been open for 5 years to the open internet

Probably no harm since its a public server anyway... defense in depth is the key