Tired of using thumb drives to install Linux on new computers and I wanna install stuff via pxe. Do we have options in the open source world?

Work uses KACE so I'm used to that interface, but its expensive and ass.

cross-posted from: https://lemmy.zip/post/49871915

Hey everyone!

I’ve been rocking Proxmox for a little over a year on an old Mac Mini with a failing NIC (I probably damaged it when I installed the SSD). So I decided it was time to get some new used cheap hardware and I have just received a HP Elitedesk 800 G3 SFF, going to throw 32GB of RAM, a 1TB M2 NVMe boot drive and a 4TB SATA drive for media in it (this will replace my external 4TB drive).

Right now in Proxmox I’m running a Docker VM with Debian (Transmission-VPN container, ByteStash, FreshRSS, KaraKeep), another Debian VM for Visual Studio Code so I can remote into VS Code on my Mac and iPad and couple of LXC containers (Plex, Open WebUI and Pi Hole).

Honestly Proxmox feels like overkill for what I’m doing, half of what I’m doing is either individual LXC containers or I find myself SSH’ing into the Docker VM. The Proxmox helper scripts are great, but I feel like I’m not learning much and I don’t know how much I can trust random GitHub URLs.

I’d like to start learning and becoming more self-sufficient with Linux. I was pretty excited by the idea of learning NixOS, get comfortable learning the code and then creating distinct configurations for different systems, including my Mac devices with Darwin… then I was reminded of all the recent bullshit happening in the community… I don’t want to get deep into the discussion in this thread, but I don’t really want to use/support a distro that Palmer Luckey and Anduril are trying to influence and control.

So I’m trying to decide if I should stick with Proxmox, try something like Arch or keep an eye on what’s going down with Nix and have a good backup strategy if the situation worsens.

I’d probably switch from Docker to Podman, use Wayland with Niri and learn NeoVIM and use SSH instead of VS Code remote tunnels.

Based on my current setup and my goals, what would you suggest I do?

I have been using bazzite for a year now and have transferred my desktop computers to custom ublue images. The love for bootc and immutable distros have made me want to make my servers immutable too using bootc.

I want suggestions and warnings in using this technology.

I am currently using github actions and the github container repository to host the desktop images, however, I feel like this is insecure and allows a bad actor to also integrate tracking software into the image if they got a hold of my keys. I also don't fully trust ublue. This is the other reason why I want to make my own bootc image from scratch.

Is it safe to continue using the github container repository or should I host my own?

Also, are there any good examples of Containerfiles for a bootc image?

As I rely more on my home lab server, I'm starting to worry more about it getting stolen. If someone breaks into my home, I think the server will be a pretty attractive target.

Do y'all just stick it in a closet? That seems not great for cooling...

One of my neighbors recently got broken into.

Not sure if this is a thing, so here goes.

I have been helping my local gardeners club with web site hosting and they have the results from the produce show in an ugly excel workbook.

Does something exist that would allow setting up the show classes and then logging the points a entrant gets in each class?

https://www.melkshamgardenerssociety.co.uk/flower-produce-show/2024

I currenly reside in a country with strict piracy rules but also have access to the internet in a country where piracy is not enforced. I want to setup a VPN and route qBittorrent's traffic through it. The idea is to do something like this:

I am fresh to selfhosting and most of the time have no clue how to achieve what I want. So far I have tried Tailscale but I think it won't work how I want it to. If it helps, I have domain name registered. Can anybody point me to the right direction?

Hey y'all. I've been testing a bunch of Note taking solutions and nothing seems to check off what I want and need.

I want a simple interface (both for list view and note editor/view), preferably similar to Google Keep, but a regular list is fine as well.

Key features:

A. being able to drag and drop re-order checkbox lists.

e.g.

• [ ] item 1
• [ ] item 2
• [x] item 4
• [x] item 3

I'd like to be able to just drag and drop the above to sort things correctly.

B. E2EE at rest.

C. CTRL+F inside the note view/edit!!

Honestly, the only functionality I truly want is A. But most of the solutions I found are either proprietary or can't do it.

Self hosted options I've tried:

• Joplin (can't do A; UX is not great)
• Standard notes (A + C is gated by their self hosted premium subscription; I don't mind paying for my apps, but the prices are ridiculous)
• Silverbullet.md (can't do A)
• Quillpad (very similar to Google Keep and can do A, but has terrible file syncing, not E2EE)

Notesnook looks almost as insane as Standard Notes to self host (mimicing AWS stack locally is nuts). Has anyone tried Notesnook yet? I don't want to spend another afternoon setting something heavy up only to find that the feature I want is gated by a heavy $.

Any suggestions or recommendations would be greatly appreciated!

EDIT: Woops! I am looking to use the notes app on both Android and Web/Desktop Linux. Preferably an open source solution.

When I first got into self hosting, I originally wanted to join the Fediverse by hosting my own instance. After realizing I am not that committed to that idea, I went into a simpler direction.

Originally I was using Cloudflare's tunnel service. Watching the logs, I would get traffic from random corporations and places.

Being uncomfortable with Cloudflare after pivoting away from social media, I learned how to secure my device myself and started using an uncommon port with a reverse proxy. My logs now only ever show activity when I am connecting to my own site.

Which is what lead me to this question.

What do bots and scrapers look for when they come to a site? Do they mainly target known ports like 80 or 22 for insecurities? Do they ever scan other ports looking for other common services that may be insecure? Is it even worth their time scanning for open ports?

Seeing as I am tiny and obscure, I most likely won't need to do much research into protecting myself from such threats but I am still curious about the threats that bots pose to other self-hosters or larger platforms.

Description from the developer:

Pinepods is a podcast server that’s self hosted. It aims to be a multi-client version of what you might already have on your phone that allows you to listen anywhere. Host pinepods and get a web client, mobile apps, desktop apps, even a CLI app. Your progress syncs between all these. It supports gpodder sync for use with your existing apps if you want (though I’ve put 100 plus hours into the mobile apps and really would appreciate people at least giving them a go) and it has tons of features. Think Notifications on release, smart playlists, multi user, sharing, chapter support, YouTube channel to podcast support. Loads of stuff, and loads more still to come.

With 0.8.0 the mobile apps are now on Google Play and the Apple app stores, and the api has been fully rewritten in rust. It’s a lean mean podcasting machine. And actually the real current version is 0.8.1.

Excerpts from the Changelog:

Introducing PinePods 0.8.0 – The absolute biggest Pinepods release to date. Pinepods mobile clients are officially released! Additionally the backend api has gotten a complete rewrite in rust!

📱 Official Native Mobile App

• Flutter-Based App – Brand new official mobile app built with Flutter for iOS and Android
• Cross-Platform Synchronization – Seamless sync between mobile, web, and other Pinepods clients (More to come on other very soon)
• Offline Support – Download episodes for offline listening with intelligent storage management
• Native Mobile Features – Background playback, lock screen controls, notification management, and mobile-optimized UI
• Professional Distribution – Will be available on both iOS App Store and Google Play Store along with open stores such as f-droid and izzyondroid

The android apk will be attached to the github release. As well as released to the Google Play Store, f-droid, and izzyondroid Shortly after the 0.8.0 release. I need to get this release out in order to get them on the android stores fully.

Links:

iOS App Store

🦀 Complete Rust API Transformation

• Python Elimination – All Python dependencies have been completely removed from the container, resulting in a dramatically smaller and more efficient deployment
• Horust Process Management – Switched from supervisor to Horust for robust, lightweight process supervision and startup management. This is part of removing the python dependency and also utilizes more great rust based dependancies
• Internal Task Scheduler – Background processes now run directly within the Rust API service using tokio-cron-scheduler, eliminating the Celery dependency entirely
• Enhanced Reliability – Background tasks are more reliable with better error handling, automatic retries, and integrated logging
• Streamlined Container – Significantly reduced container size and complexity with the removal of Python runtime and associated dependencies

🔧 Infrastructure & Reliability Improvements

• Horust Service Management – All services now managed by Horust with proper process supervision, automatic restarts, and clean shutdown handling
• Integrated Background Processing – Podcast refresh, nightly maintenance, and cleanup tasks now run as scheduled jobs within the main Rust API service
• Database Operation Reliability – Improved server backup and restore operations with better error handling and validation
• Timezone Configuration – Runtime timezone configuration without container rebuilds, properly affecting all time-sensitive operations
• Simplified Deployment – Reduced container complexity and startup time with streamlined process management

🏗️ Development & Performance

• Pure Rust API – Complete rewrite of the Python API in Rust for improved performance, memory efficiency, and type safety
• Eliminated Dependencies – Removed Python runtime, Celery worker system, and associated packages from the container
• Better Resource Usage – Significantly reduced memory footprint and CPU usage with native Rust performance
• Improved Error Handling – Better error messages, logging, and debugging capabilities throughout the system
• Type Safety – Enhanced reliability through Rust's type system and memory safety guarantees

🐞 General App Fixes and Improvments

• Better Youtube Support – The youtube search api is now embeded in the standard Pinepods Search api. This makes searching Youtube much faster and more consistent.
• Multi-Select Episodes – On the page for any given podcast you can now select and take actions on any given number of episodes. This allows you to mark all episodes of a given podcast as complete in one fell swoop. Arrows also appear on the episodes allowing you to mark all episodes newer or older than a particular episode.
• Playlist Limits – System Playlists are now limited to a max of 1000 episodes. This will take the most relevant 1000 for the playlist.
• Playlist Fixes - Also fixed an issue with the Almost Complete playlist where the completed percentage wasn't working correctly.
• Category Fixes - Categories throughout the app have been improved. Sometimes they would previously show as a strange looking vector. This will no longer occur.
• Premium Feeds - Premium feeds should now be fully functional everywhere.
• Backup/Restore Database - The Backup and Restore functionality has been 100% totally rebuilt. This should fix some issues that it previously had with actually restoring. There's also an option to schedule backups now. So that they run on a regular basis. The restore option will automtically see these backups as options to restore from.
• Subscribed People Fixes - The functionality around subscribed people has gotten some major fixes as well. This should fix numerous bugs related to people subscription
• Match Podcast Index IDs - There's a new option in settings to match a podcast to it's podcast index counterpart. Having this ID correct will allow for more consistent host following.
• Auto Complete Options - There's also been an option added to playback settings in the settings area to auto complete an episode if it gets to a certain amount of seconds to the end of it. For example, you can set it to 30 seconds and if an episode is within 30 seconds of the end it will automatically mark it complete.
• Authenciation options added to NTFY Notifications - The NTFY notification settings now support username and passwords or authentication tokens. These can be skipped entirely still if you have no auth.
• Additional OIDC Settings - Experimental name claim settings added to to OIDC setup area. Name, email, user, roles claim options. As well as admin and user roles have all been added.

🕸️ Website Rebuild

• The Pinepods Website has gotten a complete revamp! It's looking much nicer!
• Many more docs have been written as well. There's documentation for just about every option in Pinepods. If you find something missing please let me know!

Pinepods is a podcast server that’s self hosted. It aims to be a multi-client version of what you might already have on your phone that allows you to listen anywhere. Host pinepods and get a web client, mobile apps, desktop apps, even a CLI app. Your progress syncs between all these. It supports gpodder sync for use with your existing apps if you want (though I’ve put 100 plus hours into the mobile apps and really would appreciate people at least giving them a go) and it has tons of features. Think Notifications on release, smart playlists, multi user, sharing, chapter support, YouTube channel to podcast support. Loads of stuff, and loads more still to come.

With 0.8.0 the mobile apps are now on Google Play and the Apple app stores, and the api has been fully rewritten in rust. It’s a lean mean podcasting machine. And actually the real current version is 0.8.1.

I've been having issues with my homelab ever since I set it up a few months ago. For some reason the server becomes unresponsive as if it is offline. However when accessing its CLI, it seems to spew out this message in continuity.

I've tried entering commands directly into the CLI, but it shows an 'input/output' error instead. I cannot even get it to shutdown through the CLI so I have to manually pull the plug.

Here's another screenshot of the logs in the CLI a few moments just after the error occurred.

The issue does not even get fixed after I try switching it off and on. Sometimes the homelab gets stuck indefinitely in the startup loading screen, fails to detect the system partition between the GRUB stage, results in a Linux kernel crash or refuses to boot altogether. It is only mitigated when I leave the homelab switched off for 5 minutes or so.

The weird thing about it is that there is no way to predict when this error could come up. The server would work completely unhindered for a few weeks straight on some occasions, and break down just a few minutes after startup. It doesn't depend on what type of services I am hosting, all of which are lightweight in nature.

Additionally, once it does start working again there seems to be no record of the encountered error to be seen in the logs, apart from the number of unsafe shutdowns. This makes it difficult to debug or even document the matter coupled with the fact that its occurence is random in nature. I'be tried running several diagnostic tools including smartctl but I am unable to deduce anything useful out of it.

Some specs and info about the homelab is as follows:

• Build: Pre built Compact Mini PC
• CPU: Intel i7-14700
• RAM: 16GB
• Storage: 1TB SSD
• GPU: Integrated Intel HD Graphics 770
• Operating System: Ubuntu 24.04 LTS

I would really appreciate if you could point out the cause of this issue. This experience makes the server reliable which is why I don't feel comfortable hosting anything valuable or sensitive on it yet.

I can provide you additional details or logs if required.

I set up Wireguard on my phone, server, and computer to let my phone access my home network when I'm outside of it.

It works for the most part, but the inconvenient thing is that on Android you can only have 1 VPN running at a time. I want to use Mullvad VPN for the rest of my network connections for privacy.

I could make a single Wireguard config that defines 2 peers to connect to mullvad and my home VPN at the same time, but by doing this, I lock myself to a single server without the benefits of being able to swap servers at the same time.

Locking myself to a single mullvad server results in:

• less privacy, since my IP is more static
• inability to switch to bypass a VPN block

On desktop, I can have multiple wireguard VPNs at once, but if I have both running at the same time, then my LAN is accessed over the home VPN which is routed through Mullvad VPN. It goes

Computer -> Mullvad server -> Home VPN -> Home server

which is pretty wasteful.

Additionally, I'd prefer not to not do something like: Phone -> Home VPN -> Mullvad server -> destination, as my upload speed is pretty bad and this would throttle every non-local connection

What options do I have?

Running pfsense, I was able to route my entire LAN subnet through a VPN. I have firewall and NAT rules that use an alias to filter outgoing connections to specific domains outside of the VPN gateway.

This works great. But here's the problem. Wildcards are not supported within pfsense aliases, and therefore unless you know the specific subdomain for a service, there's no way to reroute services that use rotating or load balancing subdomains.

Surely this is a big problem in large companies. I'm sure they utilize a paid solution to solve this problem.

Are there any solutions for self hosting that are FOSS or within pfsense?

Well I already have jellyfin running in a container, just have to figure out how to get mum's TV to work with it I guess

log in on a local IP and not the network name and it's working again. but I'll be moving to jellyfin from now

cross-posted from: https://lemmy.bestiver.se/post/639591

Comments

Today, we're excited to announce the release of Linkwarden 2.13! 🥳 This update brings significant improvements and new features to enhance your experience.

For those who are new to Linkwarden, it’s basically a tool to collect, read, annotate, and fully preserve webpages, articles, and documents, all in one place. It’s great for bookmarking stuff to read later, and you can also share your resources, create public collections, and collaborate with your team. Linkwarden is available as a Cloud subscription or you can self-host it on your own server.

This release brings a range of updates to make your bookmarking and archiving experience even smoother. Let’s take a look:

What’s new:

🏷️ New Tag Management Page

We added a dedicated page where you can view, sort, add, bulk merge, and bulk delete you Tags, all in one place.

⚙️ Compact Sidebar

You can now shrink the sidebar for a more compact and minimal look.

🐞 Bug fixes and Optimizations

This release comes with many bug fixes, security fixes, and optimizations that's recommended for all users.

✅ And more...

There are also a bunch of smaller improvements and fixes in this release to keep everything running smoothly.

Full Changelog: https://github.com/linkwarden/linkwarden/compare/v2.12.2...v2.13.0

Want to skip the technical setup?

If you’d rather skip server setup and maintenance, our Cloud Plan takes care of everything for you. It’s a great way to access all of Linkwarden’s features—plus future updates—without the technical overhead.

We hope you enjoy these new enhancements, and as always, we'd like to express our sincere thanks to all of our supporters and contributors. Your feedback and contributions have been invaluable in shaping Linkwarden into what it is today. 🚀

Also, the Official Mobile App for iOS and Android are coming very soon! Follow us on Mastodon, Twitter (X), and Bluesky for the latest updates.

Hey, what do you guys use to share videos and screen share to your friends or colleagues? I'm looking to self host a video/call server that runs on webrtc (maybe?) with a fairly easy client experience. Something like mumble but for videos. Any suggestions?

I have soo many memes I've grabbed over the years, as I don't want to be tied to a platform, I'm struggling to manage them. I've previously auto-uploaded them to Nextcloud, but this makes for bad viewing. I use Immich for photos I take, but I don't want memes mixed in with those. Ideally I'd like to have memes available on my clipboard for easy replies, but that's extra.

If anyone has any suggestions for meme-management solutions, I'd love to hear them, thanks!

Hello everyone,

I recently started my journey of using Proxmox for self hosting and boy is it very satisfying, I learned a lot along the way so far and have yet to learn some more. So once again, I am asking for help if you could so kind to offer it.

I have a privileged CT running Debian that has Fuse enabled. I have it setup to rclone mount a drive within the CT and all is working fine and dandy.

What I have been trying to do is to make that mount visible on the host such that another CT can access it and read the contents of the mount.

The thought is I can have the rclone CT mount the drive, and then have the Plex CT read that drive and scan it for content.

I tried to do a bind mount point but the fuse mount doesn’t seem to be visible to the host (and hence, not visible to Plex either)

Am I missing something? Is it even possible? Any other suggestions or workarounds.

Thank you in advance

cross-posted from: https://programming.dev/post/38078698

Starter template: https://github.com/logandonley/fleet
Colmena: https://github.com/zhaofengli/colmena

Hello,

a few days ago I got a nice little mail from ionos where I run some VPSs that due to WebPros International GmbH massively hiking their prices they have no other option but to transfer down these price hikes.

Since that would mean a 5-fold price increase for my contracts, I am looking for other hosting providers. The service I need the most is just some super small VPS with a static IP to tunnel all my dynDNS-traffic through so that I can have a static IP linked to my domain and the sorts. Currently I am paying 1EUR per month.

I know that my question probably super basic and that I could just move to any other provider. I just wanted to ask if any of you could (dis-)recommend any providers due to positive or negative experiences?

many thanks in advace and have a pleasant thursday!

Curious to know what the experiences are for those who are sticking to bare metal. Would like to better understand what keeps such admins from migrating to containers, Docker, Podman, Virtual Machines, etc. What keeps you on bare metal in 2025?

Hey c/selfhosted,

we've finally done it. After years of people asking for it, GameVault now has its very own Web UI!

For anyone who hasn't heard of it yet: GameVault is a self-hosted gaming platform that gives you a Steam-like library experience, but for your own DRM-free games. You host it yourself, you own your data, and you can share your collection with friends and family. Basically, it's for gamers who also love the selfhosting mindset.

This Web UI / Cross-Platform Client has been the most requested and long-awaited feature for as long as we've been working on GameVault. When we first built it, it was just a small project for the two of us, written with the tech we knew at the time. Over the years, especially here on Lemmy, people gave us plenty of criticism for the tech stack and the UX, because you guys love to use linux. And honestly... fair enough. We knew it wasn't great.

The new Web UI is our way of addressing all the feedback we've received and setting the stage for the future. It’s not just a nicer interface. This also represents the first building block for a new cross-platform client that we’re working on.

The Web UI acts as a cross-platform core, which means that in the future we will be able to package GameVault to run both directly in the browser as well as a native application on Windows, Linux, or even mobile devices. This upcoming client will be built on the same foundation, ensuring a smoother and more unified experience whether you're on a desktop OS or just checking your vault from your phone.

Right now, we're planning to expand the Web UI continuously and figure out how to handle the legacy windows desktop client moving forward. The technology underneath is much cleaner now, so we finally have the freedom to iterate and improve without being stuck in the past.

Anyway, we're really excited about this step. It feels like a true milestone for the project, and we're looking forward to hearing your thoughts and feedback. If you're self-hosting and love gaming, give it a try, I'm curious what you think.

You can also check out a live running demo version on demo.gamevau.lt
Username: demo
Password: demodemo