A number of brand new accounts have popped up shilling their paid for applications.

Is this within the rules? Is the community happy with this? Could mods clarify this in the rules?

Either allowing advertising, or banning it entirely.

my point is - there is a difference between an open source homegrown project that might be useful, vs closed source paid for projects from brand new accounts

I've been racking my brain the whole afternoon trying to figure out why when I try to access my Pihole over Web GUI suddenly I'm met with SEC_ERROR_UNKNOWN_ISSUER error.

My setup:

• Nginx (SWAG) runs on my server and routes all apps on the server, plus two separate devices (Unifi and Pihole)
• Pihole runs on a Raspi with a fixed IP
• Nginx conf points to Pihole's IP on port 80 over http protocol.

This worked perfectly fine until several days ago (well, that's when I noticed the issue). Now whenever I try to access Pihole over its FQDN (https://pihole.my.domain/), I get the above error. The reason is mismatched certs, i.e. my browser fetches Pihole's self-signed cert and doesn't see my domain's cert at all. However, this shouldn't be happening at all. Nginx conf points to Pihole's port 80, not port 443. To further confirm this, I temporarily disabled port 443 on the Pihole and only served on port 80, which made Pihole web inaccessible over Nginx. I thought maybe Unifi is the culprit, but I can still reach the Web GUI over http://pihole.my.domain/ and http://pihole-ip/ through my browser. I have several other apps on the server that use port 80, and Nginx has no issue routing them.

Anyone has any idea what might be happening here?

Hi fellow selfhoster,

Im a bit lost on the following scenario and im unable to find any documentation about it so i was hoping some smart people here could point me in the right direction.

I have a linux software raid 6 that contains a LUKS partition with ext4 in it. I would like to automount the ext4 when im rebooting. The root partition is also using LUKS and i have successfully setup the decryption for this parition but im uncertain on how to do this with this raid setup since im not sure where in the boot process linux recognizes my raid and when the decryption happens.

This is what i have:

[root@nfs-rocky-1 ~]# cat /etc/mdadm.conf
ARRAY /dev/md/server1:0 metadata=1.2 UUID=3e198408:2236ed3d:1dc13a8e:e5f91e52

On a reboot the raid does get automaticly recognizes but i still have to do cryptsetup luksOpen /dev/md0 raid & mount /dev/mapper/raid /mnt/data.

What would be the best way to do this? Im a bit scared of doing this im not certain of since i don't want my machine to be stuck at a boot.

Just a like to an article that dicusses something like this already would help me greatly.

Hey, folks. The Jellyfin and Komga media servers running on my NAS are going great locally. I invested in a firewall and some managed switches, and from preliminary VLAN tests, I'm confident that I've got what I need to section off the self hosted services from my primary network. I was hoping to get a recommendation for the next couple of steps.

I've got a mini PC running Bazzite that had been a portable console/fighting game setup that I'm ready to retire from that role so that it can serve as a server and reverse proxy. I'm not sure what OS to put on it. If I have to manage it entirely by command line, it will take 10 times longer for me to do anything I want to do, and I'd really prefer a GUI. That said, I know it also takes resources to power a GUI that I won't be touching most hours of the day. I was curious what distro you folks might recommend for this purpose. In some of my research, I also came across Apache Guacamole, but I'm not sure if that requires a proper desktop environment to already be present in order to get that kind of remote access with a GUI. Am I overthinking this? Is this going to be just fine with a normal desktop distro installed on it? If normal desktop distros work just fine, I need something that can sit there without updating until I tell it to; since introducing snaps, this is something Ubuntu has been a pain about, so I might want something else.

The next thing I was curious about was order of operations for the reverse proxy. There are SSL/TLS certificates that are needed for HTTPS, but I need a domain for that, and a lot of tutorials just skip on past this step in the domain configuration screens where you "enter your DNS servers" as though I know why I'd need other DNS servers, where to get them, how to select them, etc. And ideally, I'd want to test that the reverse proxy is working locally with HTTPS and all before it's exposed to the internet in the first place, so I'm not sure what order to do those steps in: DNS servers, buying a domain, getting certs, configuring reverse proxy.

As with most things, I'm sure this is far less complicated than it looks to me right now, and once it's in the rearview, it will make a lot more sense, but I'd appreciate any advice folks here can offer.

I'm a solo dev and I got tired of not having a good iOS app to manage my self-hosted media stack, so I built one.

Quartermaster connects to Radarr, Sonarr, SABnzbd, NZBGet, qBittorrent, Jellyseerr, Overseerr, Jellyfin, Emby, Lidarr, Prowlarr and Bazarr. Manage your library, approve requests, watch your download queues, see active streams — from your phone.

The part I care about most: it's pure client-side. No backend, no analytics, no accounts. Your server credentials are stored on-device in the iOS Secure Enclave and the app only ever talks to the servers you point it at. Nothing leaves your phone.

It's in TestFlight beta now and I'm looking for testers — especially if you run qBittorrent or a less common setup. Free to test.

More detail and how to apply: https://qmstack.com/

Happy to answer anything about how it works.

So I guess you can just hook up IPTV directly into Jellyfin. But there also seem to be helper apps like xTeVe, Dispatcharr, Threadfin, and others?

Are these helper apps worth an install? I'm curious if anyone has a favorite.

I'm looking to expand into having a online library and looking for some real world experiences and opinions. Ideally, looking for someone that worked well with docker and the various arrs.

I've been building PRISM - a self-hosted OSINT toolkit you run yourself instead of pasting investigation targets into someone else's web service.

Give it a domain, IP, email, phone, or username and it runs 22+ modules in parallel into one dashboard: WHOIS, DNS, crt.sh subdomains, GeoIP, threat intel (Shodan/VirusTotal/AbuseIPDB/Censys), breach data, username search across 3000+ sites (Blackbird + Maigret), dark-web mirror checks, and more. Results come with an entity graph, a GeoIP map, an OPSEC exposure score (0–100), and HTML/PDF/CSV/Markdown exports.

14 of the 22 modules work with zero API keys (missing keys degrade gracefully instead of erroring).

Stack: FastAPI + Next.js 14, runs with one docker compose up. MIT licensed.

Demo: https://getprism.su/ Github: https://github.com/NovaCode37/Prism-platform

Built it solo - feedback welcome, especially on which modules you'd want added.

Two days ago, I posted to this community asking for help with managing subtitles and audio tracks on my media server (and removing the ones I don't need). @ohulancutash@feddit.uk suggested I try Muxarr which looked promising, so I set it up yesterday.

First impressions were good, the setup was really easy and I set up the profile I wanted in around 10 minutes (only keeping the English and original audio tracks, and only English subtitles). I enqueued all my files (there's a big green button in the top left which I somehow missed for a few seconds, but that's on me) and it started doing its thing. It did take a while to process my nearly 3000 files so I left it running overnight. I came back this morning to find it had worked perfectly and all my media had the unwanted tracks removed.

What's possibly even more impressive though, and something I wasn't expecting, was that removing all that unneeded data had freed a whopping 135GB of storage!! I only have 8tb available total and with storage prices as they are right now, that's really quite a significant amount to just be sitting there holding data that will never be used.

I just wanted to take a few minutes out of my day to write this and thank @ohulancutash@feddit.uk and this community for recommending Muxarr to me and spread the word to others who didn't know about it like me two days ago

Cliparr 1.2.0 is out, with many small improvements and a new convert tool.

Cliparr is a self-hosted browser-based personal media clipper. Load up Jellyfin or Plex to the moment you want to capture, open Cliparr, and export.

What's New

• Offline, browser-based video converter with GIF support.
• Fix Jellyfin HLS streams not transcoding
• Add user-select filter for popular servers

See the release notes: https://cliparr.dev/changelog/#v1.2.0

Read more about adding GIF support to Cliparr, it wasn't as simple as it sounds: https://cliparr.dev/blog/convert-video-in-your-browser/

Progress Report:

So, building on @captcha_incorrect 's n8n script he graciously offered, and pulling data into Grafana, and learning how to python correctly....it's been a journey. However, I am happy to report that I have some weather data now. It's by no means a finished product but I have made some progress.

The extended forecast in the right hand side took me some time to figure out pagination so I could scroll through 5 days in advance. The weather tab at the top left will get a couple more tabs. One for forecast map, if I can figure that out. LOL

I've been using this as my e-book library management for a couple of months now, ever since switching from booklore, which imploded a bit.

I just noticed today that it hasn't shipped an update since February, and in fact there's been essentially no activity on the GitHub page since early February. Four months is not that much time without an update, but it is a pretty long time without any new commits. I'm not seeing the lead developer replying to reports, etc. Is this still an active project? Does anybody know? It seemed like there was a lot of enthusiasm behind this project six months ago, so I'm not sure.

Edit: There is an active community on Discord that is working on updates. There is a fork with bugfixes here.

I'm running Monicahq on Pikapods. v. 4.1.2. I've entered my email address in the settings>General. After this email address it says "This is the email used to login, and this is where Monica will send your reminders." However, I'm getting no notifications.

I've tried looking in the monicahq manual. The documentation doesn't appear to correspond to my version. I can't find this in my instance: https://docs.monicahq.com/user-and-account-settings/notification-channels#anatomy-of-the-notification-channel-list

The documentation says it's possible to send test notification:

https://docs.monicahq.com/user-and-account-settings/notification-channels#send-tests-and-logs

I can't find a page where I can send a test notification on my instance.

How can I fix notifications? Any help gratefully received.

Let's say you have access to a remote machine and use it to copy backups occasionally, eg with rsync. Your local machine has credentials stored that allow write access on the remote machine, however if the local account was compromised that could also allow access to the remote machine and the data stored there.

How can you grant access to an account to write remotely, but also protect the data from this account? One possibility could be to change the permissions on the data after it is copied to prevent deletion/interference, although I'm just making this up. Is there a standard practise for this?

Is it your local server, which streams music for your PC and phone? Is it something else?

What about streaming music from your server to your work laptop?

Is there an alternative to unifi that is Podman or Docker compatible/available and better than the old site manager?

TL;DR DietPi has an easy to configure kiosk mode to boot up opening a website. E.g. your gallery displayed with ImmichFrame

The photos

Part of my post vacation workflow involves collecting all photos taken, sorting out the 90% duplicates and blurry ones, and slapping the remaining into an album. There they can sit until some unlucky person asks me about my last journey, or I get an urge to look at them again (about once every three years).

Since using Immich I get these flashbacks a little more often, since it has this memory feature that shows photos from x years ago (folders don't have that. Yeah I used folders before). This still involves opening the app on my phone though, which I'd like to use less in the first place. If only there I had a big screen somewhere in my home that could display images at a decent resolution...

The frame

There is digital frames for that, but I don't want to make room for one. Maybe later. What I realized is: My TV displays this one (pseudo) artsy drawing whenever I turn it on. Instead of seeing this same boring image 5-10min every day: Why not enjoy my photos?

There might be a TV app for that, but I don't want to be opening/installing apps on the TV - I need my photos to show in the 'default' mode (which might be possible with an app, but I didn't bother to check). Instead I grabbed an old RPi3 and installed ~~Raspbian~~ RaspberryPiOS (it has been a while...) and ImmichFrame. A promising looking app that is meant to take my Immich albums and display them. Everything worked super quick, but opening the browser to display the ImmichFrame page hosted in Docker. While messing with a script to open the browser on boot, I noticed that everything felt a little (a lot) laggy. (In hindsight I was probably overheating my little PI due to missing cooling. Fixed this later as well)

The diet

Looking at lightweight OS for the Pi, I discovered DietPi and gave it a quick install. It is very convenient to configure via the console, and while messing around there I stumbled across something-something kiosk mode. That's exactly what I needed! Lucky me didn't know about such things, but it makes sense I guess. Just configure a URL and it will display that page on every boot. Currently ImmichFrame is hosted on the PI as well, so I added a little wait loop into the startup of the kiosk mode, but that's all. Performance is ok right now, but if it continues to lag, I'll just host ImmichFrame on my server.

The Pi gets plugged into the TV and is running all the time, since I could not think of a smarter way. Now I have a neat solution that is fully under my control.

Ive been working on an opensource HSM (Hierarchical Storage Management) engine called HuskHoard. Most transparent storage tools on Linux use FUSE, but I found the contextswitching overhead was killing my NVMe performance for hot data. I decided to bypass FUSE and use the fanotify API to intercept file access at the kernel level instead. How it works A background janitor moves cold files to slow storage HDD/Tape/S3. It leaves a sparse husk file on the SSD. When an app tries to read the husk, HuskHoard pauses the process, recalls the data, and resumes. Its written in Rust and licensed under AGPL3.0. Github: https://github.com/huskhoard/huskhoard Technical Architecture: https://www.huskhoard.com/blog.html Im curious if anyone else here has experimented with fanotify for storage management? I'd love some technical feedback on the architecture

I run 0807, a small self-hosted file host. Drop a file, get a short link, and choose when it disappears.

What it does:

• No account, no ads, no trackers
• Auto-delete by time (1 hour up to 30 days, or never) or after a set number of downloads
• Optional password protection on files and on text notes
• Files up to 20 GB, with 16 TB of storage behind it
• Reachable over Tor through an onion service
• Text notes with the same self-destruct and password options
• A few file types are blocked for safety (exe, bat, scripts, and similar)

PS: there is no end-to-end encryption, and that is deliberate. The server can read what is stored.

I want to be able to take illegal uploads down when they get reported, CSAM in particular.

End-to-end encryption would make the server blind to its own contents, which is great for privacy but would also stop me from acting on those reports.

If you need real secrecy, encrypt the file before you upload it. The password option is there for casual privacy (not as protection from me or from whoever might get into the server.)

The code is open, and I host it the same way I host the files, on my own server instead of HERE .

You can read it, propose a change, or open an issue there, no account needed

Happy to answer questions about the setup or take feedback.

I've been successfully using Jellyfin and Sonarr/Radarr for over 2 years now, and one of those things I find really annoying when it happens is incorrect audio tracks playing or subtitles showing. It happens rarely enough that I forget to do anything about it (until now) but it's something I'd like to never have to think about again.

I'd ideally like my setup to abide by the following rules

For subtitles:

1. Display English[Forced] subtitles by default if applicable (the kind that show up if characters suddenly start speaking another language as part of the media in question)
2. Otherwise have subtitles off by default
3. Have English subtitles available as an option in case I want them
4. Completey remove all other subtitle options from the media entirely

For audio tracks:

1. English by default if available
2. Otherwise the native language of the media as the default (bonus points if English subtitles can be enabled automatically if this case arrises)
3. The native language of the media available as an option if applicable (even if an English audio track is available)
4. All other audio track options removed from the media entirely.

Does anyone know of any tools or post-processing options I can use to accomplish what I want?

ONYX is a self-hosted, anonymous E2EE messenger. Flutter client, separate server component, no phone number or email required for an account. Solo project, beta is rough in places but moving forward.

v1.7-beta out. The thing I actually want to talk about is WardLink.

Even on a self-hosted setup, keeping your favorited chats in sync between your phone and your desktop usually still routes through the server, or you do it by hand. WardLink does it directly between your own devices over LAN instead. Pair two (or more) devices once via QR, and from then on, when they're on the same network, favorited chats sync passively (if you turn it on yourself, of course :D). No central point holding the sync state, no cloud account needed for it. Traffic is sealed with per-device keys.

I'll be upfront about the limits: It only runs while both devices share a network. This is for the "I have a phone and a laptop in the same house and want them in sync without my server being in the loop" case specifically.

Rest of the changelog:

• chat gallery view
• search across settings, plus chat search by name/keyword
• on-demand and scheduled backups
• adjustable scroll-to-bottom button
• markdown support in the changelog tab itself
• redesigned player, dialogs, and settings (also restructured)
• new storage engine under the hood
• folders stay unlocked for the session on desktop instead of re-locking constantly
• removed the message entrance animation: it was slowing chat opening down more than it helped
• fixed backend bugs affecting message sending, a settings UI arrow glitch, and the biometrics toggle showing up when biometrics aren't available or are disabled on the device

If you're upgrading from an earlier version: this release switches local storage to a new engine, and it migrates your data automatically on first launch. In my own testing it's roughly 80% faster after the migration is done.

Repo and full release notes: https://github.com/wardcore-dev/onyx/releases/tag/v1.7-beta

One-person project, and I lean on AI tooling for parts of the code. Architecture, crypto decisions, and review are mine. Still beta, so expect rough edges. An issue on the repo helps a lot right now if you hit something broken.

Wanted to provide an update around the CLI runner that we shipped a few days ago. This was already on beta for quite some time so now that its on stable, I thought of giving it another go in the community.

For those who are not familiar with the tool and what the h#$@ I am talking about: Voiden is an offline, git-native API tool built on Markdown.

We built it (and then open sourced it) because API tooling sucked (and we work a lot of APIs enough to care to do something about it). I will just name a few issues: cloud dependencies, forced accounts, proprietary formats plus many more.

Long story short, this is Voiden: instead of keeping API requests inside a cloud workspace, Voiden stores them as .void files that can live with your codebase, be versioned in Git, reviewed in PRs, and reused across a team. Plus everything is plain executable markdown. By "everything" I mean really everything: API specs, tests, docs, context...everything.

We have now released the @voiden/runner, which is a headless CLI for running those .void files outside the desktop app.

The runner executes the requests, prints the results, and exits with a standard exit code that CI systems can use.

Things to note:

• runs on Node.js 18+
• works in terminal, CI/CD, Docker, and cron jobs
• supports REST, WebSocket, gRPC, and GraphQL
• supports request chaining through runtime variables
• works with core Voiden plugins like scripting, assertions, faker, advanced auth, + more.

The ultimate goal is to make .void files executable API workflows, not just files used inside the desktop app.

The Github repo: https://github.com/VoidenHQ/voiden

Voiden CLI Runner : https://github.com/VoidenHQ/voiden/tree/beta/packages/voiden-runner

Visit Voiden here : https://voiden.md/

P.S this post is mainly around the Runner but every feedback outside that is also welcome, especially coming from any postman or insomnia power users in the room :)