Hey, it's been a minute! Dawarich is your favorite FOSS selfhostable alternative to Google Timeline, remember? We've shipped a lot since the last post and I'm here to tell you all about it.

Github: https://github.com/Freika/dawarich

Website: https://dawarich.app/

First, a picture to get your attention:

Before we start with the great stuff, let me talk a bit about good stuff as well. Release 1.8.0 introduced a new mechanism to let you know about new releases. It works through my new application called Chibichange (https://chibichange.com/).

TL;DR: there is a Chibichange widget shipped in Dawarich, which, if you consent, will ping chibichange.com to check if there are new updates for your Dawarich instance. If there is a new version, a green pulsing dot will be shown in Dawarich navbar, click on it, and you'll see what's changed in Dawarich since your current version. Feature suggestion and voting coming to chibichange soon.

Important: this is an opt-in feature, no external requests will be made if you click "No thanks". If you say "no", there will be the usual exclamation mark beside the version if there is a new release on Github, but, sadly, no in-app changelogs.

A bit more context: I built Chibichange to have a way to conveniently deliver changelogs to Dawarich users, and soon it'll also allow you to suggest features, vote them up and provide feedback. Suggested features, if we decide to build them, will be added to our public roadmap. By the way, we recently added a roadmap: https://dawarich.app/roadmap/. Will update it soon with more cool stuff we've planned.

Chibichange will be open-sourced this summer and will have same model as Dawarich: FOSS self-hostable software with an optional cloud service for those who don't want to self-host it. This is a very niche tool, but I hope it will be useful to those in similar position, building self-hostable or otherwise software.

Okay, let's get back to Dawarich news.

The big one this time: we now draw your flights on the map. If you self-host AirTrail, Dawarich can pull your flight history and render it as proper arcs on Map V2. Set it up on the Integrations page, hit "Sync now", and it re-syncs daily on its own. Finally your map knows you didn't teleport across the ocean.

There will be more for flights in the future.

Trips got a full redesign. The whole trip page is now built on MapLibre V2 — a sticky map on the left, and a scrollable day-by-day accordion on the right with per-day distance and times, day-colored routes, a photo overlay toggle, and a replay scrubber to play the trip back. You can also drop a short note on any individual day of a trip now. I'm really happy with how this one came out.

Public sharing is a whole new thing. Trips, tracks, live location and selected time ranges can now be shared via a public, optionally phrase-protected link. Public trip pages look pretty much the same as the in-app ones, with toggles to pick exactly what the page exposes — route, stats, countries, day-by-day, notes, photos, whatever you want.

Here's a public link to my Norway road trip from the screenshot above: https://my.dawarich.app/s/07024d88-0c43-4554-ad89-d7f2916b7d57

Visit detection got rewritten. There's a new opt-in stay-point detector — non-ML, single pass, and it gives each suggested visit a 0–100 confidence score. It fixes the old algorithm's biggest annoyances: missing slow stays, and splitting one visit in two when your phone's battery died for a bit. It's behind a flag for now while I gather feedback, but it'll become the default soon. You can also now label a visit by searching for the real place name right in the Timeline.

What else?

• Multi-device tracks no longer get mangled — if you track from a phone and a watch and a GPS unit, each device stays on its own track instead of becoming one zigzagging mess.
• Fog of War can now reveal per-hexagon, not just per-point.
• Globe view is now on by default.
• Big import improvements: GPX files now stream instead of loading entirely into memory (no more OOM on huge exports), Garmin FIT files are supported, Google's "Timeline Edits.json" Takeout is recognized, and the official Traccar client is now supported directly.
• Fixed Immich photo timestamps that could be off by up to 24 hours, monthly stats now bucket by your local timezone, and a pile of timezone/DST crashes are gone.
• You can now run the containers as a custom user via PUID/PGID, OIDC fixes (trailing slash + PKCE), and a 2FA lockout to keep accounts safe.
• And, as always, literally a TON of other fixes. Bugs too, sorry, one can't go without the other.

Gentle reminder: Map V1 (Leaflet) is being sunsetted this August. Everything new is being written for V2, and it's better in basically every way — but if there's something from V1 you'd miss, tell me and I'll figure it out. Vector maps are the future!

Also, a glimpse into the future, I found an awesome tool to generate maps, bent it in couple places to work with Dawarich, and poster generation will be a thing soon!

I was so excited about how well it worked out, that I even researched if it'd be possible to plug an "Order" button into Dawarich, and, well, yes. Probably not gonna automate it right away, will just add the "Order" button beside the "Download" one for created posters, and will see how it goes. Anyway, it could be a good to support the development for anyone willing to do so, while getting a very nice personalized thingy you can actually hang on your wall. Man I love these posters.

We've finally released an update for our mobile apps, with the new logo, bug fixes and a registration flow that will have no use to selfhosters, but still is important thing to have. Annoying bug with the map not being rendered in dark mode is fixed, yay. Also, we had to re-list our Android app in Google Play Store, so the update will require you to download it separately and reauthenticate. Make sure you've uploaded all the data you had not yet uploaded in the old app. New app's page: https://play.google.com/store/apps/details?id=app.dawarich.Dawarich

We'll still release a small update for the old one with a banner suggesting an update. Sorry for this inconvenience.

This mobile release took a lot of efforts and tons of testing, but it opens new possibilities for us, and in the next one we want to focus on battery consumption optimization and, finally, will start making more steps towards feature parity with the web app.

I guess that would be it for today! I actually wanted to write a post every month, but, well, it's also too good to post one every other month :)

Saving you a scroll:

Github: https://github.com/Freika/dawarich

Website: https://dawarich.app/

iOS app: https://apps.apple.com/us/app/dawarich/id6739544999

Android app: https://play.google.com/store/apps/details?id=app.dawarich.Dawarich

Donate: https://www.patreon.com/freika / https://github.com/sponsors/Freika/

P.S. I got my shit together and started tinkering on another app, which, once done and production ready, will open lots of new possibilities for Dawarich, check it out: https://atlas.dawarich.app/. It's basically self-hostable offline maps for homelabbers, built on shoulders of titans: Overpass, Photon, Valhalla and some other great mapping tools, under a single UI and API. I'll create a separate post here once it's mature enough. Map matching comes to Dawarich, baby!

P.P.S If you're in Berlin, I'll be doing a presentation on Dawarich on Geomob, a mapping meetup, 1st of October. Come say hi, I may have stickers for you by then!

They have Synology NAS, but they wait when I set up some stuff. They have images on one of the drives and we were able to display via network on old tv, but I feel like more stuff could be added.

They talked about cameras in the future too.

Do you host your own ML / AI / LLM? What do you use, and what do you use it for?

Hoplyra is an open-source (MIT) dashboard for VPN on your own VPS infrastructure. Features:

• ▸ AmneziaWG, WireGuard, OpenVPN, Xray (VLESS), Tor
• ▸ Multi-hop chains — each hop: own protocol + own server
• ▸ One-click SSH deploy
• ▸ SOCKS5 through active VPN or chain
• ▸ Monitoring, client configs (QR, links, files)

Self-hosted. No signup. No SaaS backend.

Install:

  git clone https://github.com/Linchevatel/Hoplyra.git
  cd Hoplyra
  sudo apt install make python3-venv podman podman-compose
  make install

This post is part of a series explaining the authour's steps into self-hosting again. The earlier posts were more focused on the authour's specific priorities and why it's important to them. This informed both what they are deciding to self-host and the order of deployment/how things are set up. This post is the first one that takes a more technical angle, and the initial steps they took setting things up.

I enjoyed this post, and the series by the authour, because what really comes through is the sense of why they are configuring things certain ways and what their priorities are. Many other blog posts I've read jump straight into this step - how they configured the server. But throughout this series, I really get a sense of why the authour decided to configure it a certain way and I find that enjoyable to read. They were very systematic and thorough in building an inventory of what dependencies they have and their priorities for replacements.

This post is by Tara Tarakiyee, who works at the Sovereign Tech Agency. For avoidance of doubt, I am not the authour of the blog post.

I have a personal server I connect to through Tailscale whenever I'm not home, however I've found that whenever I'm connecting remotely connection speed drops drastically from 100MB/s to <3MB/s.

I expect there to be some speed loss when connecting over the internet compared to locally, but 3MB/s doesn't make any sense especially considering that according to a python script I found that uses speedtest.net to test internet speed through a terminal, it reported 109Mbit/s download and and 76Mbit/s upload (~13MB/s; 9MB/s), which aren't amazing but leagues beyond 2MB/s. Moreover I also did a quick test with a friend of mine briefly using port-forwarding and they reported the same speeds, which tells me it isn't Tailscale slowing me down.

Is this just what happens when you connect over the internet? What trickery is afoot to allow me to download things from the interwebz using that sweet full 109Mbit/s bandwidth?

EDIT: tailscale status says the connection is direct

Based on recent comments this feels like a discussion we should have. So..topic, basically.

I'm not looking to be chief noisemaker on this, but I stand by what I wrote in !privacy and what's in my post history.

https://lemmy.ml/post/48724623/26190950

Let's have at; do we want a [AI] and [NOT AI] tag. Why or why not?

I’m living with my dad for the summer and his internet setup makes no sense. I’m a simple man who uses Ethernet when possible and I’ve never had coverage issues because I’m a poor who lives in apartments. So this mesh network stuff is new to me. He has a 3000sqft house and clearly had coverage issues

His setup: 14 year old Nighthawk router/modem being used as a modem Orbi 50 router with no satellites Eero 6 as a second router …no satellites.

My plan: Buy a proper modem Use the Orbi for the router Turn the Eero into an access point and plug it in upstairs via Ethernet. Buy used Orbi satellites for rest of house

My other option is to sell it all, buy a TP Link AXE5400 router, a modem and a couple mesh satellites so that I can start fresh.

What should I do? We don’t need WiFi 7. We don’t even need blazing fast WiFi speeds. Decent speeds, good coverage and simplicity are priority.

Thanks

Hey everyone,

I wanted to run high-fidelity network canaries in my homelab, but I couldn't justify enterprise pricing, and I wasn't a fan of managing custom orchestration across all my VMs to make available oss solutions work.

So, I built HoneyWire. It’s a completely free, open-source distributed deception platform.

It uses a point-in-time CLI wizard to deploy hardened, distroless Docker traps. You run the command once, it spins up the decoy, registers it to your centralized Hub dashboard, and the setup agent completely exits. No persistent background daemons.

Features:

Zero-Agent: No ongoing background overhead on your hosts.

Centralized UI: View fleet health, uptime, and lateral movement alerts in dark mode.

Alerting: Built-in push notifications and SIEM forwarding.

Privacy: 100% free, open-source, and strictly zero telemetry.

GitHub Repo: https://github.com/andreicscs/HoneyWire Landing Page: https://honeywire.dev/

Would love to hear your thoughts on the architecture or any feedback if you test it out!

AI Disclosure: As a student and solo developer/maintainer, I used AI as a “junior dev” during project development to help accelerate boilerplate writing and documentation. All core architecture, system structure, and security logic were fully designed and implemented by me.

I've tried NextCloud before and didn't really love it and I'm now happy with a combination of syncthing and LibreOffice. But my wife wants the full google drive, with sheets, docs etc. without the google, and I think NextCloud is my best option for that.

I'm and experienced *nix admin and already have a Linux server running with both VMs and docker containers and also have a working OpenVPN setup for remote access. But I found the NextCloud setup frustrating. We had a discussion about it (here I think) and determined that this was because NextCloud would rather sell their hosted service, so they don't go out of their way to make the self hosted option easy. I get that and don't hold it against them at all.

But, now that I'm wanting to try it again, I'm looking for pointers to guides for setting up self hosted NextCloud. I've searched, but nothing I found seemed like "the one".

Our family has a bunch of people whose birthdays we need to keep track of. Those birthdays matter to everyone, so we would like to have one shared birthday calendar. The calendar should come with an android app that at least sends reminder notifications about birthdays.

What selfhosted solution are you using for this? What can you recommend?

I'm looking into setting up https for my local services. Everything is currently set up using the official caddy docker image.

I want to use now connect caddy to cloudflare to resolve the DNS 01. It looks like this is possible with a drop in replacement for caddy from either https://github.com/CaddyBuilds/caddy-cloudflare or https://github.com/serfriz/caddy-custom-builds

Is anyone here using these builds? Are they reliable? Is there an alternative I havent considered?

I’m trying to find an app for iOS that supports the nested feeds of comma feed. Anyone got any ideas? I have three level nested folders. It’s peri unruly trying to manage my feeds without the nested folders as I have a LOT of feeds

TIA

Re: the recent meta discussion and ongoing chats about self hosting, open vs closed source, AI etc, I wanted to share some food for thought.

I'll explain why this is related to self hosting at the bottom (section bolded): our lovely new mods can call it. I hope it inspires some out loud thinking.

Disclosure: I am not the content creator nor am I paid by them to signal boost. I just like their stuff and think this is an important topic, from multiple angles.

"The future of AI depends on the moral compass of five people."

I've been watching "AI in context" for a few weeks (they make long form biopic content on current state of AI - really good stuff).

This dropped today; it's about the wheeling and dealing behind closed doors at OpenAI re: Sam Altman's firing. It's a lot more watchable than that sounds :)

https://www.youtube.com/watch?v=_eYTkvZqbnQ

The line that brought me to a stand still was "the future of AI depends on the moral compass of like 5 people".

I think folks here (and Lemmy generally) are more savvy about AI then the gen pop (though Lemmy is famously FuckAI)....but even if you're training a nanoGPT model from scratch on hardware you own ...you're still beholden to outside forces.

Eg: the people's champion - Qwen - seems to have split or gone closed weights for 3.7. That's not a good sign.

Reason for post

In the recent [Meta] chat, I noted an undercurrent of "no man is an island" - that is, yes, you might host your own X, but you're still dependant on external Y (eg: SearXNG).

Self hosting / FOSS / forking mitigates some of the "we changed the terms of service after the sale" enshittification we see occurring in related spaces (eg: right to repair). But there's only so much leverage you can enact before it becomes pyrrhic.

I would like to believe "fuck you, I won't do what you told me" is our bulwark against market forces.

At the same time, it's sad to see so many "Don't be Evil" mission statements not survive contact with reality (watch the vid: OAi was founded on the ideal of "don't let AGI kill us")

I think what happens upstream has effects down stream too (see prior X vs Y examples)...

Not sure where this leaves us. It's a weird time to be alive.

Enjoy the video (and their others - Ai2027 is eye opening). Look forward to any productive chat this post might inspire.

LiftTrace is a self-hosted weightlifting tracker (Docker + Android, AGPL-3.0). rc.5 is the next public roll-up, bundling everything since the rc.4 release.

What's new

Scheduled automatic backups. Settings → Backup → Schedule lets you pick a time + frequency (daily / weekly). Server installs get an admin UI with optional ENV lock for managed deployments; the Android app does the same for offline-only users, writing scheduled backups to device storage or the share sheet.

Multi-architecture Docker image. The public image at ghcr.io/traceapps/lifttrace now ships both amd64 and arm64 builds, so Raspberry Pi 4 / 5 and other ARM self-hosters can docker compose up -d without building from source.

Default session length raised. From 30 days to 1 year so PWA users stop getting signed out every month. Admins can still set their own session length under Settings → User Management → Session Length.

Better biometric failure path on Android. When a stored auth token has expired, biometric sign-in now surfaces a clear "Session Expired" prompt instead of silently bouncing back to the Login screen with no explanation.

Fixes

• INSECURE_COOKIES is now called out inline in the example docker-compose.yml with a comment explaining the failure mode (every request 401s after a successful login because the browser drops the Secure cookie over plain HTTP); README troubleshooting entry expanded with the exact Firefox console message that confirms the diagnosis (#4)
• Sync pulls no longer clobber local pending edits. An incoming server pull respects in-flight local changes instead of overwriting them with older data.
• Sync now clears local auth state on a 401 response so the user gets prompted to sign in again, instead of the app looping silently on every subsequent request.

Install / upgrade

• Docker: pull the new image and restart your stack (see the README for compose snippets)
• Android: signed APK on the release page
• Full CHANGELOG: main repo

What is LiftTrace?

Self-hosted weightlifting tracker. Diary (sets, reps, weights, RPE, supersets, warm-ups, persistent rest timer, natural-language Smart Add), Programs (mesocycles, templates, week-by-week progression), Exercises (full library from wger / free-exercise-db / exercisedb plus your own custom entries with images, GIFs, or YouTube links), Statistics (volume, PRs, frequency, body stats trends, RPE overlays), Coaching (trainer prescribes workouts to athletes, per-set feedback, two-way reply threads), AI assistant (Claude / OpenAI / Gemini / Ollama, BYOK, opt-in), built-in music player (Subsonic / Jellyfin / Plex / Emby libraries plus Icecast / Shoutcast / HLS streaming stations with lockscreen controls), OIDC SSO (Authentik, Keycloak, Pocket ID, Authelia, Auth0, Google, anything OIDC 1.0), workout import from Strong / Hevy / FitNotes / Jefit CSVs, federation with NutriTrace (auto-log workout calories burned to your NT diary). Docker on the server, Capacitor app on Android. AGPL-3.0 licensed.

I'm trying to understand the bot problem in the internet and finding more ways to defend myself. One thing that I can't seem to understand is why most bots, scrapers and crawlers seem to have residential IPs.

• Is it that ISPs are being paid by tech-bros to assign them these IPs?
• Is it that residential devices have been hacked /contain malware that does this?
• Is it trivial for companies to assign themselves residential IPs?
• Paid volunteers are doing this for AI companies?

Or is there is some other reason for this?

Obviously this is a problem because one can rotate / cycle through residential IPs and if I aggressively block each offender in my logs permanently, then the next person assigned this IP who may be a legitimate user will be unable to access my site.

A number of brand new accounts have popped up shilling their paid for applications.

Is this within the rules? Is the community happy with this? Could mods clarify this in the rules?

Either allowing advertising, or banning it entirely.

my point is - there is a difference between an open source homegrown project that might be useful, vs closed source paid for projects from brand new accounts

some replies are misunderstanding, somehow.

I am against

brand new accounts who:

1. first post is a brand new project
2. project is closed source
3. project will cost money
4. is asking for free testing
5. the post is literally an advertisement

I am one of a network of academic researchers from around the world working on collecting media market data. One problem is that referenced sources often disappear which makes validation later difficult or impossible. So, I thought I would recommend self-hosting something like archive.org that would allow affiliated researchers to submit their web references and have their sources efficiently archived in a central project repository. That would allow validation and continuity for when web-hosted text and files disappear or researchers leave.

I have been looking at ArchiveBox. If you have experience of this or a similar solution, would that fit the bill? The important thing is efficiency for researchers submitting/retrieving pages and files, and openness in structure and formats so that the archive would remain useful if ArchiveBox or similar disappears. FOSS of course means you can't be locked out anyway.

Hi all!

I started my self-hosting journey a bit ago and currently host my own instance of Immich. With almost 30k pictures I feel like I want to find the best pictures and print an actual album for each event/trip/etc whenever it makes sense. I was wondering if there are any self-hosted options for this where I can, given a specific album (or folder assuming there is no Immich integration) it will choose the "best" pictures for printing (I understand that "best pictures" is very subjective).

RedMemo — a self-hosted Reddit front-end (Redlib's UI, Go back end) that archives what it serves, so it keeps working when Reddit doesn't. Repo (Go + Postgres, AGPL-3.0): https://github.com/Meeks233/Redmemo Live demo (/settings is TOTP-gated, treat as read-only): https://redmemo.meekslab.cc/

Reddit`s funking constraints. Reddit caps each OAuth identity at ~100 API requests per 10 minutes, and IP-bans addresses that push too hard. The one mercy: media (images/video) is served from a CDN and doesn't count against that quota — only the JSON posts/listing/comment calls do.

Why Redlib runs out. Stateless and unauthenticated — every page view is a fresh upstream hit with nothing kept. Each request pulls only a handful of posts, so the 100-call budget drains in minutes, and there's no outbound rate limiting to pace it. Worse, it still ships a 2023-era official-app fingerprint; against an unchanged, years-old fingerprint, who else would Reddit block first?

Why RedMemo lasts. I supercharged everything.

• HR outbound rate-limit — Main gate for your poor API credits, sync with the dynamic ring at the topbar, which could help you easily estimate remaing credits.
• Control — 100 users rush to your instance, eveyone just clicks one link and your instance is completely disabled for 10mins...? Why couldn`t I just lockdown my instance and leave room for NP ? You can disable upstream service completely at env/settings. (env will persist)
• 5-layer NP (Natural Prefetch) — L1: main cycle (Pull 100 posts at once) , L2: media, L3: comments, L4 sub icon, L5 audio remux(under construction). I try my best to mimic real human behaviour and disperse those requests, so Redmemo just looks like a real user to Reddit.
• Archive — Reddit cant hack your homelab or vps to erase your records at Postgresql. What NP gets will come here and ready to serve.
• Scored cache — You could define cache size (like 1G at env), large and small media are run through a scoring function (LRU+Size) ; eviction is an incremental, low-IO sweep that drops the lowest-value items.
• Fresh fingerprint — Use the TLS fingerprint from reverse-engineering the official client and auto-derive the User-Agent from Reddit's official-app release cadence, so it never goes stale. (However Android version is now pinned to 15)

It's a derivative of Redlib/Libreddit, AGPL-3.0, not affiliated with Reddit.

To be honset, I used a lot of AI — Claude Code (4.6 through 4.8). But core codes were reviewed. The designs (NP, HR, the scored cache) are mine. If you could write better code, we will be very glad to see a new project inheriting from Redlib. Our beloved Redlib just lacks maintenance for almost 3 years, I just try to prolong its life. Anyway I`m just a college student using as much spare time as possible in the last 2 months just try to do something for community...😥

I've heard about Kavita and CWA. Kavita can't fetch metadata sadly and it has too much behind the "+" service and CWA, as far as I know, is not very good for managing Manga and Comic.

Any recommendations? I would prefer it to be able to get it on the same app so I don't have to constantly change IP on Kindle.

UPDATE: if you take the Komga & Komf route, use Komga 1.24.4 and Komf 1.7.1. Looks like newer releases of both just don't work for some unholy reason.

Hi /c/selfhosted,

it's been some time since I have posted an update about PdfDing, the selfhosted PDF manager, viewer and editor offering a seamless user experience on multiple devices. It’s designed be to be minimal, fast, and easy to set up using Docker. You can find the repository here.

Since my last post the following features were added to the app:

• Share PDF collections with the public with a link and QR code. Optionally, shares can be protected with a password and a deletion date. Until now only single PDFs could be shared.
• Use bulk actions for managing multiple PDFs at once. Available bulk actions include adding, deleting, starring + tag and collection adjustments. It's no longer necessary to waste time by processing one PDF after another.
• Multi-Factor Authentication. Users that aren't using SSO can now secure their accounts by using a second factor (webauthn + TOPT)
• Other than this there are several minor UI and quality of life improvements that (hopefully) make the app a bit more beautiful and easier to use.

If you are using PdfDing I would appreciate it greatly if you would take a couple of minutes to complete the small survey. This will help me to improve PdfDing in a way that benefits you most.

Last but not least I am quite happy about the nice and steady growth of PdfDing. By now it has almost 300k image pulls and over 1.7k stars. Since the popularity is increasing but not exploding I am not overwhelmed with feature requests and the general maintenance. It also means that I am spared from the attack of AI slop PRs that target more popular projects.