Selfhosted
A place to share alternatives to popular online services that can be self-hosted without giving up privacy or locking you into a service you don't control.
Rules:
-
Be civil: we're here to support and learn from one another. Insults won't be tolerated. Flame wars are frowned upon.
-
No spam posting.
-
Posts have to be centered around self-hosting. There are other communities for discussing hardware or home computing. If it's not obvious why your post topic revolves around selfhosting, please include details to make it clear.
-
Don't duplicate the full text of your blog or github here. Just post the link for folks to click.
-
Submission headline should match the article title (don’t cherry-pick information from the title to fit your agenda).
-
No trolling.
Resources:
- selfh.st Newsletter and index of selfhosted software and apps
- awesome-selfhosted software
- awesome-sysadmin resources
- Self-Hosted Podcast from Jupiter Broadcasting
Any issues on the community? Report it using the report flag.
Questions? DM the mods!
view the rest of the comments
There's going to be a bunch of caveats here, but basically...
Assuming you're using a NAT router to connect to the internet (basically everyone is nowadays): If you're using a local LAN IP address (10..., 192.168.., or 172.[16-32]..*) then nobody on the internet can access any services on that IP, unless you specifically port forward it through your router. Assuming there's nobody dangerous on your local network (and nobody gets a remote-access virus) and your router itself is not hackable then yes it's entirely safe.
You don't technically need a public domain name to set up an SSL certificate, but to smoothly streamline the process in a way that modern software trusts it, you do. A self-signed certificate can be created for any IP address and it will provide full encryption and avoid interception of traffic between established clients, but you will get a scary warning that the certificate is self-signed every time you connect a new client or browser, because it cannot be verified. It still works though, it's just (intentionally) scary, because it doesn't know what you're doing with it and it doesn't know how to establish trust. You probably don't need this, but it is an option. Setting up a self-signed certificate will have various degrees of complexity in documentation depending on what web server you're using, I would recommend using the simplest guide you can find for the relevant web server if you choose to go that route, you don't need anything complex for this. The keywords you're looking for are "self-signed certificate"
Welcome to self-hosting. Nextcloud is a great thing to self-host, too. Hope you enjoy.
If you add the CA for the self signed certificate to all of your devices, they will trust it and the warning will go away.
Oh, we're enjoying it alright! Ever since Apple announced that they would kill off a service that we were using (basically to sync files between different computers and TVs) and replace it with iCloud (for which we would have to pay a lot). It was a pain trying to set it up but eventually I got it working. Very impressed at how well it does its thing.