Discord to Unifi Access Chatbot
I wanted a way to allow my friends access to my game servers without exposing the game server to the world. I created a chatbot that allows users with a specific role on my discord server to request access. It will then send them a unique link and allow them to add their public IP to the access rules on my firewall.
I'll have to update my docs to include this, but this app assumes you are running a Unifi firewall and that you are using some sort of domain services for a persistent hostname. (Static IP or DDNS)
Looking to make it more modular for other firewalls and game servers.
https://github.com/Copter64/chatbot\_access\_project
https://redd.it/1rrv006
@r_SelfHosted
Force generate missing hard/sim link for movie file
I have a fairly standard Arr-stack server running on a Synology NAS in docker. So far it has worked flawlessly at getting requests from Jellyseerr, finding the file, loading it into qBit, hard linking the file to media folder and populating Jellyfin automatically. Love it.
For some reason, one file I downloaded out of dozens didn’t hard link automatically, and the only way I can think to maintain the seed while populating jellyfin (without moving the file from downloads dir to media dir) was to actually copy and paste the 20 gig file effectively doubling its size on my hard drive.
Which part of the stack is actually responsible for generating the hardlink on the NAS and is there a way to force it to attempt to do it again without redownloading the whole file/interrupting the seed/ruining ratio?
https://redd.it/1rrra4k
@r_SelfHosted
Bosch Flexidome 8000i - Alarm triggered SD card recording locked while managed by VRM
I want to modify the settings of my Bosch Flexidome 8000i camera so that when an event or alarm occurs, it writes the footage to an SD card 5 seconds before and after the event. However, when I look at the web interface, it directs me to the "Bosch Configuration Manager" application for VCA and the "Bosch Configuration Client" application for recording. In both, the recording tab appears locked, and I cannot interact with most of the recording tools.
Is there any way to enable alarm-triggered SD card recording (Recording 2) while the camera is still managed by VRM? Or is the only option ANR?
https://redd.it/1rrq4bz
@r_SelfHosted
Could someone help me? I'm desperate
https://redd.it/1rr6ivg
@r_SelfHosted
Best way to configure SMB? (TempleOS)
My main server is now running TempleOS, but I'm not sure how to setup SMB so my other TempleOS devices can connect. Any tips or tutorials?
Thanks!
https://redd.it/1rr4n51
@r_SelfHosted
I turned my old Galaxy S10 into a self-hosted server running Ubuntu 24.04 LTS with Jellyfin, Samba, and Tailscale - no Docker, no chroot, no proot - fully integrated at the system level with pure init, auto-running the entire container at device boot if needed!
https://redd.it/1rqr8yq
@r_SelfHosted
Movie Roulette v5.2.0 released!
I just released a new version of Movie Roulette!
Just to get it out of the way: Yes, I used AI. It is not a secret, it is clearly stated on the GH page as well. Not AI Friday because first release was in 2024.
Github: [https://github.com/sahara101/Movie-Roulette](https://github.com/sahara101/Movie-Roulette)
\# What is Movie Roulette?
At its core it is a tool which chooses a random unwatched movie from your Plex/Jellyfin/Emby movie libraries. However it can do more!
Please check on github for complete info.
Introduced a new theme and also refreshed the original theme. Here some comparison screenshots between new and refreshed:
[https://imgur.com/a/JuF2AcT](https://imgur.com/a/JuF2AcT)
Here you will find screenshots of also old version:
[https://github.com/sahara101/Movie-Roulette/tree/main/.github/screenshots](https://github.com/sahara101/Movie-Roulette/tree/main/.github/screenshots)
New in v5.2.0 (kinda big :) )
# Movie Roulette Release Notes
# Major Feature: HeroUI Theme
* **Full Integration:** Modern glassmorphism and effects applied to all pages, including Settings, Collections, and Login.
* **Default Active:** The theme is now enabled by default via the `USE_HEROUI_THEME` variable.
# New Features and UI Improvements
* **Now Watching Card:** Real-time playback status on the main page with progress tracking and PNG sharing.
* **Grid View Overhaul:** New card layout featuring hover-to-play overlays and a current-set shuffle mode.
* **Seerr Service Migration:** Merged Overseerr and Jellyseerr into a single unified "Seerr" request service.
* **Integrated Cache Management:** Moved service and user cache tools into the main Settings sidebar for admins.
* **In-App Media Details:** Collections movie titles now open internal overlays instead of external TMDb links.
* **Unified Navigation:** Combined desktop and mobile menus to ensure full page access on small screens.
* **Mobile Button Fix:** Restored Grid View and Collections buttons previously hidden in the legacy mobile theme.
* **iOS Tap-to-Top:** Status bar taps now smoothly scroll active modals and filmography back to the top.
* **Cast Display (Issue #58):** Limited display to 4 actors to prevent layout wrapping on posters and screensavers.
* **Markdown Release Notes:** The update notification popup now renders formatted markdown for better readability.
* **Other UI Enhancements:** Added service-specific SVG logos, improved user role badges, and added total movie counts to the collections search.
# Bug Fixes
* **Collections Playback:** Fixed failed playback caused by sending TMDb IDs instead of library IDs.
* **iOS Search Zoom:** Set 16px font minimums to prevent browser auto-zoom on search inputs.
* **Session Purging:** Resolved a bug where expired sessions were never deleted from the database file.
* **Grid Mismatches:** Fixed an issue where movie cards occasionally opened details for the wrong film.
* **Jellyfin Metadata:** Fixed "Unknown" video and audio formats in poster and screensaver modes.
* **Playback Tracking:** Resolved poster hijacking and start-time drift during stream resumes.
* **Trakt Sync:** Fixed token refresh failures and resolved incorrect unwatched warnings.
* **Asset Handling:** Replaced missing actor photos with SVG placeholders to stop 404 network errors.
* **Filter UI:** Implemented immediate count updates when switching between media services.
# Security and Technical Changes
* **Runtime Upgrade:** Upgraded to Python 3.12 and Debian Bookworm for the latest security patches.
* **API Hardening:** Enforced authentication requirements on 38 previously exposed endpoints.
* **Password Security:** Migrated to PBKDF2-HMAC-SHA256 hashing and enforced an 8-character minimum.
* **Brute-Force Lockout:** Accounts now lock for 15 minutes after 5 failed login attempts.
* **Credential Masking:** API keys and tokens are now stripped from settings responses.
* **Trakt PKCE:** Migrated OAuth flow to PKCE for more secure token exchanges.
* **Security Headers:** Added XSS, CORS, and Referrer-Policy protection to
Why does a simple, free, self hosted file storage platform not exist?
I've tried everything from Nextcloud, ownCloud, OpenCloud, and Pydio Cells. But I still can't seem to find exactly what I'm looking for, and I'm wondering why it doesn't already exist. File storage is (in my opinion) one of the most helpful use cases for a self-hosting setup, but I don't understand why there isn't a self hosted cloud storage platform that:
- is cross-platform
- has relatively low resource usage
- uses a flat file structure, not S3-style blobs
- handles thumbnailing for more file types than just images
- has virtual filesystems OR selective sync for common operating systems
- has decent sharing or multi-user tools
- has good upload and download speeds
Essentially, I don't understand why a fully self-hostable and user-friendly Google Drive alternative doesn't exist. I'm a developer and I understand that it would obviously be a large undertaking to build, but it's a type of software that's very common for self-hosters and I don't see why a better option doesn't exist than the established players. NextCloud is too heavy/is trying to do too much, ownCloud is too corporate and a pain to maintain (plus the interface is crap), Pydio is good but the client apps (aside from the web app) are horrendous, Seafile is limited to blobs and is slightly proprietary, FileRun is paid, etc. Just seems to me like a major gap in the space. Anyone have any insight on why something like this doesn't exist?
https://redd.it/1rp2vup
@r_SelfHosted
Self hosting authoritative DNS servers
https://devblog.yvn.no/posts/self-hosted-dns/
https://redd.it/1rox1qz
@r_SelfHosted
i don't think i can maintain PR's anymore at Postiz
The world has changed so much in the last year, and AI is so good that it can really replace humans. I don't remember the last time I actually wrote pure code myself.
Open source has always been a community: people write code, they learn, and they do stuff together.
Today, everything I get is AI - mostly, unchecked AI.
People contribute stuff even without checking, without knowing the architecture of what they built.
You get 100% more contribution, 100% more slop, and a lot of spam.
As a single person, it's very hard to maintain something like.
Postiz is not going to change; it's going to be 100% open-source like always, AGPL-3, everything that is inside the commercial version is 1:1 with the open-source. same as it was in the last two years, and I don't see it ever changing.
Code will always remain free, and I encourage people also to open issues (maybe even just provide the "prompt" for the issue)
But I no longer feel I can maintain PRs.
I have so much respect for those people who do!
I know you hate me right now, it goes against open-source, but I literally can't do it anymore.
https://redd.it/1ropohy
@r_SelfHosted
Fake Claude Code install guides push infostealers in InstallFix attacks
https://www.bleepingcomputer.com/news/security/fake-claude-code-install-guides-push-infostealers-in-installfix-attacks/
https://redd.it/1roqa2t
@r_SelfHosted
BentoPDF Docker namespace has been restored
Hi folks, hope you are having a great weekend.
I am happy to share that the original Docker Hub namespace bentopdf/bentopdf has finally been restored to us.
However, to avoid disruption and keep things consistent for everyone who has already migrated, we will continue using and publishing images under bentopdfteam/bentopdf and bentopdfteam/bentopdf-simple going forward. During this period, I was in touch with the Docker team regarding the situation, and I am glad to confirm that no malicious images or other harmful activity occurred under the namespace while it was unavailable to us.
* Official images: bentopdfteam/bentopdf and bentopdfteam/bentopdf-simple
* Deprecated: bentopdf/bentopdf
All documentation, automation, and future releases will continue to reference bentopdfteam/bentopdf and bentopdfteam/bentopdf-simple
However should you need to downgrade to earlier versions of bentopdf, you can now safely do so. Thank you to everyone who updated their setups during the transition and for your continued support! 🙏
https://redd.it/1ro0hwi
@r_SelfHosted
Self-hosting on a 4G Modem
https://redd.it/1rojisp
@r_SelfHosted
Fully remove every, "I created a", "Selfhosted app!" claude slop.
im hating the idea, not the person ;), also look down for a temp solution
Title speaks for itself, almost every single post in the last few weeks is just someone promoting their vibecoded bs app that is either something simple like file transferring (there is already some well trusted ones that are faster better etc.), or something really complicated that ai cant do without security flaws... (Huntarr).
idc how this post looks, how it sounds, if vibecoders get offended, i just want the mods to actually remove this and not just try to "prevent" it with the rules they changed..
upvote if u think so 2 so it gets to the top, in my opinion commenting on someones post saying its slop wont do anything, wont help anyone.
shout out to u/masterio for this:
It's a shame the Vibe Code and Built with AI labels were removed as it made it incredibly easy to filter out these posts with ublock.
! Enough Vibe Coded bullshit
sh.reddit.com,www.reddit.com##shreddit-post:has-text(/.Vibe Coded \(Fridays!\)./)
sh.reddit.com,www.reddit.com##shreddit-post:has-text(/.Built With AI \(Fridays!\)./)
Another good way of filtering out the AI generated posts is filtering out on the characters that hardly anyone actually uses in casual online postings.
! AI Slop (No you don't really "use" EM dashes in informal discussion online)
! See:
! https://www.pieceofk.fr/the-rise-of-the-em-dash-in-ecology-abstracts/
! https://www.reddit.com/r/dataisbeautiful/comments/1kfg9b8/ocemdashusageissurgingintechstartup/
sh.reddit.com,www.reddit.com##shreddit-post:has-text(/—/i)
sh.reddit.com,www.reddit.com##shreddit-comment:has-text(/—/i)
https://redd.it/1ro9oos
@r_SelfHosted
Today is digital Independence day!
https://redd.it/1ri6k8q
@r_SelfHosted
Offline VIN decoder - no API keys, works locally
If you're building anything automotive-related and want VIN decoding without external API dependencies:
**@cardog/corgi** \- offline VIN decoder
* 23MB SQLite database bundled
* No network requests needed
* Works in Node.js, browser, CLI
# CLI
\`npx u/cardog/corgi decode 1HGCM82633A123456\`
# Node.js
import { createDecoder } from '@cardog/corgi' const decoder = await createDecoder() const result = await decoder.decode('1HGCM82633A123456')
Just shipped v2.0 with community-contributed patterns for international vehicles (Tesla China/Berlin).
GitHub: [https://github.com/cardog-ai/corgi](https://github.com/cardog-ai/corgi) npm: [cardog/corgi" rel="nofollow">https://www.npmjs.com/package/@cardog/corgi](cardog/corgi" rel="nofollow">https://www.npmjs.com/package/@cardog/corgi)
https://redd.it/1rruhl8
@r_SelfHosted
Sigh more Vibe Coded Apps....
Beware folks, why would you give your entire network access to vibe coded stuff. https://github.com/BlkLeg/CircuitBreaker. These apps are popping up everywhere and potentially dangerous.
From the creator:
"Between classes (cybersec) and my job, I'm working on my pet project below. The backend is Python, frontend is JS. Primarily deployed via Docker for cross-compatibility, but I plan on binaries for Linux and Windows to maintain low overhead. Its currently at 140MiB RAM with 0 optimization passes run (pending)."
and
"Is this vibe coded ?"
"Yes. I'll always be upfront about this, as I'm not a programmer by trade or hobby. Since my particular dept of cyber security will likely involving reviewing code for vulnerabilities regularly, that's where my brain power goes. That's why I chose Python, as I've had the most exposure to it so far. Security, performance, and function are priorities. Before full release, it will be refactored for maintainability and stability so I can take on volunteer contributors. Circuit Breaker will be the people's app through and through."
https://redd.it/1rrrj69
@r_SelfHosted
Any project management software with no limitations for self-hosted version?
I'm trying to find a good project management tool to replace ClickUp or Asana.
What I need is to create tasks and visualize them in different ways, like table view, calendar view, and boards. It also important to have custom fields.
The main issue I'm facing is that most tools seem to limit features in the self-hosted version.
For example, Plane looks really promising, but from what I understand, the free self-hosted version doesn’t support custom fields. I ran into a similar limitation with Leantime.
Does anyone know a project management tool that is fully functional when self-hosted, without feature restrictions compared to the cloud version?
Thanks!
https://redd.it/1rr7lws
@r_SelfHosted
The best security is having it offline, but….
….I’d like to access my stuff remotely. I’m working on locking my network down for improved security. Right now, this involves setting up Guacamole so it will be accessible through a Cloudflare tunnel. The idea is I can access my web applications, and Guacamole will act as a bastion for SSH/RDP/VNC. I’ve got three cloudflared servers - one VM on each Proxmox cluster member and another on an oDroid.
The tricky part is, if this is all configured the way I envision, if Guacamole goes offline for whatever reason, I won’t be able to access any of my workstations or infrastructure. Only the web apps will be available. I realize I don’t have redundant routers or switches so those are single points of failure as well, though the probability of those going offline is lower than the Guacamole VM having problems (especially if I’m doing maintenance remotely and it blows up).
For those of you who have a similar setup, what are you using (some combo of Guacamole, Pacemaker, something else?), and how do you have it set up? How did you work around any single points of failure that could interfere with remote access?
https://redd.it/1rrjd4i
@r_SelfHosted
Should I self host Bitwarden (with Vaultwarden) or am I just paranoid?
Hi!
So, I totally get that sometimes, it makes sense to pay other people to host crucial services. I saw some dude call it the beer test. If a service is important enough that if it went down and you were on vacation enjoying a beer, you'd put your beer down and fix it, you should not self host it.
That makes sense to me and that's why I paid Bitwarden their very fair subscription.
However, with everything that is going wrong in the world right now, I really don't want to put something as important as a password manager into somebody else's hand. If my email provider goes away, I can move my domain somewhere else. That's not that easy with Bitwarden, I feel.
There are two potential issues I see:
1. Enshittification is going to hit Bitwarden as well or they sell the company or whatever. I feel like in the last years almost every single product I used to use turned to garbage.
2. I'm not American and if somebody in the US government realizes that the easiest way to make Europe jump is to just cut that deep sea cable I'm gonna be in real trouble.
I don't consider Bitwarden to be part of the same garbage that Big-Tech is. So I'm not really trying to replace them in the same way I'd want to replace Google for moral or privacy reasons.
But I'm not sure if I'm paranoid or if that is something I should be concerned about. Even though I said not self hosting password managers make sense, emotionally it always feels wrong to have this public.
If I were to self host, I'd only make it accessible via a VPN, having everything in 3-2-1 backups. So I think I can pull it off safely but I'm not sure if I should.
https://redd.it/1rr8bzy
@r_SelfHosted
all responses.
# Configuration and Environment Variables
* **USE\_HEROUI\_THEME:** Toggle the HeroUI/Aceternity interface (Default: TRUE).
* **SHOW\_NOW\_WATCHING\_CARD:** Toggle the main page playback card (Default: TRUE).
* **SEERR\_URL / SEERR\_API\_KEY:** Unified variables for Seerr-compatible services.
* **CORS\_ALLOWED\_ORIGINS:** Define allowed origins for WebSocket connections (Default: \*).
**Full Changelog**: [https://github.com/sahara101/Movie-Roulette/compare/v5.1.2...v5.2.0](https://github.com/sahara101/Movie-Roulette/compare/v5.1.2...v5.2.0)
https://redd.it/1rpahrw
@r_SelfHosted
first attempt at making a diagram
https://preview.redd.it/rym3sf4e71og1.png?width=9159&format=png&auto=webp&s=0ea860e03a5a0b6fde12197edab9ca4ed74670ab
not the most detailed one yet, but I’ll keep iterating on it. Let me know your thoughts :)
also not the best choice of components, but I made do with what I had!
https://redd.it/1rp23oj
@r_SelfHosted
Self-hosting Vaultwarden
With 1Password increasing their prices I'm interested in self-hosting a password manager and Vaultwarden seems to be the choice of many. Hosting it so it is accessible via VPN tunnel only is a fairly safe way to go about it, but since I also like to use a commercial VPN (Mullvad) switching from one to another isn't the most fluid process.
My current plan is to have a Caddy reverse proxy that routes via Tailscale tunnel from my VPS to my home Raspberry Pi 5 that hosts Vaultwarden. My plan for Caddy is to configure it to only accept certain IP ranges as well as have caddy-security. The subdomain that is configured like this would be behind a wildcard subdomain (think pi.domain.tld would have wildcard to any domains under it and vault.pi.domain.tld would forward to my Pi's VW port). I'd also have CrowdSec to block any IPs that hammer my domains.
How secure would this set-up be? Any other things I could/should consider to keep my info secure, or should I accept that I can only access it via Tailscale? I want my partner to also use this as their password manager and they are quite reluctant to turn on Tailscale every time they need access to a password manager or use it constantly either.
https://redd.it/1rozuit
@r_SelfHosted
Weather station compatible with self‑hosted software
https://redd.it/1roxxz2
@r_SelfHosted
Alternatives to Firefly III for self-hosted personal finance?
I’ve been trying to run **Firefly III** for the past couple months and I’m starting to feel a little burned out with it.
I like the idea of self-hosting my finances and keeping everything private, but Firefly seems to take a lot of effort to keep running smoothly. I’ve spent way more time troubleshooting imports, rules, budgets not behaving how I expect, and general backend stuff than I expected when I first set it up.
It’s clearly a powerful tool, but right now it feels like more maintenance than actual benefit for my personal use.
I’m curious what others here are using for self-hosted finance tracking that’s a bit simpler or lower maintenance.
Things I’m hoping for:
* self-hosted (Docker is ideal)
* simple budgeting / expense tracking
* decent reports or dashboards
* not a huge time sink to maintain
* bank import would be nice but not required
I’ve seen a few names like Actual Budget mentioned before but haven’t tried it yet.
For anyone who moved away from Firefly, what did you end up switching to?
https://redd.it/1rof5dt
@r_SelfHosted
Homelab Setup
https://redd.it/1roqmbu
@r_SelfHosted
Age Verification in Australia — Self-Hosting Is King
I’ve been around long enough to remember SQL injecting government websites and man-in-the-middling my high school IT teacher’s traffic to open the network for the entire class. I’m not exactly the demographic that needs a system telling me what I can and can’t browse. I will always find a way around it.
As a 30-something Australian, the push for mandatory adult content age verification has cemented my tinfoil hat self-hosting lifestyle. Because let’s be clear about what age verification actually requires: a centralised system that knows who you are and what you’re trying to access. That’s not a privacy trade-off — that’s surveillance infrastructure dressed up as child protection.
For those of us already running our own stack, this just adds another reason to never touch a service that phones home. In my case that means DNS-level filtering at the network edge, Tailscale for encrypted remote access without exposing ports, and ditching commercial VPNs that log just as much as the platforms I’m avoiding. Pi-hole was the big wake-up call — seeing what’s actually phoning home from your own network.
My kids’ favourite content is pulled down with Pinchflat and served through Jellyfin locally. No algorithm deciding what autoplay garbage comes next. No predatory kidfluencer rabbit holes.
I’ll never fully de-Google — I’ll be honest about that. But I’ve removed enough of my household’s footprint that targeted ads based on my family’s browsing are largely gone. My DNS isn’t resolving tracking domains. My traffic isn’t being profiled at the router level. Meaningful difference, even if it’s not perfection.
The same government pushing age verification has done nothing about the data brokers, ad networks, and ISP-level logging already building a detailed profile of every household.
So genuinely curious — how seriously do you take your family’s privacy with your self hosting.
https://redd.it/1roih81
@r_SelfHosted
Found an old NAS in a box in the basement!
https://redd.it/1roa5te
@r_SelfHosted
RULES UPDATE: New Project Friday here to stay, updated rules
The experiment for Vibe Coded Friday's was largely successful in the sense of focusing the attention of our subreddit, while still giving new ideas and opportunities a place to test the community and gather some feedback.
However, our experimental rules in regard to policing AI involvement was confusing and hard to enforce. Therefore, after reviewing feedback, participating in discussions, and talking amongst the moderation team of /r/SelfHosted, we've arrived at the following conclusions and will be overhauling and simplifying the rules of the subreddit:
- Vibe Code Friday will be renamed to New Project Friday.
- Any project younger than three (3!) months should only be posted on Fridays.
- /r/selfhosted mods will no longer be policing whether or not AI is involved -- use your best judgement and participate with the apps you deem trustworthy.
- Flairs will be simplified.
- Rules have been simplified too. Please do take a look.
## Core Changes
### 3 months rule for New Project Friday
The /r/selfhosted mods feel that anything that fits any healthy project shared with the community should have some shelf life and be actively maintained. We also firmly believe that the community votes out low quality projects and that healthy discussion about the quality is important.
Because of that stance, we will no longer be considering AI usage in posted projects. The 3 month minimum age should provide a good filter for healthy projects.
This change should streamline our policies in a simpler way and gives the mods an easy mechanism to enforce.
### Simplified rules and flairs
Since we're no longer policing AI, AI-related flairs are being removed and will no longer be an option for reporting. We intend to simplify our flairs to very clearly state a New Project Friday and clearly mention these are only for Fridays.
Additionally, we have gone through our rules and optimized them by consolidating and condensing them where possible. This should be easier to digest for people posting and participating in this subreddit. The summary is that nothing really changes, but we've refactored some wording on existing rules to be more clear and less verbose overall. This helps the modteam keep a clean feed and a focused subreddit.
### Your feedback
We hope these changes are clear and please the audience of /r/SelfHosted. As always, we hope you'll share your thoughts, concerns or other feedback for this direction.
Regards,
The /r/SelfHosted Modteam
https://redd.it/1rmt39o
@r_SelfHosted
IPv6: Who really uses it?
Who is using IPv6 in their homelabs? I have never really used it, but the first thing I read is 'forget everything you know about networking' which makes me a bit nervous. I am curious how the adoption in this sub is.
https://redd.it/1ri07hl
@r_SelfHosted
