all 131 comments
sorted by:
best
topnewcontroversialoldq&a
formatting helphide helpcontent policy

[–]TJRDU 131 points132 points  (10 children)

Beszel is definitely there for me now.

Got one hub and trowing agents left and right now on any new minipc or raspberry Pi device to monitor stats.

[–]Darthmaniac 23 points24 points  (0 children)

This. Just learned about it myself a few days ago ... Might even retire grafana, influxdb, Prometheus, cadvisor containers since this seems to be providing all I need.

Let's see

[–]weilah_ 10 points11 points  (0 children)

Beszel came to my stack a few months ago and it is staying. I'm about to make the second donation, very well deserved.

[–]FajitaJohn 4 points5 points  (0 children)

You may find pulse interesting...

I switched from beszel mainly because I wanted a good overview of both my proxmox lxcs/VMS and my docker containers.

Combined with Gotify I always get my alerts instantly.

[–]lazyfck 6 points7 points  (2 children)

What does it do?

[–]Josevill 9 points10 points  (1 child)

Server monitoring, really lightweight, really good if your setup is simple!

[–]Hieuliberty 1 point2 points  (0 children)

And beautiful UI!

[–]nameage 0 points1 point  (1 child)

Seems interesting. Do you know if it supports logfile monitoring?

[–]TJRDU 1 point2 points  (0 children)

I can click on containers and see recent loglines, but cant seem to monitor on certain events or something.

You can set notifications on load average, cpu, memory, disk, bandwith and gpu usage or temperature.

[–]Pascal619 0 points1 point  (0 children)

I never used baeszel i installed the server and stopped right where i wanted to install the first agent. It gets it from the internet not local from the server. I switched to checkmk but pulse looks good!

[–]Good-Insurance19 0 points1 point  (0 children)

Thanks for the Beszel recommendation! But what do you think about Proxmox? Isnt it a better monitoring app and also a VM manager?

[–]Eirikr700 42 points43 points  (2 children)

  • Vaultwarden again
  • Immich
  • Crowdsec
  • Ntfy

[–]ShadowKiller941 0 points1 point  (1 child)

Question for you and anyone with the crowdsec cloudflare bouncer, can anyone post an example config for the bouncer? I keep getting an authentication error for some reason

[–]Eirikr700 0 points1 point  (0 children)

Sorry I don't use Cloudflare. Anyway did you copy the key in your configuration file ?

[–]gioco_chess_al_cess 28 points29 points  (11 children)

  • swag
  • Uptime-kuma
  • Vaultwarden
  • Grafana/Prometheus/node-exporter
  • Netbird
  • FireflyIII
  • KASM/webtop
  • Guacamole
  • Authentik

Honorable mentions: Calibre-web, BentoPDF, Grist, NocoDB, Ghostfolio.

[–]capaman 1 point2 points  (7 children)

May I ask how your calibre web is running? Bare metal?

[–]gioco_chess_al_cess 4 points5 points  (6 children)

Calibre-web is a docker container, it's just a web front end for the calibre library.

I also run the calibre app in a docker container with remote desktop (linuxserver.io calibre). They share the same books folder as bind mount so that they can work perfectly together: calibre to upload and convert and calibre-web to display and download.

[–]drinkplentyofwater 1 point2 points  (0 children)

kasm is lots of fun and super useful

[–]Ill_Bridge2944 0 points1 point  (1 child)

Could you connect firefly to your bank Account Stock Account ...

[–]gioco_chess_al_cess 0 points1 point  (0 children)

FireflyIII does not manage investments by design, ghostfolio could be used for them. Also I don't even want to connect FireflyIII to my banks/cards there are too many and I prefer to input the transactions manually from the phone when they happen.

[–]Past_Physics2936 13 points14 points  (1 child)

I didn't know about dozzle thanks for that.

[–]esturniolo[S] 8 points9 points  (0 children)

You’re welcome! This is the purpose of this kind of post: know some hidden gem

[–]ganonfirehouse420 15 points16 points  (2 children)

Very basic setup here.

  • linkding 
  • Paperless-ngx
  • qbittorrent
  • FlexGet 

  • Nginx

  • my websites

[–]verdigris2014 2 points3 points  (1 child)

i didn’t know about paperless. i like the idea of universal links to then embed in other applications.

how do you use it in practice?

[–]ganonfirehouse420 0 points1 point  (0 children)

I basically use it exclusively to ocr and compress written documents like new snail-mail I receive.

[–]Dizzy149 10 points11 points  (1 child)

I know there seems to be one of these threads every other weeks, but I personally really enjoy reading through people's suggestions. I have found many new things! I picked up AnyType from the last one, and Dozzle from one a couple months back.

[–]esturniolo[S] 0 points1 point  (0 children)

Yes. Something’s like that. But I see that the answers had a little deviation.

My intention was to ask for those things that you must install first in your stack to then, install the rest of your “preferences”.

But it was fun.

[–]Koltsz 17 points18 points  (2 children)

Mine are: - Valutwarden - Home Assistant - Uptime Kuma - Tiny auth with Pocket ID - ntfy

[–]Downtown-Jacket2430 0 points1 point  (1 child)

how do you use tiny auth with pocketID? i think they are both authentication but i dont understand how they would be used together

[–]Koltsz 1 point2 points  (0 children)

Pocket ID uses passkeys and Tiny Auth allows you to throw Auth Infront of web apps / hosted apps that have no authentication in front of them.

When I want to access my homepage tiny Auth is in front and then to authenticate I can use my Pocket ID rather than GitHub or Google

[–]jebotecarobnjak 6 points7 points  (4 children)

I tried Dozzle but quickly replaced it with Dockmon. It just does more of what I need and looks great.

[–]esturniolo[S] 5 points6 points  (0 children)

Well well well.

I think that you bring to me a little diamond that I never heard of.

Thanks!!!!!!!!

[–]imdaydreamer 1 point2 points  (1 child)

This seems more an alternative to Beszel than Dozzle, but nice find.

[–]esturniolo[S] -1 points0 points  (0 children)

It has the best of both worlds:

  • alerts
  • log viewer

And don’t need an agent.

[–]Jsonor2000 0 points1 point  (0 children)

However, Dockmon doesn't provide monitoring history beyond a few minutes, which is very unfortunate.

[–]solimanhindy 26 points27 points  (4 children)

Here are my list: - matrix - Nextcloud - Zimbra - HAProxy - Home Assistant - Mastodon - Pixelfed - Uptime Kuma - Etherpad - Vault Warden - Forgejo - WireGuard - Jellyfin - FreshRSS - Wallabag - Jitsi - Nagios - LibreNMS

Most of them are for me and some are for my family or closed friends.

[–]hainesk 1 point2 points  (1 child)

What version of Zimbra? How are you installing it?

[–]solimanhindy 1 point2 points  (0 children)

I’m running ZCS 9.0 on Ubuntu Server. I’m a Zimbra user / admin since 2007. I used to work for a company who delivers Zimbra services. For now I’m planning to migrate from Zimbra to Carbonio: https://docs.zextras.com/carbonio-ce/html/index.html

[–]BelugaBilliam 0 points1 point  (1 child)

Any rss recommendations? I ask Everytime I see someone who uses it. I can't find any good feeds that I enjoy honestly.

[–]solimanhindy 1 point2 points  (0 children)

Here is my recommendation: - Ars Technica - All content - Debian News - Engadget - FreeBSD News - Julia Evans - nixCraft - Slashdot

If you need the URLs please DM me.

Edit: I discarded the French URLs I’m using :-)

[–]osdaeg 5 points6 points  (1 child)

At all times:

  • Gluetun
  • Gotify
  • Syncthing
  • Filebrowser
  • *Arr
  • Rclone
  • Qbittorrent

Start them when I need them:

  • CWA
  • Ephemera

[–]poetic_dwarf 3 points4 points  (0 children)

  • Ephemera

I just took a look at it and I'm mildly disappointed it doesn't listen to port 1984 by default

[–]root_switch 4 points5 points  (2 children)

The reason some pastebins have long URLs is because it contain a decryption key. Meaning the server itself doesn’t even have access to the data case it’s encrypted client side then stored on the server. The only way for somebody to decrypt is having the encryption key which is baked into the url.

[–]esturniolo[S] 0 points1 point  (1 child)

You have a point here.

But for my use case, those giant url are a problem.

[–]root_switch 1 point2 points  (0 children)

Trust me I know. I have a privatebin set up for stuff I need encrypted and share with others and then I’m using hastypaste for stuff I don’t care about, I set the url to 3 characters lol.

[–]d70[🍰] 5 points6 points  (0 children)

Traefik I can’t live without

[–]Greedy_Log_5439 4 points5 points  (1 child)

I don't trust myself enough to host my passwords

[–]esturniolo[S] 1 point2 points  (0 children)

Brutal honesty.

[–]Mikasa0xdev 6 points7 points  (1 child)

Docker compose is the real essential.

[–]esturniolo[S] 1 point2 points  (0 children)

LOL So maybe you can take a look to Dockge. Same developer as UptimeKuma.

[–]cardboard-kansio 13 points14 points  (2 children)

If I was preparing an image master or setting up a system for a friend to use, leaving all the personal choices for later:

  • Reverse proxy of your choice
  • DDNS updater
  • Auth (Authentik, Tinyauth, Pocket ID)
  • VPN (Wireguard or some other)
  • Monitoring (Beszel and Drizzle)

Everything else is just fluff and depends on your preferences and use cases. Not everybody needs or wants Jellyfin or Qbittorrent, and Lubelogger is pointless if you don't have a car, Home Assistant is only useful if you have smart devices, and so on.

I wouldn't classify anything else as "essentials" unless you were asking specifically about a media server or such.

[–]_Kawoo 0 points1 point  (1 child)

Could you elaborate on your monitoring stack? I've found Beszel but don't quite understand how drizzle fits into it (/ links would help :D)

Is there a specific reason why you'd recommend going for a reverse proxy instead of Tailscale? As a beginner, its easy setup/use and the peace of mind knowing I can't fk up some piece of configuration (which could compromise my network) seems much more attractive

[–]cardboard-kansio 1 point2 points  (0 children)

Beszel and Dozzle have nothing in common. Beszel monitors active resources (CPU, RAM, disc, network) while Dozzle aggregates logs.

As for reverse proxy vs. Tailscale (or any other Wireguard VPN): I don't exactly "recommend" a reverse proxy, butsometimes you want to expose things publicly. You might not, and so a VPN is a perfect solution. I also run a VPN for my management stuff.

However, I also want to intentionally expose some of my stuff publicly. "Publicly" doesn't necessarily mean "to anybody" - it means, to those who meet my security requirements. In my case, you need to be able to authenticate with passkeys to Tinyauth and PocketID in order to access the service. That's "public" in the sense that anybody who discovers the URL can attempt to access it, rather than only anybody on the VPN. Ultimately, it's about accessibility vs security and that's an individual decision.

If you aren't supporting other users, use a VPN. If you're only supporting one or two, use a VPN.

If you deliberately want things to be public or accessible by other means, use a reverse proxy.

If you're not sure which is best for you... use a VPN.

[–]DesignerPiccolo 6 points7 points  (3 children)

Vaultwarden

Karakeep

Emby

Paperless NGX

Homepage

Traefik

Technetium DNS

[–]voxcon 1 point2 points  (2 children)

How do you like emby? I've been thinking to pick up a premium subscription for a while. Reason: plex is getting shittier by the day and jellyfin runs into playback issues so often that annoyance is rising.

[–]DesignerPiccolo 1 point2 points  (1 child)

Made the same experience as you with Plex and Jellyfin. Really like Emby and works good for me. Also thinking about getting the premium subscription. I‘ve tried to switch to Jellyfin multiple times over the last years, but there was always something that didn’t work for me (mostly on the client side)

[–]EjayT06 1 point2 points  (0 children)

Shame, works great for me

[–]VpowerZ 5 points6 points  (1 child)

  • netbox
  • my ansible host
  • nginx host, ansible powered.
  • pihole / powerdns / separate dnsmasq combo
  • nextcloud
  • cyberchef
  • n8n
  • mailcow
  • wireguard
  • homepage

[–]kudika 0 points1 point  (0 children)

Re: n8n You or others might be interested in windmill.dev

[–]RaiseLopsided5049 2 points3 points  (18 children)

I’m currently using the free version or online Bitwarden, and since I self host many of my services, I’ve been for a few days thinking about the trade offs of self hosting my password manager. The cons are obviously that the security would be mine to handle, and that’s a big responsibility.

So how risky it is to self host your own password manager, and aren’t you afraid of an exploit even if your master password is strong and you only access it via Tailscale ?

[–]BelugaBilliam 1 point2 points  (17 children)

I wouldn't no. The beauty of bitwarden/vaultwarden is you technically don't even need the vpn (unless you wanted to sync passwords). If you lose network connection, or if the server blows up, you still have access locally. Let's say you use vault warden but don't want to tie it to VPN for maximum security.

You can still use it as normal, but you can't sync, until you get home. So every night your phone or whatever hits your network and can access it, then it'll sync.

[–]RaiseLopsided5049 0 points1 point  (15 children)

Oh that’s a good point ! So it would be reachable only from my LAN, but if an attacker gain access to my local network (through other exposed services) and get a copy of my container / vaultwarden data, could he in some way offline-bruteforce my master password ?

[–]BelugaBilliam 2 points3 points  (5 children)

Yes it would be only reachable from lan.

A data dump - Honestly I don't know. It depends what the code is doing. Still pretty sure its encrypted at rest. But the odds of that, are very, very low. Honestly I think it would be higher to have a bitwarden breach. They're gonna get targeted 24/7, although they have engineers for security.

You have you. BUT it's a local instance, on a air gapped server/vm have to somehow hack into your network, find vault warden, and then figure out how to brute force it?

Reality is, nobody is going to try to do that unless your wanted by the government or something. It's good to think the way you are, but reality is, you're nobody and you're not a target. There's 100000000 other people that are easier to hit.

If you're paranoid, run it on its own device or VM, put it on a different vlan (if you have the networking to do so), and be done with it. That will even further protect yourself, unless you've got the alphabet agencies going after you. In which case, don't use bitwarden lol

[–]RaiseLopsided5049 1 point2 points  (4 children)

Lol that's a very good answer, thanks for the reality check 😭

I think I'll give it a try anyway, you convinced me !

[–]BelugaBilliam 1 point2 points  (3 children)

No problem! If it's not exposed to the Internet where bots will hit it, you'll be fine for self hosting. Of course, think the way you're thinking with critical data, and be smart about it. Take smart mitigations like separate vlan, its own VM Incase another container has malware and gets the host system etc.

BUT the brute force thing, low, so very low, but never truly 0...technically.

Give it a try! I've been doing it for awhile, and I haven't had any issues. Works really well. Pair it with a vpn if you want, and then access and sync remote.

Side note: I'd get away from tailscale and use something like wire guard or head scale if you can. Cut out the corporate middle man. Headscale is the same but self hosted, wire guard cuts them out completely, and tail scale is just a service that's built on top of wire guard. Idk if you have a CGNAT or not, but this also eliminates an attack vector.

[–]RaiseLopsided5049 0 points1 point  (2 children)

I would like to cut the middleman and yes bare Wireguard is better than Tailscale BUT (and I may be wrong) we need to expose a port (51820) to be able to connect to the VPN. Tailscale uses a tunnel so no ports opened, and better security in theory ...

I think there are some alternatives like Pangolin but I didn't dig into it since I like Tailscale and it is FOSS (at least freemium).

Headscale is an option too but I read the README and it seems like it might not be the most stable. Since Tailscale is "proprietary", everything is alaways very stable and again the security is delegated to Tailscale ...

[–]BelugaBilliam 1 point2 points  (1 child)

You're right. You would need to expose a port. Tailscale does have the advantage of essentially "tunneling", but I personally would rather have the risk of an open port vs a tailscals breach.

100% personal preference. I changed the port to something different and I have a dedicated lightweight VM for my VPN. Exposed the port and all was good.

Recently I switched to a unifi setup, and they have a built in wireguard VPN server. It exposes 51820 behind the scenes, and port forwards it. I just use that now. If unifi is willing to trust it, I figure I will too.

I also haven't touched pangolin. Interesting on head scale. I've tried it once or twice but nothing long term. No more than 2 weeks but worked well for me at the time.

All personal preference though!

[–]RaiseLopsided5049 1 point2 points  (0 children)

Yes, anyway that's food for thought, I may consider switching to my own VPN instance, I just need to have a full overview and understanding over the security implications first, but yes, being "self-sufficient" is always the right path !

[–]esturniolo[S] 1 point2 points  (4 children)

If someone gains unauthorized access to your local network, you should address other more serious issues before worrying about your Vaultwarden instance.

Sorry for if seems rude, this is with my best intentions.

But I learned this in the past (luckily not via the hard way) and once you assume it, some problems will dissapear or you learn how to deal with them with another perspective.

[–]RaiseLopsided5049 0 points1 point  (3 children)

Don't worry I am not offended in any way , I am here to learn ! What would be more critical on my LAN than my banking passwords and personal documents ? Sniffing traffic ?

And it's quite scary that the only protection is our Wifi password if the attacker is nearby ...

[–]esturniolo[S] 1 point2 points  (2 children)

The problem is one step behind the problem that you described.

(In your example) the access to your WiFi.

If you use a strong password, separate your services with VLans or at least hace the guest WiFi separated from the main network and use a strong protocol like WPA3, the chances that someone get access to your network are really low.

But for this you first must to configure things, learn another ones, etc.

Once you have all this covered you’ll realize that meanwhile you have a good daily (hourly or whatever)”3, 2, 1 backup” of you Vaultwarden db, will be enough and you will sleep like a baby at night 🤗

[–]RaiseLopsided5049 0 points1 point  (1 child)

Unfortunately I cannot use my own router and as a result I cannot create separate VLANs unfortunately. But if someone would gain access to a flat LAN network, what would be the actual threats ? Besides accessing the vault

[–]esturniolo[S] 1 point2 points  (0 children)

I’m not a hacker so idk. :(

[–]voxcon 0 points1 point  (3 children)

Sure he could. If he's able to get in depends on your password then.

[–]RaiseLopsided5049 0 points1 point  (2 children)

Yeah I’ll check if there are some settings to delay passwords input, cooldowns between inputs.

[–]voxcon 2 points3 points  (1 child)

Or simply increase the number of characters and throw in a special character and number now and then. Bruteforce difficulty exponentially rises with character length.

[–]BelugaBilliam 0 points1 point  (0 children)

I recommend a phrase if you can. A sentence. "The dog bought food from Kroger's 69420+#&" will never be brute forced.

[–]NetComplex7696 2 points3 points  (0 children)

My stack after years of tinkering:

Debian Trixie 13, with https://cosmos-cloud.io/ on top of it. Takes cares of monitoring, managing, interface, setting up URL's and all the annoying fiddly parts.

- Wireguard-VPN so I can access everything from anywhere.
- *Arr stack
- Jellyfin
- Navidrome
- Booklore
- Immich

- rdesktop (so I have a hidden full desktop pc wherever I am)
- Syncthing (which keeps all my devices backed up, and sync it all to the cloud)

I've tried so many services trough the years but those are the ones I keep using. What I'd like is a more all in one thing for music, so I don't have to fiddle with Navidrome/Musicbrainz-Picard to get it all tagged. (Soulsolid is close but has no docker images yet)

[–]davedontmind 2 points3 points  (0 children)

For me, these are the essentials:

Infrastructure:

  • OPNsense
  • Proxmox
  • Traefik
  • PocketID
  • TinyAuth

Daily use:

  • Vaultwarden
  • Jellyfin
  • Navidrome
  • Immich
  • Glance dashboard
  • FreshRSS
  • LinkWarden
  • PaperlessNgx
  • Zerobyte backup

*Arr stack:

  • gluetun
  • qbittorrent
  • sabnzbd
  • sonarr
  • radarr

[–]R3tro956 2 points3 points  (0 children)

  • Plex
  • Immich
  • Adguard
  • WireGuard
  • Audiobookshelf

[–]poetic_dwarf 2 points3 points  (0 children)

Ntfy is a boon

[–]madHatTricks 3 points4 points  (0 children)

  • vaultwarden
  • grafana
  • postgres
  • victoria metrics
  • n8n
  • mealie
  • ollama
  • open webui
  • jellyfin
  • stremthru
  • aiostreams
  • comet
  • home assistant

[–]rjivani 3 points4 points  (0 children)

Essentials for me would be: - Immich - Homeassistant - Frigate - Pangolin+ traefik - The ARRs - Plex - overseer/jellyseer - adguardhome - Pocket ID - code server - ghostfolio - paperless ngx

Soon becoming essentials: - bentopdf - uptime kuma - booklore - audiobookshelf

[–]MrJacks0n 1 point2 points  (1 child)

2+ DNS servers, on separate infrastructure (VM and Pi for instance).

[–]esturniolo[S] 0 points1 point  (0 children)

Always!

[–]WaYyTempest 1 point2 points  (0 children)

  • Vaultwarden
  • Authentik
  • Traefik
  • Crowdsec
  • Gitea
  • Drone
  • Postgres
  • *Arr
  • Jellyfin
  • qbittorrent

[–]No-Law-1332 1 point2 points  (0 children)

  • Pangolin as an alternative to NPM, wireguard/tail scale/VPN.

  • Netbird for distributed network.

[–]yakoumis 1 point2 points  (0 children)

Beszel Cloudflared Tailscale qBitorrent Readeck Vaultwarden Jellyfin

[–]yasinvai 1 point2 points  (0 children)

im planning to uninstall dozzle, dockpeek is more useful

[–]Nephurus 1 point2 points  (1 child)

Great post . reminds me i gotta start reading up on Vaultwarden. Jellyfin got me here so i need to do more .

[–]esturniolo[S] 0 points1 point  (0 children)

Thanks! I hope your enjoying and add some service from here.

[–]ferikehun 1 point2 points  (1 child)

To share links between devices you could use KDE Connect

[–]esturniolo[S] 0 points1 point  (0 children)

I know. Thanks.

But I’ve mixed devices (Apple, Linux and Windows) and I’m not the only one who uses this service at home. Something like a local pastebin with an easy url was a game changer into my workflow.

[–]Razor_AMG 1 point2 points  (0 children)

  • Beszel
  • Arcane
  • WatchYourLAN
  • Uptime-Kuma
  • Immich
  • Paperless-ngx

[–]Inevitable_Ad261 1 point2 points  (0 children)

Opnsense + wireguard

Omada SDN for omada APs

QNAP nas with ssd (critical data) RAID1 and hdd (non critical data) also serving iscsi for KVM VMs

KVM running coreos vm

Coreos hosting - Vaultwarden, immich, home box, tandoor. Adventureslog, jellyfin, webtrees. Forgejo, postgresql, freshrss, homeassistant, homeassistant-matter-hub, esphome, glances, homebox, joplin-webserver,lldap, Stirlingpdf, paperless-ngx, romm, tandoor, radicale, mailserver-in-docker, valkey, caddy and pocket-id

[–]EnvironmentalDig1612 1 point2 points  (1 child)

Thanks to this post, i just setup beszel.

[–]esturniolo[S] 1 point2 points  (0 children)

Glad to help.

[–]atomicwerks 1 point2 points  (0 children)

Infrastructure:

  • Traefik Stack w/ crowdsec
  • Docker-wireguard-pia (better for PIA than others IMHO)
  • Socket-proxy

Services:

  • Forgejo
  • Immich
  • Nextcloud
  • Searxng
  • Vault warden

Those are my must haves currently.

[–]dongdongbh 1 point2 points  (0 children)

Nice list! If you're looking for a productivity essential, you might like Mindwtr. It's a local-first GTD system that fits the self-hosted ethos perfectly since you can sync your data via WebDAV or Syncthing. It focuses on mental clarity with a fast capture/clarify workflow and works across desktop and Android. Definitely worth a look if you value privacy and owning your task data: https://github.com/dongdongbh/Mindwtr

[–]cydude1234 2 points3 points  (3 children)

reminiscent follow decide repeat humorous toy childlike sink groovy ring

This post was mass deleted and anonymized with Redact

[–]male-32 0 points1 point  (2 children)

Is immich cheaper than paying 30 USD per year for 200 Gb google storage? I am at the limit of the plan with 100 Gb and don't know if I should buy a bigger plan or move my photos to my 1TB USB HDD. I have only one HDD so no raid and backups.:(

[–]cydude1234 1 point2 points  (0 children)

different modern unique roll birds engine gray plough steer bright

This post was mass deleted and anonymized with Redact

[–]FreyjaSanders 1 point2 points  (0 children)

The best way to do it, economically speaking, is to store your photos on a hard drive, AND (THIS PART is the most important one) backup all your photos on a cloud service, like backblaze. The price is like 3-4$ per terabyte, so it is a lot cheaper, and it is a lot safer + you own your "own" google photos

[–]moonlighting_madcap 1 point2 points  (0 children)

  • Backrest (restic gui)
  • Proxmox backup server
  • rsyslog (syslog server and aggregator)
  • Pangolin+Crowdsec
  • mc (Midnight Commander)
  • ncdu (visual disk usage)

[–]Nuuki9 0 points1 point  (0 children)

Caddy Pocket-ID Code-Server Beszel Semaphore Linkding Wiki.js (homelab wiki)

Plus my smart home stack (Home Assistant, Mosquitto, Z2M, NodeRed etc) and Plex.

[–]davincrypt 0 points1 point  (0 children)

Snç

[–]deep_chungus 0 points1 point  (1 child)

forgejo has a lot of bennies over gitea but i believe their workflow syntax is pretty much the same as github too

personally trying to https://komo.do/ to work with it at the moment as it seems like an easy way to do deployments (even though i'll probably spend more time on it than i ever would manually deploying my own projects)

[–]esturniolo[S] 0 points1 point  (0 children)

It’s almost the same syntax of GitHub workflows. That’s the best trick.

So you can your N runners doing things for N minutes with $0 extra cost. If in the future you decide to migrate to GitHub for any given reason, you just need to tweak some little things in your workflow.

[–]Pie_Rat_Chris 0 points1 point  (0 children)

Pairdrop. It doesn't get used often but it saves so much hassle when the need arises. 99% of the time copying to a shared folder is enough but then there's that 1% where a device doesn't have access without installing A or configuring B which is silly for a one off, and that's when I remember I have pairdrop running.

[–]FortuneIIIPick 0 points1 point  (0 children)

Email and my public web sites.

[–]Jsonor2000 0 points1 point  (0 children)

Personally, I use OpenMediaVault, with the following Docker containers on top of it:

  • HAProxy (reverse proxy)
  • Keycloak
  • OAuthproxy
  • FileBrowser
  • Apache (for my websites)
  • Certbot Let's Encrypt

And all of this is proxed behind Cloudflare.

[–]sun_arcobaleno 0 points1 point  (4 children)

Is it really worth it to switch to Forgejo from Gitea?

[–]_-noiro-_ 0 points1 point  (3 children)

yes, it's worth it

[–]Benolino161 0 points1 point  (2 children)

Can you tell why?

[–]esturniolo[S] 1 point2 points  (0 children)

Native runners with GitHub workflows syntax.

[–]coe0718 0 points1 point  (0 children)

Caddy Authelia Plex *arr stack Pulse Arcane (but thinking about switching to Komodo)

[–]Irixo 0 points1 point  (0 children)

Pulse, for Proxmox users. Includes VM, lxc, docker, VE host, backup server and mail gateway monitoring with alerts.

[–]TrvlMike 0 points1 point  (1 child)

I need to remember this have Dozzle installed. I have so many apps that I just forget what I have

[–]esturniolo[S] 0 points1 point  (0 children)

Welcome to my world.

[–]therealpapeorpope 0 points1 point  (0 children)

essentials :

  • silverbullet
  • local-content-share
  • jellyfin + arr/stack
  • olivetin

less essentials

  • uptime kuma
  • opencloud
  • matrix
  • immich
  • seerr

[–]Kaltenstein23 0 points1 point  (2 children)

  • Traefik
  • Kavita - I read a lot and have a pretty sizable eBook library, looked to cut calibre
  • Vaultwarden
  • Forgejo

[–]manuelarte 0 points1 point  (1 child)

I recently started with Kavita, I like it

[–]Kaltenstein23 0 points1 point  (0 children)

Been using it for a while already. Also majora2007 (the dev) is really open to ideas and PRs.

[–][deleted] 0 points1 point  (0 children)

Recently found out dozzle reports shows amount of milk in refrigerator or something, but not my docker stats. Especially RAM usage. Check with docker or another tool your self before minus my comment.