For those unfamiliar, DockGE is "A fancy, easy-to-use and reactive self-hosted docker compose.yaml stack-oriented manager."

Similar to portainer

Warning

Breaking change: Due to the security reason, the "Console" feature is now disabled by default. If you need this feature and understand the risk, you can enable it via the environment variable DOCKGE_ENABLE_CONSOLE=true.

See link for full notes

Hey y'all 👋

I usually don't post release updates, but this one has me excited :)

Here come 🔀 Workflow Automations for your network device management.

https://i.imgur.com/rhLy5WW.jpeg

So, what can you do? You can change any Device field, or delete the Device itself, if any number of custom conditions are fulfilled. For example, you can UN-archive a device if it's detected online. Or group devices with a specific name or vendor into a group. Or assign devices to a location depending on the IP they get...

These are only examples, but I think you get the idea. Happy tinkering and automating! Share your workflows in Discord or GitHub Discussions.

https://i.imgur.com/Q1Z9IOY.jpeg

It's World Backup Day again. Good opportunity to check if your backup mechanisms work as intended.

Many users reported high memory/RAM usage, some 8GB+.

In my case gone from 1.5GB+ to 400MB or less on Raspberry Pi 4.

Adding MALLOC_TRIM_THRESHOLD_=100000can make a big difference.

With Docker:
Add to your docker-compose.yml and docker compose down && docker compose up -d

...
environment:
  - MALLOC_TRIM_THRESHOLD_=100000
...

With systemd:
Edit /etc/default/jellyfin change the value of MALLOC_TRIM_THRESHOLD_ and restart the service

# Disable glibc dynamic heap adjustment
MALLOC_TRIM_THRESHOLD_=100000

Source: https://github.com/jellyfin/jellyfin/issues/6306#issuecomment-1774093928

Official docker,Debian,Fedora packages already contain MALLOC_TRIM_THRESHOLD_.
Not present on some docker images like linuxserver/jellyfin

Check is container (already) have the variable
docker exec -it jellyfin printenv | grep MALLOC_TRIM_THRESHO LD_

I already host multiple services via caddy as my reverse proxy. Jellyfin, I am worried about authentication. How do you secure it?

Public Service Announcement:

Have you checked out Sophos XG Firewall for home use lately?

It's basically an enterprise firewall fully licensed for personal use.

• All the firewall stuff
• Normal IPS
• Built-In easy transparent SSL/TLS proxy
• Web Application Firewall

I like it better than PF/Open Sense right now.

https://youtu.be/Ui8UC8-MeJU

Just curious if there is an easy way to back up my docker-compose.yaml and .env files. I have the following directory structure for my containers:

-docker
  -<name of container>
    -.env
    -docker-compose.yml

I'd like to copy those two files for each container folder but no other subfolders that may also be in the container folder (config, data, etc). I've been trying to get my restic backups to do it but I just can't figure it out.

Is there a better way? I'd like to have backups in case my entire server dies.___

Lemmy newb here, not sure if this is right for this /c.

An article I found from someone who hosts their own website and micro-social network, and their experience with web-scraping robots who refuse to respect robots.txt, and how they deal with them.

I have an old Dell TB16 dock lying around that I don't use anymore. Does anyone know if it's possible to install Linux on this thing? It'd be nice to use it as a server, since it's got a reasonably small form factor and already has a gigabit ethernet port.

I found the mainboard here: https://www.radwell.com/Buy/DELL/DELL/AAD30%20LA-C602P

Hey everyone, I want to introduce potpie to the selfhosted community.

Potpie turns your codebase into a knowledge graph and lets you build custom AI agents with just a prompt. We also provide pre-built agents for onboarding, testing, debugging, coding, and low level design.

Here is the repo: https://github.com/potpie-ai/potpie

I have been posting about it on other communities on reddit and have incorporated some good feedback which I have incorporated heavily over the last month. I posted a bit about how it works in this post on ChatGPTCoding here.

We released a lot of major features here:

The entire custom agent creation logic was open sourced!

Open sourced the User Interface completely!

Local LLM support using Ollama!

Multi-LLM support using Litellm

Faster Agents with realtime streaming (Migrating from CrewAI to Pydantic AI)

Streaming tool calls and agent thoughts (Realtime visibility to user to see what the agent is doing)

Choose diferent model for agent execution and for knowledge graph creation

API support so that you can build your own codebase backed automations (Documentation, PR Review etc)

What's next:

We're working on integrations directly on the platform that should let you build out your custom workflows and automate tasks across your SDLC.

Trying to improve our VSCode extension and introduce a slack bot to allow you to incorporate it into your workflows easily.

What can you build with it:

• Support Engineers - Deployment helper bot backed by your OSS repo's helm charts
• OSS Mainetnence - Auto reply/ label to issues on your repo. Accurate Q&A that updates with code. Help contributors ramp up faster and contribute meaningfully.
• Niche PR review agents - Reactiveness review, Accisibility review, Component duplication.
• System Design - With complete knowledge of your code and backed by knowledge of your company infra, it can help you design systems most efficiently.

Tell us what else would you like to see in something like this!

cross-posted from: https://feddit.org/post/9959466

geteilt von: https://programming.dev/post/27692275

• Post
• New Git Repo.

So, I run three VPS and one rack in the closet. Currently I have Duplicati running on all four servers. What I would like to do is have one central server back up all four servers and store the backups in an offsite repository.

I'd prefer something with a good GUI. I know you purist get a hard on thinking about the CLI, and while it is a very powerful aspect of Linux, I still like a GUI.

What are my options?

Side note, I wanted to look at Bacula but their site seems nonexistent. Is Bacula defunct?

Help Needed: Homepage Dashboard "Failed to construct 'URL'" Error

Hi everyone! 👋

I'm encountering a persistent issue with my self-hosted Homepage dashboard (v1.1.1). Some tabs with bookmarks fail to load, showing the error:

TypeError: Failed to construct 'URL': Invalid URL

This happens on multiple tabs, including Accessibility_Resources and Shopping. I've tried troubleshooting by:

• Validating my YAML files (all are valid).

• Using lowercase tab names without special characters.

• Ensuring all URLs in bookmarks.yaml are absolute (http:// or https://).

• Clearing browser cache and testing in multiple browsers.

Despite these efforts, the issue persists. The error appears in the browser console as follows:

TypeError: Failed to construct 'URL': Invalid URL    at F (index-3a04b80eb558747c.js:1:42899)    at af (framework-bbeeca9707659ffa.js:1:65163)    ...

I suspect the issue might be related to how Homepage processes bookmarks or tab names internally. Below are my full configuration files for reference (API keys and sensitive data redacted):

widgets.yaml

- search:    provider: custom    url: https://search.laniecarmelo.tech/search?q=%25s    target: _blank    suggestionUrl: https://search.laniecarmelo.tech/autocompleter?q=%25s    showSearchSuggestions: true- datetime:    format:        dateStyle: full        timeStyle: long        hour12: true- openmeteo:    label: Pipe Creek, TX    latitude: 29.538    longitude: -98.524    units: imperial    timezone: America/Chicago

docker.yaml

my-docker:  socket: /var/run/docker.sock

bookmarks.yaml

---- Accessibility_Resources:    - WebAIM Accessibility Tools:        abbr: WT        href: https://webaim.org/resources/        description: Tools and resources for web accessibility testing.    - A11Y Project:        abbr: AP        href: https://www.a11yproject.com/        description: Community-driven effort to make web accessibility easier.    - W3C Web Accessibility Initiative:        abbr: WA        href: https://www.w3.org/WAI/        description: Guidelines and resources for web accessibility.    - WCAG Guidelines:        abbr: WG        href: https://www.w3.org/WAI/WCAG22/quickref/        description: Quick reference for WCAG 2.1 guidelines.    - Accessibility Resources:        abbr: AR        href: https://www.w3.org/WAI/resources/        description: Comprehensive resources for web accessibility.    - Accessibility Tools:        abbr: AT        href: https://www.w3.org/WAI/test-evaluate/        description: Tools for testing and evaluating web accessibility.    - Accessibility Tutorials:        abbr: TU        href: https://www.w3.org/WAI/tutorials/        description: Tutorials on web accessibility best practices.    - WebAlign:        abbr: WL        href: https://members.convergeaccessibility.com/member-log-in/        description: Online tool for creating accessible web content.    - Contrast Checker:        abbr: CC        href: https://webaim.org/resources/contrastchecker/        description: Tool for checking color contrast ratios for accessibility.- Automation:    - Apprise Documentation:        abbr: AD        href: https://github.com/caronc/apprise/wiki/        description: Notification management tool supporting multiple services.    - Home Assistant Community:        abbr: HC        href: https://community.home-assistant.io/        description: Forum for Home Assistant users to discuss automation setups.    - Home Assistant Documentation:        abbr: HD        href: https://www.home-assistant.io/docs/        description: Official documentation for Home Assistant.    - Home Assistant Blog:        abbr: HB        href: https://www.home-assistant.io/blog/        description: Updates and news about Home Assistant.- Communication:    - Shlink Documentation:        abbr: SD        href: https://shlink.io/documentation/        description: Learn how to set up and manage Shlink.    - Element:        abbr: EL        href: https://chat.tchncs.de/        description: Secure messaging and collaboration platform.    - Outlook:        abbr: OL        href: https://outlook.office365.com/        description: Email and calendar service from Microsoft.    - Google Messages:        abbr: GM        href: https://messages.google.com/        description: SMS and MMS messaging service from Google.    - Enafore:        abbr: EN        href: https://enafore.social/        description: Alternative frontend for Mastodon, a decentralized social network.    - Mastodon:        abbr: MA        href: https://allovertheplace.ca/        description: Decentralized social network platform.    - Discord:        abbr: DC        href: https://discord.com/        description: Voice, video, and text chat platform for communities.- Developer:    - freeCodeCamp:        abbr: FC        href: https://www.freecodecamp.org/        description: Learn to code with free tutorials and projects.    - MDN Web Docs:        abbr: MD        href: https://developer.mozilla.org/        description: Comprehensive web development documentation.    - GitHub:        abbr: GH        href: https://github.com/        description: Code hosting, collaboration, and version control.    - Stack Overflow:        abbr: SO        href: https://stackoverflow.com/        description: Community-driven Q&A for programmers.    - GitLab:        abbr: GL        href: https://gitlab.com/        description: Web-based DevOps lifecycle tool providing a Git repository manager.- Information_Management:    - AppleVis:        abbr: AV        href: https://www.applevis.com/        description: Community for blind and low-vision users of Apple products.    - BibleGateway:        abbr: BG        href: https://www.biblegateway.com/        description: Search and read the Bible in multiple translations.    - Bible Resources:        abbr: BR        href: https://biblehub.com/        description: Online Bible study tools and comprehensive resources.    - YouVersion:        abbr: YV        href: https://www.youversion.com/        description: Bible app with various translations and reading plans.    - Bible Study Fellowship:        abbr: BS        href: https://www.bsfinternational.org/        description: Bible study resources and community.    - Bookshare:        abbr: BK        href: https://www.bookshare.org/        description: Accessible online library for people with print disabilities.    - BARD:        abbr: BD        href: https://nlsbard.loc.gov/        description: Braille and Audio Reading Download service for eligible users.    - Audible:        abbr: AU        href: https://www.audible.com/        description: Audiobook and spoken word entertainment service.- Productivity:    - CCU Library:        abbr: CL        href: https://www.ccu.edu/academics/library/        description: Access CCU library resources for research and study.    - ReadWorks:        abbr: RW        href: https://www.readworks.org/        description: Reading passages and comprehension activities.    - Perplexity AI:        abbr: PA        href: https://perplexity.ai/        description: AI-powered search with detailed, conversational responses.- Education:    - Codecademy:        abbr: CA        href: https://www.codecademy.com/        description: Interactive coding lessons for various languages.    - NFB:        abbr: NF        href: https://nfb.org/        description: Resources for Braille transcription and blind community.    - Canvas:        abbr: CV        href: https://canvas.instructure.com/        description: Learning management system for online courses.- Gaming_Entertainment:    - AudioGames:        abbr: AG        href: https://forum.audiogames.net/        description: Community for audio-based and accessible games.    - IncrementalDB:        abbr: ID        href: https://incrementaldb.com/        description: Database of incremental games.    - Galaxy Click:        abbr: GC        href: https://galaxy.click/        description: Open-source website for finding incremental games.- Shopping:    - InnoSearch AI:        abbr: IS        href: https://innosearch.ai/        description: Accessible e-commerce platform designed for blind users.    - Amazon:        abbr: AZ        href: https://www.amazon.com/        description: Online shopping platform with a wide range of products.    - eBay:        abbr: EB        href: https://www.ebay.com/        description: Online auction and shopping website.    - Walmart:        abbr: WM        href: https://www.walmart.com/        description: Online shopping platform with a wide range of products.    - Best Buy:        abbr: BB        href: https://www.bestbuy.com/        description: Online shopping platform for electronics and appliances.

services.yaml

---- Automation:    - Home Assistant:        href: https://homeassistant.laniecarmelo.tech/        description: Home automation platform        server: my-docker        container: homeassistant    - N8N:        href: https://n8n.laniecarmelo.tech/        description: Workflow automation tool        server: my-docker        container: n8n    - Ntfy:        href: https://ntfy.laniecarmelo.tech/        description: Self-hosted notification service        server: my-docker        container: ntfy- Communication:    - Shlink:        href: https://app.shlink.io/        description: URL shortener and link management        server: my-docker        container: shlink    - TheLounge:        href: https://irc.laniecarmelo.tech/        description: Web-based IRC client- Developer:    - Forgejo:        href: https://git.laniecarmelo.tech/        description: My Git server        widget:            type: gitea            url: https://git.laniecarmelo.tech/            key: redacted    - PrivateBin:        href: https://paste.laniecarmelo.tech/        description: Pastebin for sharing code snippets- Information_Management:    - Linkding:        href: https://bookmarks.laniecarmelo.tech/        description: Self-hosted bookmark manager        server: my-docker        container: linkding    - MiniFlux:        href: https://rss.laniecarmelo.tech/        description: Self-hosted RSS feed reader        widget:                 type: miniflux            url: https://rss.laniecarmelo.tech/            key: redacted    - RSS-Bridge:        href: https://rss-bridge.laniecarmelo.tech/        description: RSS feed generator for various websites        server: my-docker        container: rss-bridge    - SearXNG:        href: https://search.laniecarmelo.tech/        description: Self-hosted metasearch engine    - Wallabag:        href: https://read.laniecarmelo.tech/        description: Self-hosted read-it-later service        server: my-docker        container: wallabag- Monitoring:    - Beszel:        href: https://beszel.laniecarmelo.tech/        description: Server monitoring and alerts        widget:            type: beszel            url: https://beszel.laniecarmelo.tech/            version: 2            username: redacted            password: redacted            systemId: redacted    - Caddy:        href: https://caddy.laniecarmelo.tech/        description: Reverse proxy and SSL management        widget:            type: caddy            url: https://caddy.laniecarmelo.tech/    - Uptime Kuma:        href: https://uptime.laniecarmelo.tech/        description: Uptime monitoring and status page        server: my-docker        container: uptime-kuma        widget:            type: uptimekuma            url: https://uptime.laniecarmelo.tech/            slug: home    - Watchtower:        description: Docker container update monitoring        server: my-docker        container: watchtower        widget:            type: watchtower            url: http://192.168.1.137:3014/            key: redacted- Productivity:    - Beaver Habit Tracker:        href: https://habits.laniecarmelo.tech/        description: Habit tracking and productivity        server: my-docker        container: beaverhabits    - Calendar:        description: My Outlook calendar        widget:            type: calendar            firstDayInWeek: sunday            view: agenda            showTime: true            timezone: America/Chicago            integrations:                - type: ical                  url: redacted                  name: Outlook    - Joplin Server:        href: https://notes.laniecarmelo.tech/        description: Notes and knowledge management        server: my-docker        container: joplin_server    - Mealie:        href: https://recipes.laniecarmelo.tech/        description: Recipe management and meal planning        server: my-docker        container: mealie        widget:            type: mealie            url: https://recipes.laniecarmelo.tech/            key: redacted            version: 2- Server_Management:    - Cockpit:        href: https://cockpit.laniecarmelo.tech/        description: Web-based server management interface    - Dockge:        href: https://dockge.laniecarmelo.tech/        description: Docker management interface        server: my-docker        container: stacks-dockge-1    - Dozzle:        href: https://dozzle.laniecarmelo.tech/        description: Docker container logs viewer        server: my-docker        container: dozzle    - Tailscale (Raspberry Pi):        href: https://login.tailscale.com/        description: Zero-config mesh VPN        widget:            type: tailscale            deviceid: redacted            key: redacted    - Tailscale (Mini PC):        href: https://login.tailscale.com/        description: Zero-config mesh VPN        widget:            type: tailscale            deviceid: redacted            key: redacted    - Tailscale (iPhone):        href: https://login.tailscale.com/        description: Zero-config mesh VPN        widget:            type: tailscale            deviceid: redacted            key: redacted    - Tailscale (Google Pixel 9 Pro):        href: https://login.tailscale.com/        description: Zero-config mesh VPN        widget:            type: tailscale            deviceid: redacted            key: redacted

settings.yaml

title: Stormux Dashboarddescription: Links to and information about my self-hosted services and most-used sitesbase: https://home.laniecarmelo.techtheme/: darklanguage: entarget: _blankquicklaunch:  searchDescriptions: true  showSearchSuggestions: true  provider: custom  url: https://search.laniecarmelo.tech/search?q=%25s  suggestionUrl: https://search.laniecarmelo.tech/autocompleter?q=%25slayout:  # Assign each group to a tab  Accessibility_Resources:    tab: Accessibility_Resources  Automation:    tab: Automation  Communication:    tab: Communication  Developer:    tab: Developer  Education:    tab: Education  Gaming_Entertainment:    tab: Gaming_Entertainment  Information_Management:    tab: Information_Management  Monitoring:    tab: Monitoring  Productivity:    tab: Productivity  Server_Management:    tab: Server_Management  Shopping:    tab: ShoppingshowStats: true

compose.yaml

services:  homepage:    image: ghcr.io/gethomepage/homepage:latest    container_name: homepage    ports:      - 3000:3000    volumes:      - ./config:/app/config # Make sure your local config directory exists      - /var/run/docker.sock:/var/run/docker.sock # (optional) For docker integrations    environment:      HOMEPAGE_ALLOWED_HOSTS: home.laniecarmelo.tech,192.168.1.137:3000,stormux:3000      LOG_LEVEL: debug    restart: unless-stopped

If you’ve encountered this issue before or have insights into resolving it, I’d greatly appreciate your help! 🙏

Hashtags:

#SelfHosting #HomepageDashboard #WebDev #Accessibility #YAML #Bookmarks #OpenSource

Thank you in advance! 😊

@selfhosted @selfhost @selfhosting@slrpnk.net @selfhosting@a.gup.pe

What's up, what's down and what are you not sure about?

Let us know what you set up lately, what kind of problems you currently think about or are running into, what new device you added to your homelab or what interesting service or article you found.

I just got around to deploying FreshRSS and I'm looking for some self hosted content or just otherwise interesting feeds.

Thanks in advance!

Running joplin and memos in docker, routed through nginx. Since I don't own a domain I'm just using my public ip with ports and port forwarding. Joplin was throwing the same invalid origin error, but worked after I set APP_BASE_URL: http://<IP>:<port>. I tried setting SITE_URL=http://<IP>:<port2> under environment, which I've read is supposed to fix this exact problem. Same error. The error displays the correct address including port number, so I know that's being passed correctly. I've tried several different variations of the Host, Origin, and Referer header without success. Just for fun I tried directly exposing <port2> on the memos instance and it opened right up in the browser.

PS: Yes, I know I should be using https. I'm lazy. Setting up a cert is on the old todo list.

I'm sure everyone is aware of the 'Awesome' lists on Github. There are loads of them, which makes keeping up with new apps a chore.

I came across this site that does that very thing:

https://www.trackawesomelist.com/

I didn't know if anybody would find it as useful as I do. I have it in my FreshRSS reader.

Loci is a python script that can backup a directory to a server using rsync - It keeps track of the backups that have been done. Multiple backups may be kept. Rsync is used to handle the backups so only the needfull is copied and single files can be recovered from the backup if needed. loci -b tag : Backup under the tag given (I used days of the week)

loci -l : List backups showing those tags unused, backups that are needed, and backups that been run more than 5 times. I refresh these.

loci -r tag : Refresh a tag's backup - delete the files under that tag and backuplog entries to prepare for a fresh backup using loci -b

~/.backuplog a file in .csv format that keeps track of backups done.

~/.config/loci/settings Settings file. Fully commented.

Hi, I’m looking for some advice to point be in the right direction for my data storage and backup.

Currently I just have Jellyfin and Immich set up on my laptop that runs Windows. At the moment my storage capacity requirements are pretty low (just close to 1TB). But I am concerned about data integrity, especially all my Photos and work files.

At the moment I have an old HDD and a new SSD that I backup to every month(two separate copies).

In a few months I will be going overseas. I plan to have a copy of all by data with me but I would also like to have it in my home ‘server!?’

Do I set up a machine new machine to hold the data? Or can I just continue using my laptop. Increasing storage requirements, resilience and ease of management when not physically available are a concern.

Again, I’m very new in my selfhosting journey and as Linux or sysadmin is not something I have exposure to (apart from memes on Lemmy) I would love to all of your suggestions for idiot proof setups. I’m willing to learn and tbh learning about docker and editing config files have been pretty fun so far and would switch to Linux if work permitted.

Hey everyone,

I recently went through the process of setting up a self-hosted Gitea server on a Proxmox LXC and wanted to share the steps I took. A big part of this was securing external access using Cloudflare Zero Trust tunnels for both the web UI (HTTP) and Git operations (SSH).

I know much of the information on Gitea, Proxmox, and Cloudflare tunnels exists separately, but I wanted to try and bring it all together in one place based on my experience. It's also part of my effort to document my own self-hosting journey. 🛠️

The guide covers things like:

• Installing Gitea on Proxmox (using helper scripts).
• Basic Gitea configuration (web UI, users, keys).
• Setting up Cloudflare tunnels for secure HTTP and SSH access.
• Configuring the local SSH client and Gitea for tunnelled SSH connections.

It's basically a walkthrough of how I got my personal Git server running and accessible securely from outside my network. Maybe not brand new information for everyone here, but hopefully, it's a useful aggregation for someone looking to do something similar.

You can read the full post here: https://cachaza.cc/blog/03-self-hosted-gitea/

Happy to hear any thoughts or feedback! Cheers.

I am running a NAS at home, Minecraft server and some other stuff.

I want to make it all easier to access by getting my own domain, both for myself and friends and family.

Will also use it for my mail address etc.

My main goal is reduce my dependency on US services for very obvious reasons.

What's a good non US dns registrar to use? Found a ton online, but it's my first time doing this and I'm a bit lost unfortunately.

Any help and/or advice is greatly appreciated.

Note: I am using VPS for services, since I do not want to expose my home network to internet. I am using podman, . But firewall (using UFW frontend) seems to block all the routing and inter-container traffic, so I want to Currently I have UFW rules set as blanket open for all podman networks, like this:

Status: active

To                         Action      From
--                         ------      ----
22/tcp                     ALLOW       Anywhere                  
222/tcp                    ALLOW       Anywhere                  
80/tcp                     ALLOW       Anywhere                  
Anywhere on podman1        ALLOW       Anywhere                  
443/tcp                    ALLOW       Anywhere                  
8080/tcp                   ALLOW       Anywhere                  
Anywhere on podman0        ALLOW       Anywhere                  
Anywhere on podman2        ALLOW       Anywhere                  
Anywhere on podman3        ALLOW       Anywhere                  
Anywhere on podman4        ALLOW       Anywhere                  
Anywhere on podman5        ALLOW       Anywhere                  
22/tcp (v6)                ALLOW       Anywhere (v6)             
222/tcp (v6)               ALLOW       Anywhere (v6)             
80/tcp (v6)                ALLOW       Anywhere (v6)             
Anywhere (v6) on podman1   ALLOW       Anywhere (v6)             
443/tcp (v6)               ALLOW       Anywhere (v6)             
8080/tcp (v6)              ALLOW       Anywhere (v6)             
Anywhere (v6) on podman0   ALLOW       Anywhere (v6)             
Anywhere (v6) on podman2   ALLOW       Anywhere (v6)             
Anywhere (v6) on podman3   ALLOW       Anywhere (v6)             
Anywhere (v6) on podman4   ALLOW       Anywhere (v6)             
Anywhere (v6) on podman5   ALLOW       Anywhere (v6)             

Anywhere on podman1        ALLOW FWD   Anywhere on ens3          
Anywhere on podman0        ALLOW FWD   Anywhere on ens3          
Anywhere on podman2        ALLOW FWD   Anywhere on ens3          
Anywhere on podman3        ALLOW FWD   Anywhere on ens3          
Anywhere on podman4        ALLOW FWD   Anywhere on ens3          
Anywhere on podman5        ALLOW FWD   Anywhere on ens3          
Anywhere (v6) on podman1   ALLOW FWD   Anywhere (v6) on ens3     
Anywhere (v6) on podman0   ALLOW FWD   Anywhere (v6) on ens3     
Anywhere (v6) on podman2   ALLOW FWD   Anywhere (v6) on ens3     
Anywhere (v6) on podman3   ALLOW FWD   Anywhere (v6) on ens3     
Anywhere (v6) on podman4   ALLOW FWD   Anywhere (v6) on ens3     
Anywhere (v6) on podman5   ALLOW FWD   Anywhere (v6) on ens3 

This neither seems secure, nor extensible when I add another network. Is there some 'best practices' for firewall setup with podman networks? How do you gurus set up your firewall for containers? Thanks in advance!

EDIT: Sorry for missing an important detail, I am running rootful podman with (userns=auto).

cross-posted from: https://feddit.nl/post/31222548

TL;DR:

Digital Hackathon for Finamp, an open source Jellyfin music client.
From today until April 6th, so two weekends and the week in-between. Looking for designers and developers, as well as anyone else interested in contributing! Check out the Finamplify GitHub project and our Discord server for more info!

Hey everyone!
Today's the day, Finamp's first-ever Hackathon - called "Finamplify" - is starting! Let's have a week of hacking together on your favorite open source music client for Jellyfin :D

This is a digital event happening on Finamp's GitHub repository and our beta Discord server.

Check out our previous post for some background information, including the Whys and Whats: https://lemmy.ml/post/27593730

How To Get Started

If you want to contribute, that's awesome! Here's how to do it:

1. Take a look at the Finamplify GitHub project, that's the central place for keeping track of the Hackathon
2. Check out the issues we've pre-selected and categorized. Feel free to pick an issue from that list, and then comment on that issue so we can assign it to you!
3. Fill out the contribution form so we can send you some free stickers at the end of the Hackathon for your successful contribution: https://app.formbricks.com/s/cm8tajvx13912s001l9it719v
4. Chime in on our Discord server for chatting, discussing, and asking questions!

We hope you'll have a lot of fun, and are looking forward to seeing you there!

Timeline

The Hackathon will consist of three sections: The two power phases during the weekends, and an iteration phase during the week in-between.

First Power Phase:

This kicks of initial contributions, and should see the first finished implementations.

Start: Saturday, March 29th, around 10.30am UTC
End: Monday, March 31st, during the early morning hours :P

Iteration Phase:

During this phase, more complex implementations can be worked on, PRs can be reviewed, and designs can be discussed.

Start: Monday, March 31st, around 10.30am UTC
End: Saturday, April 5th, during the early morning hours

Second Power Phase:

This final phase is meant to finish up any remaining implementations and tie up any loose ends.

Start: Saturday, April 5th, around 10.30am UTC
End: Sunday, April 6th, during the early morning hours

Let me know if you have any further questions!
Looking forward to seeing you there, happy hacking, and thank you for using Finamp!

- Chaphasilor

I've been using AntennaPod as my go-to podcast client, and I just stumbled upon a comment from the official AntennaPod account on Mastodon. They mentioned this docs page https://antennapod.org/documentation/general/synchronization, which talks about gPodder and some other solutions out there. I did a bit of digging and found even more self-hostable gPodder server applications. I'd love to set one up using Podman or Docker if possible.

Have you tried any of these solutions? If so, which one would you recommend?

Hi,

I am looking for a good and lightweight blogging solution.

I imagine I can just go with a static site generator like jekyll but I'd like something else... it would be a plus if it can federate :)

Any ideas?

Thanks !

EDIT: I forgot to say that obviously wordpress does not enters in the "lightweight" category ;)