this post was submitted on 12 Jun 2023
652 points (99.7% liked)

Selfhosted

39969 readers
312 users here now

A place to share alternatives to popular online services that can be self-hosted without giving up privacy or locking you into a service you don't control.

Rules:

  1. Be civil: we're here to support and learn from one another. Insults won't be tolerated. Flame wars are frowned upon.

  2. No spam posting.

  3. Posts have to be centered around self-hosting. There are other communities for discussing hardware or home computing. If it's not obvious why your post topic revolves around selfhosting, please include details to make it clear.

  4. Don't duplicate the full text of your blog or github here. Just post the link for folks to click.

  5. Submission headline should match the article title (don’t cherry-pick information from the title to fit your agenda).

  6. No trolling.

Resources:

Any issues on the community? Report it using the report flag.

Questions? DM the mods!

founded 1 year ago
MODERATORS
 

A simple question to this community, what are you self-hosting? It's probably fun to hear from each-other what services we are running.

Please mention at least the service (e.g. e-mail) and the software (e.g. postfix). Extra bonus points for also mentioning the OS and/or hardware (e.g. Linux Distribution, raspberry pi, etc) you are running on.

you are viewing a single comment's thread
view the rest of the comments
[–] [email protected] 4 points 1 year ago* (last edited 1 year ago) (2 children)

Everything runs in a kubernetes cluster hosted on my homelab, except the public services access point which is a VM hosted on a non-profit ISP and service provider infrastructure, which I contribute to, through a wireguard VPN between the VM and home:

Public-facing:

  • an old static website (nginx-unprivileged), which was my first website and which I keep online because nostalgia
  • Ghost, personal blog
  • OpenSMTPd + rspamd + dovecot (dovecot only accessible from home, not public)
  • privatebin
  • picoshare
  • Whoogle + Tor
  • SearxNG

Work related (I work from home 75% of time), not public-facing:

  • dolibarr ERP for managing prospects and clients billing
  • gitea
  • bookstack for personal documentation
  • edit: forgot Harbor as container registry.
  • vaultwarden
  • eck-operator
  • wireguard operator for personal, family and friends access from outside
  • awx operator
  • draw.io
  • zalando postgresql operator for postgres needs
  • mariadb-galera for mariadb needs
  • bitlbee-libpurple for all clients' slack needs
  • Authentik as OIDC/LDAP/SAML provider (also used to identify family and friends)
  • internal DNS (pdns-resolver + powerdns with postgres backend) serving work zone and home zone.

Home stuff, not public-facing:

  • Games: Minetest, EQEmu server (Everquest), planar ally, bzflag, veloren
  • Home-cinema/music: Jellyfin, Koel, alltube, and the usual tools to share Linux isos.
  • Immich to sync photos
  • homeassistant (more a PoC than anything else right now)
  • mealie for recipes (I like cooking original meals for friends and family) and lunch/dinner planning
  • another instance of vaultwarden for family
  • piHole to keep the children a bit safer online (notably blocking malware/scams/nsfw sites)

all of this running on a 3 control-planes/6 workers talos linux k8s cluster, itself hosted on a franken-proxmox cluster (a mix of server/"old" desktops/Ryzen NUCs) and a bunch of NAS (VM dedicated NAS, data storage NAS, backup NAS).

[–] unchanged3152 1 points 1 year ago (1 children)

Are there any implications to having dovecot exposed to the Internet?

[–] [email protected] 2 points 1 year ago

Not really, in my case it's just that I either access it from home or through VPN, so I don't need to expose it outside of my home and work networks.