1. 46

Previous Discussion: https://lobste.rs/s/yxswhm/what_are_you_self_hosting

  1.  

  2. 15

    Just my static web sites.

    1. 10

      This is what I posted to a similar topic over on reddit r/selfhosted recently:

      Data Center

      Dedicated FreeBSD 11 server on a ZFS mirror, from OVH. The host is very slim and really just runs ezjail, and unbound as a local resolver. All the action happens inside jails.

      • MySQL jail - provides database in a “container” for the other jails
      • PowerDNS jail - Authoritative DNS server, backed by MySQL
      • LAMP stack jail - a place to host web pages with apache and PHP, for the most part. Using PHP-FPM with per-vhost chroots and UIDs. Containers within containers! Very happy with this setup. Notably hosts:
        • Ampache - which the whole family uses for mobile-friendly music streaming.
        • Chevereto - image hosting
        • NSEdit - Web app for managing our DNS server.
        • WP Ultimate Recipe - recipe database built on wordpress
        • Wallabag - read-it-later article saver like Pocket
        • Lots of WordPress sites for friends and family and assorted custom scratch-built things and experiments
      • NextCloud jail - NextCloud on nginx + php-fpm. In it’s own jail to keep it completely separated. The whole family uses it for files, calendars and contacts.
      • Minecraft server jail
      • Email jail - Custom email hosting setup built on Postfix, Courier-IMAP, Maildrop, MySQL, Apache, PHP. I’ve been hosting my own email since the 90s.
      • Legacy jail - Really just the old server, that went P2V two or three server moves ago - so easy to do when everything lives in ZFS jails. This is deprecated and I have been moving things off it (very slowly).

      Home Network

      PoS old FreeBSD 11 server with a ragtag collection of hard drives on ZFS. It’s mainly our home NAS, storing our media, but also hosts:

      • Nagios jail - Network monitoring and notification
      • Asterisk jail - Home and office VoIP
      • Assorted experiments and goofs

      Raspberry Pi 3A - Kodi in the livingroom, playing media from the NAS

      Raspberry Pi 2A - Custom dashboard app showing server/network status and weather and stuff.

      Raspberry Pi 1A - Running sprinklers_pi to control our lawn sprinklers.

      Remaining Pain Points

      Still getting a decent KeePass workflow established

      Need to setup a VPN at home

      Still don’t have Ampache sharing working. It should be easy for me to tell a friend to, “listen to this song” or “this album”. Need to get a good beets workflow going to clean things up.

      Need to pick a wiki for a family knowledge base.

      Asterisk is crusty and no one is developing personal-scale VoIP managers, because everyone just uses cell phones these days.

      Need more hard drives.

      1. 4

        Would you be willing to move off KeePass to Bitwarden? Did it myself a while back using bitwarden_rs. Super easy to host and everything Just Works™. Also would allow groups for shared passwords between the family.

        1. 2

          What kind of KeePass workflow are you looking for? I have personal and shared key databases in KeePassXC, and share the shared ones with SyncThing – I assume NextCloud could do that level of file sharing for you. I’m very happy with it so far, but it’s also so trivial I suspect you’re looking for something beyond that, no?

          1. 1

            So, I have KeyWeb on OSX, and pair it with ChromelPass in Chrome. I save my DB inside a NextCloud folder so that it is available on my other devices/platforms. I like it generally, but it always seems to be locked when I want to add something to it, so I have to type in a high-entropy password and select the key file, and by that time ChromelPass has forgotten that I was trying to save a password and given up. So like I log out and back in, and save the password, “now that I’m ready”. It’s not as integrated or smooth in chrome as the built-in password db, so it’s easy to forget it, and I always have a sense of, “but do I really have it saved?” on new additions.

            I don’t actually have an Android app yet. What do people use there?

          2. 1

            Asterisk

            Yep, personal-scale VOIP doesn’t quite make sense when most folks having unlimited call and internet calls. I’ve only seen personal VIOP on my friend family. He has parents living abroad and it’s easier to deploy VOIP rather than teaching them how to use APPs.

            1. 1

              How’s your experience with Kodi? My annual Plex sub has just renewed so I’ve got plenty of time to look up a replacement, but they’re adding a bunch of crap I don’t want, and don’t seem to be fixing things that annoy me so I’d like this to be my last year at that particular teat.

              1. 4

                Kodi, like Plex, has garbage UI full of extremely frustrating UX quirks. But, in my house, it’s still my main way of consuming my library (with an nvidia shield as the client). But they also serve different audiences: Kodi is hard to serve externally and is mostly just a client, while Plex is good at remote, shared access and solving the server side.

                1. 2

                  It works well. It’s not a great UI. The family is comfortable with the Roku UI even though it is terrible and they complain about it. If there’s something on both, they’ll play the one on the Roku first every time. Searching is meh. Playlist building is straight-up user-surly. Indexing is hit-or-miss and needs a lot of interventions. Actual video playing is great. Playing music through it is not fun.

                  1. 2

                    I’ve looked into plex alternatives as well. Emby was kind of interesting, but they recently closed some of the source, and then there was a fork of it by some members of the community. Going to wait and see how that shakes out.

                    Universal media server (UMS) paired with Infuse (appletv/ios) is kind of interesting – the main drawback is how large the local storage usage in infuse gets, and how slowly it builds the first time. If only it pulled more metadata from the server at runtime. I tried pairing infuse with plex (recent supportly configuration), and it had the same issue with local storage size and slow initial build time. It’s unfortunate, because otherwise I found it fairly decent (UI/UX).

                  2. 1

                    What’s your experience been like with Chevereto? I’m in the market for something very much like it, and I see it mentioned a fair bit, but I don’t run any other PHP/MySQL things so I’m a bit wary.

                    1. 2

                      Minimal, honestly. I set it up and it runs nicely, but I haven’t really used it heavily.

                    2. 1

                      Nice list. Have you considered to run a database in each jail instead of having a dedicated MySQL jail? I have been looking for a discussion of the pros and cons of both approaches.

                      1. 2

                        Yes. I mean, 15 years ago I had one server with no jails/containers/etc and everything was just stacked in one big messy pile, and we all know what happens with that over time and upgrades. I moved that whole thing into its own jail, just to draw a line around the mess, and started a new server layout, with pieces in separate jails. I love having stuff compartmentalized into its own container so that upgrades are never an issue. I never have to, “upgrade PHP because upgrading MySQL upgraded gettext which now conflicts with, bah! no!” If anything, I am moving (carefully) towards further containerization right now. For instance, I’d like to have PHP in it’s own jail separate from the web server, so that I can run several versions and just pick which socket to connect a site to in the config. But as you guessed, it is a balance. I never want to get into installing simple docker web apps that each install a web server and a db server and duplicate each other in stupid and wasteful ways. On the other hand, for somethings, it is nice to have a self-contained “package”, where if something got busy enough to need it’s own server, I could just move it to bigger hardware in one shot.

                    3. 5

                      Since two days ago, my single-user Mastodon instance!

                      1. 5

                        My own very cool bookmark manager. I’ve used it for years now and it continues to be handy. Anyone can sign up as well!

                        http://slushies.redpine.software

                        Also my blog: http://blog.88mph.io

                        And my IRC bouncer

                        And this off beat startup idea that I keep putting off but really hope to execute in the next year or so: https://sweat.club

                        1. 5

                          $5/month VPS, running OpenBSD:

                          • Mail server (OpenSMTPD/Dovecot, spamd for spam filtering)
                          • XMPP server (prosody)
                          • Personal website (OpenBSD’s httpd)
                          • DNS hidden master for my domain, with DNSSEC (NSD)
                          • Tiny Tiny RSS
                          • Matrix Homeserver
                          • IRC Bouncer (ZNC)

                          I’m using relayd as a TLS reverse proxy for all my services, de-muxing via the HTTP “Host” header. I use acme-client for letsencrypt renewals via cron.

                          I have ansible roles for each component here.

                          Todo: git, vpn

                          1. 4

                            My website and gopher server.

                            1. 4

                              I host in a Vultr $2.50/mo instance. FreeBSD.

                              Websites:

                              • https://nhl94hockey.com - an old PHP website I made back in 2013 to extract and track stats from NHL94 games. Database is MariaDB
                              • my personal sites not worth linking (Apache vhosts), various languages, but mostly Node or static.

                              Slack commands:

                              • Bible API that returns a chapter:verse in multiple translations. I have this in Python, iirc. The database is sqlite3.
                              • Quran API that does the same thing, but for the Quran. Ruby/sqlite3
                              • Entry point API that then calls one of the others based on the command sent in. Node
                              • Time cube API which.. Is pointless but it was my first slack command I tested out. Node.

                              Also hosts my mumble server. And usually where I put my assignments from interviews to share.

                              1. 3

                                Quite a bit! I have the following bits of software running on a decent VPS at DigitalOcean:

                                • Wallabag to hold all of the stuff I’d like to read later without all of the extra fluff on a Webpage.
                                • Nextcloud with a few apps added like:
                                • An instance of Drone CI for personal/private project builds.
                                • Matomo for all of my analytics.
                                • My own Minetest server - e-mail / DM me for an invite to play!
                                • Isso for self-hosted comments to my website.
                                • A ZNC bouncer; so many servers!
                                • Gitea for all of my projects. I host here first then mirror elsewhere.
                                • Minio for self-hosted object storage; largely for testing my software.
                                • My own instance of PeerTube so I can sync and share videos.

                                I should make this into a dedicated page at https://jacky.wtf, lol; I get asked this often enough for me to do so.

                                1. 3

                                  What size/spec Droplet(s) do you use over at DO for all of this?

                                  1. 1

                                    The exact “tag” is s-2vcpu-2gb; the one with flexible storage. I’ve also attached a 100GB volume to the image as well.

                                    1. 1

                                      60GB image with 2GB of RAM hanging out in SFO2

                                2. 3

                                  Everything plus a dehydrator to make use of the excess heat generated by the equipment. Everything means:

                                  Current hardware, in the process of being replaced:

                                  2 * Intel SS4200 (Pentium E2220, 2GB) plus a 5-slot esata-expander with ~16TB between them, spread over a mixture of 1/2/4TB drives (some of which have over 80.000 hours on them). SS4200 #1 sits in front of the other and hosts:

                                  • web (ngnix)
                                  • mail (exim, dovecot, greylistd, spamassassin, managesieve)
                                  • ‘cloud’ (Nexctcloud)
                                  • media (mpd)
                                  • p2p (transmission-daemon)
                                  • print (cups)
                                  • file (nfsv4)

                                  SS4200 #2 hosts:

                                  • database (Postgresql)
                                  • assorted web services (uwsgi, proxied through nginx on SS4200 #1)
                                  • more media (Airsonic)
                                  • video (Peertube)
                                  • search (Searx, also searching local content using recoll (plugin, PR submitted but not yet merged))
                                  • cache (redis)
                                  • scm (gitea)
                                  • xmpp (ejabberd)
                                  • file (nfsv4)

                                  SS4200 #1 is a 32-bit Debian (sid) install, #2 is 64-bit, also Debian (sid). I run build services on both. Both run backup services (rsnapshot) targeting drives on the other system. SS4200 #2 boots off a SSD connected to the internal PATA-slot (which normally is not visible after boot, it runs a patched kernel to circumvent this limitation). The hardware is nearing the end of its life so I’m in the process of replacing it with:

                                  1 * DL380 G7 (2 * Xeon X5675, 128GB) with 8 * 146GB 10K SAS

                                  • proxmox to herd VMs and containers
                                  • pfSense in a VM to serve as router/firewall/vpn-host for the rest of the net
                                  • a mixture of VMs and containers to implement the services mentioned above
                                  • more VMs and containers to be used as build servers

                                  I’m currently looking for some (jbod) storage for the thing, possibly a Netapp DS4243 or similar, will use the esata expander until I have found something usable.

                                  The SS4200’s live ‘under the stairs’ here at the farm, the DL380 sits in a purpose-build 19” cabinet which doubles as a dehydrator to make use of the heat generated by the equipment. From top to bottom this cabinet contains:

                                  • an air filter (meant for a Renault Trafic (commercial vehicle), big and cheap and easily available in case I need to replace it)
                                  • a 24-port managed switch (Dlink DGS3324)
                                  • the DL380
                                  • more shelves for either a storage cabinet or SS4200 #2 with the esata expander until I find such.
                                  • an airflow divider which makes sure all air goes to the back of the cabinet
                                  • 8 * 19” drying racks
                                  • a 2-speed (23W/34W) fan built into the bottom of the cabinet, these things are normally used to create forced draft in modern air-tight homes and as such are designed for continuous operation and low power consumption.

                                  There are some Raspberry Pi’s spread around the place doing different things, some old Android devices which have been repurposed as Linux devices in use as media players, camera servers etc.

                                  1. 2

                                    My blog and my Mercurial repos.

                                    Pretty low-maintenance.

                                    1. 2

                                      At this moment just an IRC bouncer.

                                      1. 2

                                        I wonder if we could remove the linux tag, since the question can be answered by more than those who run Linux. :)

                                        On my various HardenedBSD servers, I host:

                                        • gitea
                                        • bitlbee
                                        • kanboard
                                        • NFS

                                        Each service is in its own jail just to keep things organized. Some services have a Tor v3 Onion Service associated with them.

                                        1. 3

                                          I only applied the ‘linux’ tag since it wouldn’t allow me to only supply ‘ask’. (and the previous post did the same)

                                          1. 3

                                            Ah, gotcha. I didn’t know specifying a secondary tag was required. Thanks for the clarification!

                                        2. 2

                                          I begrudgingly gave up SMTP a few years ago when it became too time-consuming to keep up with the email cartel’s tech requirements. That leaves me with:

                                          • IRC (Ratbox), private network
                                          • HTTP/S (bunch of static and Rails sites)
                                          • shells (ssh/mosh)
                                          • Monit – both for my personal sites and work hosts, as you never know when your work env and your monitoring service are both going to be Thoroughly Hosed
                                          1. 2

                                            My static websites (usesthis.com, waferbaby.com) served with nginx, and my own Mastodon instance, all on DigitalOcean.

                                            1. 1

                                              What a nice question, thanks for asking.

                                              VPS
                                              • Hetzner Cloud, cheap, with SSD
                                              • NixOS
                                              • Mostly docker images of services (so not really leveraging Nix)
                                              • Gitea
                                              • TT-RSS
                                              • Bitwarden (used to do KeePass, but bitwarden_rs is very nice)
                                              • PostgreSQL
                                              • Caddy, both serving static sites and as a reverse proxy, nice with letsencrypt
                                              • Matrix Home Server
                                                • WhatsApp bridge
                                              • Various own projects
                                              Router at home
                                              • Turris Omnia
                                              • LXC containers
                                              • RAID1 SSDs
                                              • VPN (OpenVPN for now, Wireguard in the future)
                                              • DDNS
                                              • misc

                                              Any ideas on what I’m missing?

                                              Possibly in the future
                                              • Wallabag or similar
                                              • Bookmark management
                                              • NextCloud/Syncthing/Git-Annex or similar
                                              • Mail server
                                              • DFeed for mailing lists
                                              • Huginn or similar automation
                                              • More matrix bridges
                                              • Iodine (IP-over-DNS)
                                              • Mastodon/ActivityPub ?
                                              1. 1

                                                No home automation here (no Google/Amazon/Android/IOS sniffing).

                                                “Home” mini-server, local services only:

                                                • http for multimedia files (lighttpd), mostly needed because Windows RT
                                                • NAS (sshfs mounts) and backups (rsync to work server)
                                                • arduino-powered led matrix clock/alerts
                                                • data collecting/blogging/tweeting: weather station, airplane traffic (dump1090), APRS traffic, car GPS/OBD logging
                                                • also serving hourly screenshots from an old ethernet IP cam watching my car

                                                “Work” server, internet-facing, static IP address, “software RAID-1” disks:

                                                • two virtualbox WinXP instances, because customers
                                                • mysql server, because a lazy customer is not yet ready to switch to postgres
                                                • lighttpd for a few diagnostics scripts on https
                                                • rsync for backup from home
                                                • mosquitto, ssh, wireguard

                                                Also saving night webradio streams (mplayer -dumpaudio -dumpfile $RANDOM.mp3 http://webradio…) and podcasts/videos (youtube-dl) before early morning backup/rsync of my cellphone, so that I get them before commuting.

                                                Also having a twitter account used as a “public log file” (oysttyer) so that I get twitter notifications about diskspace/network/database activity.

                                                Also automatically blogging gnuplots/pics/statistics (“email to blog” using Ruby and smtp-tls.rb).

                                                Not yet done / future projects:

                                                • git hosting (personal projects only);
                                                • car traffic monitoring (openalpr);
                                                • running a Mastodon instance without the crappy nodejs;
                                                • ad-blocking DNS server;
                                                • switching from XP to ReactOS;
                                                • hosting my own email server (dovecot) but only accepting/sending encrypted.
                                                1. 1

                                                  A few Vultr VPSs running OpenBSD hosting my mail, web, and VPN needs.

                                                  1. 1
                                                    1. 1

                                                      Some static websites and IRC.

                                                      1. 1
                                                        1. 1

                                                          My website (static, Hakyll), and my git site (gogs) (and its associated postgresql database, local access only, occasionally used for exploratory dev). I have plans to get some indieweb stuff up and running, but those plans haven’t actually happened in all the years I’ve had them.

                                                          I host my own SparkleShare. I keep a bunch of stuff in there, including my KeePass file.

                                                          All of the above is on a small virtual server with Rimu.

                                                          I’m setting up a FreeNAS within the next two months (probably just buying a FreeNAS mini), and will be hosting a media server there (probably Plex, since it will work with my Roku). That won’t be externally accessible, but it’s still a thing.

                                                          I hosted my own email for well over a decade, but holy cow, that’s a pain in the ass. Moving to runbox was absolutely worth it.

                                                          Any or all of the above may have been obfuscated to avoid utility for red teams.

                                                          1. 1

                                                            VPS:

                                                            • static website
                                                            • hound for code search, works better then Github code search
                                                            • irc
                                                            • taskwarrior server
                                                            • git server
                                                            • wireguard / dnsmasq
                                                            • couple of cronjobs for automation

                                                            Homeserver:

                                                            • monitoring for VPS with prometheus
                                                            • backups
                                                            • grafana for IoT / monitoring
                                                            • mosquitto for IoT
                                                            1. 1

                                                              Plex on my NAS. A Streissand VPN on an EC2 instance, and various random experiments on another.

                                                              Until a couple months back I hosted my own Mastodon instance as well but it hosed itself beyond repair so I gave up when several core devs looked at it, pronounced “Yup it’s a back end problem” and shook their heads :)

                                                                1. 1

                                                                  Nothing other than a few sinatra sites on digital ocean VMs. The maintenance overhead of most systems favors centralization and the efficiencies that result from colocating.

                                                                  1. 1
                                                                    1. 1
                                                                      • Email (usual Postfix+Dovecot+some additional tools combo)
                                                                      • XMPP (ejabberd)
                                                                      • My own website (Nginx with static HTML)
                                                                      • Git repositories
                                                                      1. 1

                                                                        At Home

                                                                        • ESPRESSObin: Marvell Armada 3700LP (88F3720) dual core ARM Cortex A53

                                                                          This SBC has 3x1Gig ports, have it running OpenWRT as Home Router to Comcast, firewall, nat, adblocker and forwarding ports to internal services. I’ve this SBC as dedicate device to serve the internet, and it’s pretty stable so far.

                                                                        • Amd 5350: Quad Core/Gig Nic/4 SATA/APU

                                                                          This is the main server at home, it’s running Ubuntu 18.04.

                                                                          • KVM
                                                                            • Windows 7: when I need a windows environment, I will power this on
                                                                            • Ubuntu 16.04: main dev, testing, crontab and playground. Mostly for dev some side project and hosting pre-production stuff. This machine also exports 80 and 22, and cgi-bin from userdir for some interweb toys.
                                                                            • OpenWRT: I have another copy of OpenWRT running as VM, it works as a backup when the ESPRESSObin need maintaince.
                                                                          • Docker, yep, I run docker and KVM on the same host
                                                                            • bunch of torrenting containers, hosted on bare-metal for faster IO access
                                                                            • mysql container: mysql database hosting kodi db and nextcloud db
                                                                            • nextcould container: providing a user friendly interface for accessing files at home
                                                                            • nginx: vhost reverse proxy with let’s encrypt cert, act as secure entry point for browser access
                                                                            • postgresql, redis: slave instances mirroring the DC servers.
                                                                          • Kodi, yep, I run Kodi along with KVM and Docker on the same host
                                                                            • This machine is also connected to my receiver over HDMI and the APU is capable for 1080p H264 contents, and CPU is OK to decode some low bitrate 1080p@h265 contents.
                                                                          • ZFS, all VM and Docker images are hosted on a ZFS (RaidZ1), which is also the boot/root filesystem of this system.
                                                                        • Bunch of RPI

                                                                          • Kodi: I have another Kodi to playback 1080p contents to an old TV, sharing the same mysql database from the container.
                                                                          • Home Assistant: this RPi has GPIO connects to
                                                                            • a small OLED displaying status
                                                                            • 315mhz transmitter for remote control
                                                                            • DHT11 for temperature and humidity sensor I am exploring home automation and IoT stuff with this device.
                                                                        • Bunch of ESP8266 ESP-01 acting as Smart Wifi Switches and connected to the Home Assistant

                                                                        At DC

                                                                        • GCP
                                                                          • a small single user pleroma to explore fedverse and learning elixir and activitypub
                                                                        • Azure
                                                                          • a medium instance hosting postgresql, mongodb, redis and graphite under docker. This is the main/primary database server for various projects. Yep, I am using mongodb for quick POCs then move to postgresql once the mongodb turns to be slow or using to much ram. Graphite is the database for monitoring all systems. I’ve installed telegraf on all systems and having alarms on some metrics such as uptime.
                                                                        • Various small VPS from small hosting companies
                                                                          • VPN and BGP for the DN42 hobby project, mostly for fun and learning
                                                                          • plex to share media to my non-techy friends
                                                                          • shadowsocks proxies servers to help friends bypass the GFW
                                                                          • nginx hosting my personal static website and domains

                                                                        Remaining Pain Points

                                                                        • Cannot the NFS over ZFS working on Ubuntu 18.04
                                                                        • No backups for the ZFS system
                                                                        • Hosting mailing service properly is so hard, so I am sticking with Chrome for all my passwords and bookmarks
                                                                        1. 1

                                                                          Bitwarden at the moment. Considering hosting a few Git repositories as well in the next few weeks.

                                                                          1. 1
                                                                            1. Photography website - https://photos.yakamo.org
                                                                            2. Yggdrasil Public Node
                                                                            3. API for Yggdrasil network stats
                                                                            1. 1
                                                                              • ProxMox for VM and Container (LXC) management
                                                                              • Gitea for private and somewhat public repositories
                                                                              • A healthcheck service for all my services (on a shared hoster for reliability, can’t healthcheck yourself if you’re dead)
                                                                              • A custom made analytics tool to monitor site access (it’s privacy conscious)
                                                                              • Mastodon instance (fandom related)
                                                                              • Multiple attempts at creating a private web.archive.org (at Reminiscence)
                                                                              • Link shortener (yourls under u.rls.moe)
                                                                              • AUR build service (building AUR packages like linux-bcachefs-git takes a long while, having a build service reduces this to only having to download the package and having more reliable builds as well as being able to report issues better. The entire build service is scripted in bash and uses lighttpd for serving)
                                                                              • Nextcloud for my personal data
                                                                              • Ininja for invoicing clients
                                                                              • Shaarli (bookmarking websites)
                                                                              • Blog (Grav, it’s PHP based)
                                                                              • Airsonic (for music I’ve obtained legally, spotify for everything else)

                                                                              I’ve used to host an email client and a small mail server but I’ve outsourced this to Protonmail and mailgun respectively (MG has a EU instance which makes me feel safer).

                                                                              My homenetwork runs an Octopi and an unraid NAS with some media center applications, though largely shut off from the internet.

                                                                              Atm I’m looking for a safe deposit option for my keepass database; I want it easily accessible in case I loose all data as the KP database contains almost all vital credentials. I also need to improve monitoring and setup FDE on the dedicated server I run most of my heavy stuff on.

                                                                              1. 1

                                                                                How do you like Ininja? I’ve been looking for an invoicing tool I could self-host.

                                                                                1. 2

                                                                                  My initial experience has been a bit meh since the database migration at some point blew up and left me with a half working instance.

                                                                                  I’ve since reinstalled and it seems to be fine now and I’ll be more careful with upgrades.

                                                                                  In terms of features it’s a very pleasant experience though it’s definitely geared for american users and doesn’t offer much integration for EU banks/institutions.

                                                                              2. 1

                                                                                These days, just git (for code and pass) and a custom static site.

                                                                                1. 1

                                                                                  Everything. Which is:

                                                                                  VMs on Hyper-V:

                                                                                  • About 12 websites, sitting on Debian + Apache + PHP
                                                                                    • Including personal apps such Web Bookmarks, RSS Reader, Kitten-Cams, File-Access
                                                                                  • Local Microsoft Exchange Server for Email (including Web Access)
                                                                                  • Internet Facing SMTP gateway that does anti-spam stuff Exchange should be able to but can’t.
                                                                                  • Local Active Directory for Logons and Security
                                                                                  • SQL Server holding various databases.

                                                                                  Physical Boxes:

                                                                                  • My other Hyper-V Lab host, currently running about 12 VMs for Work/Research
                                                                                    • I do Identity and Access Management plus Azure Stuff in my Day Job.
                                                                                  • File Server (Windows 2012 R2) with a few RAID 1 arrays
                                                                                  • Various Raspberry Pis doing things such as KODI, Weather Analysis (from my Weather Station) etc.
                                                                                  • Web based Network Music Player connected to the File Server
                                                                                  • A Friends NAS - he rsyncs his data over a VPN as an ‘offsite backup’
                                                                                  • My own ‘offsite’ backup in a NAS in my workshop down the end of the garden.
                                                                                  1. 1

                                                                                    As much as possible, at the moment this includes:

                                                                                    • A dedicated host on online.net running Debian, with qemu/kvm hosts (debian and opebsd) provisioned via Terraform, managed using ansible and debops. These host:

                                                                                      • XMPP (prosody)
                                                                                      • Static websites (nginx on Debian, httpd on openbsd)
                                                                                      • Wordpress installations for family (via docker)
                                                                                      • Nextcloud
                                                                                      • Stagit (static git web viewer)
                                                                                      • Synapse (matrix.org reference implementation)
                                                                                      • Prometheus and Grafana
                                                                                      • Buildbot and Jenkins (will most likely deprecate buildbot soon)
                                                                                      • Etherpad
                                                                                      • DNS (powerdns)
                                                                                    • An old Asus eee-pc 1000H at home running x86 openbsd:

                                                                                      • Weechat client
                                                                                      • Archiving bot
                                                                                    • VM from a VPS provider:

                                                                                      • email (dovecot + postfix)
                                                                                      • DNS (bind)

                                                                                    Some of the above can be found here, but not everything is pushed/public yet.

                                                                                    1. 1

                                                                                      What’s your experience with online.net network?

                                                                                      I’ve used OVH dedicated servers (at BHS) and their network is great, but I’m thinking of using online.net for my next project.

                                                                                      By the way, curious fact, they recently rebranded to “online.net by Scaleway”.

                                                                                      1. 2

                                                                                        What’s your experience with online.net network?

                                                                                        I’ve got a dedi with them since early 2016 and I only recall one time where there was an issue with the network and the host wasn’t reachable. Having said that, this host doesn’t get that much traffic each month, so I’m not aware if they’re throttling them after a point.

                                                                                        I’ve used OVH dedicated servers (at BHS) and their network is great, but I’m thinking of using online.net for my next project.

                                                                                        Up until two months ago I used to pay 15 euros for their start-2-m-ssd (C2750, 16GB RAM, Samsung MZ7LN256HCHP SSD), but they’ve upped it to 25 per month now. One of the big caveats is that their 2016 version didn’t support IPMI and they only gave a “serial console” over gotty, not sure if this is still the case.

                                                                                        By the way, curious fact, they recently rebranded to “online.net by Scaleway”.

                                                                                        I always thought that Scaleway was a sub-brand of online.net, but seems like it’s the other way around nowadays.

                                                                                    2. 1

                                                                                      Almost everything these days, particularly email, gopher and Web. The server is in the room next door. External DNS I delegated, though. There is an off-site email exchanger for if the house line is down. Cloud services are local.

                                                                                      I’ve also got a GPS time server, so I don’t even have to use that externally.

                                                                                      1. 1

                                                                                        At the moment I’m hosting my IRC client, but the plans are hosting a VPN, some websites and bitwarden as starting point. Been considering Chef to manage configurations

                                                                                        1. 1

                                                                                          A static website, plus a wiki, some mercurial repos, shell access, and an Etherpad. All with a few users among my friends, but nothing huge. No actual gitlab or such, despite srs investigation; it’s just not worth the hassle.

                                                                                          Now if I could host my own email without constantly worrying “what if it breaks?” that would be something and I could ditch Gmail without regrets. Alas, as it is I constantly worry “what if it breaks?” even though it hasn’t in the last three years.

                                                                                          1. 1

                                                                                            Already self-hosted:

                                                                                            • A ZFS storage array for network storage, pc backup, VM storage, digital packratting, etc. Hosted on OmniOS VM, exposed as NFS and smb shares to the rest of the network.
                                                                                            • Plex for movies and music (Kodi when internal)
                                                                                            • Minecraft servers for playing with friends (Docker on Ubuntu)
                                                                                            • Some scratch Windows VMs for messing
                                                                                            • DNS server, network analytics, and other goodies in pfSense

                                                                                            My self-hosting todo list:

                                                                                            • VPN server
                                                                                            • Star Trek GIF repository
                                                                                            • Apache Guacamole for an easy-to-access farm of VMs for testing and development purposes
                                                                                            • Dockerizing my Plex server
                                                                                            • Personal document storage
                                                                                            • Dropbox-like storage for my friends (Seafile?)
                                                                                            • Mercurial code repos
                                                                                            • My static websites

                                                                                            And of course one of the joys of self-hosting is getting to play with lots of cool hardware you otherwise wouldn’t justify: https://imgur.com/gallery/eO1XDbH

                                                                                            1. 1
                                                                                              at home
                                                                                              • small media server (lenovo thinkcentre purchased open-box)
                                                                                                • plex
                                                                                                • transmission-daemon
                                                                                              • pi
                                                                                              vps (from ssdnodes)
                                                                                              • email (postfix, dovecot, rspamd)
                                                                                              • nextcloud
                                                                                              • url shortener (running polr)
                                                                                              • irc stuff
                                                                                                • ircd node for tilde.chat
                                                                                                • always-on weechat with relay proxied through nginx
                                                                                              dedi (from hetzner)
                                                                                              1. 1

                                                                                                I’ve seen stuff about tilde club posted around here before - how active is it these days?

                                                                                                1. 2

                                                                                                  i can’t speak for tilde.club, but tilde.team sure is! tilde.town is also quite active as well.

                                                                                                  there’s also a relatively new effort to collaborate between the ‘tildes’ which mostly includes an irc network and a handful of self-hosted services.

                                                                                              2. 1

                                                                                                I was. I need to again. Anyway, when I was it was on a Pi (just static blog stuff) via nginx, haproxy (I used haproxy to route traffic based on domain…which makes little sense now considering, but I was learning then!), Jekyll, and some sweet git hooks. I also had openvpn or some such setup on another Pi. Also had some DB (mysql?) on a Pi…I think.

                                                                                                I’ve been wanting to host my own stuff again, but just haven’t gotten around to it.

                                                                                                1. 1

                                                                                                  I generate static HTML pages for my websites with ssg and then host them with httpd. I also host my name servers with nsd.

                                                                                                  VMs provided by OpenBSD.Amsterdam and Vultr.

                                                                                                  1. 1
                                                                                                    • Remote
                                                                                                      • $5 Vultr VM (FreeBSD)
                                                                                                        • ikev2 vpn
                                                                                                        • a few static websites
                                                                                                    • Home
                                                                                                      • multicore xeon with lots of HDD (FreeBSD)
                                                                                                        • zfs storage server (a couple of pools)
                                                                                                        • FreeBSD pkg builds (poudriere)
                                                                                                        • various bhyve VMs for work/development (linux, freebsd)
                                                                                                        • various bhyve VMs for home network (pihole/dns server, IKEv2 vpn vpn, unifi controller, etc)
                                                                                                      • i5 intel skylake nuc (linux)
                                                                                                        • plex media server (hardware-transcoding)
                                                                                                    1. 1
                                                                                                      • Email: two MXs running smtpd, Dovecot sitting on primary;
                                                                                                      • DNS: two nsd instances, reverse zones only;
                                                                                                      • RSS reader: Miniflux;
                                                                                                      • IRC bouncer: ZNC;
                                                                                                      • some small static sites; and
                                                                                                      • a Gitea instance.

                                                                                                      These are distributed among 4 VMs running OpenBSD -current in 4 different VPS hosts, on 4 different continents.

                                                                                                      1. 1

                                                                                                        Nextcloud and Gitea in jails on a FreeBSD server. A small private wiki. A couple of bits and bobs on a gopher server. Looking to dump my old WP freelance site and replace it with a much simpler static site created in either Roman Zolotarev’s ssg4 or in Zola. Minidlna across my LAN for podcasts etc.

                                                                                                        1. 1

                                                                                                          I have a few machines (physical and VPSes) in various locations:

                                                                                                          Datacenter at work:

                                                                                                          • Physical machine (Debian 9) wiht Nextcloud server for me and my family and friends.
                                                                                                          • Virtual server (Ubuntu 18.04) for my (and friends+their companies) email, calendar and contact sync (compatible with Microsoft Exchange.

                                                                                                          Webhotel at work:

                                                                                                          My friends datacenter:

                                                                                                          • Storagebox (Debian 9) for backups

                                                                                                          My friends home:

                                                                                                          • 3rd place for my backups

                                                                                                          My homelab server (Proxmox):

                                                                                                          • Various services such as:
                                                                                                            • Matrix (synapse server) for family
                                                                                                            • Searx
                                                                                                            • Pleroma instance
                                                                                                            • Databases (postgresql and mariadb)
                                                                                                            • IPFS node
                                                                                                            • TURN/STUN server (I am thinking of scrapping this one because it has been more pain than fun)
                                                                                                            • Minecraft server for me and my son

                                                                                                          Other:

                                                                                                          • Virtual server for the temporary email service for linux.pizza
                                                                                                          • Tor relays (exit nodes and relay)
                                                                                                          1. 1

                                                                                                            At home on a FreeBSD server:

                                                                                                            • Gitolite (for my private repositories)
                                                                                                            • ZFS storage to keep my 15+ Years of Photography safe and sound plus some other important personal data
                                                                                                            • Samba (exposing ZFS volumes to my Windows clients with ZFS snapshots exposed as “previous versions”)

                                                                                                            Small FreeBSD Server at my parents:

                                                                                                            • ZFS replication storage for my home server for offsite backups (on the other side of the country)

                                                                                                            On a KVM VPS running FreeBSD:

                                                                                                            • Nextcloud (in a Jail)
                                                                                                            • my personal blog (static website)
                                                                                                            • travel blog (static website)

                                                                                                            Hetzner Cloud instance for ~2.5€/month:

                                                                                                            • VPN via streisand for the times I do not trust a wifi or some sites are blocked in the country I am in
                                                                                                            1. 1

                                                                                                              Static blog.

                                                                                                              A janky Bitcoin price tracker.

                                                                                                              Shell access for IRC etc.

                                                                                                              1. 1

                                                                                                                I’m not sure that my home server counts as self hosting. But it is a nice playground and opportunity to learn. I am currently running 6 jails:

                                                                                                                • OpenLDAP server
                                                                                                                • Email with Postfix and Dovecot
                                                                                                                • A letsencrypt.org-powered HTTP reverse proxy
                                                                                                                • NextCloud
                                                                                                                • Gitea
                                                                                                                • Some static web sites

                                                                                                                My next steps will be to come up with a better storage setup and some strategy for backing up all important data.

                                                                                                                1. 1
                                                                                                                  1. Some twitter bots, including @nytfirstsaid, which is basically an hourly cron job to run a python script which scrapes some web pages, records some state in redis, and hits some external APIs. Because there are so many moving pieces and unstructured strings sourced from external sources, It’s pretty frequent that I need to log into the server to inspect the data running through the system and make small tweaks.

                                                                                                                  2. a service which pings spotify’s “currently playing” endpoint every 30 seconds in order to automatically skip certain songs and artists which get suggested to me by the service that I don’t want to hear.

                                                                                                                  1. 1

                                                                                                                    Funny timing, I just finished rearranging the hosts that I manage last weekend.

                                                                                                                    Minor part was pulling the plug on a service I tried to start (based on Lobsters codebase incidentally) to host a discussion forum for a local community. Turned out that people would rather use other solutions, mostly Discord. Had never actually wound something down before. Did it a bit gradually - stop the helper services, read-only essentially, stop the backup service, preserve the latest backups and delete the older copies, then stop all services and kill the server, and delete all related accounts in third-party services, including email, logging, AWS keys, stop auto-renew on DNS name, etc.

                                                                                                                    More work was doing a big upgrade on my pile-of-random-stuff personal server. Had been running Ubuntu 14.04 LTS for way too long, about time to upgrade to the latest LTS and bump a bunch of stuff to the latest version. This turned out to include:

                                                                                                                    • Upgrading several rather hacky old init scripts to SystemD - much simpler and works much better
                                                                                                                    • Latest nginx and TLS 1.3
                                                                                                                    • Latest Ruby and Python, which of course some of my particularly rusty codebases don’t work with
                                                                                                                    • Latest postgresql, don’t notice anything different but probably good to upgrade
                                                                                                                    • Latest postgrest, it seems to have gotten a few changes to make running on a server a bit easier since the last time I updated it
                                                                                                                    • Latest Acme for LetsEncrypt, seems to be a little better at setting up Nginx and Apache configs nowadays