The DMZ is the right idea. But it’s the old way. You definitely want whatever is serving your website to be separated out from your house. You’re hosting should be on an isolated VLAN. The internet should only be able to talk to the server it needs to talk to, no other ports. That box should only be allowed to talk to what it absolutely must talk to and only on the ports that are required. You should run an independent firewall on each one of the boxes that are involved in the hosting with only the proper ports open.

Giving up your private IP Will definitely give away your general location to everyone and your precise location to the authorities.

I would highly recommend using cloudflare or one of the other funnel options. A lot of people don’t like cloud flare because they can capitalize on your traffic, The cloudflare also just won’t shut you down and sell you out like your ISP will at the first request, They don’t do shit about anything until there’s a warrant or a court filing. On the upside you don’t give out your private IP to anyone. You have DDOS protection, and a reasonable layer of anominity.

You need to check daily to make sure all of your software is updated. We’re talking OS, middleware, plugins, application. Preferably via automation. All of the software and plugins you use for this type of hosting end up getting vulnerabilities.

Security is especially difficult on forums. There’s lots of opportunities there for skilled people who are pissed off at what you or someone else is saying to get butthurt. People know exactly what you’re running, then they do some magic behind the scenes next thing you know there’s a bunch of admins you didn’t create.

You don’t need to be hosting your own email but you are going to need an SMTP provider, most free services won’t let you masquerade the from address.

Unfortunately for a crossfading they need to wait for jellyfin to provide it on their side.

I wouldn’t be surprised to find a normalization plugin though.

Remote access is definitely a pain, and just surfacing the ports is a bad idea.

Finamp is close. No visualization, No normalization, and there’s gapless playback but no crossfading.

I use tailscale to watch videos and play music remotely.

The eye-opener now has been that

We’ll probably flux forever in between centralized corpo trash and open decentralized projects, until of course to governments collectively outlaw decentralized projects because they can’t control/police them.

Finamp lets you listen to music and add songs to a playlist.

I’m missing the crossfade tracks option massively.

I’m missing the AI DJ’s, but i could let them go in the name of privacy.

I kinda miss the visualization.

I really miss Plex’s free SSL, server locator and user management.

They don’t even have the excuse

just for ref, I’m not downvoting you. They do offer some things that cost them dev/money/time. And some of those things are pain points on Jellyfin.

They give you SSL and dynamic DNS style stuff behind the scenes. They give you a remote service that tells you if you’re remotely visible. They cache the tvdb and manage some subscriptions for EPG and do a pretty good job partnering with (and presumably caching) open subtitles.

None of that makes up for their rug-pulling bullshit.

You used to be able to download shit to your phone then become a local server so other people on your local network could watch off your device.

You used to be able to run 3rd party plugins improving libraries and storing off youtube meta

They’re scrapping watch together

They’re scrapping free remote

They’re spiraling the drain… But I won’t miss them, I’ll miss what they once were.

What do you mean by this?

Not OP

Hardware-accelerated streaming is a premium feature and requires an active Plex Pass subscription.

If you want to use your video card to transcode, you have to be paid.

Well that’s the beginning of the end for them.

I’m about half-way off the platform already (and I’m a lifetime subscriber)

The only thing I go back for is Roku use (better app), PlexAmp (better app) and offline viewing. I don’t have to go off JF for those, but it’s a lot better on Plex.

But it’s not so much better than I can’t protest.

does jellyfin have a roku app?

Yes, it streams pretty well, it has some UX issues, but it will let you get off plex as it stands right now with most of your needs covered.

I JUST managed to get my closest ring outside my family to join Signal.

We have a total of 7 people now.

I’d light up a server and host matrix/frendica/lemmy/mastodon/headscale in an instant if I thought I could get those 7 to join.

I keep hearing things about these hires he has, I don’t think they’re naive, At least not as such. They seem to be more power hungry trust fund babies.

But yeah, people with a few years in them would be a moral liability in that line of work.

Lol he also said cybertrucks don’t suck ;)

Unless I’m misreading it which is possible it’s awfully late, he said he processed 60,000 rows didn’t find what he was looking for but his hard drive overheated on the full pass.

Discs don’t overheat because there was load. Even if he f***** up and didn’t index the data correctly (I assume it’s a relational database since he’s talking about rows) The disc isn’t just going to overheat because the job is big. It’s going to be lack of air flow or lack of heatsink.

I guarantee you he was running on an external NVMe, and one of those little shitty-ass Chinese enclosures. Or maybe one of those self immolating SanDisk enclosures. Hell, maybe he’s on a desktop and he slept a raw NVMe on his motherboard without a heatsink

There are times when you want a brilliant college student on your team, But you need seasoned professionals to help them through the things they’ve never seen before and never done before.

You know I get the cloud saves, and maybe the discord, If they’re buying their own boosts it’s not free.

But without the pay features, it’s just a content management system for storing exes and a little metadata. I have the same thing in every torrent indexer I use.

Building a pay service for people that are pirating software is a losing proposition.

No Linux/Mac client

Source available not open source

$5-8 a month to support cloud saves for your self-hosted product. The only even remotely interesting features are behind the paywall.

Might as well just throw the binaries up on a tiddlywiki and call it a day

Hell no, My downloads folder in my media folder are completely different. I copy everything from downloads to media It gets renamed, possibly resampled. The torrents are left in the original folder to seed unmolested.

Every once in a while I go through my torrent list and just tell the client to destroy the torrent and files for anything that I don’t care to seed anymore. Zero chance of it breaking my actual store.

What should I do next?

1. Set up peertube in a proxmox, difficulty: My hosting provider doesn’t allow 443 or 80, I have cloudflare working for other things but I think this invades their TOS

2. Set up immich in a proxmox. Difficulty: I need regular backups off site and it’s going to be pretty large.My wife is a professional photographer.

3. Set up my Coral TPU with frigate replacing my aging win10 blue iris.

Non SSL behind your ingress proxy is acceptable professionally in most circumstances, assuming your network is properly segmented it’s not really a big deal.

Self-signing and adding the CA is a bit of a pain in the ass and adds another unnecessary layer for failure in a home network.

If it really grinds your gears you could issue yourself a real wild card cert from lets encrypt then at DNS names with that wild card on your local DNS server with internal IPs, but to auto renew it you’re going to have to do some pretty decent DNS work.

To be honest I’ve scrapped most of my reverse proxies for a nice tailscale network. Less moving parts, encrypted end-to-end.

It gets better.

Especially on Lemmy, the only thing it’s really doing is bringing some discoverability but the discoverability isn’t all that bad on Lemmy you have to look around for like 2 minutes to find the communities, okay, well you have to understand that there are like communities on multiple instances, figure out how to switch from local to all, then look around for 2 minutes

After hanging out on Blue sky for a bit I’m pretty sure Mastodon could use a little algorithmic help. The communities on Mastodon are so loosely formed they can be a little hard to find, you end up looking for people with the same taste and follow their followers. It works but nothing ever gets surface to you that you didn’t actually actively look for and it seems to be kind of a mess in a Twitter scenario.