jrollans.com is a Fediverse instance that uses the ActivityPub protocol. In other words, users at this host can communicate with people that use software like Mastodon, Pleroma, Friendica, etc. all around the world.
This server runs the snac software and there is no automatic sign-up process.
Because I'm a developer at heart, I had a fascinating late evening self hosting some apps I have never self hosted before.
Because I'm Cybersecurity by trade, I wrapped up my evening by physically disconnecting my the network cable.
Have a great evening / early morning, everyone.
💬🌐 The Lounge: Clientul web IRC modern, perfect pentru self-hosting
În ciuda ascensiunii platformelor moderne de chat, protocolul IRC (Internet Relay Chat) rămâne una dintre cele mai rezistente și apreciate rețele de comunicare din lumea open-source și a comunităților tehnice. Totuși, clienții IRC tradiționali pot părea învechiți pentru utilizatorul obișnuit. Aici intervine The Lounge, un client web IRC modern, conceput special pentru a fi găzduit pe cont propriu (self-hosting), aducând experiența clasică de chat la standardele vizuale și funcționale din prezent.
The Lounge funcționează ca o aplicație web progresivă (PWA), oferind utilizatorilor o interfață similară cu cea a platformelor Discord sau Slack, dar păstrând în totalitate independența și libertatea oferite de IRC.
Iată principalele caracteristici care fac din The Lounge soluția ideală pentru comunități și pasionații de self-hosting:
🔹 Sesiuni persistente (Push Notifications & Bouncer Integrat):
Unul dintre cele mai mari dezavantaje ale IRC-ului clasic este că pierzi mesajele dacă te deconectezi. The Lounge rezolvă nativ această problemă: rulând permanent pe serverul tău, el rămâne conectat la canale în locul tău. Când deschizi aplicația pe telefon sau pe calculator, ești întâmpinat de întregul istoric al conversațiilor ratate, beneficiind în același timp de notificări push în timp real.
🔹 Interfață modernă, adaptivă și suport PWA:
Interfața grafică este curată, minimalistă și complet adaptivă (responsive), funcționând impecabil atât pe monitoare mari de desktop, cât și pe ecranele telefoanelor mobile. Fiind o aplicație Web Progresivă (PWA), The Lounge poate fi instalat direct pe smartphone-ul tău ca o aplicație nativă, direct din browser, fără a fi nevoie de un magazin de aplicații.
🔹 Previzualizări media bogate:
Uită de link-urile simple din textul chat-ului. The Lounge transformă experiența IRC prin adăugarea de previzualizări automate direct în fereastra de conversație. Imaginile, videoclipurile de pe YouTube, tweet-urile și fișierele audio trimise pe canal sunt afișate sub formă de carduri media bogate, făcând navigarea mult mai interactivă.
🔹 Management multi-utilizator și instalare simplă:
Aplicația este construită pe Node.js și poate fi instalată extrem de ușor, fie direct prin managerul de pachete npm, fie printr-un container Docker în doar câteva secunde. Administratorii pot configura serverul în mod „privat” (doar pentru utilizatorii înregistrați de ei, ideal pentru echipe sau grupuri de prieteni) sau în mod „public” (funcționând ca un client web deschis pentru oricine vrea să se conecteze rapid la o anumită rețea).
The Lounge demonstrează că protocoalele clasice pot fi revitalizate cu succes prin tehnologii web moderne, oferind o alternativă sigură, privată și extrem de elegantă la platformele de chat centralizate de astăzi.
#OpenSource #TheLounge #IRC #SelfHosting #WebClient #NodeJS #Docker #TechNews #LinuxEasy
How I Set Up .local Domains with Valid HTTPS in My Homelab #homelab #selfhosting
Watch here: https://youtu.be/EVnwnFY7C1w
I'm not running Gitea, but Forgejo. Here is a write up of the Gitea CVE's that are still embargoed for Forgejo. Regardless, they need to be patched! Make it a priority.
https://hivesecurity.gitlab.io/blog/gitea-forgejo-nine-cves-1263-security-release-2026/ #minimalist
#Linux #Selfhosting #selfhosted #selfhost #InfoSec
#Exploit
Pretty funny that the most often requested file from my small kitchen-server is "/robots.txt". Pretty surprising, since a lot of LLM-bots usually ignores this file 
The other requested files are just some js crap, which is obviously don't exist on my server — possibly some script-kiddies tried to find some entrypoint (see "config.js" and "env.js").
The funny part: the referrer URLs. Hope, the default content of NetBSD /etc/passwd from inside the sandbox was made someone happy 
Finally started the process of migrating off cloudflare to a vps thanks to towonel. Everything I've migrated seems to be working better to ham on CF, and I'm reasonably confident in crowdsec+coraza+anubis as my security stack.
so i tried to make a nested proxmox vgpu thingy. but it doesnt work cause when i enabled viommu on the vm the nvidia driver fails(RmInitAdapter failed) but when i disable viommu mdev doesnt work cause it needs /sys/kernel/iommu_groups/ which only exsists with iommu. i fucking hate this bullshit.
#proxmox #vgpu #viommu #iommu #gpu #nvidia #server #homelab #selfhosting #vm #qemu #pciepassthrough #mdev
Good morning Fedi friends!
On the agenda today: writing a first draft explaining to newbies how to self-host #GoToSocial with the help of #YunoHost.
Now, to do a step-by-step installation guide I need to create a brand new account, so I can document everything.
I'm a little stressed out thinking of which domain name to use and the fact it would be something like my 20th - yes TWENTIETH - ActivityPub account!!! 🫠
The things you do for the love of the fediverse 😅
A couple things this morning. CVE-2026-46242 "Bad Epoll" Linux kernel, CVSS 7.8, local privilege escalation was already mentioned CVE published around May.
1: What's new today: it is now fully weaponized and publicly written up. It's a use-after-free race in the kernel's eventpoll subsystem (ep_remove()/ep_remove_file()). An unprivileged local user can win a race condition and get root.
2: Affected: kernel 5.10 through 6.11.
3: The Attack surface is broad because epoll underlies nginx, Node.js, Python asyncio, databases, Android's event loop.
So, basically anything async I/O.
An App can be the foot in the door, the race condition can lead to root.
I'm running Kernel 6.12.94+deb13-amd64. So driving on.
#minimalist #Linux #Selfhosting #selfhosted #selfhost #InfoSec #Exploit
Good morrow Fediverse,
My name is Ben Looper, I'm a software engineer of five years currently living in Houston, TX...but not for much longer!
My wife and I are moving up to Calgary, AB, and I'm taking the opportunity to make some positive changes in my life, one of the first being to write more.
I have a few projects that my ADHD brain bounces between, and I want to begin fearlessly talking about them here, rather than verbal vomiting about them to whatever poor soul asks me about them.
Maybe (hopefully) these smaller updates will cascade into longer, more detailed pieces, but for now I'll be very happy to just share bits and bites, and to engage with others on stuff they're working on.
That last point specifically is what I'm most excited for - I don't have many people in my life that I can full-blown nerd out about this stuff with, and I really hope that I can find a community here to do that with.
Thanks, and happy hacking 📎
#Introduction #NewHere #Homelab #SelfHosting #NixOS #Sysadmin #calgary
Neuer Blog-Artikel
podman kennt keine Upgrade-Funktion wie docker? Brauchen wir auch nicht.
Im neuen howto machen wir aus einem pod einen sauberen systemd-service: startet beim booten, hält sich per auto-update selbst aktuell und rollt bei einem kaputten Image automatisch zurück.
Und alles rootless.
https://just-stuff.blog/podman-pod-automatisieren/
#Podman #Linux #SelfHosting #systemd #Container #FOSS #rootless
FOSS NEWS
Firefox is adding Vulkan video decoding for Nvidia GPUs:
https://www.omgubuntu.co.uk/2026/07/firefox-vulkan-video-decoding-nvidia
Brave Says This is Not a Privacy Feature, But Using Containers Has Its Perks:
https://feed.itsfoss.com/link/24361/17372577/brave-browser-containers
Introducing Lumo 2.0: advanced reasoning models, image recognition and generation, improved web search, memory collection, custom Lumos:
https://proton.me/blog/lumo-2
(Good to see a privacy focused LLM service catching up to the big guys, it's nice to have a non-invasive online service for those who don't have the hardware to run powerful local models, including image generation models)
(It still sucks at answering Linux-related questions though unfortunately)
OBS Studio 32.2.0 Beta 3 Released: Audio Mixer Fixes and Linux Polish:
https://www.linuxcompatible.org/story/obs-studio-3220-beta-3-released-audio-mixer-fixes-and-linux-polish/
Notesnook 3.4 brings an Inbox API, enhanced desktop security, unique URL slugs, and more:
https://alternativeto.net/news/2026/6/notesnook-3-4-brings-an-inbox-api-enhanced-desktop-security-unique-url-slugs-and-more/
Collabora Office 26.04 Keeps AI Optional and Refines Writer and Calc:
https://feed.itsfoss.com/link/24361/17371813/collabora-office-26-04
Ente makes business metrics public, sharing revenue and user counts:
https://alternativeto.net/news/2026/7/ente-makes-business-metrics-public-sharing-revenue-and-user-counts/
Arti 2.5 brings stable Counter Galois Onion, default Congestion Control and security fixes:
https://alternativeto.net/news/2026/7/arti-2-5-brings-stable-counter-galois-onion-default-congestion-control-and-security-fixes/
Sick of AI Slop, Former Microsoft Engineer Built a New, AI-less Notepad:
https://feed.itsfoss.com/link/24361/17371605/tinyretropad-notepad-clone
Krita AI Diffusion 1.52.1 Released to Fix Server Connection Bug in Local AI Art Plugin:
https://www.linuxcompatible.org/story/krita-ai-diffusion-1521-released-to-fix-server-connection-bug-in-local-ai-art-plugin/
Immich 3.0 adds non-destructive editing & OCR on mobile, workflows, and improved backups:
https://alternativeto.net/news/2026/7/immich-3-0-adds-non-destructive-editing-and-ocr-on-mobile-workflows-and-improved-backups/
Kodi 22 Beta Improves Linux Support for Remote Keys and HDR Profile Support:
https://9to5linux.com/kodi-22-beta-improves-linux-support-for-remote-keys-and-hdr-profile-support
ClamAV Unofficial Signatures v8.0.0 Drops After Five Years with Official Docker and ClamAV 1.x Support:
https://www.linuxcompatible.org/story/clamav-unofficial-signatures-v800-drops-after-five-years-with-official-docker-and-clamav-1x-support/
(more FOSS news in comment)
#WeeklyNews #OpenSource #FOSSNews #FOSS #OpenSourceNews #News #Firefox #Brave #Lumo #ProtonLumo #AI #OBS #OBSStudio #Notesnook #Collabora #CollaboraOffice #Ente #Arti #Tor #TinyRetroPad #KritaAIDiffusion #Immich #Kodi #ClamAV #SelfHosting #LLM #Krita #WebBrowser #Browser #FosseryTech
Found this useful tool called Hister. Basically your search history with better capabilities. I often will stumble across something, forget to save it and recalling it is a hit-or-miss if i can remember the title of the page I am thinking of. This makes it easier. It makes a local copy of the text and adds better search capabilities to sites you have visited in the past.
Forgot what Grim Dawn build I was working on. Searched for it and found it from my browsing history.
Another great tool to add to the self-hosting arsenal. Check it out!
I felt so strongly about this...
... I created a meme.
Was #Vibecoding and caught myself shoving new features that were not needed.
I'm quite happy with my #forgejo replacement for #github. i was missing dependabot enforced correctness and installed a Renovate container. IMO it's an improvement over the github approach. love it.
I am running forgejo as part of my personal stack.
Related codebase gitea realeased 13 CVE's from 7 to 9.8 in criticality yesterday.
Forgejo's are still under embargo:
https://codeberg.org/forgejo/security-announcements/issues/55
Expect to patch around the 9th.
#minimalist #Linux #Selfhosting #selfhosted #selfhost #InfoSec #Exploit
Podman CVE-2026-44517: A breakout can happen during container build using malicious Containerfile and Git Smart HTTP server or GitHub release tar archive. This is weird, essentially it is a path traversal, which has been fixed in 1.43.2.
Still pulling malicious code into a container, we can agree, is not ideal path traversal or not.
Have not explored the exploitation on this one.
#minimalist #Linux #Selfhosting #selfhosted #selfhost #InfoSec #Exploit
I think the title of this blog is a bit misleading. There was definitely a lot of setup and there is still “15 min” of administrative work going on. But a good list of things one can do to maintain a server for their #selfhosting #homelab
https://cleberg.net/blog/homelab-maintenance.html
New post: IPv6 Foundations.
IPv6 isn't "the future of the internet." It's the internet. IPv4 is the relic we keep alive on NAT life support.
A laid-back tour through the basics: how the addresses are built, the two rules for crushing out the zeros, a /64 per subnet so you stop counting hosts, SLAAC, and why blocking ICMPv6 is a self-inflicted wound.
And no, dual-stack isn't a destination. It's a burden.
https://blog.hofstede.it/ipv6-foundations-the-internet-protocol-you-should-already-be-using/
🎶 pldubouilh/gossa
🎶 a fast and simple multimedia fileserver
Serves multimedia files with a fast dependency-free web UI featuring uploads, streaming and note editing
⭐ Stars: 1094
📅 Last Update: Jun 28, 2026
https://github.com/pldubouilh/gossa
#selfhosted #homelab #selfhost #selfhosting #opensource #fileserver #webserver
It's been a full week of #GlitchySocial #Mastodon instance working with #SelfHosted S3 storage implemented with #Garage two-node cluster.
28.2 GB
141 663 objects
Doing perfectly fine for now. Also much faster than with #Hetzner Object Storage. Also for now.
#GlitchySocialMediaMigration #homelab #selfhosting #selfhost #s3 #objectStorage
Sto cercando una soluzione per segnare note/appunti/idee, che sia preferibilmente sincronizzabile e #FOSS. Tra i papabili candidati, ho trovato: #Joplin, #Notesnook e #Logseq.
La scelta principale ricadrebbe su Joplin Server, in #selfhosting, per via della sua natura "cloud". Pareri in merito? Dovrei considerare altro? Avete suggerimenti?
Eviterei soluzioni tutto in uno come #Nextcloud, che installerei comunque ma a parte, per compartimentare meglio e avere un servizio dedicato ad ogni scopo.
European institutions seem to be all in when it comes to introducing age verification mandates for citizens in member states: https://digital-strategy.ec.europa.eu/en/library/commission-sets-out-common-approach-eu-wide-age-verification-technologies
I now have daily anxiety thinking about the future of the fediverse.
So how do I channel this fear and turn it into something constructive? I'm going back to writing #selfhosting guides for newbies.
It's a great distraction, which gives me a bit of hope. Especially the next guide, which will cover my favorite fediverse software - #GoToSocial (which is powering this instance) - and how to install and configure it. Your own little home on the fediverse! Lightweight and features-packed.
Surely something like this would fall outside the scope of regulation. Right? Right?
#MySoCalledSudoLife #YunoHost #VPS #AgeVerification #privacy #EUBigTech
"You have limited resources and want Syncthing to use as few as possible. You care less about performance."
Also consider increasing the full scan interval on folders that change infrequently.
https://docs.syncthing.net/users/tuning.html#tuning-for-low-resources
#android #cloud #diday #digitalsovereignty #linux #linuxmint #macos #opensource #privacy #raspberrypi #raspi #rpi #selfhosting #syncthing #ubuntu #windows
I'm moving my location history from #OwnTracks to #GeoPulse, because GeoPulse is awesome.
#homelab #selfhosted #selfhosting #selfhost #locationtracking #locationhistory
Bei Podman 6 gibt es einige grössere Änderungen, welche eventuell zu Problemen führen können.
Aktuell ist das neue Major Release noch nicht bei meinen Systemen angekommen, aber ich habe mir schon mal angesehen, was da demnächst kommt.
https://linuxiac.com/podman-6-0-lands-with-breaking-changes-amd-gpus-support/
https://github.com/podman-container-tools/podman/releases/tag/v6.0.0
https://byteiota.com/podman-6-migration-guide-breaking-changes/
https://blog.podman.io/2026/06/podman-6-configuration-file-changes/
Self-hosters: what's the actual dealbreaker that makes you walk from a tool?
Making sure I ship none of them.
📓 Neuer Beitrag auf Shellstube:
OPNsense: Eigene Firewall fürs Homelab mit VLANs
OPNsense übernimmt die PPPoE-Einwahl (FritzBox nur Bridge), fünf VLANs trennen Management, Clients, Gäste, Infrastruktur und IoT, ein Managed Switch trunkt die VLANs und ein Omada-AP strahlt getrennte WLANs aus — ein professionell segmentiertes Heimnetz statt Consumer-Router.
https://shellstube.de/anleitungen/opnsense-firewall-vlans-homelab/
#Homelab #SelfHosting #Linux