Don't expect us to try your AI app

Developing a niche or custom tool with AI that solves your problem is great and it is changing the landscape for a few SAAS on a few specific services. But man...! Sooo many posts in the past few weeks either here or a few related subs, of self proclaimed Zuckerbergs promoting their ground breaking new flavor of the day AI apps... Don't expect most people (anyone really) to ever install or try it.

There is a GIGANTIC gap (think of a giant gap, and do x10) between "prompt and pray" AI apps, and production ready, stable and SAFE products. DevOps and cybersecurity principles you do not know exist, and that your coding agent won't advertise because they're trained to be helpful, efficient and to take the path of least resistance.

There is nothing user-friendly about 99% of these principles, your LLM will avoid them by default, and if you don't know anything about software architecture, PLEASE, keep these apps to yourself.

Also; NOT ALL IDEAS ARE WORTH SHARING. Most of them sucks actually, that's why they get peer reviewed in a real development environment.

TLDR; if you don't know what stable and secured software architecture is - don't promote your AI coded app.

https://redd.it/1rywekd
@r_SelfHosted

Project Nomad - the offline knowledge repo
https://youtu.be/P_wt-2P-WBk

https://redd.it/1ryvufj
@r_SelfHosted

Update: TapMap now supports Linux and Docker as requested
https://redd.it/1rz2zsb
@r_SelfHosted

This is the reason you shouldn't host your own email... Microsoft says 🖕to 200k user ISP.

https://www.ispreview.co.uk/index.php/2026/03/microsoft-domain-blacklist-causes-email-problems-for-uk-isp-zen-internet.html

Microsoft seemingly don't care that they've black listed the IPs of a fairly large and well-respected UK ISP. If they can't get help, what chance does an individual have?

Email does feel like a cartel in many respects. I look forward to the flurry of stories of you hosting your own email since the 90s without issue. But, the truth comes from those who have had issues and how painful it was to resolve.

https://redd.it/1rz3zxp
@r_SelfHosted

Houndarr: A polite, automated search scheduler for your *arr stack
https://github.com/av1155/houndarr

https://redd.it/1rz4dfu
@r_SelfHosted

What's something you have recently removed from your server?

couple weeks ago there was a handy topic about stuff that you have recently removed from your server. Whether it was because it wasn't working for you or you moved to something else or you just wasn't using it enough. I think this is very good way of trimming down your stuff or finding new things that do things better.

 

I will start here:

Adguard Home - moved to Technitium because of their cluster feature.

Transmission - moved to qBittorrent as Transmissions started being laggy with loads of torrents

Tracearr/Yamtrack - I just wasnt using it enough. They are great apps, but I get streaming tracking via Emby and TV Shows/Movies releases are tracked in arr stack.

UpSnap - Great app, unfortunately I only have WiFi available so this one didn't work for me.

Komodo - I tried liking it but it was just too much for me, I am back to Arcane.

Flood - As I moved to qBittorrent I switched to Qui

https://redd.it/1rz1pns
@r_SelfHosted

Docker image for Obsidian Sync Headless

Hello,

One of the thing that kept me from using Obsidian Sync and instead self-host multiple solution for it was the fact I couldn't easily sync the data directly to my homelab without using other tools on top of Obsidian Sync.

This has now changed, since February they released a Headless version that can be setup to just do sync.

I've reworked a non-working docker image to have a fully working configurable docker image for it.

Full information:
https://github.com/Belphemur/obsidian-headless-sync-docker

Basically I use s6-overlay with their obsidian-headless npm tool.

>AI DISCLAIMER:
I used AI to help me configure s6-overlay, I have experience doing it in other project like my protonmail-bridge. But I wanted to avoid having to rewrite everything from scratch again, so I used GitHub Copilot Agent to make the change while doing multiple full interactive session and reviewing the change as they happened.

ps: also this full post is actually written by a human for once.

https://redd.it/1rz6ycy
@r_SelfHosted

If Docker Hub images are so insecure why does everyone still use them as the default?

This is something ive been thinking about for a while and i genuinely dont understand.

Every time someone scans their Docker Hub images the reaction is shock. Hundreds of CVEs, multiple criticals, packages nobody needs or uses. This isnt new information. Weve all seen the scan results. And yet every tutorial, every quickstart guide, every stackoverflow answer still starts with docker pull official-image like thats fine.

Hardened alternatives exist. Distroless exists. Minimal images with single digit CVE counts exist. So why is the default still bloated debian images with 400+ packages?

Is it just inertia? Cost? Nobody knows the alternatives exist? Or does everyone just accept this as normal and move on?

Genuinely curious whats keeping the ecosystem stuck here.

https://redd.it/1rzddrb
@r_SelfHosted

First pass at a Grafana dashboard for network monitoring
https://redd.it/1rzj0qu
@r_SelfHosted

self hosted wireguard vs tailscale?

im currently using tailscale to bypass CGNAT, but im thinking about self hosting a wireguard VPN server with ipv6 to not have to rely on tailscale and be completely independent.

which would be more secure? and would setting up wireguard be worth it?

https://redd.it/1rzediq
@r_SelfHosted

Why Is everyone persisting Redis… Even when it’s just a Cache?

I’m not sure if this is the perfect sub, but the question is definitely related to selfhosting

I see most tutorial even official documentation of large projects set up redis/valkey in the compose file with `appendonly yes` or bind mount a directory for redis-data when it's only used as cache.

But… isn’t cache supposed to be ephemeral?

Immich, Nextcloud, Paperless, ... etc. Almost every docker-compose example I find uses persistent storage for Redis.

Instead I'm using the following for all my compose files

redis:
image: docker.io/valkey/valkey:latest
container_name: nextcloud-redis
restart: always
command: valkey-server --save "" --appendonly no
user: 1000:1000
read_only: true
security_opt:
- no-new-privileges:true
tty: false
stdin_open: false
cap_drop:
- ALL
networks:
- nextcloud-redis-net

So… what am I missing?

* What’s the real benefit of mounting a Redis data directory?
* Why use AOF or RDB persistence when Redis is only functioning as a volatile cache?
* Are there cases where persistence is required even if the project calls it a “cache”?

I hope someone here can shed some light on this as this sub has been my most valuable source of learning from the experts.

https://redd.it/1rzmjb0
@r_SelfHosted

Fishing of the day
https://redd.it/1rzmx51
@r_SelfHosted

Map Tracker and Trip Planner - Updated

https://redd.it/1rzsnuu
@r_SelfHosted

It's Not Friday Anymore - Roundup

But on Friday, there were lots of really cool projects shared.

Here are the top projects:

Top 10 posts in markdown format:

1. Update: TapMap now supports Linux and Docker as requested
- u/Old-Marketing6949 | 272 pts | 34 comments | 17:43 UTC
- GitHub: https://github.com/olalie/tapmap

2. Foldergram: Self-hosted local photo gallery with an Instagram-style feed and layout
- u/sajjadalis | 240 pts | 33 comments | 01:49 UTC
- GitHub: https://github.com/foldergram/foldergram

3. Project Nomad - the offline knowledge repo
- u/Th3LonelyBard | 235 pts | 43 comments | 13:10 UTC

4. Docker image for Obsidian Sync Headless
- u/Belphemur | 79 pts | 13 comments | 20:13 UTC
- GitHub: https://github.com/Belphemur/obsidian-headless-sync-docker

5. Kumiho v0.12.0 - Fast & Flexible Self-hosted E-Book/Audiobook Server (Docker)
- u/SuspiciousCow7289 | 34 pts | 12 comments | 11:54 UTC
- GitHub: https://github.com/aha-hyeong/kumiho

6. [Fishing of the day](https://reddit.com/r/selfhosted/comments/1rzmx51/fishingoftheday/)
- u/badrrrrmoon | 17 pts | 3 comments | 09:12 UTC

7. X(P)FeRD: Design and manage XRechnung and ZUGFeRD compatible e-invocies
- u/testheit | 12 pts | 6 comments | 06:24 UTC
- GitHub: https://github.com/tiehfood/xpferd

8. CollabMD: Turn local Markdown folders and Obsidian vaults into a real-time collaborative web app
- u/ndezt | 7 pts | 9 comments | 10:02 UTC
- GitHub: https://github.com/andes90/collabmd

9. I built a small self-hosted Discord-style Matrix client for my community
- u/VitosiCZ | 5 pts | 7 comments | 17:02 UTC
- GitHub: https://github.com/Vitosicz/Heorot
- GitHub: https://github.com/Vitosicz/Heorot-voice-relay

10. Anything stand out as an oof?
- u/ss5raditz | 5 pts | 12 comments | 22:00 UTC

https://redd.it/1rzz3dt
@r_SelfHosted

PSA: Trivy container scanner compromised

Please be advised that all versions of Trivy (container vulnerability scanner) 0.69.4 were compromised because of credential theft:

https://www.bleepingcomputer.com/news/security/trivy-vulnerability-scanner-breach-pushed-infostealer-via-github-actions/

Everybody who used this version with any tag can consider their environment breached.

https://redd.it/1s04ae3
@r_SelfHosted