UPDATE: To everyone who suggested YUNO, thank you so much. This seems like it is about to make my journey much easier. It is basically almost exactly what I was looking for, but I was unaware that it existed.
Thank you ALL for your suggestions, actually. It’s a bit overwhelming for an almost complete noobie but I an going to look into all of the suggestions in time. I just saw that there were several mentions of YUNO so I decided to make that one of the first things I investigated.
So, about two months ago, I had a very eye opening experience. As the result of a single misconfigured security setting on my Android, I was locked out of my Google Account on my phone AND all of my PCs. I had no access whatsoever to Google, or any of the literally hundreds of services that I get through Google.
This is when I realized that I relied entirely on Google/Android because those two days were actually very difficult, being cut off from media, services, passwords, everything, from the past almost twenty years of my life, could be taken away from me in an instant. The decades of my life that were locked away in my Google Account included hundreds of thousands of pictures, almost a hundred thousand audio tracks, several hundred books, several hundred apps, thousands of videos, etc. ad infinitum. Unfortunately, very little of this material was backed up at that point. That is my fault. Also, the misconfigured security setting was my fault as well.
The amount of data, media, memories, services, etc. that would have been lost is actually endless and it would have affected my life in several ridiculously negative ways.
Luckily, in the end, I was able to get my access back and then basically immediately grabbed all of the several terabytes of information and media of mine that they had, and that I was almost locked out of. I have it all in my house now on a drive in my computer, with a backup made on another disconnected disk.
I then decided that no corporation was ever going to have such an insanely high level of influence on and control over my entire life and my media ever again. That experience was actually very scary.
I’ve been trying to get into SelfHosting, but am finding it quite daunting and difficult.
There is a LOT of stuff that I have to learn, and I am mostly unsure of where to even begin. I know basically nothing about networking.
I need to learn the very basic stuff and work my way up from there, but everything that I’ve seen on the Internet assumes that the reader already has a basic to intermediate understanding of networking and the subjects that surround it. I do not, but I am going to learn.
I just need someone to show me where to start.
Thanks in advance for any assistance!
@MTZ@lemmy.world Good luck! I’m looking forward to following your journey! I’ve been playing a lot with #selfhosting lately too, and feel quite happy with my current setup (@nextcloud@mastodon.xyz for photos and docs, @gitea@social.gitea.io for code, dots and docs, and #snac by @grunfink@comam.es to replace corporate social networks/media. I’d like to go further with #vaultwarden and who knows what else, so the advice you’ve gotten is really valuable to me as well.
Like you I also had a terrible experience, only with Apple and my Iphone where it didn’t accept my (correct) pincode, and I couldn’t log in to Apple ID due to not having access to my phone. I ended up having to reset my phone after much banging my head against the wall. I decided then that I would not be reliant on that thing for access to everything else. I’ve ordered a #JollaC2 Community Phone by @jolla@techhub.social to replace my Iphone. No more #bigtech for me.
Good luck to you! I had never heard of Jolla before. That’s very cool. Im in the US and am so far unsure if Jolla products are marketed or even supported here. More investigating!
Yunohost should be the software you’re looking for. Install stuff by clicking. Much less terminal stuff
Oh my god, you were right. Yuno is AMAZINGLY useful for exactly what it is that I am attempting to do!
Glad you like it! If it’s useful to you, don’t forget to donate or at least say thanks to the contributors once everything is up and running and stable.
Don’t forget backups! Restic is in yunohost and should be useful for that. Yunohost has a guide.
Sevral people have mentioned Yuno and I’m going to look into it shortly. Thanks for the input!
There’s Yuno, CasaOS is ridiculously easy to setup, manage and maintain as well. There’s UnRaid (not free, but very good), Proxmox is extremely versatile.
I am currently running light services (caldav, carddav, PW manager, and some other lighter stuff) on an N150 mini PC, and have a hefty server for heavier services running on Proxmox.
Of course, I follow the 3-2-1 backup rule, but only for data I could never get again. Movies, Series, music, I never back up.
As someone who went through this after trumps 2nd term and power grabs i can give you my process:
- angrily unsubscribe all big tech subscriptions
- make a protonmail and tutamail account, realize I like proton suote more and decide to subscribe
- transfer all passwords to proton suite
- download all photos and other from cloud to an external drive. TURNS OUT THIS TAKES SEVERAL DAYS WTF
- angrily order a rasp-pi and an external SSD
- use step by step tutorials from pimylifeup to install docker and immich. Fall in love
- gradually (via help of google and GPTs) become confident enough with command line to start managing the server headless over SSH
Fast forward 6 months: My router is now running OpenWRT. With a few necessary exceptions my network access is always through ProtonVPN. My external devices are connected via wireguard to the router when not on home wifi and only after that reach the www. I have 24/7 access to my services from everywhere. My main server is now an old office mini pc running about 10 services. Im using borg for nightly snapshots(its a bit like apple time machine) and after that everything is backed up to another server at a friends house via rsync and ssh. I have a third mini computer whose purpose is to be my tv’s UI with access to services like the national broadcasts web ui and my own jellyfin and invidious (adless youtube client) The tv does not have an internet connection anymore. I even made a custom land page that automatically opens full screen in a browser when open my tv.
The point is: this builds gradually and you have fun doing it. …until it breaks :D The most painful parts involved networking so you can settle for LAN only at first to keep things simple
Re-investing in a new platform full of tools (Proton suite) isn’t in my opinion a rational answer. My answer is self host vaultwarden, self host your file storage, and choose between Proton and Tuta for mail, and use your own domain name so you can take your email address with you should you move.
In my opinion No-one should ever store any form of personal data implicitly on someone else’s computer.
Oh i have vaultwarden as well nowadays
You seem to imply you also want to selfhost some email service. But that’s sadly one of the few things that will always be better at a trusted third party email provider.
Besides that it seems the most important thing you want is pure data storage, and that kind of selfhosting is not hard. In many cases one would not even consider it as part of “selfhosting” as it can be as simple as a local NAS or external HDD.
So my question is what do you actually want to accomplish? Because I think for a lot of your concerns you don’t even need to go and host something.
I don’t want to replace email, per se. More so, the services that come along with it. Stuff like photo storage and sync, notes and reminder sync, calendar sync, and a lot of the hundreds of other small things that I have just been leaving up to Google that would cause a huge problem for me if I lost access.
I have the password situation handled with KeePassXC on my PCs and KeePassDX on my phone, but that’s about as far as I have come as of yet.
If you have systems or services you’re dependant so strongly, always have an backup / emergency access. 3rd party or self hosted.
My 5c but I think you agree.
Point being as a decades old it professional I see design more important as the detail implementation.
Indeed, I do agree but I’ve never done anything close to this magnitude so it is kind of intimidating for me. It is a learning process though!
I’d recommend not to go containerized but that can start a flame war. I would think it easier. But best to stick to the recommended beginner tutorial that someone else posted and go along from there.
Then ask questions on the way.
Native vs containerized really depends on what it is going to be doing tbh. If it’s just downloading and/or moving files around, containerized is fine. And having your docker-compose.yml files saved somewhere external will make future hardware upgrades/recovery much easier.
There is certainly some learning curve to figure out the quirks of a compose file, but the nice part is that most services will post an example compose file for you to edit as needed. And that means learning it is basically just a matter of reading the example files and figuring out what the different fields mean; yaml is extremely easy to read, even for someone who has never looked at it before. You may have some fringe cases that need a deeper dive, but the vast majority of setups are basically just a matter of “copy the example compose, edit the volumes as needed, and fuckin send it.”
Yes indeed. However as a beginner I think it’s far easier just to install and run a daemon. But maybe that’s just me. And of course if the intended way of running it is only container by default.
I’m 100% self taught & was in exactly the same place. I’d never used Linux before I got my first Pi. I spent a bit of time trying to familiarise myself with & made some notes regarding command line (notes I still rely on).
There’a so many ways to achieve the goal, you’ll eventually find a way that works for you. My personal preference was Docker/Docker Compose deployed via Portainer.
Even that was confusing. Until I found this excellent video on how to read Docker requirements & apply them step by step into Portainer. He explains slowly & methodically exactly what he is doing & why.
Portainer is a method of handling Docker stacks/containers via a web UI. Both Docker & Portainer are simple to install.
It’s easier to use Docker Compose files and/or .env (environment variable) files (both are even simpler to deploy through Portainer) but this video taught me what was going on & gave me confidence to have a go. What attracted me to Docker is you can easily remove stacks/containers if/when you make a mess rather than wiping the drive & start again, which is how I went about things initially.
This gave me the tools to set up Nginx Proxy Manager & I never looked back.
As you’ve realised, a robust backup solution is essential (plus off site backup for particularly important stuff) as things will inevitably go wrong along the way (I see Borg, Restic mentioned often, I went for Kopia).
I can’t recommend highly enough making detailed notes along the way, I rely on Joplin.
If you start using Docker, dont fall into the trap of using the “latest” tag. If you know the version number you’re running its far easier to re-deploy if an update is bad.
Enjoy your new time consuming, teeth gnashingly frustrating …and yet rewarding hobby 👍
Instead of self hosting, why not try better offerings?
Most anything you probably use Google for, you can do with a disroot account. Riseup is a great group, with many similar services (not all). The tildeverse also has myriad replacement services.
Just try to support them, financially.
I have no idea what Riseup, Tildeverse, or Disroot are but I will certainly look into it.
Amazing, thanks for sharing. I understand Riseup and Disroot and the missions of each, but I’m having a bit of trouble with Tildeverse , likely because I am not well versed in *nix operating systems as of yet. I’m going to commence to reading up on all of these!
Oh, yeah, I guess I kinda tossed that out there, as they do host a ton of servives. However, its very welcoming as an onboard ramp to learn about *nix stuff. Just ease yourself into that, while exploring Disroot and RiseUp :)
Some cloud backups offer lifetime deals which can be a good second backup.
As for self hosting. You should buy a domain, use a dynamic DNS service. This doesn’t cost much but is very useful. Get a decent router that isn’t superhackable. Get something like fedora for your servers, the os.tree file system is good because if you break your machine with updates you can just roll back.
Randomize your ports, be careful what you expose behind open ports, be careful what you install on your server, and run stuff in containers. Also block port scanning.
As for learning you are just going to have to research. For servers you need to open ports for whatever you are using, like a webserver, file server, etc. you need to be mindful of security. Keep it updated. You should keep your server separate from your main machines if possible and disable your main machines ability to port scan your server by using a VPN or something on your server.
It’s not all that difficult. Just watch some videos and passively absorb this knowledge.
As for backups, you should invest in one of these lifetime plans from a cloud provider. Maybe create separate accounts that you only use for your server stuff to help keep the details from getting leaked. (Email accounts, passwords, etc) On top of this you should have a second backup which I recommend hosting yourself so you can learn. This way your data should be safe.
In your backup server, you should run mirror raid, this way if you lose a drive, you won’t lose your data. Parity raid is t quite as good because you could lose a second drive while rebuilding. It’s cheaper for the amount of space, but you can just invest in a couple of high density, enterprise level drives from a reputable brand. Run mirror raid, and backup your files. Throw in a small SSD for the OS, and a medium SSD for cache. You can go as cheap or expensive as you want.
Get some remote management software. Since you aren’t super technical, use a remote desktop system. Just make sure it’s a good one that is well maintained because this is a big single point of failure in your security.
If you install a web browser on your server, disable scripts and ads, and only use it to download stuff you need from GitHub or something. Try to avoid exposure to sites which may have vulnerabilities.
As for the server. Using VMs and containers, you can use it relatively safely for many things. You could even use cloudfare if you wanted for additional security so your servers actual IP is not ever in the wild. People will only see an IP for that particular port and server VM. This is a bit overkill maybe.
You can run a backup server, web servers, game servers, you can host your own DNS, you can run media servers, and even your own private VPN or local AI models. There is tons of stuff you can do with a server.
Also don’t forget to set a reminder to reregister your domain name!
The simplest setup would be an old computer with a bunch of hard drives attached, maybe an old desktop, maybe a laptop with a powered USB hub. This is all you really need to get started.
The FUTO guide is meant for total beginners.
Thank you! I will begin to look over it tomorrow!
They use OpenVPN for some reason. Wireguard is superior in every way. In case you set up a VPN.
I didn’t know I needed this. Thanks!
If you want to start cheap, I can recommend you to use an old notebook. In my opinion it’s the perfect home server for beginners.
- It’s cheap (most people have an unused laying around anyway)
- If it’s old enough to still have a dvd drive, you can replace it with a second sata ssd. There are cheap frames for this available.
- it has a battery, so it can shutdown if there is a power outage
- It’s slim. You can just throw it on your closet and forget about it
Most services don’t need much. So it’s just fine if your “server” is like 10 years old. My first notebook server had 2 cores and 4 GB ram and it run Proxmox with like 10 lxc containers just fine.
Awesome suggestion! Thank you.
The only thing to watch out for using a laptop that is plugged in 24x7 is the battery. Battery management systems are generally pretty good, but Li-ion batteries can fail catastrophically. As long as you make a point to check on it periodically it’s probably fine.
I’m using an old laptop as a local interface for my network setup, since its in my basement, and I actually pulled the battery out entirely since I have a beefy UPS powering everything. Paranoid, maybe, but a Li-ion battery sitting on top of my equipment rack could do a ton of damage if it were to fail someday.
I will probably get flogged by this answer but here it goes:
I’d throw you right into the deep end: get a spare machine (an old laptop or PC) and install proxmox on it. Play around, breaks shit, delete the container/VM and start over.
Grab stuff from the Community Helper Scripts and see new stuff, try alternatives, see what works for you and don’t be afraid of breaking stuff.
It takes a bit longer and some basic concepts might fly over your head, but the stuff you learn like this, you learn by heart.
It’s been a few years since I started tinkering with a laptop with a busted video output circuit. Now I serve NextCloud and Immich to my family, keep receipts and documents neatly organised on Paperless, have a decent arr stack and a bunch of extra goodies. All from “a PC without video? Might as well make a server” now with a proper machine with several drives on ZFS pools, health checks and redundancy.
Its a helluva rabbit hole.
I was unaware that those Community Helper Scripts existed! They should definitely be helpful at some point down the road!
Good luck!
Isn’t that how everyone does it? 😬
I didn’t start with a spare, so by the time I was semi-reliant on my self hosted stuff, a breakage was an issue. Also I started with bare Linux, then CasaOS. There was no easy rollback from snapshot/restore backup like on proxmox
At first, you have to decide what do you need. You can selfhost almost everything, but in my opinion there is no need to do so.
Second thing is hardware to host it. I saw a few comments recommending NAS. It is of course good thing, but my suggestion is just building your own NAS. You need only decent computer to do it.
The easiest way is just installing TrueNAS on it - with that you can setup file sharing and your apps via docker.
But what apps would you need/want? I can recommend a few from my stack:
- vaultwarden - for storing passwords, 2FA codes
- immich - for storing photos, videos, autoupload from phone
- adguard - for getting rid of ads, tracking They are really easy to deploy.
As an alternative to file shares via SMB, nextcloud is really good option. It’s google drive on steroids. Also includes photo gallery with great app on android/ios with autoupload option.
Nice! Yes, photo storage and backup as well as note sync, reminder sync, calendar, etc. are all very important micro services to me.
I think Nextcloud is a really good option for you. It includes everything you mentioned.
Start with a nas, the rest will naturally come when you try to access your data for outside, or organize your data, or save more data types to your nas.
Your nas should be the central device and you build the rest around it.
Now, The question is, which nas? I would recommend synology, they are not too performance, a bit expensive and the company is lately doing suspicious moves, but the sw and the hw are rock solid and they are quite good for beginners from almost all angles. Extra point for how many howtos and tutorials are present in internet.
Once you are comfortable with them, you will realize the rest
Unless you have experience with ethernet equipment and such it is probably better to start with some hosted service of an open-source app like Nextcloud or Immich or (slightly more advanced) a VPS somewhere. Doing it immediately from home with your own server has a steep learning curve.
Thank you for the advice! After I get a firm grasp of the concepts at hand, I will look into NextCloud and Immich.
I really wish people would realize the level of dependency, and thus leverage, these companies have encouraged us to give them, before they learn it first hand.
Yeah, it was dumb. I should have thought about it long before what occured, but I didn’t. But, in the end, I definitely learned my lesson.
You’re not dumb, we are all being brainwashed into sticking our asses in the air and convinced we won’t get fucked.
