I can recommend some stuff I’ve been using myself :

• Dolibarr as an ERP + CRM : requires some work to configure initially. As most (if not all) features are disabled by default, it requires enabling them based on what you need. It also has a marketplace with a bunch of modules you can buy
• Gitea to manage codebases for customer projects. It can also do CI but I’ve not looked into it yet
• Prometheus and its ecosystem (mostly promtail and grafana) for monitoring and alerting
• docker mail server : makes it quite easy to self host a full mail server. The guides in their doc made it painless for me to configure dmarc/SPF/other stuff that make e-mail notoriously hard to host
• Cal.com as a self hostable alternative to calendly
• Authentik for single sign-on and centralized permission management
• plausible for lightweight analytics
• a mix of wireguard, iptables and nginx to basically achieve the same as cloudflare proxying and tunnels

I design, deploy and maintain such infrastructures for my own customers, so feel free to DM me with more details about your business if you need help with this

It’s a server that hosts map data for the whole world, and sends map fragments (tiles)as pictures for the coordinates and zoom levels that clients request from them

Are you talking about Nginx Plus ? It seems to be a commercial product built on top of Nginx

According to the Wikipedia article, “Nginx is free and open-source software, released under the terms of the 2-clause BSD license”

Do you have any source about it going proprietary ?

It’s still available in Debian’s default repositories, so it must still be open source (at least the version that’s packaged for Debian)

There have been some changes in a few recent releases related to the concerns I raised :

• the default tile provider is now hosted by the Immich’s team using protomaps (still uses vloudflare though)
• a new onboarding step providing the option to disable the map feature and clarifying the implications of leaving it enabled has been added
• the documentation has been updated to clarify how to change the map provider, and includes this guide as a community guide

In my experience, OnlyOffice has the best compatibility with M$ Office. You should try it if you haven’t

It’s not that I don’t believe you, I was genuinely interested in knowing more. I don’t understand what’s so “precious” about a random stranger’s thought on the internet if it’s not backed up with any source.

Moreover, I did try searching around for this and could not find any result that seemed to answer my question.

Why do you trust NordVPN more than your ISP ? Is your ISP known to be especially bad ?

Can you give examples of countries where mainstream media is not owned by billionaires ?

What I did is use a wildcard subdomain and certificate. This way, only pierre-couy.fr and *.pierre-couy.fr ever show up in the transparency logs. Since I’m using pi-hole with carefully chosen upstream DNS servers, passive DNS replication services do not seem to pick up my subdomains (but even subdomains I share with some relatives who probably use their ISP’s default DNS do not show up)

This obviously only works if all your subdomains go to the same IP. I’ve achieved something similar to cloudflare tunnels using a combination of nginx and wireguard on a cheap VPS (I want to write a tutorial about this when I find some time). One side benefit of this setup is that I usually don’t need to fiddle with my DNS zone to set up a new subdomains : all I need to do is add a new nginx config file with a server section.

Some scanners will still try to brute-force subdomains. I simply block any IP that hits my VPS with a Host header containing a subdomain I did not configure

These services usually use either or both of passive DNS replication (running public recursive DNS resolvers and logging lookup that returns a record) and certificate transparency logs (where certificate authorities publish the domain names for which they issue certificates). A lot of my subdomains are missing from these services

It does not seem to be the case. Was it the full domain for this instance ?

The closing parenthesis got caught into the link (at least with my client), turning it into a 404. You should add a space

I don’t game that much on pc anymore, but this reminded me of this post about Linux gamers providing good bug reports.

Things have been going well for me, using docker-mailserver.

I followed the setup guide, did everything in the DKIM, DMARC and SPF documentation page. The initial setup required more involvement from me than your standard docker-compose self-hosting deployment, but I got no issues at all (for now, fingers crossed) after the initial setup : I never missed any inbound e-mails, and my outbound e-mails have not been rejected by any spam filter yet.

However, I agree with everyone else that you should not self-host an important contact address without proper redundancy/recovery mechanism in case anything goes wrong.

You should also understand that self-hosting an email address means you should never let your domain expire to prevent someone from receiving emails sent to you by registering your expired domain. This means you should probably not use a self-hosted e-mail to register any account on services that may outlive your self-hosted setup because e-mail is frequently used to send password reset links.

Downvoted for cropping out the reference to the original…

I will definetly look into this. I’ve been using tube archivist for a while now, but it eats so much RAM (especially the Elastic search dependency IIRC)!

At this point, I don’t know if you are trolling or not. You keep saying that this is nothing like timezones, while describing something that really looks like timezones to anyone else reading it.

Do you suggest we all use one unique time, regardless of local solar time? Or do you suggest we all use our own local solar time, based on each person’s exact longitude on the globe, regardless of borders and current timezones ?

Are you suggesting something like continuous timezones? Thanks for bringing this nightmare to a whole new level! :)