this post was submitted on 25 Jul 2025
189 points (89.9% liked)

Selfhosted

50282 readers
388 users here now

A place to share alternatives to popular online services that can be self-hosted without giving up privacy or locking you into a service you don't control.

Rules:

  1. Be civil: we're here to support and learn from one another. Insults won't be tolerated. Flame wars are frowned upon.

  2. No spam posting.

  3. Posts have to be centered around self-hosting. There are other communities for discussing hardware or home computing. If it's not obvious why your post topic revolves around selfhosting, please include details to make it clear.

  4. Don't duplicate the full text of your blog or github here. Just post the link for folks to click.

  5. Submission headline should match the article title (don’t cherry-pick information from the title to fit your agenda).

  6. No trolling.

Resources:

Any issues on the community? Report it using the report flag.

Questions? DM the mods!

founded 2 years ago
MODERATORS
ruud@lemmy.world
Loki@lemmy.world
CannaVet@lemmy.world
devve@lemmy.world
HybridSarcasm@lemmy.world
HybridSarcasm@lemmy.hybridsarcasm.xyz
189
The Future is NOT Self-Hosted (www.drewlyton.com)
submitted 2 weeks ago by ruffsl@programming.dev to c/selfhosted@lemmy.world
91 comments fedilink hide all child comments
 

The future is community-hosted

Related Hacker News thread:

(page 2) 41 comments
sorted by: hot top controversial new old
[–] MrTolkinghoen@lemmy.zip 2 points 1 week ago

I like the article, but agree with so many of the comments here as well.

Ultimately I think one thing I'd love for would be a way to simply provide services (like Immich) for people but where the client is end to end encrypted, and neither the user nor the service has to worry about the how.

Example: how can I share an Immich with my family and friends, but where I don't have access to any of their data. I.e. what signal does, but immich or any other service. I want to share my server with friends/family, but I don't want access to any of their data. It isn't a lack of trust, it's that I don't want that as even something they have to worry about

That same concept then extends here to community hosting. If we can solve the problem for a few, it should be scalable to many.

[–] sugar_in_your_tea@sh.itjust.works 2 points 2 weeks ago* (last edited 2 weeks ago) (5 children)

End-to-end encryption means the service provider can't see your data even if they wanted to

Not necessarily. All it means is that intermediaries can't see the data in transit. You need to trust that the data is handled properly at either end, and most service providers also make the apps that you run at either end. Your library is more likely to buy whatever is cheapest than what respects your privacy the most (e.g. probably Google drive, not Tuta or Proton).

The incentives for even community-hosted services (e.g. if the library spun up its own cloud servers) to share/sell information is just too high. Maybe the library found someone uploading illegal content, and they wanted some monitoring in there to catch service abusers going forward. They'll probably put something into the client that a third party monitors, and now you have someone snooping on everything.

Instead of this, I think P2P storage is the better option for those who don't want to self-host. That way there's an incentive for the person providing storage to not know what it is (reduce liability), as well as the person submitting the data (reduce risk). Unfortunately, most current solutions here are a little shady, because they either rely on volunteers (no guarantees about data integrity) or anonymous payments (again, no guarantees about data integrity).

I'd like to see something in the middle:

  • apps that work off buckets of data, that the user configures
  • services that provide data guarantees that users can choose (e.g. AWS S3, Backblaze B2, Hetzner Storage boxes)
  • common protocol between apps for accessing this data

So if you want more storage, you buy said storage and know who is responsible for protecting it, and your app doesn't care where it comes from.

That's possible, but the bigger leap is getting people off the major platforms like Google's or Microsoft's cloud.

[–] deur 2 points 2 weeks ago (1 children)

You can already do what you want. S3 with HTTP, XML + XSL for responsive / dynamic content.

[–] sugar_in_your_tea@sh.itjust.works 1 points 2 weeks ago

Sure, but where are the apps?

load more comments (4 replies)
[–] LovableSidekick@lemmy.world 1 points 1 week ago

snot?

[–] Evotech@lemmy.world 1 points 1 week ago

«legally aquired» lol

[–] gblues@lemmy.zip 1 points 2 weeks ago

Great article!

load more comments
view more: ‹ prev next ›