this post was submitted on 18 Dec 2025
33 points (92.3% liked)

Selfhosted

53767 readers
652 users here now

A place to share alternatives to popular online services that can be self-hosted without giving up privacy or locking you into a service you don't control.

Rules:

  1. Be civil: we're here to support and learn from one another. Insults won't be tolerated. Flame wars are frowned upon.

  2. No spam posting.

  3. Posts have to be centered around self-hosting. There are other communities for discussing hardware or home computing. If it's not obvious why your post topic revolves around selfhosting, please include details to make it clear.

  4. Don't duplicate the full text of your blog or github here. Just post the link for folks to click.

  5. Submission headline should match the article title (don’t cherry-pick information from the title to fit your agenda).

  6. No trolling.

  7. No low-effort posts. This is subjective and will largely be determined by the community member reports.

Resources:

Any issues on the community? Report it using the report flag.

Questions? DM the mods!

founded 2 years ago
MODERATORS
ruud@lemmy.world
Loki@lemmy.world
CannaVet@lemmy.world
devve@lemmy.world
HybridSarcasm@lemmy.world
HybridSarcasm@lemmy.hybridsarcasm.xyz
33
A dummy's request for Nepenthes (lemmy.world)
submitted 1 day ago by Maroon@lemmy.world to c/selfhosted@lemmy.world
12 comments fedilink hide all child comments
 

I want to set up my own Nepenthes against LLMs. I have purchased a domain, say "wowsocool.com".

I have a RaspberryPi 4B that I want to use as an nginx reverse proxy, and an old Acer laptop that will host the Nepenthes. I am going to host this at my current residence router as I won't be staying there too long. I thought this was a cool temporary project.

My problem is that the website sort of glosses over the whole nginx setup and IP pointing etc.

If anyone has done this before, is it possible to please write up a dummy's guide that goes through everything. I am quite unconfident and my skills are nonexistent in this field.

Pretty please.

you are viewing a single comment's thread
view the rest of the comments
[–] theunknownmuncher@lemmy.world 2 points 1 day ago* (last edited 1 day ago) (1 children)

Yeah I'm not saying its perfect and LLMs are non-deterministic so it could give you some crap. You're not wrong and it's good to be aware of that. How do you verify some random stranger from the internet wasn't an asshole and gave you malicious config? 🤷 The best answer is probably just that OP should heed the warning on the website they linked, if they have no confidence or relevant skills:

THIS IS DELIBERATELY MALICIOUS SOFTWARE INTENDED TO CAUSE HARMFUL ACTIVITY. DO NOT DEPLOY IF YOU AREN'T FULLY COMFORTABLE WITH WHAT YOU ARE DOING.

I pasted the OP unmodified into a local LLM and it gave me this:

Paste this (replace  192.168.1.105 with your Acer’s local IP from Part 1.3): 

server {
    listen 80;
    server_name wowsocool.com www.wowsocool.com;

    location / {
        proxy_pass http://192.168.1.105:8000/;
        proxy_set_header Host $host;
        proxy_set_header X-Real-IP $remote_addr;
        proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
        proxy_set_header X-Forwarded-Proto $scheme;
    }

along with correct instructions on finding the IP of the laptop, port forwarding, and examples on how to set up DDNS for several popular providers. The only thing I can see that is wrong is the port should be 8893 instead of 8000 and they may want to proxy a different path to Nepenthes than /

[–] ShortN0te@lemmy.ml 1 points 20 hours ago

Yeah I'm not saying its perfect and LLMs are non-deterministic so it could give you some crap. You're not wrong and it's good to be aware of that. How do you verify some random stranger from the internet wasn't an asshole and gave you malicious config? 🤷

There is no guarantee either, but on a public forum at least a couple of eyes look at it too. Not saying that this makes it trust worthy. But a LLM usually words it output very direct and saying "this is the absolut truth" which can lead to a much higher trust relation then a stranger on a forum that writes "maybe try this".

I generelly would not recommend using the llm for potential security related questions (or important or professionally questions) were your own knowledge is not big enough to quickly vet the output.