this post was submitted on 21 Sep 2025
102 points (100.0% liked)

Selfhosted

51841 readers
585 users here now

A place to share alternatives to popular online services that can be self-hosted without giving up privacy or locking you into a service you don't control.

Rules:

  1. Be civil: we're here to support and learn from one another. Insults won't be tolerated. Flame wars are frowned upon.

  2. No spam posting.

  3. Posts have to be centered around self-hosting. There are other communities for discussing hardware or home computing. If it's not obvious why your post topic revolves around selfhosting, please include details to make it clear.

  4. Don't duplicate the full text of your blog or github here. Just post the link for folks to click.

  5. Submission headline should match the article title (don’t cherry-pick information from the title to fit your agenda).

  6. No trolling.

Resources:

Any issues on the community? Report it using the report flag.

Questions? DM the mods!

founded 2 years ago
MODERATORS
ruud@lemmy.world
Loki@lemmy.world
CannaVet@lemmy.world
devve@lemmy.world
HybridSarcasm@lemmy.world
HybridSarcasm@lemmy.hybridsarcasm.xyz
102
Selfhosting Sunday! What's up? (lemmy.nocturnal.garden)
submitted 1 week ago by tofu@lemmy.nocturnal.garden to c/selfhosted@lemmy.world
99 comments fedilink hide all child comments
 

With the recent discussions around replacing Spotify with selfhosted services and the possibilities to obtain the music itself, I've been finally setting up Navidrome. I had to do quite a bit of reorganization to do with my existing collection (beets helping a ton) but now it's in a neatly organized structure and I'm enjoying it everywhere. I get most of my stuff from Bandcamp but I have a big catalog from when I've still had a large physical collection.

I'm also still working on my docker quasi gitops stack. I've cleaned up my compose files and put the secrets in env files where I hadn't already, checked them into my new forgejo instance and (mostly) configured renovate. Komodo is about to get productive but I couldn't find the time yet. Also I need to figure out how to check in secrets in a secure way. I know some but I haven't tried those with Komodo yet. This close of my fully automated update-on-merge compose stacks!

I've also been doing these for quite a while and decided to sometimes post them in !selfhosting@slrpnk.net to possibly help moving a bit from the biggest Lemmy instance, even though this community as it is is perfectly fine as well as it seems.

What's going on on your servers? Anything you are trying to pursue at the moment?

you are viewing a single comment's thread
view the rest of the comments
[–] Batman@lemmy.world 4 points 1 week ago (6 children)

Some things which have caused issues for me:

File permissions

Video/audio format (264/aac stereo is best for compatibility)

[–] Kaldo@fedia.io 1 points 1 week ago (5 children)

Oh file permissions are a nightmare to me, I thought I managed to get it sorted but after i installed lidarr, it alone suddenly can't move files out of the download location anymore. I even tried to chmod 777 the data folders and nothing. I dont think I quite have the grasp on how those work with docker on linux yet, it seems like those arr services also have some internal users too which I dont get why would they.

Wdym with the formats, is this referring to transcoding? I kept those on defaults afaik

[–] h0rnman@lemmy.dbzer0.com 2 points 1 week ago (2 children)

Could be that lidarr is setting its own permissions for downloaded stuff (look for something like dmask or fmask in the docker config). You might also need to chmod -R so it hits all sub folders. If you have a file or directory mask option, remember that they're inverse, so instead of 777, you'd do 000 for rwxrwxrwx.

[–] Kaldo@fedia.io 1 points 1 week ago (1 children)

You might be onto something, lidarr does have UMASK=002 setting in the .env file. I think the issue is when sabdnzbd puts the files and then lidarr can't read them, so what exactly is the expected permission setting then in this case? If I put it to 000 for lidarr, won't other services then be unable to add the files there?

I always feel so dumb when it comes to these things since in my head it's something that should be pretty straightforward and simple, why can't they all just use the same user and share the same permissions within this folder hierarchy...

[–] h0rnman@lemmy.dbzer0.com 1 points 1 week ago

Sab might have its own mask settings - it would be worth looking at. Same thing applies here - subtract the mask part from 7 to get the real permissions. In this case, mask 002 translates into 775. This gives the uid and gid that the container is running under (probably defined in a variable somewhere) Read/Write/Execute, but anyone else Read/Execute. The "anyone else" would just be any account on the system (regardless of access method) that didn't match on the actual uid or gid value.

load more comments (2 replies)
load more comments (2 replies)