this post was submitted on 23 Oct 2025
361 points (98.9% liked)

Selfhosted

59973 readers
439 users here now

A place to share alternatives to popular online services that can be self-hosted without giving up privacy or locking you into a service you don't control.

Rules:

  1. Be civil: we're here to support and learn from one another. Insults won't be tolerated. Flame wars are frowned upon.

  2. No spam.

  3. Posts here are to be centered around self-hosting. Please ensure it is clear in your post how it relates to self-hosting.

  4. Don't duplicate the full text of your blog or git here. Just post the link for folks to click.

  5. Submission headline should match the article title.

  6. No trolling.

Resources:

Any issues on the community? Report it using the report flag.

Questions? DM the mods!

founded 3 years ago
MODERATORS
ruud@lemmy.world
Loki@lemmy.world
CannaVet@lemmy.world
devve@lemmy.world
ayyy@sh.itjust.works
curbstickle@anarchist.nexus
curbstickle_lw@lemmy.world
361
Google flags Immich sites as dangerous (immich.app)
submitted 7 months ago by rustyredox@lemmy.world to c/selfhosted@lemmy.world
79 comments fedilink hide all child comments
 

Has this impacted your self hosted instances of Immich? Are you hosting Immich via subdomain?

Related:

you are viewing a single comment's thread
view the rest of the comments
[–] cyberpunk007@lemmy.ca 22 points 7 months ago* (last edited 7 months ago) (2 children)

Stop using google. Don't you know their motto? "Be evil"

[–] mic_check_one_two@lemmy.dbzer0.com 6 points 7 months ago (1 children)

Easier said than done, if your end users run Chrome. Because Chrome will automatically block your site if you’re on double secret probation.

The phishing flag usually happens because you have the Username, Password, Log In, and SSO button all on the same screen. Google wants you to have the Username field, the Log In button, and any SSO stuff on one page. Then if you input a username and go to start a password login, Google expects the SSO to disappear and be replaced by the vanilla Log In button. If you simply have all of the fields and buttons on one page, Google flags it as a phishing attempt. Like I guess they expect you to try and steal users’ Google passwords if you have a password field on the same page as a “Sign in with Google” button.

[–] Appoxo@lemmy.dbzer0.com 7 points 7 months ago

Firefox ingests Google SafeBrowsing lists.
If you are falsely flagged as phishing (like I was), then you are fucked regardless of what you use (except you use curl).

I couldnt even bypass the safebrowse warning on my Android phone in Firefox.

[–] Appoxo@lemmy.dbzer0.com 5 points 7 months ago* (last edited 7 months ago)

OP is impacted by Google SafeBrowsing which various websites use.