Self-Hosted Main

504 readers

1 users here now

A place to share alternatives to popular online services that can be self-hosted without giving up privacy or locking you into a service you don't control.

For Example

Service: Dropbox - Alternative: Nextcloud
Service: Google Reader - Alternative: Tiny Tiny RSS
Service: Blogger - Alternative: WordPress

We welcome posts that include suggestions for good self-hosted alternatives to popular online services, how they are better, or how they give back control of your data. Also include hints and tips for less technical readers.

Useful Lists

Awesome-Selfhosted List of Software
Awesome-Sysadmin List of Software

founded 1 year ago

MODERATORS

communick@selfhosted.forum

How to deal with certificates? (alien.top)

submitted 1 year ago by trexxeon@alien.top to c/main@selfhosted.forum

2 comments fedilink hide all child comments

Some applications have connections that needs certificates to work, I usually get my certificates a from the reverse proxy and let’s encrypt.

But if I want to run a service that supports connections with TLS and want to map the certificates to that container, I need to run that container as root, but what to do if I don’t want to run it as root?

Is copy them a “real” solution?

top 2 comments

sorted by: hot top controversial new old

[–] zarlo5899@alien.top 2 points 1 year ago

i would use selfsinged certificates for the containers that MUST have one and then just terminate it at the reverse proxy

[–] 2lach@alien.top 1 points 1 year ago

There are some specific tags for working TLS and you can also solve it by using docker context which could be good if you're working with multiple hosts and connection types. This guide it's kinda long, but it will walk you through the entire process.