My own copyparty instance
(copyparty.ghodawalaaman.xyz)
from kionite231@lemmy.ca to selfhosted@lemmy.world on 01 Nov 17:12
https://lemmy.ca/post/54404554
from kionite231@lemmy.ca to selfhosted@lemmy.world on 01 Nov 17:12
https://lemmy.ca/post/54404554
Hello,
just wanted to share that I have successfully hosted copyparty instance behind cloudflare on my porator laptop :D
you can use it to share memes or use it as temporary storage, I don’t have any idea of how to manage a public facing service but I will figure it out.
threaded - newest
Inb4 it gets abused.
Error 1033 Ray ID: 997d292e2f4c62e5 • 2025-11-01 17:37:34 UTC Cloudflare Tunnel error What happened?
You’ve requested a page on a website (copyparty.ghodawalaaman.xyz) that is on the Cloudflare network. The host (copyparty.ghodawalaaman.xyz) is configured as an Cloudflare Tunnel, and Cloudflare is currently unable to resolve it.
ohh it was my network manage acting up sorry. you can hopefully access it now, try again.
Take. It. Down.
Do you know how much CSAM was on Lemmy when it first got started?
This kind of service should be open for friends and family only, NOT the whole wide world.
But I want to learn how to host things and manage services without opening it to public how would I know if I am capable enough.
Also what else do you suggest to host? I have some experience but don’t know much
You are ignoring people who have walked this path and are giving you the advice right now.
Public file hosting is not where you start.
Pro-Tip: You can reverse proxy any service on your network but if the IP of your reverse proxy does not match the IP of your A record, aka your server is behind a VPN, the public will not be able to access your server.
Http/s is neat that way, if the IP’s don’t match then it’s technically considered an insecure or misconfigured setup but it works great to prevent unauthorized access to one’s server.
I must agree with other users here, hosting a public file hosting server is a bad idea, at the bare minimum Authentik or Keycloak should be in front of it but I digress, catbox.moe already endures this pain for us.
Not sure what reverse proxy you’re using but alternatively Traefik’s middleware
IPAllowListworks great for blacklisting all IP’s and only whitelisting the known few.you start with authenticated things, like forgejo and such, and always double check that anonymous visitors don’t see any data.
but generally it’s also not wise to just expose most services to the internet. jellyfin for example had lots of leaks because lots of API functionality was accessible without authentication. I don’t know if it’s been fully fixed.
expose a wireguard, it is safe, it is security software, and access everything else through it. you can keep using your domain for internal services.
with copyparty there’s an added risk. if police finds you hosted child porn, they won’t care if it wasn’t you who uploaded it. someone reports it to them, they steal all your computers, worst case you can even end up in jail.
Terrible move.
What if someone puts something illegal on your server? How do you know someone hasn’t done that already?
Afaik I can delete stuff using the administration account but I will double check.
I don’t mean to add to the discourse here or to keep giving you hypotheticals but, while learning to self host is fun and cool, you really do not want this thing on public Internet. Even if you can delete files to prevent uncouth things, what if someone uploads something while you’re asleep, or away from your computer? Do you have others monitoring the instance to take down CSAM or other illegal material? What if someone uploads malware and it executes on your machine? If you must leave it exposed, you should allow only family and friends to access via a strongly passworded account(I think that is configurable with copy party).
If you really want to expose services, try a media server like Plex or Jellyfin. You don’t want strangers to upload things to your machines.
I never tested copyparty… Thank you for the test… Nice! I am using OpenList at this time, but CC is also nice.
Copy party works pretty well, I’ve liked it. That said I don’t have mine open to everyone, it requires a password for view/read/edit rights or whatnot, which you can easily divy out using a config file. (Not the most secure, but that’s because I haven’t put in any protections myself)
For the love of Christ, take it down. Why would you do that to yourself?
<img alt="" src="https://lemmy.dbzer0.com/pictrs/image/af19e57c-2c65-4e80-a442-0b9d4e9341f0.webp">
<img alt="" src="https://lemmy.dbzer0.com/pictrs/image/e447690b-cf5b-457e-8d22-6ed13cfa5bb1.webp">
This just in:
<img alt="" src="https://sh.itjust.works/pictrs/image/34e6f43f-ebfc-4810-8a09-38ee74c6ac03.jpeg">
Looks like someone took the liberty of uploading copyrighted shows and 3D printable gun parts to his file server.
I really don’t know why someone is that stupid… People explain why he/she should take it offline, for obvious reasons… and he/she still think it’s a good idea and continue. Some people have to learn it the hard way…
Doesn’t look like you have set any limitations on uploading to it?
I’ll just go ahead and upload my 20TB or so of linux ISOs to your public facing website where everyone can see what is uploaded to it…
Yeah but don’t do that please😥
There’s no way you’re actually this dumb. Come on. Quit trolling.
Not dumb but lazy 😣