Working on the other mentioned project, I've laid some of the groundwork in the last few months (Sandstorm now supports WebDAV, and the OwnCloud sync clients modified to connect) so it's certainly worth picking back up.
You can log in to Sandstorm using any email address.
Eventually, we plan to support logging in using a PGP key.
We see "internal user stores" (e.g. basic username/password with no connected email address) as problematic because a major design goal of Sandstorm is the ability to move data between hosts easily. Say you and five friends have been using Rocket.Chat on Sandstorm Oasis, and then you decide to transfer it to a self-hosted Sandstorm server -- or vice versa. It would be nice if after moving, Rocket.Chat can still recognize your five friends and being the same people, so that you don't lose your PM history and such. This is only possible by using some form of federated identities which all Sandstorm servers can independently authenticate. Username/password is inherently per-server so doesn't provide that.
It's not a bad option, and you make a decent case for that. However, the entire point of self-hosting for me is to be entirely self-reliant. Why would I use a github account to login to a Sandstorm Gitlab instance?
Well, it's entirely up to you what login mechanism you want to use, so if Github isn't what you want, then by all means don't use it. You can be completely self-reliant using email login, or eventually PGP login. But some people find Google and Github login convenient.
FWIW we're currently working on a change that will allow you to attach multiple such "identities" to a single account, after which we plan to open up the door to a lot more authentication providers, including other "open" federated options like OpenID or Shibboleth (as well as popular proprietary services like Twitter, Facebook, etc. -- again, it's up to each user to decide what's most convenient for them).
Probably at some point you'll be able to host your own IDP as a Sandstorm app, if that's what you want. Other Sandstorm servers would be able to rely on that IDP as well, so it meets the federated requirement.
My first RSS reader was self-hosted. When I went away on vacation and came back to learn that my computer had shut down during that time, I switched to Google Reader.
The other replies are far more hilarious but you should consider a VPS for this reason rather than a computer at home or similar. They are extremely affordable and can be restarted/restored from backup remotely easier.
Sandstorm does have an email app (roundcube), though admittedly it's a little weird to use right now. We plan to make Sandstorm work better as an email server in the future, probably early 2016-ish.
That's because MSaaS is fast becoming a new way to ship software. ISVs are taking a serious look at it to improve customer satisfaction and security concerns.
Although this is a nice write up about a possible setup for self hosted alternatives for popular cloud services, I don't like it. It falls short to compare the different possible services and the possibilities you can have with them. OwnCloud is nice, but why should I pick on OwnCloud and not SeaFile. Ampache is cool, but why not Subsonic?
I would like to read the reasoning behind the individual choices OR the reasoning behind the overall choice of moving a way from big corp products.
It feels to much like a "look at my setup" posts, which are nice to read but it could be much better.
But, my input now:
OwnCloud is wonderful for file syncing but where it really shines is the contact and calendar sync. It is the easiest to install and best accessable web interface Cal/CardDAV software out there. Radicale is a wonderfull little python Cal/CardDAV server but it hasn't got a web interface which is a feature I do miss when I don't have it. OwnCloud is really pulling through on the whole "google replacement", work has been started on a mail client which looks very nice and works decently (for now).
Ampache is cool but I found the installation to be too fiddly and easy to break. It could be my incompetence with that product but I prefer subsonic. A java product which just runs and it runs well. The webinterface desperately needs a good UIoverall but it works and it doesn't get in the way.
RocketChat I don't know and I should look into but I do feel that XMPP should be the chat replacement for all. The fedearation, the gazillion clients and the maturity of the software is just so so nice that I am sad that it isn't more popular. I feel it's a huge shame google and facebook stopped fedarating their xmpp services.
> RocketChat I don't know and I should look into but I do feel that XMPP should be the chat replacement for all
Agreed. Given that there are multiple, open source servers, several good open source Web clients and literally hundreds of native libraries/clients, XMPP seems like the obvious choice here.
What irks me even more - Rocket Chats homepage:
> Native client applications available for download on Linux, Windows and OSX.
Call it a desktop app, sure. I won't use it, but I won't begrudge you the term desktop app. If you're bundling NodeJS and using a webview, your app isn't native.
I don't get this. Why does the language it's written in make it "not native"?
Firefox is pretty "native", yet practically all of the UI is powered by JS.
Hell some of the built in programs in windows 10 are using html/js/css and if you are going to argue that the built-in "part of the OS" programs aren't native, then what is?
If you can see performance issues or problems with how it works then point those out, don't just blanket knock an entire application because you don't like the languages it uses.
Well, that's just the issue. I have no problem with Electron apps as an idea, but they're often coupled with extremely slow rendering. You can tell immediately.
For instance, in Slack, which is more or less an Electron app / browser in a box, I can easily get it down to <5 fps just by posting a snippet or going too far in scrollback. Resizing the window is beyond painful, etc., etc. It all seems unbelievably unnecessary - why should a chat program, literally text on a screen, perform like this on a top-of-the-line quad-core i7 system?
Having a problem with the performance is perfect criticism, but the commenter i was replying to was bashing it because of it's choice, not because of it's performance. He won't even try it before saying that.
web rendering doesn't automatically make an app slow. And in my experience choosing a "common" platform like the web allows an app to run everywhere. I'm not suddenly going to be able to triple my development speed, so without the common platform that means that i'd only be able to support one major platform, or all platforms but with a small fraction of the development speed, and most likely many more bugs.
And to be fair, saying slack is nothing more than "text on a screen" is really oversimplifying it. There are tons of formatting options, code highlighting, embedded HTML, embedded video and images, attachments, coloring, emojis, and more.
It seems like a pretty obvious choice to go with a web rendering engine seeing as it supports almost all of that "natively".
It looks like it uses xmpp more like the way Google wave did than regular im but I can't tell for sure, I signed up but wasn't able to login with a browser and they only have Linux-ish native apps.
I've installed and abandoned ownCloud several times, mostly because it is far too heavy for what I need and I had concerns about its security. I also had to set up EncFS on my local machines for client-side encryption of sensitive files because there was no way I was trusting that to ownCloud server-side.
It took more work to set up but I have Seafile self-hosted on the smallest DigitalOcean VPS and it works beautifully. $5/month, plenty of space for the amount of files I need to sync across machines, and my data is in Germany which is great (I'm in Europe). Native client-side encryption is built-in to the client so I have an easier configuration on local machines, and it does most of what I need.
I'm still looking for a good self-hosted CalDAV/CardDAV option that doesn't require PHP or MySQL, but as this data is less sensitive I'm happy to trust it to FastMail for now.
> I also had to set up EncFS on my local machines for client-side encryption of sensitive files because there was no way I was trusting that to ownCloud server-side.
Did you host OwnCloud yourself? But you didn't trust the software with your files? In what way is the SeaFile solution you are running now more trustworthy?
> I'm still looking for a good self-hosted CalDAV/CardDAV option that doesn't require PHP or MySQL, but as this data is less sensitive I'm happy to trust it to FastMail for now.
Yes, I prefer to self-host anything I can. I'm lucky to have a gigabit FTTH connection and moving lots of data around is no problem. I still prefer to use a remote VPS because some things are best left to the pros.
> But you didn't trust the software with your files? In what way is the SeaFile solution you are running now more trustworthy?
Seafile has a much smaller attack surface (no PHP, MySQL not required, etc) and handles the client-side encryption itself. We are discussing degrees of trust here, so while I was happy to trust ownCloud and the VPS to be there for a request, and to not corrupt my data, I didn't trust that my sensitive data was safe if the server was compromised. EncFS was a workaround, but it cluttered up Nautilus with extra drives since every encrypted directory had to be mounted as a drive. Now I'm comfortable trusting Seafile to do all that because an attacker would need to compromise both my VPS and my local machine to gain access to sensitive data. This is orders of magnitude less likely and for me is an acceptable risk, especially considering the simpler software stack.
And I'm definitely checking out radicale, thanks for the tip. If it does contact photo sync (annoyingly not currently supported my FastMail CardDAV) I'll give it a try.
The ownCloud Android client required duplicate copies of all the photos & videos (the original plus a copy in the ownCloud folder) which filled up storage on my phone too quickly. Once this is sorted I might try it again, even if only for the calendar and contacts. It has many features but I just don't need most of them.
I nearly went with Syncany, they were a very close second but they are still in alpha, plus they have no mobile apps (yet). I really like being able to take a photo with my phone and have it sync to my computer.
Development on Seafile is very active and they are transparent about security issues. I don't think it is poorly written but maybe a third-party audit like Truecrypt did is a good idea.
Just take a look who reported their recent issue allowing a lot of attack vectors. (more than they mentioned though) :)
Actually if somebody had a local user account themselves they could bruteforce the secret key in seconds. And SeaFile has additionally modified the default Django components making it more insecure: https://github.com/haiwen/seahub/commit/7cdb70368aa7acbf0546...
On mobile so please excuse me if I missed something subtle, but what's more insecure about this change? From what I know constant time compare protects against timing side channel attacks, so isn't it improving security here?
- Number of days since 2001-1-1 converted to base 36
- The configured SECRET_KEY
Basically except the configured SECRET_KEY and the hashed version of the password everything is known to an attacker. And even if an attacker knows the SECRET_KEY they would not be able to generate a valid token as the old password hash is required.
However, Seafile has removed the hashed password out of their version of "tokens.py". This means that if somebody knows the SECRET_KEY they could create valid password reset tokens. That the initial SECRET_KEY was basically generated by `str(random.randint(0,100000))` did make this all much more worse… (https://github.com/haiwen/seahub/blob/b6f8935c0f355cc70145f9...)
Bad thing about this is that this basically makes a lot of old Seafile instances insecure unless they get a new SECRET_KEY. They did somewhat tell users to regenerate it within a forum post and some wiki page (https://seacloud.cc/group/3/wiki/whats-new-in-the-next-versi...) but that's not really a good way to spread awareness…
Thanks for taking the time to explain... Sorry to nitpick, but I'm trying to get things clear.
your original comment pointing to the commit said
> And SeaFile has additionally modified the default Django components making it more insecure
So I was under the impression that this commit was making things worse, not better. Thanks for clarifying that this was already fixed in this commit, rather than introduce a vulnerability. It looks like they added the hashed password on the diff to mitigate this issue - unless I am missing something here? Can you explain why they "partially mitigated the vulnerability" here? is there still some gap that they've missed?
I'm not underestimating the vulnerability, or the fact that it was there in the first place. Just trying to get a full(er) picture.
I've had a read through this, and some other places where insecurity of Seafile is exposed/discussed/fixed. I agree that the overall impression I'm getting is that they're not security experts, and security could have definitely been better designed or taken into account in the first place.
I still think they're trying to do their best, and fix problems and improve. I hope for their and their users' sake that they can get some security-dedicated contributors (mostly to prevent bad things in the first place rather than fixing them later on). There's always more that can be done, but I'd like to give them the benefit of the doubt here and have faith that things will be better in the long run. Having a (robustly) secure, open-source dropbox replacement is a good thing. I think that's their aim, even if they are some times misguided.
disclaimed: I'm not even a user of Seafile, let alone know much about its codebase. It's the first time I hear about it. I was just curious about the security aspects of their product in light of some criticism here and on github etc.
I run ownCloud, despite some reservations about its security. I'm not too concerned about the data in ownCloud itself (if it's private, then I encrypt it client-side, but most things I put in ownCloud are not very private). I'm more concerned about it being used as a launching point for an attack on my home server. As a kind of compromise, I'm running it in a VM.
> I run ownCloud, despite some reservations about its security. I'm not too concerned about the data in ownCloud itself (if it's private, then I encrypt it client-side, but most things I put in ownCloud are not very private). I'm more concerned about it being used as a launching point for an attack on my home server. As a kind of compromise, I'm running it in a VM.
ownCloud does run a bug bounty program (https://hackerone.com/owncloud) and the company supporting the project also employs internal security experts.
You update manually via SSH. It's a bit more tedious than a package manager but not too bad. It took me a while to wrap my head around their file layout and how they do things, but I have it figured out now and updating takes a couple minutes. I can have two SSH terminals open on the same machine and by the time the first one completes `apt-get update && apt-get -y upgrade` I'm nearly done with the Seafile update. I really don't like adding third-party PPAs so I'll probably stick with this method for a while even if someone manages to package it up.
ownCloud designer here – thanks a lot for the kind words! We’re also about to improve the web interfaces for Calendar and Contacts in coming ownCloud versions.
Also, I’m glad you like the Mail app although it’s in a very early stage! If you experience any issues or have feature requests, please let us know at https://github.com/owncloud/mail/issues :)
I have a question about owncloud if you don't mind: Is there any way to run owncloud modularly? For example: I'd like just the calendar setup. I don't want to sync files, or share pictures with it, etc.
Is there any way I can set up just the features I want, and disable the rest? I have very briefly looked over how to do this, but haven't found anything.
You can enable and disable pretty much everything – except Files. That’s because it’s the core app and others like Gallery, PDF viewing, Music etc of course rely on there being files. There have been requests to even make it possible to disable the Files app, but we don’t really see that as priority and rather focus on keeping ownCloud rock stable and secure while still driving features forward. We are a very small team and an open source project, so I guess that’s understandable. :)
As a really dirty hack, meanwhile you could just hide the Files icon from the menu via CSS. But, well … ;)
> Ampache is cool but I found the installation to be too fiddly and easy to break. It could be my incompetence with that product but I prefer subsonic. A java product which just runs and it runs well. The webinterface desperately needs a good UIoverall but it works and it doesn't get in the way.
I use ampache, but you are absolutely correct: it is fiddly, and breaks easy. Subsonic also does "just work". I personally like ampache because it's much less resource-intensive on my webserver, and easier to fiddle with (I'm also a java-hater), but Subsonic is much more approachable.
What doesn't work well with XMPP is history on all my devices. I want to use it on my work computer, then when it's time to go I'd like to change to my phone on the way to the train station, then on the train I'd like to keep on chatting on my laptop and when I'm home I'd like to end the discussion on my iMac. I still want to be able to scroll up and to read what I or anyone else in that chat room said before. This seems to be a feature where XAMPP and IRC fail me.
My 2 cents re Ampache - it's pretty cool but doesn't play all media types, where as Kodi (XBMC) plays more media types and has a couple of great Android clients (that play locally).. I did get localplay up and running on Ampache but it's less flexible than Kodi Android clients.
If you're interested in self-hosting but are intimidated by the task of installing and configuring everything, make sure to check out Sovereign (https://github.com/sovereign/sovereign), a project that automates the deployment by using Ansible.
Syncthing is awesome, I don't understand why some people still use bittorrent sync. If you use ownCloud only for file syncing you'd also be better off using Syncthing instead. The developer is also a super nice guy, answering all bug and performance reports on github.
Regarding contact & calendar syncing, I just wish more apps could just use files instead of always setting a new server and reinventing the wheel to sync data. I still have not found a good way to export my calcurse calendar to my Android phone via files only.
Calendar and Contact syncing should be pretty much standardised (for open source things) around CalDav[1] and CardDav[2]
I'm not quite sure what you'd gain by doing this process manually (export on one device, import on the other) rather than just using a {cal/card}dav server?
There are many reasons I prefer Bittorrent Sync over Syncthing: identity based sharing (rather than node linking), good support for situations where you cannot poke holes in a firewall, selective sync support, and encrypted read-only secrets.
Moreover, it's much easier to set up, I share stuff with family and they didn't have problems setting it up.
Note that Syncthing just put out relay support, so you don't have to poke holes in firewall if you don't want to, and your data is still secure, as the relay server just relays the encrypted stream. In the (roughly) week since the feature was released, the public relay network has already routed over 2.6 TiB. (I run 2 relay servers on the public pool)
Relay support is nice, but I still desperately wish for "caching relay servers". I'd love to be able to spin up a high bandwidth VPS with storage and let it be a node, but for it never to have the ability to actually decrypt the data it's storing.
Both BitTorrent Sync and Syncthing need a particular port in the firewall to be open (or port forwarded). I'm a contractor that's almost always on the client site, and corporate firewalls are not opening up because I'd like it so. I've been using ownCloud for the past year and since it just uses the https/443 port, it works everywhere.
Exactly why ownCloud implements CalDAV and CardDAV, the common standard for Calendar and Contact sync. No reinventing the wheel here. Also, exporting your data is as simple as pressing the download button and getting an ics / vcf file.
At GitLab we see that one-click installers are frequently out of date and might not contain our Omnibus packages. The worst example of these are the Bitnami packages that can't be updated at all. We advise to not use one-click installers but instead start an vanilla Ubuntu 14.04 instance and use the recommended Omnibus package installation. This is almost as quick as a one-click install and you're sure of the latest version and easy upgrades. (from https://about.gitlab.com/installation/)
Earlier versions had problems, but it has been a while we fixed it and that is no longer the case. We bundle now PostgreSQL and provide instructions for upgrades :
Good to see that upgrading is better. I've adapted our statement https://gitlab.com/gitlab-com/www-gitlab-com/commit/9016bfe2... Compared to an installation from source, the Omnibus package is faster to install and upgrade, more reliable to upgrade and maintain. With your installation I think you have to upgrade GitLab, GitLab Shell and the nginx config separately. This is solved if you use the Omnibus package.
Imho it's also worth to mention that bittorrent sync (https://www.getsync.com/) follows a fantastic concept with huge potential.
Unfortunately it's not open source but alone the fact that it can run on a peer to peer basis without the need of any external out of control cloud host is very appealing to me.
With small devices such as raspberry pi or NUC becoming more powerful the approach has a bright future.
You "just" have to rent some cheap server that is always on. That's the self-hosting part for "asynchronous synching". With that, you do not sent your data to a third-party for the delayed syncing, but you host that peer yourself. If you use syncthing, you could make it also save incremental backups and suddenly you got kinda of an online backup.
If you want a plain music server, then give Mopidy [0] a try. It is also Open Source [1] and written using Python. I have been using it on my Raspberry Pi and it has been fantastic.
This sounds a lot like Tomahawk: https://tomahawk-player.org/ – playing from different sources and all. Of course that’s a desktop app, but it’s pretty popular already and well designed.
OwnCloud eats files in the most insidious manner, and this is known to the devs, who in the past have suggested that the workaround is to use another sync application. DO NOT USE OWNCLOUD if you value your data!! We discovered OwnCloud eating files after about three months of office paranoia, beginning to wonder if it was an inside job of a disgruntled employee. Turns out it was an inside job of incompetent software.
Also OwnCloud DOES NOT support "delta sync" (i.e. uploading file chunks when tiny portions of files are changed, instead of, for example, needing to upload the ENTIRE gigabytes-large file when only 10KB have changed). The core devs have kicked the can down the road at every opportunity (for example take a look at the huge BountySource bug for that issue, it's like USD 1200 or something, in addition to the issue being locked to contributors because of all the +1s). This means for any use case involving large files (e.g. TrueCrypt/VeraCrypt volumes), you will quickly find yourself in a messy situation of continually uploading gigabytes of data. It was painful to experience even on a gigabit LAN.
If you really have problems with ownCloud, then please report them at our issue tracker https://github.com/owncloud/core/issues in more detail than »eats files«. Then we can actually fix the problem.
About the delta sync: There’s plans being made and work being done on it. It’s locked because all people get notified on every »+1« comment and that doesn’t help to focus and get actual work done. Besides, do you really believe that USD 1200 will swiftly take care of implementing this feature?
It's sad that if you want a fast Internet around here you are put behind ISP wide NAT which means you can't host anything from home, so all these "self-hosted" things aren't really self-hosted for me.
Just because it is behind a NAT doesn't mean you can't run a server. You just need to set the router to forward traffic to the server. Then you need a way to find your public IP address and that is easily done by setting up an account on a public dynamic IP server. I don't do this at the moment but I used to run my own mail server that way (I stopped because it is to hard to find someone to relay my mail now).
I talked long and hard with my ISP when they discontinued my "phone" connection and pushed me faster (jump from 8Mb/s to 100Mb/s) connection via TV cable and only way they can deliver me connection where I can expose ports to the Internet is 3G connection (which works around 3-5Mb/s where I live on a good day)
I'm not ISP locked, but no other ISP offers me anything else since: "we don't offer worse service since we can offer you faster connection via TV cable".
There's no reason why a cable connection can't have a public IP, I certainly did in both of my previous ISPs. Are you sure the other ISPs also have carrier NAT?
Yeah, but I don't like the idea of having my connection be routed through random VPS providers. I'd have to get a server from a reputable datacenter where only I'd get physical access to the machines.
:) Thanks for your response. For other people some context, the GitLab Omnibus packages contains one web server (nginx, but you can also use it with Apache). The CI server is now integrated in GitLab itself (no longer a separate app). And you have the option to run Mattermost (but if you choose not to set this up it will not consume any ram or CPU).
The Omnibus packages allow you to quickly install GitLab without having to do a lot of setup. The installation from source is also official, see https://about.gitlab.com/installation/
Just wanted to +1 the parent comment. I'm sure you're tired of hearing this, but it feels pretty backwards that we have to disable parts of the installation just to get it to work alongside other stuff (with a shared nginx instance, etc).
Its understandable why you wanted to bundle everything, and I bet it makes installation much easier for beginners and/or lazy sysadmins.
That said, it would be even better if the installation worked with existing software instead of installing its own copy of everything. It seems like apt package dependencies would be more elegant than bundling everything together.
Its great to have the installation from source as a supported option. But lets be honest, that's a world of pain that's simply unnecessary for a standard deployment.
"It seems like apt package dependencies would be more elegant than bundling everything together." totally agree, that why is why we're sponsoring Pirate Praveen who is working on a native Debian package.
Since no-one has mentioned it yet, I'll throw in my personal favourite RSS reader: Stringer. Dead easy to set up and does away with all the social stuff that I never used in Google Reader
The focus is on highlighting one (the best) alternative in a given field, and limit the ones listed to those which are well-designed, open source of course, and also have a hosted instance so it’s ready to use for anyone without a server.
I am way to lazy for Hosting and maintaining 5 different Services for myself. I have one RaspberryPi running OwnCloud for me and my friends. For the rest I use Syncthing(https://syncthing.net/) where I just sync /home overall devices.
OwnCloud - I just don't trust an American company to host my data. Now, is my small UK based host as likely to be as effective at protecting my data as DropBox? Maybe not - but they don't have a proponent of torture on their board, so it's swings and roundabouts.
TT-RSS - I couldn't find a decent RSS manager which I liked. TT does the job - and I'm not worried that someone will decide that Google+ is better and force me off.
Ampache - all of my music is stored as FLAC, which can be a PITA to transcode and/or stream. This sits on a box at home and I can listen to my music wherever I am. I'm not reliant on a corporation who might decide that my music isn't licensed correctly, or they don't want to support my hardware, etc.
Personally I use WordPress rather than Ghost - it's more flexible for my needs.
It’s pretty cool, basically like TT-RSS but it looks more modern and is integrated in ownCloud. There are also apps for almost all platforms, like apps for Android & iOS which download all articles (and even podcasts) for offline reading.
I don't _need_ to host Owncloud (or any other service) any more than I _need_ Dropbox. It's convenient to have access to files while away, but I could make do with a USB fob if push comes to shove.
The reason I selfhost is this. We are on a rapid path towards home computing devices being nothing more than dumb terminals where some server in the distance hosts your OS, files and apps. All, of course, proprietary so as to make switching painful. I DO NOT WANT THIS. So, I use and root for the technologies that I want to see win. I want complete and unfettered access to my files.
I use Seafile to synchronize my personal files with those of my wife on several machines. I need it because i don't want to depend on 3rd parties such as Dropbox. Also, I don't know how many Gbs I'd get for free with Dropbox. Probably less that I have with my current setup (1Tb). Not sure if this answers your question, though.
There’s apps for Android & iOS which download all items for offline reading. The Android app can even download podcasts and videos of Youtube channels.
There’s also apps for OS X, Linux, Firefox OS, Blackberry and Jolla as far as I know.
It works with odt files and you can edit collaboratively, even with people not on ownCloud. Spreadsheets and presentations are not there yet because that’s really difficult. :)
Not open source but still very usefull and self hosted : http://plex.tv
Ampache is cool but is really heavy for a simple hosting.
Plex does movies and tv shows sort too.
Place a Transmission / Deluge torrent client behind, you have a true media center, on a little server.
I would recommend checking out SyncThing first for anyone curious about ownCloud. They have similarities and differences, I found SyncThing suited my needs more personally but there's some stuff that only ownCloud can do.
There's also BitTorrent Sync which is cool, but sadly proprietary.
Plex hadn't worked for me when I tried it out of curiosity some years ago. Some devices worked, some had failed to discover it at all. IIRC, the network was fine and it seemed like some issue with their DLNA/SSDP implementation but I haven't bothered to debug proprietary software. Installed MediaTomb and it worked reliably nearly out-of-the-box.
Hey Mooty, nice that you like ownCloud. However, »very buggy« is not very specific. It would be cool if you could open actual issues in our tracker at https://github.com/owncloud/core/issues/ so we can actually fix it.
That's not my experience at all. It's been running solid for a year now, on a lowly VPS and two MacBooks. It's got very nice Debian packages and an excellent iOS client.
I think it's rude to just say "very buggy" and leave it at that.
Anybody knows about an alternative for prismic.io? That's basically a CMS for devs, where you inject a site's content through API calls to prismic.io, while they provide a very nice UI for managing the content. It's a great service but I'd like to explore self-hosted alternatives.
imho Gogs[1] is a much easier to setup/maintain personal git repos. I use it with a 128mb server from RamNode w/ 80gb of space and I'm pretty sure I'll never run out any time soon since I never really commit large files. Plus it's been running smooth for almost 6 months and usually stays around 8-10mb of ram usage.
Here's 43 self-hosted alternatives to popular cloud services, with one-click demos you can try yourself!
https://apps.sandstorm.io/
Tiny Tiny RSS, Ghost, Gitlab, and Rocket.Chat are in there.
ownCloud is missing, but you can try Davros, which is compatible with the ownCloud client apps. https://apps.sandstorm.io/app/8aspz4sfjnp8u89000mh2v1xrdyx97...
Ampache is missing, but you could try Groove Basin for music -- it's neat in that you can share control of the playback with other people, to implement a communal music player. https://apps.sandstorm.io/app/wfg1r0qra2ewyvns05r0rddqttt57q...
(But also someone should package ownCloud and Ampache for Sandstorm! https://docs.sandstorm.io)