Submitted 21 hours ago by kionite231@lemmy.ca to selfhosted@lemmy.world
https://copyparty.ghodawalaaman.xyz/
Hello,
just wanted to share that I have successfully hosted copyparty instance behind cloudflare on my porator laptop :D
you can use it to share memes or use it as temporary storage, I don’t have any idea of how to manage a public facing service but I will figure it out.
I don’t have any idea of how to manage a public facing service but I will figure it out.
Terrible move.
What if someone puts something illegal on your server? How do you know someone hasn’t done that already?
Afaik I can delete stuff using the administration account but I will double check.
I don’t mean to add to the discourse here or to keep giving you hypotheticals but, while learning to self host is fun and cool, you really do not want this thing on public Internet. Even if you can delete files to prevent uncouth things, what if someone uploads something while you’re asleep, or away from your computer? Do you have others monitoring the instance to take down CSAM or other illegal material? What if someone uploads malware and it executes on your machine? If you must leave it exposed, you should allow only family and friends to access via a strongly passworded account(I think that is configurable with copy party).
If you really want to expose services, try a media server like Plex or Jellyfin. You don’t want strangers to upload things to your machines.
Doesn’t look like you have set any limitations on uploading to it?
I’ll just go ahead and upload my 20TB or so of linux ISOs to your public facing website where everyone can see what is uploaded to it…
Yeah but don’t do that please😥
For the love of Christ, take it down. Why would you do that to yourself?
Inb4 it gets abused.
Error 1033 Ray ID: 997d292e2f4c62e5 • 2025-11-01 17:37:34 UTC Cloudflare Tunnel error What happened?
You’ve requested a page on a website (copyparty.ghodawalaaman.xyz) that is on the Cloudflare network. The host (copyparty.ghodawalaaman.xyz) is configured as an Cloudflare Tunnel, and Cloudflare is currently unable to resolve it.
ohh it was my network manage acting up sorry. you can hopefully access it now, try again.
I never tested copyparty… Thank you for the test… Nice! I am using OpenList at this time, but CC is also nice.
Copy party works pretty well, I’ve liked it. That said I don’t have mine open to everyone, it requires a password for view/read/edit rights or whatnot, which you can easily divy out using a config file. (Not the most secure, but that’s because I haven’t put in any protections myself)
ReginaPhalange@lemmy.world 20 hours ago
Take. It. Down.
Do you know how much CSAM was on Lemmy when it first got started?
This kind of service should be open for friends and family only, NOT the whole wide world.
kionite231@lemmy.ca 20 hours ago
But I want to learn how to host things and manage services without opening it to public how would I know if I am capable enough.
Also what else do you suggest to host? I have some experience but don’t know much
andyburke@fedia.io 20 hours ago
You are ignoring people who have walked this path and are giving you the advice right now.
Public file hosting is not where you start.
WhyJiffie@sh.itjust.works 14 hours ago
you start with authenticated things, like forgejo and such, and always double check that anonymous visitors don’t see any data.
but generally it’s also not wise to just expose most services to the internet. jellyfin for example had lots of leaks because lots of API functionality was accessible without authentication. I don’t know if it’s been fully fixed.
with copyparty there’s an added risk. if police finds you hosted child porn, they won’t care if it wasn’t you who uploaded it. someone reports it to them, they steal all your computers, worst case you can even end up in jail.
ohshit604@sh.itjust.works 18 hours ago
Pro-Tip: You can reverse proxy any service on your network but if the IP of your server does not match the IP of your A record the public will not be able to access your server.
Http/s is neat that way, if the IP’s don’t match then it’s technically considered an insecure or misconfigured setup but it works great to prevent unauthorized access to one’s server.