@nebulon very understandable. Thought more from the perspective that you are a more smaller team, it would add faster iterations. And i think nuxt is very much for the long run here, but the argument of dependencies and updates is very valid.. Did you guys consider making the dashboard "pluginable" for theming or even more open-source so others can help? But while writing this i have to admit, that this will also add a lot of work... Given the current situation i think you guys deliver a great product. Hope you are also here for the long run. Let me know if i can help somehow, beside of late night fix reports ( :

We also have to see what this "hardened" in the end really means. Already we have a base image from a well known Ubuntu state and unlike with many upstream docker images we are not blindly updating those base layers during a rebuild, which could potentially pull in malicious broken packages. If at all, I would be lots more worried about the actual apps, which pull in GBs of modules from like npm (looking at those nextjs apps...)

@marcusquinn said in Sharing custom SpamAssassin Rules: Nice, so which would you recommend? For the Cloudron DNSBL list? I personally am using Spamhaus and Abusix's Exploit list to completely reject only the most obvious of spam, leaving the rest to be filtered via SpamAssassin to the inbox or junk folder. zen.spamhaus.org {API_KEY}.exploit.mail.abusix.zone

added support for both of these to https://aidevops.sh, so you don’t have to think about it, all woven in to use when relevant

@scooke It is a bit like buying a fancy car. Having the luxury of that car is brilliant when you are actually driving it but when you need to sleep or park, it is a total waste. Generally, the high end video cards with huge amounts of VRAM are a luxury for most people, who instead make do with buying a much more humble piece of kit. However, if instead of buying the hardware outright, they pay for the car only when they need it, they can enjoy a much more luxurious and capable experience. So many new AI applications are being created these days, I think I shall start a discussion thread on it and what Cloudron could do to support it.

Hello @luisegundo @luisegundo said in NocoDB and Metabase on my Cloudron instance: Why would Metabase try to connect using a 172.x.x.x container IP if “postgresql” is always resolvable between apps? By default, the Cloudron internal PostgreSQL Service container with hostname postgresql resolves to the IP address 172.18.30.2. If Metabase resolves the hostname postgresql to 172.18.30.2 that is correct. @luisegundo said in NocoDB and Metabase on my Cloudron instance: Is there a way to verify inside each container that the hostname “postgresql” resolves correctly (for example, via ping, nslookup, or another command)? Yes, if you open the Web Terminal of an app, you can verify this with either nslookup or dig. Example from a Cloudron server with just 1x LAMP app and from inside that LAMP apps Web Terminal root@fbbbe700-24f0-4832-89e8-487e633c35d3:/app/code# nslookup postgresql Server: 127.0.0.11 Address: 127.0.0.11#53 Non-authoritative answer: Name: postgresql Address: 172.18.30.2 Name: postgresql Address: fd00:c107:d509::f root@fbbbe700-24f0-4832-89e8-487e633c35d3:/app/code# dig postgresql ; <<>> DiG 9.18.30-0ubuntu0.24.04.2-Ubuntu <<>> postgresql ;; global options: +cmd ;; Got answer: ;; ->>HEADER<<- opcode: QUERY, status: NOERROR, id: 26454 ;; flags: qr rd ra; QUERY: 1, ANSWER: 1, AUTHORITY: 0, ADDITIONAL: 0 ;; QUESTION SECTION: ;postgresql. IN A ;; ANSWER SECTION: postgresql. 600 IN A 172.18.30.2 ;; Query time: 2 msec ;; SERVER: 127.0.0.11#53(127.0.0.11) (UDP) ;; WHEN: Wed Dec 17 19:17:33 UTC 2025 ;; MSG SIZE rcvd: 54 @luisegundo said in NocoDB and Metabase on my Cloudron instance: Is there a way to confirm that both apps are on the same internal Cloudron network? If the Metabase app is resolving postgresql to 172.18.30.2 then it is in the same network. @luisegundo said in NocoDB and Metabase on my Cloudron instance: We are simply trying to connect Metabase → NocoDB PostgreSQL using the internal addon credentials. I just want to make sure we are speaking about the same thing here. Since in my previous post, the Metabase UI states Add a database and you are writing about using the internal addon credentials. You are trying to add the NocoDB Database inside Metabase with the Add a database, correct? If you feel like this is going nowhere, please enable Remote Support and write an email to support@cloudron.io and reference this topic in your email.

That only shows up when rsync (maybe you use tarball?) is used as the storage format and the storage backend is a filesystem or mountpoint (which for sshfs it is).

@nebulon I like them, but no idea how much work is involved for you. As well as the UI, I use a script I found GitHub (would need to track it down) with an api key from ClouDNS, so no pressure from me to support it. Just a question of whether it helps others.

This setup will not work for apps on Cloudron that require additional ports to be forwarded, beyond just port 443. Thank you @hareen for the detailed guide. I’m interested in setting this up using a second machine on my setup at home. Does this mean an app like gitea which has an ssh port too will not be able to use Anubis for its 443 port and use a straight port forwarding for the ssh port? (I’m a noob with this so this might be a stupid question). What I had in mind was to have my router port forward 443 to the Anubis server but then keep all the other ports forwarded to my Cloudron server as they are now.

@joseph said in Making sense of app categories?: It was written by a couple of college grads having fun. See, I knew there was weed involved!

I saw the title and thought it’s a Cloudron PA

Dividing into technologies and providers, I think, would continue to be confusing as it suggests that the providers DO NOT offer those technologies. Cloudron gets a lot of ppl new to self-hosting using it, which is a good thing, and the fewer the questions and confusions the better. The list, currently alphabetical, works perfectly fine.

Nice. Thank you. That will do. Got it bookmarked.

The fix for this to clear the search filter on ESC if the view is active: https://git.cloudron.io/platform/box/-/commit/425e196dfc4f4c7e31870f36df7cab0417f7a523

Haven't encountered such timeouts from thunderbird, unless the network is actually flaky. Maybe check if both ipv4 and ipv6 are setup but only one works? Could be that thunderbird (probably relying on the system's network interface selector) sometimes picks one of the two which resolves but does not route.