Cloudron Forum

I came across Safeline through a Meta Ads. The ad was run by a web dev based in Indonesia who offers a course on how to secure WordPress websites against hacking. After reviewing the course modules listed on the landing page, I noticed that Safeline was mentioned and that it can be integrated with Cloudflare. This caught my interest, so I decided to do some research. I then looked into third-party benchmarks and evaluations of Safeline’s protection capabilities and found the following articles: https://dev.to/carrie_luo1/the-6-best-web-application-firewalls-compared-2024-1d9l https://medium.com/@tvvzvpb186/which-open-source-waf-really-delivers-a-head-to-head-benchmark-37631e08fb7f Based on the benchmark data presented in those articles, Safeline appears to perform well in blocking common web application attacks. That said, this is purely based on third-party analysis. I have not personally used Safeline in a production environment yet. I should also mention that I am not an IT developer or sysadmin by profession. My background is primarily in digital marketing, so I fully understand that many people in this forum have far deeper technical expertise than I do. That said, I find Safeline interesting due to its feature set and open-source offering, which prompted me to explore it further and request the app here.

@p44 @p44 said in Indonesian (Bahasa Indonesia) Translation for Cloudron Is Now 100% Complete: @IniBudi Very very good news. I wish your efforts brings Cloudron to expand to Indonesian users. Yes, hopefully, it will bring Indonesian users to use Cloudron as their server and app management. If the community becomes bigger I hope we can create offline meetup in Indonesia. Thank you @p44 and @nebulon

Thanks for the catch! This is fixed with https://git.cloudron.io/platform/box/-/commit/fc417022c97e21cb6abd1a632755557133c4c37e

Roundcube regularly fixes security issues, see: https://github.com/roundcube/roundcubemail/blob/master/CHANGELOG.md; a new version 1.7 is in the works Roundcube has been part of Nextcloud since 2023 (https://roundcube.net/news/2023/11/30/nextcloud-the-new-home-for-roundcube) and is part of their enterprise offering (https://nextcloud.com/roundcube/) Snappymail (fork of Rainloop) is the fastest of the bunch but effectively dead: https://github.com/the-djmaze/snappymail/issues/1911 That being said, all webmail clients are terrible IMHO as they usually neglect their search features (e.g. fulltext search is slow, you can’t search across folders; Cloudron‘s „virtuall all mail folder“ could help but throws off iOS mail) or have the plugin disease (essential features like MFA are outsourced to a plugin, see Roundcube). It‘s a sad state of affairs. For my personal mail, I either rely on desktop software / a mobile device or - if I need to have access to my mail the web when I’m not at home, I use Vivaldi Mail in a local Ubuntu Container to which I connect via Apache Guacamole.

@joseph said in Add Bulk Start/Stop Controls for Multiple Apps: The last time I brought this up, the idea was to bring to the list view (but not Grid view). Especially updating multiple apps is a pain if you are updating manually. If I am not mistaken, the Grid view and the List view on NextCloud (when viewing files) can be selected simultaneously. Maybe the same technology can be implemented?

@joseph said in Show Server Time Information in the Cloudron Server Menu: The server timezone is always UTC no? Or do you want System -> Settings to also be shown in Server page? Maybe the current time can be shown on Server > System Information [image: 1766492147933-ed5ba88c-8fa0-496b-bbca-a045a4791271-image.png] It displays like: Current server time: 2025-12-19 14:32 Timezone: Europe/Berlin (UTC+1)

I would also love to see this happening, hopefully we find some time soon to get it done.

@nebulon I just want to subscribe without log in first, it makes the process easier and shorter. @robi yes it can be, clickable qr code or qr code for payment to renewal.

@girish Thank you, girish for the update!

I already found the way; I just copied and pasted the Redirect URI from the plugin notes into Cloudron OpenID.

@jdaviescoates Thank you for the notes. I already read the post. I will watch the video; however, there's no transcript for it, like on YouTube. I've to watch the full video

@nebulon said in Postiz Isn't Responding: Published a new package, you have to update to that first, otherwise the app won't even start up. Thank you @nebulon now its working normally.

@girish thank you, Girish. I already ensured that my server is running security updates using those commands.

@andreasdueren thank you Andreas, it works perfectly. I think it's different code with the tutorial that come from here https://developers.chatwoot.com/self-hosted/configuration/multi-factor-authentication: # Active Record Encryption keys (required for MFA/2FA functionality) # Replace with the actual keys from rails db:encryption:init output ACTIVE_RECORD_ENCRYPTION_PRIMARY_KEY=EGY8WhulUOXixybod7ZWwMIL68R9o5kC ACTIVE_RECORD_ENCRYPTION_DETERMINISTIC_KEY=aPA5XyALhf75NNnMzaspW7akTfZp0lPY ACTIVE_RECORD_ENCRYPTION_KEY_DERIVATION_SALT=xEY0dt6TZcAMg52K7O84wYzkjvbA62Hz When I tried your code, now it appears on my dashboard: # Active Record Encryption keys (required for MFA/2FA functionality) # Replace with the actual keys from rails db:encryption:init output export ACTIVE_RECORD_ENCRYPTION_PRIMARY_KEY=string export ACTIVE_RECORD_ENCRYPTION_DETERMINISTIC_KEY=string export ACTIVE_RECORD_ENCRYPTION_KEY_DERIVATION_SALT=string Now, I can see the 2FA option. Thank you...

@nebulon thanks

How fine-grained would those have to be to be useful in your case? I am asking, since apps only have limited support for unix users and groups.

@BrutalBirdie Thank you for the incredibly comprehensive tutorial. It seems this guide is best suited for users with advanced knowledge, so I’ll need to take some time to study and understand every detail you’ve provided. Much appreciated! Thank you @joseph for the documentation reference. I'll look into it.