Selfhosted
A place to share alternatives to popular online services that can be self-hosted without giving up privacy or locking you into a service you don't control.
Rules:
- 
Be civil: we're here to support and learn from one another. Insults won't be tolerated. Flame wars are frowned upon. 
- 
No spam posting. 
- 
Posts have to be centered around self-hosting. There are other communities for discussing hardware or home computing. If it's not obvious why your post topic revolves around selfhosting, please include details to make it clear. 
- 
Don't duplicate the full text of your blog or github here. Just post the link for folks to click. 
- 
Submission headline should match the article title (don’t cherry-pick information from the title to fit your agenda). 
- 
No trolling. 
Resources:
- selfh.st Newsletter and index of selfhosted software and apps
- awesome-selfhosted software
- awesome-sysadmin resources
- Self-Hosted Podcast from Jupiter Broadcasting
Any issues on the community? Report it using the report flag.
Questions? DM the mods!
view the rest of the comments
Top answers from the last 39580202 times this was asked:
I was with Namecheap for years, and they're totally fine. I am now with Cloudflare because they're a bit cheaper and their API is well supported in various tools, and they also seem fine.
I use porkbun and you get cloudflare through them, not sure to what extent, porkbuns just cheaper, I like their ui, straightforward, everything you need on one screen.
Exactly this. Also it annoys me that Namecheap tries to automatically "top up funds" over a month before renewals are due. I think they've always done it but it wound me up enough this year to move to Cloudflare.
Counterpoint, I quite like this. I’m terrible at keeping payment details up to date, and I’ve got long renewal periods on my domains. The early renewal attempt allows me to get an email that my payment is expired or revoked (due to a stolen card number or something) and I have a month to go correct it.
I wouldn't buy domains from Cloudflare from a risk mitigation perspective. At work I direct six figures of budget their way annually, but as a free-tier customer in my personal life I don't trust them not to fuck up at some point and lock my account. If I register my domain elsewhere I can bring myself back online by moving the nameservers. If it's registered at Cloudflare I'm fucked.
I have one of my domains on Cloudflare and was thinking of moving the rest of them there. What makes it harder to move name servers away from Cloudflare than other places?
You'll be fine to move them to Cloudflare.
What the other user is describing would be an extremely rare scenario, and you should be able to change registrars in that case anyway.
There's really not much of any practical benefits of that kind of excessive "risk mitigation".
I don't agree and it's no extra work to do it the other way. And when one or the other goes fucky, you can recover immediately.
I get that you're likely exaggerating by saying "it's no extra work", but managing another account is markedly extra work. It will also cost extra because Cloudflare does not add any markup for registration, which is why they are the cheapest registrar.
I think the convenience and reduction of cost greatly outweighs the highly unlikely situation where "something goes fucky". If it does, then what? You can't make DNS updates for a little while?
The most likely reason to get locked out is billing issues, or maybe you lost your login information or something like that, which is going to be the same risk regardless of who your registrar is. Otherwise you'd have to be involved in some sort of legal issue associated with your domain and that is a much deeper issue than can be solved by simply changing nameservers.
Years ago I had a registrar go tits up without warning, taking about 70-80 active domains for an MSP's customers with it. I managed their email servers and DNS, which was with the registar, of course. It was a bloody nightmare to recover that situation. Because we couldn't supply them a DNS change to prove our control of the DNS, hence ownership of the domain, we had to individually affadavit each domain. Took weeks.
I get you don't think it's important, but there's plenty of sysadmins that do, with experience backing that up.
I liked reading both of your arguments, and I think they have merit on both sides. I'm sorry to see this became hostile, but I think the discussion up go the parent comment was good. I hope next one will stay friendly!
Well, our discussion didn't go too far off the rails, but it sure escalated with the other commenter. I think this guy just likes to argue.
"I get you don't think it's important, but there's plenty of sysadmins that do, with experience backing that up." Is a passive aggressive remark designed to belittle me based on a notion that you have experience and qualifications over me that makes your point more valid, and also that other people with experience and qualifications would hypothetically agree. It very clearly implicitly claims that I am not a sysadmin and that lacking sysadmin experience is why I am wrong. This does not add to the point at all and provides, so it could not be seen as any other way than an expression of that. However, I still gave you the benefit of doubt and I felt I expressed pretty rationally that that remark does not add to the comment and is disrespectful and that it may have been unintentional to be disrespectful.
But now "I think this guy just likes to argue." and "it sure escalated with the other commenter" is clear evidence that you were just trying to be rude. I certainly don't like to "argue" but much more than that I don't like to be disrespected. So I will stand up for myself and call out such poor behavior.
What registrar was that? Were they as big as Cloudflare? How exactly did they "go tits up"? Isn't the situation you describe a completely different scope from an individual's usecase? It's also an anecdotal point of data without including the full context of how common that situation is. "It happened to me once, and I have heard stories" does not necessarily mean it's common enough for everyone to prepare for every time. I'll remain skeptical of the
Mainly, though, I'm not saying it's a bad idea in total. I just think that for someone who is inexperienced with DNS management and self-hosting, those types of concerns are already unlikely and just keeping the environment simple and cost less has far more value than being prepared for unlikely scenarios. It could even prevent self-inflicted issues by keeping it simple, which would be far more likely than Cloudflare's infrastructure creating a problem that they have to remediate themselves.
If anything, the true argument for risk mitigation would be to have multiple DNS servers for redundancy.
I just don't believe that, in this type of usecase, it's worth pressing for and that there's more of an argument to keep it simple.
Additionally, you can leave out trying to use your credentials and a hypothetical group of people to make your argument for you. It makes it seem like you're trying to talk down.
This seems like a lot of text for saying "unless you can predict all the specific ways a bad thing could happen, I think putting all your eggs in one basket is fine." And under some circumstances you'd be right.
Interesting how you feel the need to disingenuously misrepresent my point.
I'm sorry you feel that way, but you literally started off by doing that.
Yeah, I'm not buying into your trolling. Go somewhere else.
Your registrar (the place you buy your domains) is where you update your nameservers. If Cloudflare have locked you out then you won't be able to change them. Other standard registrars will have far less cause, legitimate or not, to lock or disable your account, since they don't host/proxy your content.
I'm not sure what the consequences are for ignoring it, but it would violate the ICANN RAA to lock a person out of being able to transfer their domain except for legal reasons like evidence of fraud or a court order. Sure, they can terminate your account on their services but they can't prevent you from transferral without violating their agreement with ICANN.
It would be a weird scenario that you're describing that would be unusual and exceedingly rare. You would need to be directly connected to something highly illegal for that to happen, not just a normal user.
That's why I said I don't trust them to not fuck up, not that it's something that should ordinarily be expected. Additionally, especially considering how the rule of law in their jurisdiction is going recently I wouldn't assume it will always be this way.
This is the way. Never use the NS of your registrar.
Another +1 for name cheap, been using em for a decade now. Their deals are stellar and renewal prices are on par with any other competitors usually
Transferred all my domains from nanecheap to CloudFlare and I'm saving like 1/3 of price on renewals.
Moved to Porkbun, saving about the same. The price creep pisses me off.
I'll throw in for namecheap. Been with them for a while with no complaints.
Gandi massively increased their prices 2 years ago.
For email hosting only. But yes, they are not as trustworthy as they once were
I like pair domains.