This looks pretty cool, thanks for doing that. I hope you'll manage to extend revenue share scheme. I would appreciate a bit more info about that revenue share scheme (like is photoprism getting 1c/user/month and it's just ""floss-washing"", or is it more? or maybe without showing an actual value, showing photoprims's developer opinion on whether they think the revenue share is fair would be nice)
Even though this clearly target FLOSS-friendly users, which are already aware of stuff, they don't necessarily know all the floss services. So my recommendation would be to make an additional, more opinionated pod page (but I've never made a product in my life, so my advice is probably not worth much):
- Show ""competing"" proprietary services in front of the pods, for people to maybe better understand what it is about
- Make a subset list of ""recommended"" services, photoprism/photoview are redundant, developer/sysadmin stuff should probably not be listed, pick just one RSS aggregator (I personally use TinyTinyRSS which has a great Android appif I can add my own grain of salt)
I won't share the precise % for each project, but the FAQ at the bottom of the page gives a hint. More than 1ct. Every project is encouraged to link to PikaPods if they think it's fair enough. Or if they want it as hosting option for their users.
Hoping to expand FOSS financing over time. The revenue share won't be enough, I think. So I want an optional sponsorship option to directly support the project. And maybe get a direct line to developers with this. Still early days for this.
I do know that people are willing to pay for the FOSS they use when it's convenient and when they already pay for something. Our other service, https://www.borgbase.com/ has shown this and we collect significant amounts there to support upstream development.
Also keep in mind that many projects aren't ready to receive payments. Either the authorship is unclear (forked many times), they can't/won't issue invoices, just don't want payment categorically.
Absolutely brilliant idea (ok it is an idea I have had myself, I am glad someone has done it)
One thing that is not clear is the
estimated costs - is that per app, or do you charge for the server and I can run multiple apps? I think $10 a month for something to power 50 or so apps (maybe I don’t use them all the time, if I do I expect things to get slow or you allow say 2 concurrent apps) would be great.
I think this sort of thing will encourage people to use foss instead of the big walled gardens. Maybe this is the real web3?
My idea is a bit different: most web apps probably just need something like a firestore DB (Parse I guess would do?) so you charge for that and then apps are just a JS bundle format. Like android you have a store but also allow direct uploads at the users own risk.
I think you should consider OP’s suggestion. Unlimited apps for some X flat rate. I believe this would bring in more users and potentially attract an audience who for instance was considering Cloudron but didn’t want the hassle of even managing/buying the VPS to install it on..
I was considering this, but in a survey most respondents preferred a prepaid model to avoid surprise charges. The flatrate model does that too, though. Maybe worth trying in the future. Like Spotify for open source apps.
Something that could potentially be a big improvement (in actual efficiency, not just pricing) for low-traffic apps, would be to allow users to provision a set of resources that are shared between multiple apps.
I think combination of two would be the best. In this case I can have a beefy nextcloud pod, and then some shared pod that hosts multiple less demanding apps.
Are you planning on including resource intensive media/other apps like Plex, Emby, Jellyfin, Sonarr, Radarr etc as well?
Also, I HIGHLY doubt you're "surprised" to see this posted here and elsewhere (like on Reddit: https://www.reddit.com/r/selfhosted/comments/ulm395/pikapods...) as this all appears engineered / deliberate with your involvement - I mean, your response is literally identical - which is fine and all, but transparency is likely a better approach.
Yeah, English speaking and inside the EU are some pros. (European myself)
I’m trying to stay away from apps with large piracy/abuse potential for now. Later they may go on a dedicated server in a friendly country like Netherlands.
If I understood correctly, this service only allows managed hosting from a curated list of services/apps? I assume that I cannot run my own docker containers. There are a lot of Run Your Own links/text, which made me think first that I could run my own, but instead it seems that I can choose what can be run for me.
Assuming this is OCI based, how are the containers isolated? Is it with cgroups and namespaces (because of rootless), but still sharing the kernel or are users placed inside separate VMs?
What about storage/disk/volume encryption? If I get allocated 10GB of data from the disk, does it have readable, but deleted data from a previous user? How is my data secured on the disk?
I currently have a usage pattern with Jitsi, which I host when I need to have a meeting. I use it a few hours a week and a minute/hour based cloud pricing from many providers are ideal for this. It is relatively cheap to launch even a beefy instance for only a couple of hours at a time.
I didn't see Jitsi on the list, but also the pricing is only listed as monthly. Is there more granular pricing?
What about more closed source software containers, like game servers? I didn't see those on the list. I'm pretty sure Minecraft, Valheim, Satisfactory etc. servers would bring more customers and make the service more popular.
What about managed databases?
I also saw Gitea, but not Gitlab.
Your offering seems to target somewhat similar audience to Linode's Marketplace. Linode calls them "one click apps": https://www.linode.com/marketplace/
Your pricing seems cheaper than Linode's, but is there any other advantage to use your service over theirs? Linode can even manage and configure DNS settings for custom domains automatically for you for their one click apps.
I like your website and it works well on mobile. This service also seems at glance like a great idea. I wish there was a bit more information to help me understand what this service does exactly and how it differs from the competition.
> sharing the kernel or are users placed inside separate VMs?
The isolation is with users and SELinux. There are no VMs as those are pretty heavy.
> the pricing is only listed as monthly. Is there more granular pricing?
Pricing is with hourly granularity, but shown as monthly for simplicity.
> What about storage/disk/volume encryption?
We run only bare-metal servers, so this is less of a concern unless you expect the whole server to be stolen. Data still needs to be accessible all the time.
> What about managed databases?
It's more focused on end users, rather than devs. So trying not to go overboard with very technical apps.
> I also saw Gitea, but not Gitlab.
> What about more closed source software containers, like game servers?
Still many apps to be added. I also try not to compete with hosting offered by FOSS authors, unless they push other options themselves. Added a note on Gitlab on our feedback tracker: https://feedback.pikapods.com/
> Your pricing seems cheaper than Linode's, but is there any other advantage to use your service over theirs?
Linode seems to use VMs and asks you to make an install script. So it will be heavier than simple containers I use.
Hope I covered a few questions. There was a lot in this comment...
> We run only bare-metal servers, so this is less of a concern unless you expect the whole server to be stolen. Data still needs to be accessible all the time.
So, when I delete a file and it is marked as deleted in the file system and it becomes empty space, then when this same space gets allocated for someone else, they can just read my file from the allocated empty space. This doesn't require the server to be stolen or physical access, just someone else reusing the same physical/bare-metal hardware after me. Encrypting files/volumes/storage per user solves this problem. Leaving it unencrypted exposes my data to all other users of the system.
> Leaving it unencrypted exposes my data to all other users of the system.
This would be an issue if we would offer access to block devices. That’s not the case. The pod can only see the files and not read at the block level. Else every shared hosting setup would have this issue.
I’ll still look into it and see if there is any action needed. And the potential overhead for encrypting only the mounted user files. My feeling is that it’s pretty doable.
This is very interesting. However, I recommend that you keep the pricing constant and cap the resource usage at your end. A lot of semi-technical folks would understand the value of owning data and using open source application but the "fuzziness" around pricing would put them off.
This looks great, I'll try it as soon as I get home. One question before I try, say I want to use FileRun or Photoprism but mount an S3 bucket for the storage, do we have enough configurability to accomplish that?
Probably yes, so just try it! If any user-configurable env var is missing, I'll add it right away. PhotoPrism already has a LOT of configurable env vars and I don't recall seeing something about S3 there. So it may be inside the app.
If it’s not from within the app, then I’m afraid it’s not possible with the current setup. Also not sure if this would be stable enough. I believe PhotoPrism allows mounting webdav from within the app and import pictures from there.
There is a boiler plate privacy page, but not with those technical details yet.
First, storage isn’t encrypted and I can’t think of threat scenarios that require it, since we only use bare metal servers and control the drives. Wouldn’t add much benefit at the cost of higher CPU usage.
For your account, you can enable TOTP 2FA from Account > Password/2FA.
For our production servers, any admin access needs a hardware Yubikey.
If you control the drives, what will you do when old drives are cycled out? Will you just dump them in a bin for a letter agency to come and harvest my cat photos?
IMO, FDE is easy enough to do, even if the users never get to do it themselves. It sort of protects the users from leaking their data in the event that a company goes out of business or someone breaks in to steal hardware.
We rent from our regular colo partners and sometimes buy our own drives, if it helps lower the price. It will eventually show the DC location as tooltip on the region. For the EU it's Hetzner, for US it's INAP and Cogent DCs near Boston, for Asia it will be Leaseweb.
Wholesome. Brilliant for lazy people like us. Start and tinker things around with this and either host it ourselves when we like or just continue using this.
Would a Plex pikapod make sense? I'd worry about bandwidth costs. I ask because a buddy was saying he wanted his own Plex instance, but doesn't have the inclination or time to figure out the hardware.
Another suggestion might be Minecraft. My nephews have casually said they'd like their own server.
Looks great. I would love to see some development tooling (if it's license allows), that I'm currently considering self hosting: Posthog, Sentry and Jitsu (aka EventNative). If Sentry setup is too insane maybe GlitchTip.
I don't know if you run Clickhouse (needed for PostHog) yet, but I bet it will be used by a bunch of self hosted apps in the future and would be worth it.
A very attractive option would be some kind of "Try on PikaPods" button, if you can somehow muster a very limited free tier, that these projects can put on their READMEs. A few have that with heroku and it makes them way more approachable.
The pricing is very attractive compared to running these things e.g. on RDS+Fargate (~25x). Most people would probably run on Digital Ocean or Hetzner Cloud which is closer.
That's what I think every time when I find a new project! There are a few directories, but none perfect. I'd like to see one that's user-updatable (via Github), sort- and filterable and shows the current health of a project (last update, contributors, ..). Closest I found is this:
I heard of this service recently from somewhere else too. Sounds really great; pricing is quite fair. This is the kind of service we need nowadays - where some software i can self-host, and others i can pay someone (like pikapods) to manage for me (at least at some lower/base level anyway). Good luck!
Backups are for the whole server at the moment and include mounted volumes and databases. Hoping to add per-pod snapshots a bit later. Helps that we already run a backup service. More on this planned feature here: https://feedback.pikapods.com/posts/14/offer-backup-option
Updates arrive a few days after they are released and if you keep the ‘automatic updated’ setting enabled. We do some rudimentary QA before deploying updates.
It’s definitely for long-term hosting. Many pods have been running for months (we had a public beta since around January)
It won't let you remove the last card because adding a card also unlocks some more "dangerous" apps that allow running custom code. And gives higher limits.
Alternatively add a disposable one-time card. Many fintech apps provide those.
Still, as vendor, I'd avoid putting a random charge on your card and then pay the chargeback fee. Ouch.
Sandstorm is an open source platform, and this sounds like it is not. But Sandstorm used to offer managed hosting and no longer does, so they fill different niches. I can't run PikaPods in my house and you can't subscribe to Sandstorm right now for someone else to run. (Theoretically you can, but nobody is selling.)
It'd be cool to see a service like PikaPods built around Sandstorm as the platform layer, but there's a LOT of work to do to make Sandstorm a good idea to run commercially, and since we aren't running it as such, nobody's really working on those things.
Sandstorm uses Vagrant as part of the app packaging (for developers) process. It is _not_ used in everyday use of Sandstorm. Instead, "Sandstorm implements fine-grained containers"[1], not VMs.
Sandstorm has a pretty unique sandboxing model, which makes it drastically more secure than Docker in practice, but the tradeoffs in terms of packaging differences can be significant.
One of the biggest things is that Sandstorm prefers to sandbox individual documents versus applications, which mitigates a huge variety of security flaws in apps. In most cases vulnerabilities in apps on Sandstorm are not exploitable when run on Sandstorm.
It also manages most authentication and authorization roles for apps in an integrated way, which requires more integration work than just spinning up a Docker container.
Feel free to hit me up if you want to know more, though it would be a lot of work to make Sandstorm work for your business model at this point. It's cool seeing others in the "make open source web apps user-friendly to run" space though.
Thanks! Will read this later in detail and see if anything can be learnt.
I do want to point out that this is from 2014 and we don't use Docker at PikaPods. We use Red Hat's stack, which integrates better with other Linux tools, like SELinux and Systemd.
How can you offer these prices? a 2GB ram 1 cpu app costs $2.87 approxmately a month. Thats a way lower than any vps provider yet you offer a managed solution which should add to the cost.
It's at the bottom of the page. A pod with 1GB of RAM, 1 CPU core and 10GB of storage costs $2.65 per month. Bandwidth is not mentioned but I don't think it should be a problem with most of apps except for like blogs.
No bandwidth limit or other charges. Just pay for allocated CPUs, memory and storage. Or stop the pod if it's not in use and pay for storage only ($1 minimum/month)
Even though this clearly target FLOSS-friendly users, which are already aware of stuff, they don't necessarily know all the floss services. So my recommendation would be to make an additional, more opinionated pod page (but I've never made a product in my life, so my advice is probably not worth much): - Show ""competing"" proprietary services in front of the pods, for people to maybe better understand what it is about - Make a subset list of ""recommended"" services, photoprism/photoview are redundant, developer/sysadmin stuff should probably not be listed, pick just one RSS aggregator (I personally use TinyTinyRSS which has a great Android appif I can add my own grain of salt)
Thanks for the product and I wish you good luck