I’m currently selfhosting a website that has quite an audience (~2 000 unique visitors/day)
That's something to crow about. Congrats on the site's success.
this post was submitted on 03 Mar 2026
18 points (100.0% liked)
Selfhosted
57200 readers
519 users here now
A place to share alternatives to popular online services that can be self-hosted without giving up privacy or locking you into a service you don't control.
Rules:
-
Be civil: we're here to support and learn from one another. Insults won't be tolerated. Flame wars are frowned upon.
-
No spam posting.
-
Posts have to be centered around self-hosting. There are other communities for discussing hardware or home computing. If it's not obvious why your post topic revolves around selfhosting, please include details to make it clear.
-
Don't duplicate the full text of your blog or github here. Just post the link for folks to click.
-
Submission headline should match the article title (don’t cherry-pick information from the title to fit your agenda).
-
No trolling.
-
No low-effort posts. This is subjective and will largely be determined by the community member reports.
Resources:
- selfh.st Newsletter and index of selfhosted software and apps
- awesome-selfhosted software
- awesome-sysadmin resources
- Self-Hosted Podcast from Jupiter Broadcasting
Any issues on the community? Report it using the report flag.
Questions? DM the mods!
founded 2 years ago
MODERATORS
You could take a look at AWStats.
I used it years ago when I was running my own web server, and it worked well for exactly this type of use case: generating basic reports directly from server access logs (most viewed pages, browsers, referrers, status codes, etc.) without relying on any client-side tracking.
It processes standard web server logs (Apache, Nginx and similar), so there is no JavaScript involved and nothing for visitors to block. That also means your numbers will generally align much more closely with what the server actually handled, compared to client-side tools like Matomo.
From a quick glance it looks like development activity may have slowed after 2023, but log formats have been relatively stable for a long time. If you run it as an offline analyzer (generate static reports from logs and do not expose the CGI interface publicly), the security surface is minimal.
Regarding bots: since it works purely on access logs, you will still need to filter at the log level. Typical approaches include:
- Enabling and maintaining bot filtering rules (AWStats has built-in bot detection lists).
- Pre-filtering logs (e.g., via fail2ban, reverse proxy rules, or a separate sanitized log file used only for stats).
- Excluding requests by user-agent and/or known ASN/IP ranges before generating reports.
It is not a perfect solution, but if your goal is simple, privacy-respecting, server-side statistics without client-side scripts, it is a relatively lightweight option worth considering.
On a whim, I did a search and sure enough there is a dockerized AWStats:
https://github.com/justb4/docker-awstats/blob/master/test/docker-compose.yml
I've never used it, so I cannot vouch for it, but it is a thing.
AWStats
"are you in good hands?"
(only people from the states will get this)