this post was submitted on 17 Jul 2023
47 points (100.0% liked)

Selfhosted

39226 readers
388 users here now

A place to share alternatives to popular online services that can be self-hosted without giving up privacy or locking you into a service you don't control.

Rules:

  1. Be civil: we're here to support and learn from one another. Insults won't be tolerated. Flame wars are frowned upon.

  2. No spam posting.

  3. Posts have to be centered around self-hosting. There are other communities for discussing hardware or home computing. If it's not obvious why your post topic revolves around selfhosting, please include details to make it clear.

  4. Don't duplicate the full text of your blog or github here. Just post the link for folks to click.

  5. Submission headline should match the article title (don’t cherry-pick information from the title to fit your agenda).

  6. No trolling.

Resources:

Any issues on the community? Report it using the report flag.

Questions? DM the mods!

founded 1 year ago
MODERATORS
ruud@lemmy.world
Loki@lemmy.world
CannaVet@lemmy.world
devve@lemmy.world
HybridSarcasm@lemmy.world
HybridSarcasm@lemmy.hybridsarcasm.xyz
47
Home Server Security (sh.itjust.works)
submitted 1 year ago by beppi@sh.itjust.works to c/selfhosted@lemmy.world
28 comments fedilink hide all child comments
 

Hey guys,

Currently im just running calibre and nextcloud docker containers over the web, with a ddns from noip and a cloudflare domain. But i also want to setup a vaultwarden container too, so now i need to really consider the security of my server. What are the main things to watch out for? Calibre and nextcloud are just using subdomains, is it okay to have a subdomain to connect to vaultwarden? Am i better off just trusting bitwarden and sticking with them?

Thanks!

you are viewing a single comment's thread
view the rest of the comments
[–] balance_sheet@lemmy.world 11 points 1 year ago (1 children)

is it okay to have a subdomain to connect to vaultwarden?

A lot of the people would disagree but I think so, yes. Provided that you have set up all the security measures such as firewall/fail2ban, you'll be fine.

Am i better off just trusting bitwarden and sticking with them?

I think of it as a matter of personal preferences. But honestly, if you had to ask this without your own basic plans for security, I'd advice you to stick with Bitwarden. You'll just sleep better, that's all.

[–] beppi@sh.itjust.works 3 points 1 year ago (1 children)

Have you got any resources regarding setting up a firewall? I forgot about fail2ban though, gotta set that up soon

[–] balance_sheet@lemmy.world 2 points 1 year ago (1 children)

Sorry, but I sincerely hope you just don't selfhost Vaultwarden.

Its just a shitty laptop with a slow ass HDD, and who knows how much life its got

I think your main problem is going to be a reliability than security when this is the case. What is your plan for backup? You will be locked out, possibly permanently if you lose Vaultwarden data. Judging by your comments, you really, really don't want to selfhost password manager of any sort.

[–] beppi@sh.itjust.works 1 points 1 year ago (1 children)

Sorry, but I sincerely hope you just don't selfhost Vaultwarden.

Are you saying this because i dont know much about firewalls and VPNs right now? Or because i dont have a good backup solution? Or something else?

Currently my backup solution might not be the nicest, but im taking regular backups on the same laptop, copying those onto an external HD, and syncing that onto my main PC, hopefully whoch should be enough

[–] balance_sheet@lemmy.world 1 points 1 year ago

Are you saying this because i dont know much about firewalls and VPNs right now? Or because i dont have a good backup solution? Or something else?

Yes.

Backup sounds to be enough but I still advice you not to. You can familiarize yourself with security in general before you do something as critical as a password manager.