this post was submitted on 27 Aug 2023
21 points (100.0% liked)

Free and Open Source Software

17953 readers
33 users here now

If it's free and open source and it's also software, it can be discussed here. Subcommunity of Technology.


This community's icon was made by Aaron Schneider, under the CC-BY-NC-SA 4.0 license.

founded 2 years ago
MODERATORS
 

As I'm learning more and more about self hosting, I've read repeatedly that the safest option for internally hosted services is to use a VPN from your mobile device (laptop, cell) and connect to your server(s) as needed when outside of your network. That brings me to a predicament of sorts.

Tools like Seafile, Nextcloud, Pydio, and CryptPad offer great collaborative features as well as easy sharing from these services. But if you're not exposing any of these services to the web, how would you share documents or files easily with those outside your network? The share functions will generate a link with your IP:Port, or in my case, a domain name that is only internal. I know you can download a copy and email it separately, but that is a bit clunky. Is there a service or another FOSS app I'm overlooking that allow you to 'publish' items to an external friend or team member in a safe manner?

I've not yet decided on which solution I'm going with. But in the case of CryptPad it seems secure that I would be comfortable hosting externally making this question moot. But I'd likely host it on a VPS instead of my home server just for another layer of separation.

you are viewing a single comment's thread
view the rest of the comments
[–] [email protected] 5 points 1 year ago (1 children)

I thought a reverse proxy was meant to kinda help mitigate some of the threats of having exposed services….

Idk, I’ve got a domain and a reverse proxy with minimal services exposed to the internet. And those services require a login.

[–] [email protected] 1 points 1 year ago

On another thread someone brought up the point that if running multiple services on a server that touches the Internet and one is compromised, the server could be as well. I only started selfhosting early this year, so I am by no means an expert though.