This was the answer, called up and got them to unblock ports 80 and 443 (they actually unblocked them all). Thanks alot!
Good point, I’ll leave it on then. Thanks for your help!
Ah I see, thank you for the reply!
What would you recommend? I like the idea of the privacy but having that security does also sound good…
Ohhh wow I can’t believe I forgot about that, I feel so dumb hahaha.
Are there any benefits to keeping this switched on? Other than than the security I mean, is the tradeoff between privacy and security worth it in your opinion?
Sweet! Thanks so much!
Onyx Boox Leaf 2, and use the OPDS feature of calibre(web) to download books and read them, all within the KOReader app
Alright that makes sense, do you know how to solve that if that webapp is nextcloud aio?
Thanks for the reply, yeah that’s what I thought it was meant to do, sorry for the confusion
Do you have any idea why setting it on would lead to “this page isn’t redirecting properly” in firefox?
Trying out Authentik now, and having some more issues… Following various guides I can get to a stage where I access the Authentik UI locally, but when I go into NPM Advanced tab and add the stuff to forward auth requests to Authentic (proxy pass and whatnot), this causes NPM to have that proxy host set to Offline…
I think I might just take a break and get onto this stuff later. I don’t know if I’m smart enough for this yet (I’m a data scientist not a computer scientist!!) Still got a lot to learn
When I connect with it off, I am able to connect. If I use https://cloud… It connects, when I use http://cloud… The address bar changes to https and connects like normal.
It just feels weird using it with force SSL off, as if even though I’m always connecting with https I’m still leaking passwords
Nextcloud, memories app for desktop, photos-nc for android
Thanks for the advice! I’d personally like to stay away from big companies, I made the server in the first place to escape from them, so it’d be weird for me to still use them. Maybe if I had a password manager or something sensetive I’d go with external so though
Problems I was having were just with the setup, problems with redis and mariadb, and getting them all linked together. I can attach some relevant logs if you’re willing to help, thanks!!!
Ah yeah forgot to say I’m using nginx proxy manager already, screw chucking all that stuff on the internet without a reverse proxy
Will look into authentik though!!
I could, I do find it very convenient having my services exposed though. Makes it easy to connect to the calibre opds from my e-reader, don’t have to have wireguard fight with mullvad etc…
But maybe I will just switch to vpn rather than exposed, the security would take a load off my shoulders
Org-mode
Sorry, but I sincerely hope you just don’t selfhost Vaultwarden.
Are you saying this because i dont know much about firewalls and VPNs right now? Or because i dont have a good backup solution? Or something else?
Currently my backup solution might not be the nicest, but im taking regular backups on the same laptop, copying those onto an external HD, and syncing that onto my main PC, hopefully whoch should be enough
Im assuming youd recommend using something like watchtower then? Or would you say its better to just ssh in and docker pull every now and then?
Yeah i could definitely do that, however would that cause much trouble regarding using the nextcloud android app, or my ereader which uses OPDS to get books from calibre? I get thatd id have to sign into the VPN, but i already use mullvad on everything.
Sorry, just dont know much about personal VPNs
Have you got any resources regarding setting up a firewall? I forgot about fail2ban though, gotta set that up soon
Yeah will put an issue on there, but wanted to test another app first in case it’s not due to phonetrack somehow. Away for the weekend so can’t easily test a new app just yet