this post was submitted on 28 Jul 2024
586 points (98.5% liked)

Technology

59739 readers
3018 users here now

This is a most excellent place for technology news and articles.


Our Rules


  1. Follow the lemmy.world rules.
  2. Only tech related content.
  3. Be excellent to each another!
  4. Mod approved content bots can post up to 10 articles per day.
  5. Threads asking for personal tech support may be deleted.
  6. Politics threads may be removed.
  7. No memes allowed as posts, OK to post as comments.
  8. Only approved bots from the list below, to ask if your bot can be added please contact us.
  9. Check for duplicates before posting, duplicates may be removed

Approved Bots


founded 2 years ago
MODERATORS
you are viewing a single comment's thread
view the rest of the comments
[–] SaltySalamander@fedia.io 34 points 4 months ago (15 children)
[–] GoJimi@lemm.ee 17 points 4 months ago (10 children)

Exactly! Self hosted FTW. Chances of a data breach.... Typically pretty minor if you are smart.

[–] Lem453@lemmy.ca 2 points 4 months ago (2 children)

Keep vaultwarden behind wireguard for local only access then also use https certs and good master password. Very secure like this

[–] francois@jlai.lu 1 points 4 months ago (1 children)

Why https if the traffic is already encrypted by the vpn?

[–] Lem453@lemmy.ca 2 points 4 months ago

Security in layers.

All your services should be using https. Vaultwarden in particular won't even run without https unless you bypass a bunch of security measures.

This is how to setup local only and external https, I highly recommend this as a baseline setup for every homelab. It allows you to choose how much security you want on a per app basis and makes adding new apps trivially easy.

https://youtu.be/liV3c9m_OX8?si=TSWXoN_8SJDpAHaW

load more comments (7 replies)
load more comments (11 replies)