this post was submitted on 07 May 2026
115 points (96.7% liked)

Selfhosted

59011 readers
262 users here now

A place to share alternatives to popular online services that can be self-hosted without giving up privacy or locking you into a service you don't control.

Rules:

  1. Be civil: we're here to support and learn from one another. Insults won't be tolerated. Flame wars are frowned upon.

  2. No spam posting.

  3. Posts have to be centered around self-hosting. There are other communities for discussing hardware or home computing. If it's not obvious why your post topic revolves around selfhosting, please include details to make it clear.

  4. Don't duplicate the full text of your blog or github here. Just post the link for folks to click.

  5. Submission headline should match the article title (don’t cherry-pick information from the title to fit your agenda).

  6. No trolling.

  7. No low-effort posts. This is subjective and will largely be determined by the community member reports.

Resources:

Any issues on the community? Report it using the report flag.

Questions? DM the mods!

founded 2 years ago
MODERATORS
ruud@lemmy.world
Loki@lemmy.world
CannaVet@lemmy.world
devve@lemmy.world
HybridSarcasm@lemmy.world
HybridSarcasm@lemmy.hybridsarcasm.xyz
115
Self-Hosting security reference (slicker.me)
submitted 1 day ago by monica_b1998@lemmy.world to c/selfhosted@lemmy.world
10 comments fedilink hide all child comments
you are viewing a single comment's thread
view the rest of the comments
[–] mhzawadi@lemmy.horwood.cloud 3 points 1 day ago (1 children)

I can confirm that the information is relevant to anyone hosting stuff on the internet, yes the site is a mess of style. that shows it has grown over time. I wander if some of it is AI generated and so has its own look

[–] non_burglar@lemmy.world -2 points 1 day ago* (last edited 21 hours ago) (1 children)

I can confirm that the information is relevant to anyone hosting stuff on the internet

You use ufw at your network perimeter? This is really basic stuff and a fair bit ~~misleading~~ naive.

MaxAuthTries is negated by having no password auth, so no point in having the option.

These are not complete or even accurate.

[–] mhzawadi@lemmy.horwood.cloud 2 points 18 hours ago (1 children)

I dont use ufw, Im old and run raw iptables. But network perimeter here is the server perimeter, not the network (e.g. router). But I would apply the same logic to routers, only open ports you need

MaxAuthTries in the deb man page has this: Specifies the maximum number of authentication attempts permitted per connection. That could be both password and key

Just because you know how things work, doesnt mean everyone does. This is a good starting point for new homelabbers, as I see questions about security now and then

[–] non_burglar@lemmy.world 2 points 18 hours ago

I'm also old and use iptables at server level as well.

But network perimeter here is the server perimeter, not the network (e.g. router).

Most ppl in my profession would not assume a host's net controls as "network perimeter", so I'm not sure what your context is there.

Just because you know how things work, doesnt mean everyone does.

Yeah, fair. But by the same token, we still have to chime in when these terms are thrown around and offered to newer homelabbers. And there is a lot of free security "advice" in these sub's from folks who have a weak understanding of any of it.