Yeah. I’m still too scared to host my own email. Its too vulnerable an attack surface for me to be confident in my security.
Lambda
I’m a software engineering developer from Ottawa, Ontario, Canada.
- 1 Post
- 10 Comments
- Lambda@lemmy.caOPtoSelfhosted@lemmy.world•What actual damage do you secure your servers against? Whats the attack vector?English1·2 days ago
- Lambda@lemmy.caOPtoSelfhosted@lemmy.world•What actual damage do you secure your servers against? Whats the attack vector?English1·2 days ago
Data bandwidth is a good point. Especially where some people either have data caps or pay per data.
- Lambda@lemmy.caOPtoSelfhosted@lemmy.world•What actual damage do you secure your servers against? Whats the attack vector?English1·2 days ago
Moral obligation is a good point. Maybe I’m just lucky that authorities really dont enforce DMCA complaints much where I live, so I dont worry too much about that.
Has anyone actually had the police come to complain about pirated media?
- Lambda@lemmy.caOPtoSelfhosted@lemmy.world•What actual damage do you secure your servers against? Whats the attack vector?English2·2 days ago
Yeah. A lot of inexperienced self-hosters probably don’t appreciate how much their ISP has protected them honestly. The first time you open a port on a truly public trunk line at a datacenter is certainly an eye-opening experience!
- Lambda@lemmy.caOPtoSelfhosted@lemmy.world•What actual damage do you secure your servers against? Whats the attack vector?English1·2 days ago
Fair. I guess what really prompted this question was a chat with a “normie” relative who was self-hosting jellyfin on their main computer, no security (username: user, password: pass, SSL: disabled). I had to explain all the issues (even no fail2ban on their server with an exposed port 22). They thought I was paranoid. But even my suggestions weren’t as extreme as many people put.
- Lambda@lemmy.caOPtoSelfhosted@lemmy.world•What actual damage do you secure your servers against? Whats the attack vector?English2·2 days ago
That’s actually a good point. Especially since I think most of us share our services with family members who may be less equipped to protect themselves.
- Lambda@lemmy.caOPtoSelfhosted@lemmy.world•What actual damage do you secure your servers against? Whats the attack vector?English1·2 days ago
Yeah, my thought here is that dockerization isn’t a security measure really. I, for one, run my jellyfin on bare metal with nixos, but secure it behind a keycloak SSO system.
- Lambda@lemmy.caOPtoSelfhosted@lemmy.world•What actual damage do you secure your servers against? Whats the attack vector?English1·2 days ago
That’s fair. Though a compromise enough to run arbitrary scripts on a system to use it in a bot net doesn’t take nearly as much security as some people install.
- Lambda@lemmy.caOPtoSelfhosted@lemmy.world•What actual damage do you secure your servers against? Whats the attack vector?English1·2 days ago
I’m not saying 0 security. A VPN is sensible, or in absence, some good firewalling, a&a, ddos&bot protection, etc. But I’ve seen posts of people seemingly worrying about security while running a system that’s more secure than some systems that hold top secret data.
I just wanted to know why they do it (since I do it too lol).
It would be hilarious if the more security focussed hobbyists were to pen-test that link, eh? Careful where you spam.