712

joined 3 months ago
[–] 712@discuss.tchncs.de 17 points 1 day ago

I want to use open-source software, developed from people for people. I don't want corporates to exploit my data and take away my freedom.

[–] 712@discuss.tchncs.de 3 points 4 days ago

Everyone, thank you so much for your helpful comments... ❤️ I have learned a lot these two days.

I looked at rsync and borg, and I have ended up using Pika as a GUI for Borg. I am now backing up my data with Pika to two external hard disks over SSH. Both of these external hard disks are encrypted with Pika/Borg. What a wonderful tool!

[–] 712@discuss.tchncs.de 6 points 5 days ago (2 children)

Wow, I just used this tutorial. rsync is amazing, and this actually makes everything so much easier. Thanks for pointing me in the right direction!

[–] 712@discuss.tchncs.de 13 points 5 days ago (5 children)

The only reason is that I am a noob 😄 Thanks, I will take at look at this!

[–] 712@discuss.tchncs.de 3 points 5 days ago (3 children)

keep the key safe

This might be a dumb question, but can I assume the keys are safe in the standard .ssh directory on Linux? Is there anything I should explicitly do to secure the private key?

[–] 712@discuss.tchncs.de 3 points 5 days ago (1 children)

Thank you. For now, I won't try to connect to the server from the internet. I want to learn more about VPNs before I try anything like this. I am very paranoid when it comes to security, so I don't want to risk anything... 😄

 

Hello everyone.

I have been interested in starting to self-host, and I have just been able to set up the first useful thing for myself (apart from a PiHole that I have running).

Since I am very afraid of making security mistakes, I would like to get feedback from you if my setup is secure or not.

The simple use case: I want to be able to back up files from my main computer to a hard disk, without having the hard disk attached to my main computer.

The setup:

  • A Raspberry Pi 4 running Raspberry Pi OS Lite (64-bit).
  • The Raspberry Pi can only be accessed via ed25519 key.
  • I configured a firewall on the Raspberry Pi with ufw to allow only traffic from the local subnet.
  • I then use sshfs to mount the hard disk connected with the Raspberry Pi to my main computer.
  • I plan to use rsync to back up my files.

Now I need your help: how secure is this setup? Did I make any major mistake? Is there something I could do better?

I'd be happy to get some feedback... 🙂