SzwendaczJun 19, 2022

Do you think that exposing directly to internet many #selfhosted services used for storing personal data like files, notes, etc.. might be dangerous? Or rather what is the level of risk, because there always is. I do all the typical stuff to protect it, like having updated version, using 2FA, proper https, passwords....

As a fun fact for those who have no experience with that I can tell that for example a SSH server on default port with public IP is tried by bots average 1 time every minute.

Show threadChristian HornJun 19, 2022
@Szwendacz Also, considering complexity of code when selecting the service makes sense.
openssh, which is packaged with the distro is well used over the world and can easily be updated. A picture gallery with 100 node-js modules as dependency not so much.
Show threadSzwendacz
@globalc
I typically take into consideration what the software is, and rather not open to world stuff that is not designed to do so or is rarely published. If there would be an exploit discovered by someone, he would rather focus first on big targets, not some random selfhosted.
Jun 20, 2022 at 11:01amWeb