I’m just a novice at self hosting and I see a lot of talk about the risks of exposing stuff to the world. Here’s my setup:

-Rpi4 hosting Overseerr
-Desktop computer hosting Nginx and some Cloudflare DDNS update containers

Cloudflare directs request.domain.com to my home IP address. Nginx forces HTTPS and directs the request to the Pi.

Is there any risk in this setup or are there more steps I can take to secure it?

  • 418teapot@lemmy.world
    link
    fedilink
    English
    arrow-up
    1
    ·
    1 year ago

    Ah yes cloudflare: MITM as a service.

    It really depends on who your adversaries are that you want to keep private. The coffee shop owner + their ISP + your ISP, or cloudflare. Seeing as cloudflare MITMs an insane amount of the internet these days I’m way more suspicious of them than I am of the alternative. If you’re really after privacy I’d recommend self hosting wireguard or something.

    • GlitzyArmrest@lemmy.world
      link
      fedilink
      English
      arrow-up
      1
      ·
      1 year ago

      Of course, that’s why I said some resemblance of privacy - it’s still more secure (and possibly more private) than just opening ports.