Nextcloud security setup 🔐

makepkg@fosstodon.org

Nextcloud security setup

Encrypted Docker container
Cloudflare Tunnel (no open ports)
HTTPS only
Drives: LUKS encrypted
Backup drive: also encrypted

Everything encrypted. Zero exposed ports.

Paranoid? Yes.
Secure? Extremely.

#Nextcloud #Docker #Encryption #Cloudflare #SelfHosted #FOSS #Security

onni@troet.cafe

@makepkg I kinda need a manual on how to do this as well because I'm paranoid too lol

siklist@social.cologne

@makepkg

I am currently setting up a Cloudflare tunnel to one of my Docker containers. Based on the information I have so far, I assumed that Cloudflare handles threats very well. Would you recommend any further measures to ensure the security of my system?

makepkg@fosstodon.org

@onni Your paranoia is well-justified! I've just finished documenting the whole setup. You can find the manuals for LUKS, Docker, Cloudflare, and backups here: https://codeberg.org/makepkg/secure-nextcloud-install

Hope it helps you sleep better at night!

makepkg@fosstodon.org

@siklist Cloudflare secures the "pipe," but you still need to secure the "room."

I’ve detailed how to harden Docker (localhost only), setup Redis, HSTS & Cron here: https://codeberg.org/makepkg/secure-nextcloud-install

Check it out!

makepkg@fosstodon.org

Manuals are live!

Detailed guides on LUKS encryption, Cloudflare Tunnels (localhost-only), Redis, and Cron setup are now on Codeberg:

https://codeberg.org/makepkg/secure-nextcloud-install

Tagging @siklist and @onni as requested. Hope this helps!

#Nextcloud #SelfHosted #Security #Codeberg