But the attacker should know the internal and the external DNS. If the internal DNS doesn’t have any SSL certificate on its name, it’s impossible to discover.

By the way, I always suggest to reach services through VPN and use something like Cloudflare tunnel for services that must be public.

P.s. Shouldn’t public and private DNS be inverted in your curl example?

Thanks!

Or just point secret.local.mydomain.com to the LAN IP of the server.

To avoid opening ports, have a look at Cloudflare tunnel.

Thanks, I did’t know that.

Is there an Immich Android app that auto upload pictures?

Dude, chillax! Why would I read the article? I assumed that you got the same hardware that was mentioned in the article; how could I know that you wrote it about your server?

And by the way, your analogy with the archeology doesn’t fit at all.

No way! For just 1 reason: I will have to learn another new thing and replace it in about 6 servers. I value my time and for now Proxmox is fine.

P.s. Incus seems nice though! NO, stop tempting me!!! I’m already in the rabbit hole with a gazilion of self hosted services and dozens piling up in the to do list 🙈🙈🙈

2004 hardware -> dumpster! Seriousky, with the electricity bill of 1 year of that server running 24/7 you can buy a used Dell, HP or Lenovo PC (2/3 maybe 4 years old); you will have more power, way less power consumption and way less noise.

I run it on a 4GB Fujitsu Futro S920! 😆 All the RAM seems to be used by 3 VMs. Some SWAP is been used, ok, but the Proxmox overhead doesn’t seem that much.

Totally agree! Also, at work we have some Synology and their web UI is soooo slow that it’s almost unusable

Guys, read the article first! At least try, at the beginning it says:

Unless you self-host at home on your own NAS

Wasabi have similar pricing to glacier, but without the limitation

Or Wasabi

And the very first sentence says:

Unless you self-host at home on your own NAS

Have a look at this video I’ve used a Fujitsu Futro S720 (30/40€ on ebay) and I’ve created my router with firewall, VPN, VLANs and so on with OPNsense

Yes, but for your job you’ve given to your employer your ID and your home address. If you mess something up they know ehere to get you. These guys can’t get these warranties and they need to know you better.

Permanent damage to PSU? Permanent damage to other components?

Or worst: permanent damage to yourself.

Wow, I thought that the WiFi version would consume way more. Thanks!

It’s not clear to me if you have photovoltaic panels and can use the data from them or not.