Should I use https on my local self hosted services like Bitwarden, NextCloud and Jellyfin? I plan to have access to these services through a vpn when I’m outside home

@SonoMichele seems fine if the services are just on your home network. But there's no harm if it doesn't take too long to setup.
Hope it works out! :)

@TheCam I’ll try to look for all of them just to be a bit more secure while using the vpn when I’m outside home

@SonoMichele You can also just use a self-signed certificate and trust it on all your devices. Same security, same trust model (or maybe even better) and no hassle with CAs (although LetsEncrypt isn't much of a hassle anyway).

@tobtobxx I’ll create a self signed certificate as I can’t access my home server from outside so I can’t use let’s encrypt on a local domain

@SonoMichele might be desirable if you want to protect access to those applications from malicious software from iot devices/phones/TVs, malware/proprietary software, bad humans, etc on your lan, or to protect from accidental exposure to the outside world via misconfig of lan firewall, etc.

@ITwrx luckily (or well, not really luckily because now I have to setup a vpn server on an external server) I can’t expose my router to the world because there’s a double NAT

Sign in to participate in the conversation

Fosstodon is an English speaking Mastodon instance that is open to anyone who is interested in technology; particularly free & open source software.