Hey guys,
Currently im just running calibre and nextcloud docker containers over the web, with a ddns from noip and a cloudflare domain. But i also want to setup a vaultwarden container too, so now i need to really consider the security of my server. What are the main things to watch out for? Calibre and nextcloud are just using subdomains, is it okay to have a subdomain to connect to vaultwarden? Am i better off just trusting bitwarden and sticking with them?
Thanks!
A lot of the people would disagree but I think so, yes. Provided that you have set up all the security measures such as firewall/fail2ban, you’ll be fine.
I think of it as a matter of personal preferences. But honestly, if you had to ask this without your own basic plans for security, I’d advice you to stick with Bitwarden. You’ll just sleep better, that’s all.
Have you got any resources regarding setting up a firewall? I forgot about fail2ban though, gotta set that up soon
Sorry, but I sincerely hope you just don’t selfhost Vaultwarden.
I think your main problem is going to be a reliability than security when this is the case. What is your plan for backup? You will be locked out, possibly permanently if you lose Vaultwarden data. Judging by your comments, you really, really don’t want to selfhost password manager of any sort.
Are you saying this because i dont know much about firewalls and VPNs right now? Or because i dont have a good backup solution? Or something else?
Currently my backup solution might not be the nicest, but im taking regular backups on the same laptop, copying those onto an external HD, and syncing that onto my main PC, hopefully whoch should be enough
Yes.
Backup sounds to be enough but I still advice you not to. You can familiarize yourself with security in general before you do something as critical as a password manager.