Not sure I understand why you’d want to self host a password manager. Bitwarden has never been breached AFAIK. How is it better or safer to keep if self hosted?
Not sure I understand why you’d want to self host a password manager. Bitwarden has never been breached AFAIK. How is it better or safer to keep if self hosted?
I mean, your best having a look at the official Git but, i’d say, access/visibility is the most important.
Is it on your LAN/not open then even if it was less secure, it’d still be more secure if you know what I mean.
I host mine on a VPS but it’s behind traefik with authelia (and 2FA). Plan is to get fail2ban setup over the next couple of evenings. SSH is cert only, probably going to change the port too but not sure if that’s really necessary. I’m comfortable exposing on that basis.
change ssh port, put an ssh tarpit on the default
What is a tar pit do? Does it maintain logs of people trying to access or something? Sorry I’m not very knowledgeable about this.
It responds glacially slowly to login attempts, which means the bot trying to automatically break into random servers it crawls to gets stuck trying to login. Thus a tarpit.