I find the idea of self-hosting to be really appealing, but at the same time I find it to be incredibly scary. This is not because I lack the technical expertise, but because I have gotten the impression that everyone on the Internet would immediately try to hack into it to make it join their bot net. As a result, I would have to be constantly vigilant against this, yet one of the numerous assailants would only have to succeed once. Dealing with this constant threat seems like it would be frightening enough as a full-time job, but this would only be a hobby project for me.

How do the self-hosters on Lemmy avoid becoming one with the botnet?

  • GreenKnight23@lemmy.worldEnglish
    1·
    9 hours ago
    • routine patching
    • siem log aggregation
    • proper alerting metrics and notifications
    • routine virus scanning
    • proper network segregation between your NATd network and your personal network
    • firewall firewall firewall
    • expose your applications to the internet through a WAF, never directly

    if you can do all these things properly, then there shouldn’t be too much danger in selfhosting your apps publicly.