Hello everyone.

I have been interested in starting to self-host, and I have just been able to set up the first useful thing for myself (apart from a PiHole that I have running).

Since I am very afraid of making security mistakes, I would like to get feedback from you if my setup is secure or not.

The simple use case: I want to be able to back up files from my main computer to a hard disk, without having the hard disk attached to my main computer.

The setup:

  • A Raspberry Pi 4 running Raspberry Pi OS Lite (64-bit).
  • The Raspberry Pi can only be accessed via ed25519 key.
  • I configured a firewall on the Raspberry Pi with ufw to allow only traffic from the local subnet.
  • I then use sshfs to mount the hard disk connected with the Raspberry Pi to my main computer.
  • I plan to use rsync to back up my files.

Now I need your help: how secure is this setup? Did I make any major mistake? Is there something I could do better?

I’d be happy to get some feedback… 🙂

  • ShimitarA
    link
    fedilink
    English
    arrow-up
    2
    ·
    4 hours ago

    It is as secure as it can be.

    Are you planning to connect to the server from internet? Are you planning to expose services to the internet?

    • 712@discuss.tchncs.deOP
      link
      fedilink
      English
      arrow-up
      2
      ·
      4 hours ago

      Thank you. For now, I won’t try to connect to the server from the internet. I want to learn more about VPNs before I try anything like this. I am very paranoid when it comes to security, so I don’t want to risk anything… 😄

      • irmadlad@lemmy.world
        link
        fedilink
        English
        arrow-up
        3
        ·
        3 hours ago

        I am very paranoid when it comes to security, so I don’t want to risk anything… 😄

        Don’t relax that posture. A little paranoia can be a good thing.