We’re using a self hosted Nexus instance at work. You probably don’t need all the features it offers, but it does its job really well. For free, too.

I use Netcup. Reliable, simple, great deals from time to time (such as Black Friday).

I’m an arch user, and also have a small proxmox based homelab. I always have a live Ubuntu around, the latest desktop version available. Good for troubleshooting. Also, latest proxmox, opnsense, pfsense, debian.

Additionally, I have a small USB drive on my keychain with both USB C and USB A, where I keep some encrypted backups of important stuff, and I can access that from both my laptop and my phone.

I use wildcard certs. I don’t know if this completely fixes the issue, though.

Yup, I have a domain I purchased and on my lan I use PiHole and Caddy. All my apps and services use the format app.mydomain.com. PiHole forwards all requests for *.mydomain.com to Caddy, which handles the LE certificate (via DNS challenge) and forwards the requests to the proper IP:PORT. I started using this for everything, my Proxmox hosts, printer, my APs…

Immich does have a pretty robust user management… https://immich.app/docs/administration/user-management/

Yeah, one of the USFF or whatever they call them.

I got an HP ProDesk 400 G2 with an i5 6500T, 8GB of RAM and a 512GB SSD for 99€. Works beautifully, and while it’s not as efficient as a raspberry pi, it idles around 6-7w and can run a bunch of VMs with Proxmox.

Details?

Right, and all of these are optional or block-able. I guess it depends on the use case.

But, like others suggested, you could also go the custom nas way. That way it’s completely under your control.

If you are concerned, you could just not allow it to talk to the outside… I use pihole, and didn’t see any “talking” from it.

NAS… I have a Synology with 4x18tb drives.

RAID is not backup :) And yes, it happened to me for 4 drives in a 16 drive system to fail in the span of just a few days (same batch).

Not only for Nextcloud, but I recommend setting up crowdsec for any publicly facing service. You’d be surprised by the amount of bots and script kiddies out there trying their luck…

Does ViMusic support Android Auto? That’s a nifty find, thanks!

I would recommend just setting up iptables & crowdsec. Open only the ports your services need, and add the relevant plugins to crowdsec. Nothing should come through.

If you have services that allow people to upload files, that’s a different story.

Yup :) Learned my lesson the hard (lol) way.

I used to have everything backed up to a 2TB USB drive. Which I accidentally dropped down the stairs. I lost thousands of family photos and documents. That changed my backup perspective.

I now have a Synology NAS, with 12TB in a RAID5 array (for a bit of disk redundancy). All my home devices, Proxmox servers etc back up here. The NAS also holds a few TB of media. Attached to it I have a USB hard drive (also 12TB). The NAS gets fully backed up to the USB drive nightly.

I also have a remote Raspberry Pi with a smaller USB drive (4TB) attached to it at my brother’s house (in another country), where I backup most of the contents of my home NAS. I don’t back up the media, just the important stuff. I might have to upgrade to a larger drive…