I self-host a couple of services, but I haven’t exposed anything outside my home network. I want to self-host my calendar, but not sure if I can do it without exposing it. Any recommendations on the best way to go about this? For those who do self-host a calendar service, how do you keep it secure?

    • cmg@infosec.pub
      link
      fedilink
      English
      arrow-up
      0
      ·
      9 days ago

      What caldav clients supports that?

      I’d recommend the Tailscale style approach. MTLS is a pain imo without infrastructure and especially on the app layers

      • Selfhoster1728@infosec.pub
        link
        fedilink
        English
        arrow-up
        0
        ·
        8 days ago

        Not any in particular but mTLS is essentially just a reverse proxy (like nginx) asking a client for a certificate to be able to access the service behind it.

        There are quite a few guides out there, so choose one for your reverse proxy of choice!

          • Selfhoster1728@infosec.pub
            link
            fedilink
            English
            arrow-up
            0
            ·
            8 days ago

            yep

            In my opinion it’s the best solution because there’s a really low attack surface plus it makes it easy to control which device has access to which services.