Skip Navigation
Jump
ldap, kerberos, pam, sssd, its doing my head in
  • You need to explain in high detail your top-view actual needs. If you need NFS, you MIGHT want to be using Kerberos, but you might also get away without using it depending on your network configuration and actual security requirements.

    1
  • Jump
    Authenticator apps on selfhosted VM
  • Sane MFA apps explicitly disallow their data from being backed up. That would be a massive attack vector if it was possible.

    1
  • Jump
    What is the one thing every self-hosted household should have?
    1. Automated certs (from 2 different CAs, not just LE) are baked in and require ZERO configuration.

    2. Configuration simplicity, most of my proxied services take 3 lines total each.

    1