this post was submitted on 19 Nov 2023
5 points (100.0% liked)
Self-Hosted Main
21 readers
1 users here now
A place to share alternatives to popular online services that can be self-hosted without giving up privacy or locking you into a service you don't control.
For Example
- Service: Dropbox - Alternative: Nextcloud
- Service: Google Reader - Alternative: Tiny Tiny RSS
- Service: Blogger - Alternative: WordPress
We welcome posts that include suggestions for good self-hosted alternatives to popular online services, how they are better, or how they give back control of your data. Also include hints and tips for less technical readers.
Useful Lists
- Awesome-Selfhosted List of Software
- Awesome-Sysadmin List of Software
founded 1 year ago
MODERATORS
you are viewing a single comment's thread
view the rest of the comments
view the rest of the comments
.test internal domain, own postfix SMTP+dovecot IMAP server.
The IMAP server is accessible from WAN via IMAPS (HAproxy+SSL/letsencrypt certificate).
As per securing against brute force attacks:
Dovecot has a listener process configured to talk the HAproxy's specific PROXY protocol which passes the original client IP to Dovecot, so the latter can apply its own authentication penalty algorithm
Crowdsec is installed with the HAproxy plugin, so client IPs can also be banned after authentication errors, albeit I'm not sure this works with HAproxy's PROXY protocol