69
Seeking advice for selfhosting critical data (lemm.ee)
submitted 3 days ago* (last edited 3 days ago) by hamsda@lemm.ee to c/selfhosted@lemmy.world
72 comments fedilink hide all child comments

Hello everybody,

my plan is to switch from Android to GrapheneOS. In this process, I want to get rid of my reliance on my google account as much as possible.

To this end, I'd like to selfhost some "critical" data, e.g.

  • contacts
  • calendar
  • online drive for files (e.g. google drive alternative)
  • some basic note-taking app (like google keep)

and so on.

I do some selfhosting already, though it is not that kind of "cannot lose this" data. So I'd like to share my thoughts and ask for your opinions and experience for the process.

More details for what I want

contacts

  • have to be syncable to the phone
  • if possible, some webinterface to edit / browse

calendar

  • has to be syncable to the phone
  • webinterface + sync to desktop / phone
  • if possible, send invite-links to events to others

drive

  • files of my choosing must be offline-available
  • ever other file should not use storage on the phone
  • if possible, able to share links to download files
  • if possible, able to share links to view with online editor (see below)

document editor

  • think google sheets / google docs
  • if possible, able to share links to view documents online

smartphone photos

  • auto-backup camera folder

There may be some things I'm not thinking about right now, but this seems to pretty much be it.

If possible, all of this should be accessible only via vpn.

What I already have

I have a pfSense physical appliance that's already managing my home network, got an OpenVPN already setup, dynamic DNS working properly for the lack of a static IP, etc.

I own 2 mini-PCs (some Intel NUC, some passive-cooled zotac with an intel with 4c/8t). One of them (zotac) is currently running as my Proxmox Virtual Environment Hypervisor, managing 3 VMs.

I also have a second PC which misses some critical parts, so it is not currently in working condition. I think there's an AM4 mainboard and 16 or 32GB of DDR4 RAM in there. I could make a NAS or a new hypervisor out of this, but the case (Fractal Design Define 7) is quite big and a full PC is probably worse for energy-efficiency than my 2 mini-PCs and is going to be more expensive.

Not much in terms of storage sadly

  • 1x 6TB external USB HDD (used for backups)
  • 1x 2TB external USB HDD (used for data)

What I plan to do

The kind of data I'm going to be hosting myself now is very import, so it cannot be lost or corrupted.

But the feature list doesn't seem to be overly complicated. This seems like something nextcloud could do.

This means, I will probably need to buy

  • 2x 4 TB HDD for storage for data RAID
  • 2x 8-10 TB HDD for backups
  • 2x external RAID case

Then I could connect the data RAID to the already running zotac pc and spin up new VMs for nextcloud and whatever else I might need and start serving my data from home.

The Intel NUC will be used as a Proxmox Backup Server, connected to the backup RAID. Keeping some daily, weekly and monthly backups.

On the phone-side, I'd have the vpn always active. Whenever active, sync of contacts, calendar entries, photos etc. should be possible.

Questions

Is there anything I missed? Did any of you already try something like that? Does anybody here see a potential problem with any of the above?

Can anyone recommend a RAID-1 external enclosure without a fan and some quiet and energy-efficient HDDs?

top 50 comments
sorted by: hot top controversial new old
[-] daytonah@lemmy.ml 2 points 1 day ago

Went through the same thing. Paused between Murena (at that time they weren't providing my personal domain / email address solution) and nextcloud, and proton. I went with proton. I could in theory do nexrcloud +proton. You do you.

And for notes, I went markdown route and obsidian.

[-] hamsda@lemm.ee 1 points 1 day ago

Proton also seems to be interesting. Privacy by default and being swiss based definitely are plus points.

Thanks for the mentions!

[-] themachine@lemmy.world 32 points 3 days ago

As far as the "what you want" stuff goes, Nextcloud can do all of it and I use it for exactly that.

load more comments (17 replies)
[-] higgsboson@dubvee.org 8 points 3 days ago* (last edited 2 days ago)

I use Nextcloud (currently using their AIO docker images) for all of that. Not sure if it checks all the boxes perfectly, but if not it is probably as close as youll find ready-made.

[-] hamsda@lemm.ee 2 points 1 day ago

Not sure if it checks all the boxes perfectly, but if not it is probably as close as youll find ready-made

That's a good point. To have cohesion and good integration, some sacrifices have to be made. This seems better than having 20 independent services working with (and sometimes probably against) each other.

load more comments (2 replies)
[-] koala@programming.dev 6 points 2 days ago

I assume you basically want protection against disasters, but not high uptime.

(E.g. you likely can live with a week of unavailability if after a week you can recover the data.)

The key is about proper backups. For example, my Nextcloud server is running in a datacenter. Every night I replicate the data to a computer running at home. Every week I run a backup to a USB drive that I keep in a third location. Every month I run a backup to a USB drive on the computer I mentioned at home.

So I could lose two locations and still have my data.

There is much written about backup strategies, for example https://en.wikipedia.org/wiki/3-2-1_backup_rule ... Just start with your configuration, think what can go wrong and what would happen, and add redundancy until you are OK with the risks.

[-] gedaliyah@lemmy.world 11 points 3 days ago* (last edited 3 days ago)

I've done this.

For contacts, calendar, and files, I use OwnCloud, although NextCloud is as good/better. I couldn't figure out Self-Signing certificates, which is supposed to be pretty easy, but I am kind of a dummy. NextCloud requires it. On my phone, I use DAVx5, and I replaced the GrapheneOS stock apps with Fossify apps as needed - although that is up to personal preference.

For photos, I use Immich, which is hands-down the best option.

NextCloud also has options for document editing, photo backup, and notes, but I can't testify to those.

Syncthing is an ideal way to seamlessly sync files and folders between devices, but you will end up with the files on both devices. I use it sparingly, and they are phasing out android support. It's still very useful to migrate large file libraries and act as a stopgap for other services.

There are tons of notes apps, and it largely comes down to preference. I settled on NotallyX, which can import your Keep notes directly (using Google Takeout iirc). It also has the option to store files externally, which means they can be synced for backup. There are also self-hosted web-apps, like Memos, or the slightly more adventurous Blinko.

I got a lot of great input from this community not too long ago.

The one Google feature I am not able to reproduce is Google Messages. If you use texting to any degree, there are some FOSS apps with pretty nice basic features (I'm using Fossify which is nice). However, there are none that have solid group-messaging features, reactions, and other RCS capabilities. It seems to be a technical/logistical/legal hurdle that is presently insurmountable. Lots of people don't use texting anyway, so it may not be a concern for you.

Edit: And of course, you need a way to tie everything together. I use Tailscale, which is ridiculously easy to self-host.

load more comments (3 replies)
[-] catloaf@lemm.ee 11 points 3 days ago

3-2-1?

[-] hamsda@lemm.ee 5 points 3 days ago

Thank you for your input!

I also thought about the 3-2-1 backup rule, but am unsure if that is overkill.

My VM-backups and file-level-backups are proxmox backup server (pbs) backups. Meaning, to have them offsite, I'd need to rent a dedicated root server on which I am able to install pbs to act as an offsite sync-target. With TB of backups, this is gonna get very costly very fast.

I thought about regularly exporting encrypted calendar and contacts onto some free online storage, hoping I can automate this process.

With what I have layed out in my post, to lose contacts and calendar events, both my intel NUC and the zotac mini-PC have to be corrupted at the same time. Or both RAIDs simultaniously failing both drives. Am I not paranoid enough or is that an acceptable level of failure-safety?

[-] MajesticElevator@lemmy.zip 8 points 3 days ago* (last edited 3 days ago)

The offsite rule is mainly in the scenario where your house burns down for example, or if someone steals your stuff. It can happen.

Maybe your electricity will have variations and will fuck up all your devices in a specific location..

[-] hamsda@lemm.ee 2 points 3 days ago

Yes, you're right. As David From Space said in this comment, the real critical data is far less then all of the backed up data.

So I definitely can have an offsite-backup, it just depends on if I can single these things out in nextcloud, possibly via regular export to the filesystem.

[-] MajesticElevator@lemmy.zip 2 points 3 days ago

Yea if you don’t need much then you can do with exporting not a lot of stuff.

Google is evil but I know that GDrive has pretty low prices on data storage

There are many cold storage services out there with good pricing. If you need a VPS with good storage (to automate sync, etc.. idk), I know I would use Interservers, based in the USA, priced at 3$/TB/month (HDD)

But if you only want to sync a small amount then you can do with free services, probably. Don’t forget to encrypt everything when uploading to these services! Don’t want them to be able to see the content of your files.

[-] hamsda@lemm.ee 2 points 1 day ago

Google is evil but I know that GDrive has pretty low prices on data storage [...] Don’t forget to encrypt everything when uploading to these services!

That is what I am hoping for :) My free Google account grants me 15GB of online storage and my free Microsoft account provides me with another 5GB. The 15 GB should be enough for encrypted photo backups, while 5GB definitely is enough for encrypted calendar, contact and probably some document backups. I just need to find a way to automate backups to these.

based in the USA, priced at 3$/TB/month

If I am going to pay money for something and with how the world currently is, I'm going to use some EU based service. My only VPS resides at hetzner, if the need arises I will probably just add a storage volume to my VPS or upgrade it to the next tier.

[-] MajesticElevator@lemmy.zip 1 points 1 day ago

Got it! Sadly, hetzner doesn’t have the best prices on storage

[-] hamsda@lemm.ee 1 points 1 day ago

Yeah, hetzner's more about having your own servers than providing cheap storage.

[-] MajesticElevator@lemmy.zip 1 points 1 day ago

Eh, you can have your own servers with many other providers...

A storage server is still a server. No need to be elitist

[-] hamsda@lemm.ee 1 points 1 day ago

I didn't intend to be elitist about anything and I actually fail to see the elitism by saying "that hoster is not about providing cheap storage"? Maybe there's something in the english language I do not pickup on?

[-] MajesticElevator@lemmy.zip 1 points 23 hours ago* (last edited 23 hours ago)

It's just that Interservers also provide VPS that aren't focused on cheap storage, allowing you to have, as you said, your own servers.

I understood the message as "interservers is only for storage, not for hosting anything serious on it", and thought you prioritized the brand image of Hetzner while saying competitors were shit without any argument

[-] hamsda@lemm.ee 2 points 21 hours ago

Just a misunderstanding, then. I did not intend to talk down on a hosting provider I don't even know. Instead, I prioritize hetzner because I'm familiar with them and they're based in europe.

[-] MajesticElevator@lemmy.zip 2 points 20 hours ago

That’s completely fine! Hetzner is well known, stable, performant and it won’t fund an unethical country.

Thanks for the clarification :)

[-] emuspawn@orbiting.observer 4 points 3 days ago

What @AtariDump@lemmy.world said is correct, if it's critical data, 3-2-1 is necessary. I personally use BuyVM as my offsite as it's got pretty cheap storage (~$5USD/1TB/month), but if you've got family or friends with a decent internet connection, it's trivial to set up a remote sync job to any offsite Proxmox Backup Server, perhaps on a box stored at their house.

Now, just to throw it out there, my actual 'critical data' is way smaller than my total backed up data, including my media library, random ISOs, etc. - it can be worthwhile to determine if you really need to backup everything offsite or if you can sort out some less necessary data, and only upload some data to a remote server. Maybe the answer is yes, and you'll need to account for that!

load more comments (3 replies)
[-] AtariDump@lemmy.world 5 points 3 days ago* (last edited 3 days ago)

I also thought about the 3-2-1 backup rule, but am unsure if that is overkill.

Maybe you shouldn’t be home hosting critical data if you think this is overkill.

load more comments (4 replies)
load more comments (4 replies)
[-] gdog05@lemmy.world 6 points 3 days ago

A few things. I also think nextcloud is the way to go for what you want. I've gotten rid of anything Google I can. Except for maps. Man, there just is no substitute especially when mobile.

I always do, but I'm going to suggest Unraid for a NAS. Pay the money and then just enjoy it. I fought with truenas for over a year before I succumbed. You can totally play around with zfs, striped arrays whatever. I do not recommend an external enclosure. I think you'll come to hate it for lack of ability. I recommend biting the bullet and building a machine or putting your current PC components into a real case with upgradability if possible.

Also, I wouldn't plan on running Nextcloud in a VM. Nextcloud is pretty beefy and a VM adds complexity that I suggest against. A docker AIO version of nextcloud running on as close to bare metal as you can is probably the best option for performance.

[-] trewq@lemm.ee 2 points 3 days ago

If you don’t mind, what’s the problem with truenas?

[-] gdog05@lemmy.world 2 points 2 days ago

I don't think it's a problem per se, as much as it's a difference in priorities. But the docker implementation in TrueNAS is more of an afterthought. I think they've fixed some issues but checking out their forums, many of the issues I faced seem to still exist. Docker packages corrupting and not being accessible in any way, not updating, just seemingly, not robust. Also, I disliked the file permission structure but that's more preference I think. I would say TrueNAS is a great NAS just not the best hypervisor and NAS.

[-] trewq@lemm.ee 1 points 2 days ago

Thank you. Docker package corruption is a major concern to me. I'll stick with Unraid due to TrueNAS on USB disk is not recommended, plus system alert telling me everything this again and again.

load more comments (4 replies)
[-] gedaliyah@lemmy.world 5 points 3 days ago

For document editing, I have had fairly good luck with OnlyOffice, although it is not without its issues. Others also recommend Collabora, which plays well with NextCloud and LibreOffice.

load more comments (1 replies)
[-] garshol@infosec.pub 4 points 3 days ago

ZFS on the bottom, Nextcloud on top. Which distro is up to you. Mine is to be set up with nix on my next refresh this fall. Already in testing.

load more comments (1 replies)
load more comments
view more: next ›
this post was submitted on 16 May 2025
69 points (100.0% liked)

Selfhosted

46672 readers
790 users here now

A place to share alternatives to popular online services that can be self-hosted without giving up privacy or locking you into a service you don't control.

Rules:

  1. Be civil: we're here to support and learn from one another. Insults won't be tolerated. Flame wars are frowned upon.

  2. No spam posting.

  3. Posts have to be centered around self-hosting. There are other communities for discussing hardware or home computing. If it's not obvious why your post topic revolves around selfhosting, please include details to make it clear.

  4. Don't duplicate the full text of your blog or github here. Just post the link for folks to click.

  5. Submission headline should match the article title (don’t cherry-pick information from the title to fit your agenda).

  6. No trolling.

Resources:

Any issues on the community? Report it using the report flag.

Questions? DM the mods!

founded 2 years ago
MODERATORS
ruud@lemmy.world
Loki@lemmy.world
CannaVet@lemmy.world
devve@lemmy.world
HybridSarcasm@lemmy.world
HybridSarcasm@lemmy.hybridsarcasm.xyz