The Crypto Wars have never ended. Governments dream of a world without public access to encryption and privacy. And many government attacks on encryption are done "for the children".
sylver_dragon
It's getting Fark'd
I do agree with what you are saying, but for a complete beginner, and a very general overview, I didn't want to complicate things too much. I personally run my own stuff in containers and am behind CG-NAT (it's why I gave it a mention).
That said, if you really wanted to give the new user that advice, go for it. Rather than just nit pick and do the "but actshuly" bit, start adding that info and point out how the person should do it and what to consider. Build, instead of just tearing down.
No, but you are the target of bots scanning for known exploits. The time between an exploit being announced and threat actors adding it to commodity bot kits is incredibly short these days. I work in Incident Response and seeing wp-content
in the URL of an attack is nearly a daily occurrence. Sure, for whatever random software you have running on your normal PC, it's probably less of an issue. Once you open a system up to the internet and constant scanning and attack by commodity malware, falling out of date quickly opens your system to exploit.
Short answer: yes, you can self-host on any computer connected to your network.
Longer answer:
You can, but this is probably not the best way to go about things. The first thing to consider is what you are actually hosting. If you are talking about a website, this means that you are running some sort of web server software 24x7 on your main PC. This will be eating up resources (CPU cycles, RAM) which you may want to dedicated to other processes (e.g. gaming). Also, anything you do on that PC may have a negative impact on the server software you are hosting. Reboot and your server software is now offline. Install something new and you might have a conflict bringing your server software down. Lastly, if your website ever gets hacked, then your main PC also just got hacked, and your life may really suck. This is why you often see things like Raspberry Pis being used for self-hosting. It moves the server software on to separate hardware which can be updated/maintained outside a PC which is used for other purposes. And it gives any attacker on that box one more step to cross before owning your main PC. Granted, it's a small step, but the goal there is to slow them down as much as possible.
That said, the process is generally straight forward. Though, there will be some variations depending on what you are hosting (e.g. webserver, nextcloud, plex, etc.) And, your ISP can throw a massive monkey wrench in the whole thing, if they use CG-NAT. I would also warn you that, once you have a presence on the internet, you will need to consider the security implications to whatever it is you are hosting. With the most important security recommendation being "install your updates". And not just OS updates, but keeping all software up to date. And, if you host WordPress, you need to stay on top of plugin and theme updates as well. In short, if it's running on your system, it needs to stay up to date.
The process generally looks something like:
- Install your updates.
- Install the server software.
- Apply updates to the software (the installer may be an outdated version).
- Apply security hardening based on guides from the software vendor.
- Configure your firewall to forward the required ports (and only the required ports) from the WAN side to the server.
- Figure out your external IP address.
- Try accessing the service from the outside.
Optionally, you may want to consider using a Dynamic DNS service (DDNS) (e.g. noip.com) to make reaching your server easier. But, this is technically optional, if you're willing to just use an IP address and manually update things on the fly.
Good luck, and in case I didn't mention it, install your updates.
Cleopatra had huge tracts of land. And all of the Romans wanted to plow her fields.
I'm walking about the wheat production of Egypt here, what were you thinking of?
I started using Summit and it was good enough that I stuck with it.
"The cloud" continues to be someone else's computer. If you put your data up there, it's no longer your data.
Reddit is (no longer) Fun.
Like others, the API change was the final straw. I used Reddit is Fun (RIF) for years, even paid for the full version, because both the official Reddit app and the mobile web interface were terrible. I was also using the old web interface with the Reddit Enhancement Suite, and that went on "maintenance mode". Overall, Reddit just reached a point that the enshitification was getting to be too much for me to stomach. So, here I am.
While I hate ads as much as the next person, I'm having trouble getting outraged by ads in an app store. "Recommendations" are kinda par for that course. Sure, it would be nice if those "recommendations" actually reflected stuff I was interested in and not just who paid Microsoft the most for ad placement. But, I also aggressively turn off telemetry (and actually don't use Windows at home). So, it's not like I expect useful recommendations anyway.
Probably running half the US Government's systems.
The US Navy famously paid Microsoft to keep supporting Windows XP well after it's End of Life. There's probably some highly critical mainframe running in a basement somewhere, with no backups, spare parts cobbled together from failing systems and some gray beard wizard keeping it all spinning.
That sounds like a feature, not a bug.