Filebrowser is great, it just lacks two things 1) 2FA and 2) the always upcoming OnlyOffice integration. If we got those two nothing else could ever compete with it. It already does pre-views and text editing, but Office documents would be great.
I can split the config to another file, not really a big deal. :)
In the simplest form it might be SSO. It does support multiple users and if you look for instance at the filebrowser it’s very possible to pass the username. But yes, this is very simple, very crude and exactly what a lot of people need.
Hmm… some people are going to say that basic auth would be insecure, I’m not going to be there because in this particular case it’s about the same thing.
However, this might be easier to configure and manage permissions than basic auth. Also this works cross-domain and basic auth will require full re-auth for every domain. Another obvious advantage is that at some point I plan to integrate 2FA.
You can backup the entire file then. I get your point, but it also seems like you’re referring to some container-based approach where you would place this inside a container and then mount the config file to some path. While some people might like that approach, that kind of goes against the original idea here, I didn’t want to run yet another instance of nginx for auth, nor another php-fpm - the ideia was simply to use this on a low power device , no containers, no overhead of duplicate webservers and PHP, just a single nginx running a couple of apps on the same php-fpm alongside this.
Well, it isn’t pretty, but gets the job done.
The thing with PHP in this case is that I was already serving a ton of simple websites / small apps like freshrss that use PHP and by making this tool in PHP it means I don’t need yet another process running and wasting resources, can just re-use the existing php-fpm for this.
For what’s worth PHP is better than it looks, and my implementation is very crude, but also small and auditable and contained to a single file. :)
Alternatives? https://filebrowser.org/
I get the point, but don’t forget those “secrets” are bcrypt hashes. Not really reversible.
If you manage to make it worth with Caddy can you share your config? I can add it to the readme or something. Thanks.
Edit: This is targeted at people that run nginx as a standalone server or proxy.
Debian repositories include the dav module by default. Not sure about what’s going on with docker.
Nginx is easy to setup as WebDAV server.
All his files are secure and properly synced… unlike Nextcloud.
Spamassassin is useless these days, you better be using rspamd.
https://workaround.org/ispmail-bookworm/catching-spam-with-rspamd/
Get them as big as possible (wallet allows to), because you’ll get quickly annoyed at having multiple smaller drives. You’ll have to deal with more space, more cables, more power, more sata expansion, more heat etc.
Note that the adapter on the link does not actually use the USB protocol. It’s still PCIe sent over a USB 3.0 cable that is good enough for the job. But not actually USB, there are no signal / protocol conversions happening.
This is a decent setup if you want to leave the Mini PC intact, with the case and all because it allows you to route the PCIe to outside of the machine using a somewhat solid cable that you can run through a small hole OR the optional port slot (VGA on this machine):
The VGA card can be removed so you have a big hole to pass the “USB” cable through.
They’re selling around 40-50€ here just the CPU, with motherboard and RAM for about 100€ and mini pcs with those around 150€.
They usually have M2/NVMe slots, those can be turned into SATA port easily and cheap in multiple ways:
There are A LOT of ways to convert the M2/NVME slots into SATA ports, some you can get hundreds of hard drives there if you need.
In fact, I already have a mini PC (an MSI Cubi 2 with an i3-7100) that I sometimes use. I’m sure it’s fairly power-efficient, but again, it only has room for one 2.5" HDD, which limits its usefulness for a NAS setup :(
Again, that board has a M2 slot, just use it. OR you can use of this cards to expand that 1 sata port into multiple ones.
what happens if something breaks. Is there any warranty?
If you exclude the Chinese brands (including Lenovo) it is very, very unlikely that a Mini HP or Dell will break in your hands anytime soon. Some even come with extended warranties from companies that bought them and you’ll be able to ask HP for help. But frankly I wouldn’t bother with this, those machines are good hardware designed for 24h7 operation and will not break easily.
Totally, but that won’t be a problem if you’re 8th+ gen right now. I’ve had experiences like you describe with a Core 2 Duo about two years ago, even SSH was taking ages to connect because the CPU lacked some modern instruction for ECDH.
Yeah, that’s a good one as well.