this post was submitted on 11 Nov 2024
74 points (96.2% liked)

Selfhosted

40173 readers
610 users here now

A place to share alternatives to popular online services that can be self-hosted without giving up privacy or locking you into a service you don't control.

Rules:

  1. Be civil: we're here to support and learn from one another. Insults won't be tolerated. Flame wars are frowned upon.

  2. No spam posting.

  3. Posts have to be centered around self-hosting. There are other communities for discussing hardware or home computing. If it's not obvious why your post topic revolves around selfhosting, please include details to make it clear.

  4. Don't duplicate the full text of your blog or github here. Just post the link for folks to click.

  5. Submission headline should match the article title (don’t cherry-pick information from the title to fit your agenda).

  6. No trolling.

Resources:

Any issues on the community? Report it using the report flag.

Questions? DM the mods!

founded 1 year ago
MODERATORS
 

Is this possible on any modern day phone or tablet? Selfhosting as made me very privacy-consciouss and am concerned about my iphone.

you are viewing a single comment's thread
view the rest of the comments
[–] [email protected] 5 points 3 days ago (1 children)

The answer is mTLS.

But you will run into the key distribution problem. But if your number of devices is manageable, it could be the solution

[–] [email protected] 4 points 3 days ago (1 children)

Could you expand a little please? I read this https://www.cloudflare.com/learning/access-management/what-is-mutual-tls/

It seems this is mainly for reaching the server securely not blocking others, right?

[–] [email protected] 3 points 3 days ago* (last edited 3 days ago)

You create a (self-signed) CA certificate, put its certificate as the client ca in your web server.

Then you can create certificates using this CA that you distribute to your devices, only devices that have a certificate signed by your CA are allowed to connect.