A software developer and Linux nerd, living in Germany. I’m usually a chill dude but my online persona doesn’t always reflect my true personality. Take what I say with a grain of salt, I usually try to be nice and give good advice, though.

I’m into Free Software, selfhosting, microcontrollers and electronics, freedom, privacy and the usual stuff. And a few select other random things, too.

  • 0 Posts
  • 220 Comments
Joined 9 months ago
cake
Cake day: June 25th, 2024

help-circle


  • I’d go with the Full Disk Encryption. You can be sure everything is encrypted that way. Any additional complexity adds ways to mess up and compromise security. Entering the password is a bit cumbersome. But that’s part of the deal. I just carry my computer keyboard to my NAS and enter the password each time I need to reboot. Which doesn’t happen that often. There also used to be some tutorial somewhere on how to put a Dropbear SSH server into the initrd so you can enter the password over network.


















  • hendrik@palaver.p3x.detoSelfhosted@lemmy.worldSelf-hosted SSO
    link
    fedilink
    English
    arrow-up
    6
    ·
    edit-2
    15 days ago

    I use KaniDM and configured everything with OAuth2. That was the easiest and most straightforward I could find. But I don’t think they bothered implementing LDAP. Other platforms I tried are Authentik, Authelia, Keycloak, Zitadel… They’re all a bit heavier and have other/more features, but there wasn’t one I really fell in love with.