awesome-selfhosted.net now has subpages for each platform/language
Hi c/selfhosted,
I just wanted to let you know that I have added a frequently requested feature to https://awesome-selfhosted.net - the ability to filter the list by programming language or deployment platform. For example:
You can navigate between platforms/languages by clicking the relevant link in each software project's metadata. There is no main list of platforms, but if someone creates an issue for it, it can be looked into (please provide details on where/how you expect the platforms list to show up).
A quick update on project news since the new website was released (https://lemmy.world/post/3622280): a lot of curation work has been done, some incorrect data has been fixed, a few additions and some general improvements have been made. A deb platform has been added for those who prefer to deploy software through their distribution's package management system, and we're working on a Manufacturing tag for software related to 3D printing, CNC machines and other physical manufacturing tools.
awesome-selfhosted is a list of Free Software network services and web applications which can be hosted on your own server(s).
First program on the page for docker:
Nothing better than having a 2FA generator in a webpage xD
This is truly a "Don't you have phones" moment.
IMO this type of data should be on a locked down system like a smartphone or a non network connected type of PC with a screen. Not some local hosted website. Malware will not care!
Convenience vs security
I prefer the convenience of having my TOTP synced through my nextcloud (via keepass file, or iPhone user with passwords for nextcloud app)
The key for me having 2FA is only to minimize damage of fishing (only 30s time so evil entity must be ready upon getting the auth data) if ghey crack my nextcloud (behind reverse proxy only available by VPN) and after that my keepass file, well, in that case I’d be fucked. But I take that risk.
I prefer using Aegis encrypting exports and syncing those to my nas via syncthing.
But essentially it's the same as yours.
But that tool seems to be a webpage acting as a TOTP generator.
I wouldn't entrust such a selfhosted program to host securely solely because I may use permissions wrong and not to mention an attacker silently exporting the whole configuration.