What cloud VPS host is the best for privacy and security? I want to self host stuff for myself some tools. Mental Outlaw make a video last year about self hosting your own VPN with a service called Vultr but back in December vultr added to their TOS that they own what you host and a bunch of other scary stuff. So I don’t trust Vultr anymore. I don’t see recommended vps hosts on privacyguides website. So what do you guys think I should use to self host various things like a VPN, Nextcloud, and so on.

  • Deckweiss@lemmy.world
    link
    fedilink
    arrow-up
    8
    ·
    7 months ago

    You can also get an old PC without a gpu and hook it up to a domain via dyndns or similar. Or just wireguard to it. You’d have higher upfront costs, but very small running costs, so it will be worth it at some point and you fully controll the data on it.

    • taladar@sh.itjust.works
      link
      fedilink
      arrow-up
      4
      arrow-down
      12
      ·
      7 months ago

      Electricity isn’t free and nor is your time, you are never going to beat commercial VPS hosters on price.

      • Deckweiss@lemmy.world
        link
        fedilink
        arrow-up
        11
        ·
        edit-2
        7 months ago

        Looking at my bills, my cluster server costs me ~15€ per month in electricity.

        It has:

        • 4x6 arm cores
        • 4x6 GB RAM
        • 8TB HDD storage
        • 3TB nvme storage

        As soon as you link me a VPS offer with comparable specs, but lower monthly cost, I am switching.

        • taladar@sh.itjust.works
          link
          fedilink
          arrow-up
          2
          arrow-down
          1
          ·
          7 months ago

          Those are not VPS specs, that is more the kind where you would get a dedicated hardware server at a hoster. Hosting your own becomes much more viable the larger your operation becomes.

          • Deckweiss@lemmy.world
            link
            fedilink
            arrow-up
            1
            ·
            edit-2
            7 months ago

            Mkay, then lets check out a VPS equivalent then:

            A raspberry pi 4, with an average CPU load of 100% 24/7 would draw ~4kWh per month, which would cost me 1,50€ per month in electricity.

            Again, a cheap VPS with specs in the rpi4 range costst about 5€ per month. After about 1,5 years running a rpi4 would become cheaper than renting a VPS.

            Edit: after calculating it myself, I found this tool online https://tools.picockpit.com/powercost/ which veryfies my napkin math.

            • bloodfart
              link
              fedilink
              arrow-up
              1
              ·
              7 months ago

              Cloudserver might still be doing the $10 a year deal where you get a cpu core and some ram and hard drive space.

              It’s hard to beat that price even if you already have the pi. And the vps runs amd64 binaries instead of needing everything built out for arm.

          • Deckweiss@lemmy.world
            link
            fedilink
            arrow-up
            2
            ·
            edit-2
            7 months ago

            I expect it to last for over 10years.

            It has been running for 2 so far.

            The total material cost was somewhere between 800 and 1000€.

            For comparison, here is an ARM vps https://www.netcup.eu/vserver/arm-server/ if you scroll down a bit and add 8TB block storage to it you can see that the storage alone would cost just shy of 100€ per month. That would rake up the same bill in less than a year.

              • Deckweiss@lemmy.world
                link
                fedilink
                arrow-up
                3
                ·
                edit-2
                7 months ago

                all good points to consider for sure.

                I won’t go into all of them, but to summarize, it works perfectly for me.

                The cool thing about a cluster is the upgrade path. It started with just two blades, but as I ran more docker containers and went out of resources, I just bought more. Am now up to 6 and there are still 2 free slots if I need it.

                Storage I definitely overprovisioned but it will get used up eventually, that one is a bit more tricky to smoothly upgrade. Each blade has one nvme slot, but for bulk storage I have external raid enclosures, which is somewhat awkward.

                Like you implied, it all depends on your need. If all you need is to run some private services, as OP is asking about, a bunch of SBCs or an old second hand office computer will do just fine and be very nicely priced compared to renting a similarly specced VPS.

      • Signature_________@poeng.link
        link
        fedilink
        arrow-up
        3
        ·
        7 months ago

        If one forgoes contracts and is trusting, anybody can host their private files on my private, self-hosted servers. But only if it’s sensitive documents. Like the stuff you wouldn’t want to host at a standard online host.

        Completely free, aint that just a sweet deal?

        Personally I find time and money tertiary to privacy and would pay 10 times the standard rate for a truly secure host.

        Unfortunately they don’t exist so I learned to self host encrypted servers with VPN access on private infrastructure.

        Beat use of time and money ever.

        • taladar@sh.itjust.works
          link
          fedilink
          arrow-up
          1
          arrow-down
          1
          ·
          7 months ago

          Which is why I said “on price”. Obviously that is only one of the factors but don’t kid yourself into thinking that your local server will ever be cheaper. It might have many other advantages but price just won’t be one of them.

      • youmaynotknow
        link
        fedilink
        arrow-up
        3
        ·
        7 months ago

        That’s a load of crap. Anything you have to subscribe to will turn out to be more expensive than owning at some point. And even if that was not the case, the monetary value that you give your data is what should determine how much you should pay, up front or over time.

    • reddeadhead@awful.systems
      link
      fedilink
      arrow-up
      2
      ·
      7 months ago

      I think ADTAQ is exactly what I am looking for and $10 a tb is a very good deal. If they are the “Anti-Walmart” of VPS’s then I am sold.

  • Guadin@k.fe.derate.me
    link
    fedilink
    arrow-up
    4
    arrow-down
    1
    ·
    7 months ago

    You need to trust your provider. If you choose a bigger one, chances are you are a bit safer. Those kind of providers make big bucks on companies, so if they harm the trust of their customers they are out of business. You could try to choose software which implements E2EE and zero-trust to be safer, but those are not available on all software categories. VPS providers have access to all your stuff. So it’s all up to you which provider you trust. I would prefer a bigger name too some obscure little basement hoster.

  • bloodfart
    link
    fedilink
    arrow-up
    2
    ·
    7 months ago

    The best thing to do is not trust your vps. You can use different credentials than those you normally would, connect through a vpn to obscure your identity (questionably useful depending on how you paid) and use public/private key pairs where no private key material or certificates end up on your vps.

    I’m not sure of a true “zero trust” method to secure a virtualized computer when someone else has lower level software access and physical control over the hardware it’s running on.