I’m looking for something to replace cloud storage for myself and family. I’ve tried to use/like NextCloud but honestly I despise it. The UI/UX really bothers me, and administering it is a pain. It also just does way more that I want or need.

What I’m looking for:

  • Supports a virtual/sync folder on Mac. Like iCloud does, it needs to create a local folder on a Mac. I personally just use SMB, but for family members that’s not as easy (see next point).
  • Accessible from the internet. I don’t want to put my family members on the VPN, but I do have a central OAuth for other stuff so I want it to be secured with behind that.
  • Doesn’t need to have a web interface or phone app. If it integrates into the computer, it doesn’t really need this. I can just use (FileBrowser)[https://filebrowser.org/]. It’s mostly used for documents and the like, so desktop/laptop use is the most important.

Anyone use anything that fits this? Or anyone in general dislike NextCloud and use something else?

Edit: Maybe I can just setup webdav and use something like https://mountainduck.io/? Would be better to find something FOSS though, if possible.

  • @[email protected]
    link
    fedilink
    English
    18 months ago

    I just finished building a cloud solution leveraging an AWS EFS (elastic file system), a secure ZeroTier mesh, and a simple EC2 instance (vm) running Samba (or just sshfs/scp/sftp if multi-user file locking isn’t needed). EFS does have some pretty big limitations like the fact users can’t be in more than 16 groups (because it behaves like an NFS mount), and it lacks xattr and ACL support. Still, if you can work around these shortcomings you can build a very secure, surprisingly speedy cloud filesystem. Largest expense is the EFS, but after 30 days infrequently accessed files automatically move to slower storage, which is way cheaper. ZeroTier is an important piece of the puzzle, making your security and encryption a breeze. This allows you to run SMB over the internet without actually exposing any services. Connections are only made through your ZT mesh, which is highly secure.

    • @nopersonalspaceOP
      link
      English
      18 months ago

      I run Tailscale which is basically the same a ZeroTier, so I theoretically could do this, but I’m not super enthused about having to put family members onto my VPN. I’d have to do some complicated networking stuff to keep things secure (aka make sure “normal” users don’t have access to machines and systems they shouldn’t). That said, I should look into it because if there is an easy way to do that, then this could be the simplest way

      • @[email protected]
        link
        fedilink
        English
        18 months ago

        Yeah, they provide a “Flow” section where you can setup firewall-like rules to control your flow of traffic. You can configure rules that say, allow ssh to a specific server, but only from a specified devices, while allowing ssh, https and smb to another server from any device, blocking all other TCP traffic. UDP is a little weirder to control, but there’s a decent tutorial with example configs.

        I hear about TailScale a lot, and I know its super popular in the self-hosting & linux communities. I haven’t used it myself though, so can’t offer a comparison vs ZeroTier. I found ZeroTier refreshjngly easy to use and install on client devices, so haven’t had reason to look elsewhere yet.

        Anyway, have fun with your endeavor!