Nextcloud

319 readers

5 users here now

A community for discussing all things related to Nextcloud.

Federation link: Search to federate this sub to your instance

Other resources:

Official forum: https://help.nextcloud.com/

founded 1 year ago

MODERATORS

Chathan@discuss.tchncs.de

heimchen@discuss.tchncs.de

Nextcloud server auto update? (feddit.de)

submitted 1 year ago by _s10e@feddit.de to c/nextcloud@discuss.tchncs.de

2 comments fedilink hide all child comments

Is it possible to configure nextcloud to automatically update? At least for minor, non-breaking changes, or when all apps are compatible?

I'm not comfortable with running a public seever without the latest security updates.

If nextcloud doesn't do auto updates, is this something that managed nextcloud service providers usually do for you on a paid plan?

you are viewing a single comment's thread
view the rest of the comments

[–] heimchen@discuss.tchncs.de 0 points 1 year ago* (last edited 1 year ago) (1 children)

I don't know to much about security, its all just a hobby for me but maybe it could help you.
As far as I know, basically only open Ports are potential security risks. \ So I would

close everything down besides 443 80 and 22,
disable password based login for ssh
use the snap version since it self updates(I don’t know when the alternatives update)
Us a “Server” OS/ LTS

I personally use OpenSuse Leap with yast2 online_update_configuration configured to update patch one a week, but you can do this in every distro with cron jobs.

[–] _s10e@feddit.de 0 points 1 year ago

Yes, but 443/80 must be open and public. This lets an attacker exploit a (pre-auth) vulnerable in php or nextcloud.