You can selfhost Bitwarden/Vaultwarden (which I recommend, since it's rewritten in Rust and you get all the premium features for free) and use Bitwarden Send. This is probably more secure than most other options.
Selfhosted
A place to share alternatives to popular online services that can be self-hosted without giving up privacy or locking you into a service you don't control.
Rules:
-
Be civil: we're here to support and learn from one another. Insults won't be tolerated. Flame wars are frowned upon.
-
No spam posting.
-
Posts have to be centered around self-hosting. There are other communities for discussing hardware or home computing. If it's not obvious why your post topic revolves around selfhosting, please include details to make it clear.
-
Don't duplicate the full text of your blog or github here. Just post the link for folks to click.
-
Submission headline should match the article title (don’t cherry-pick information from the title to fit your agenda).
-
No trolling.
Resources:
- selfh.st Newsletter and index of selfhosted software and apps
- awesome-selfhosted software
- awesome-sysadmin resources
- Self-Hosted Podcast from Jupiter Broadcasting
Any issues on the community? Report it using the report flag.
Questions? DM the mods!
Though for the actual password selfhosting part of it, that is too much for my blood. Much higher chance that I would seriously fuck something up and lose access to hundreds of services than the remote bitwarden server gets compromised or becomes too shitty to use.
You can continue using the cloud hosted version of Bitwarden and only use your own instance for file sharing.
Or pay the astoundingly low $10/yr for Premium and use Send on the cloud servers.
Sure, I've been a premium customer for years because I find the service very useful, but this community is all about selfhosting.
True enough, but I like to slide in an ad in for Bitwarden every once in a while. I don't think my $10 alone is going to keep them afloat :)
I'm pretty sure Bitwarden is profitable, about a year ago they even purchased another company: https://bitwarden.com/blog/bitwarden-extends-passwordless-leadership-with-acquisition/
Also, I don't think they make that much money from individuals. They focus more on businesses, because they pay more and these customers stay around for a long time, they can't easily switch to a different solution.
I pay my $10 license and a personal organisation license for bitwarden because I like their platform but after yet another irrecoverable loss of data (partly my fault for not sufficiently backing it up) I've moved over to vaultwarden for my family's password management.
I don't think I'll stop supporting bitwarden even if I'm not using their platform directly though as I do like the service I've had from them for something like 4 or 5 years now.
How'd you manage to lose data? I've never even noticed the sync service be down, let alone lose anything.
One time I ran out of disk space due to it having created since 200gb log files (not sure why that happened) then another time I think I broke something whilst moving from I've got to another. I can't remember what else happened to break my instances but it was always big enough there I couldn't restore it to working it after hours if work, so if just export the vaults from everyone's machine, nuke it, start again and try to learn how I broke it so I didn't do it again.
I believe I was the problem for most of them except the massive log files one, but still, it was probably my fault as the things usually are. (Guess whose wife has them well trained at accepting the blame 😋)
Oh, sorry. I thought you were saying the Bitwarden cloud server was losing your passwords or something.
If you have regular backups, not an issue. I use bitwarden self hosted through home assistant, which makes daily backups trivial.
Croc has worked nicely for me when I had to transfer very large files. I'll check out Korra next time if "async" means it will start transferring once the first file is hashed. That always annoyed me about Croc and I'd manually break my transfers into chunks because I didn't want to wait 10min before even one file was transferred.
Not really. It's async in the sense that you can send a file now, and the server will hold it in an encrypted state until your recipient comes to collect it.
Ah, so it's not [necessarily] a direct transfer between peers.
Nope. It's definitely not. The idea is just to make it safe(r) to share files within an organisation. The assumption is that for direct P2P sharing you'll want something simpler like Croc.
Since no one mentioned, there's a Firefox send fork alive, send.vis.ee or src GitHub.com/timvisee/send
Lufi is exaclly that, demo here: https://lufi.fiat-tux.fr/
Does it offer user registration?
Um, unfortunetly no, sorry.
I guess nextcloud could do it, but you get a whole lot more in the same package.
This is a bit overkill for my purposes...i just need the filesharing part...
No personal experience with it but this project seem to be interesting for your use case and have a docker so it's easy to test:
https://github.com/filebrowser/filebrowser
Filebrowser is awesome, but I dont think you can share files with non users.
It supports sharing via public link. But I don't think it has sharing with registered users via username.
Dang I didnt know that, my bad...
Yeah, I've used Nextcloud for this in the past too, but it looks like there's a ton of other options as well judging by this thread.
Yeah, sftpgo.com seems to have a nice web frontend for users while also benefitting from all that sftp offers. Free open-source with paid support. https://github.com/drakkan/sftpgo
I use Pingvin only thing it does not have is sharing with registered users but it seems that feature has been requested so might be added at some point.
I think http://www.youtransfer.io is a wettasfer clone. Works perfectly.
Looks like it does not have user registration, does it?
It does not, it’s meant to be single use as far as I know. But the link expiry can be customised
Seafile. I've used it for years, but I'm moving over to nextcloud as I could use other features it provides. They have paid options too, but unless you need LDAP or something more sophisticated for user management the community edition works just fine.
Vault warden Send Pair drop is also neat (an airdrop replacement)