I would reconsider docker because if a specific application leaks some sort of shell access or system file access you’ll be protected out side of container host escalation.

Unrelated to security, I prefer docker because it leaves the server very clean if you remove different apps. Can also save time configuring more complex applications or applications that conflict with system libraries.

Add fail2ban on your list of applications it watches logs for invalid logins and puts them on firewall block rules after so many failed attempts.

I made the jump to a full server a few years ago and there’s some pretty high limits but you can get them spec’ed pretty low. Something like a dell r730 Single 8 core xenon 32gb ram and a couple tb of storage running 4-500$. They can be upgraded over time to be dual 16 core xenon 1tb ram and petabyte of storage.

I guess some perspective on some other comments here. I have a dell r720xd dual xenon’s 16 total cores 128gb ram it uses roughly 200watts per hour with the 11000w power supplies. it can get fairly loud when using lots processing power. I bought a 12u rack to mount it nicely in my office. It is also my guest bedroom, while everyone we have had doesn’t mind the noise not all guests would appreciate the white noise even with many of the cpu intensive stuff turned off and it as quiet as it goes. Fans full tilt would be obnoxious and hard to concentrate.

Yeah can confirm this will work. Similar setup great way to get wifi extended without running wires.

Google search “Does <isp name> block port 80”

Many home ISPs block port 80 and 25. You should be able to Google that and confirm. If that’s the case you’ll have to use a different method.

Was running on my original pi b up till I replaced it recently with a pi 4. Was a little slow but worked fine.

Do you have some dimensions for the outlet?

I setup a script to backup my lvm volumes with kopia. About to purchase some cloud storage to send it off site. Been running for a while de duplication working great. Encryption working as far as I can tell. The sync to other repo option was the main seller for me.