After my previous server got hacked (presumably), I am now looking for new solutions to my needs. CalDAV/CardDAV is a big one.

So far I switched from a content management system (PHP) to a static site generator for my blog, and I’m not looking back.

I wonder if it makes sense to also step away from PHP wrt CalDAV/CardDAV.

As ever so often, this list has some nice info.

I’d like to keep dependencies low. Python would be a good choice because it’s already installed on my Debian Stable system. But would it be safer?

Back when I started this compatibility with clients was an issue; but I don’t use Android anymore. In any case, is this still an issue?

edit: no, I don’t use a web based app; and I’d prefer the server doesn’t require admin via web UI either.

Thanks for all your replies! I chose Radicale, already set it up. Only what is needed, simple config files. Very nice. It runs under an nginx reverse proxy and they communicate encrypted (and of course the outside is also encrypted and password-protected). And the web UI can be disabled.

The documentation is very tutorial-like and security conscious.

  • cecilkorik@lemmy.caEnglish
    51·
    2 days ago

    I’ve been using Nextcloud for almost a decade (started with Owncloud), publicly exposed to the internet with no VPN, and I’ve had no issues with security or with DAV. I do nothing special besides keeping it up to date (And using strong passwords, I guess)

    • non_burglar@lemmy.worldEnglish
      5·
      2 days ago

      I’ve been using NC for about the same amount of time and I will say I’m no longer as happy with it as I once was, primarily because it’s a mess of PHP, gum and popsicle sticks held together by me going in there every 3 upgrades to fix ‘occ missing indices’, add a sql table or some such error.

      The caldav integration did allow me to break free from google some more, and it works well, but I’ve since moved file sync to syncthing and I’m looking for a standalone caldav solution.

      • Suzune@ani.socialEnglish
        1·
        7 hours ago

        What’s wrong with following the official upgrade procedure? Don’t complain about missing tables or indices then.

        The most important thing is that the software does not break and you can maneuver out of every bad situation. This is important for self-hosting.

        I don’t care if it’s PHP. Many good things are written in PHP. I find Python and Ruby much worse for web applications. Not because of the language, but because it’s hard to maneuver out of some situations.

        That said I didn’t have many problems with Nextcloud. The only thing I criticize is that it solves too many problems at once.