Skip to content
  • Categories
  • Recent
  • Tags
  • Popular
  • World
  • Users
  • Groups
Skins
  • Light
  • Cerulean
  • Cosmo
  • Flatly
  • Journal
  • Litera
  • Lumen
  • Lux
  • Materia
  • Minty
  • Morph
  • Pulse
  • Sandstone
  • Simplex
  • Sketchy
  • Spacelab
  • United
  • Yeti
  • Zephyr
  • Dark
  • Cyborg
  • Darkly
  • Quartz
  • Slate
  • Solar
  • Superhero
  • Vapor

  • Default (No Skin)
  • No Skin
Collapse

NodeBB

  1. Home
  2. Selfhosted
  3. Safest CalDAV/CardDAV server [Choice Made]

Safest CalDAV/CardDAV server [Choice Made]

Scheduled Pinned Locked Moved Selfhosted
selfhosted
25 Posts 16 Posters 9 Views
  • Oldest to Newest
  • Newest to Oldest
  • Most Votes
Reply
  • Reply as topic
Log in to reply
This topic has been deleted. Only users with topic management privileges can see it.
  • A a_norny_mousse@feddit.org
    5 Jun 2025, 10:52

    After my previous server got hacked (presumably), I am now looking for new solutions to my needs. CalDAV/CardDAV is a big one.

    So far I switched from a content management system (PHP) to a static site generator for my blog, and I'm not looking back.

    I wonder if it makes sense to also step away from PHP wrt CalDAV/CardDAV.

    As ever so often, this list has some nice info.

    I'd like to keep dependencies low. Python would be a good choice because it's already installed on my Debian Stable system. But would it be safer?

    Back when I started this compatibility with clients was an issue; but I don't use Android anymore. In any case, is this still an issue?

    edit: no, I don't use a web based app; and I'd prefer the server doesn't require admin via web UI either.


    Thanks for all your replies! I chose Radicale, already set it up. Only what is needed, simple config files. Very nice. It runs under an nginx reverse proxy and they communicate encrypted (and of course the outside is also encrypted and password-protected). And the web UI can be disabled.

    The documentation is very tutorial-like and security conscious.

    C This user is from outside of this forum
    C This user is from outside of this forum
    coyotefacts@lemmy.ca
    wrote on 5 Jun 2025, 11:24 last edited by
    #5

    I've never had any issues with Radicale, which is dead simple and lightweight. If you end up with Android again, DAVx5 has also never given me any trouble, and it also allows calendars to be cached offline. I'm not sure how you're having compatibility issues as I would think CalDAV is a standard protocol?

    If you're concerned about dependencies and security, why not use Docker or Podman? It makes most of self-hosting in general much simpler, and it's much easier to secure since it's containerized. With containers, even if a hacker somehow hacks your CalDAV server, they can only access the minimal resources that you've given the container. I use this repo for Radicale on Docker.

    A 1 Reply Last reply 5 Jun 2025, 12:18
    4
    • A a_norny_mousse@feddit.org
      5 Jun 2025, 10:52

      After my previous server got hacked (presumably), I am now looking for new solutions to my needs. CalDAV/CardDAV is a big one.

      So far I switched from a content management system (PHP) to a static site generator for my blog, and I'm not looking back.

      I wonder if it makes sense to also step away from PHP wrt CalDAV/CardDAV.

      As ever so often, this list has some nice info.

      I'd like to keep dependencies low. Python would be a good choice because it's already installed on my Debian Stable system. But would it be safer?

      Back when I started this compatibility with clients was an issue; but I don't use Android anymore. In any case, is this still an issue?

      edit: no, I don't use a web based app; and I'd prefer the server doesn't require admin via web UI either.


      Thanks for all your replies! I chose Radicale, already set it up. Only what is needed, simple config files. Very nice. It runs under an nginx reverse proxy and they communicate encrypted (and of course the outside is also encrypted and password-protected). And the web UI can be disabled.

      The documentation is very tutorial-like and security conscious.

      S This user is from outside of this forum
      S This user is from outside of this forum
      shimitar@downonthestreet.eu
      wrote on 5 Jun 2025, 11:57 last edited by
      #6

      I use radicale. Safe and solid. Zero php.

      You need to install a separate app if you want a web based calendar ui, or you can just use dav5x on android or any other caldav client.

      D A S 3 Replies Last reply 5 Jun 2025, 13:36
      14
      • A a_norny_mousse@feddit.org
        5 Jun 2025, 10:52

        After my previous server got hacked (presumably), I am now looking for new solutions to my needs. CalDAV/CardDAV is a big one.

        So far I switched from a content management system (PHP) to a static site generator for my blog, and I'm not looking back.

        I wonder if it makes sense to also step away from PHP wrt CalDAV/CardDAV.

        As ever so often, this list has some nice info.

        I'd like to keep dependencies low. Python would be a good choice because it's already installed on my Debian Stable system. But would it be safer?

        Back when I started this compatibility with clients was an issue; but I don't use Android anymore. In any case, is this still an issue?

        edit: no, I don't use a web based app; and I'd prefer the server doesn't require admin via web UI either.


        Thanks for all your replies! I chose Radicale, already set it up. Only what is needed, simple config files. Very nice. It runs under an nginx reverse proxy and they communicate encrypted (and of course the outside is also encrypted and password-protected). And the web UI can be disabled.

        The documentation is very tutorial-like and security conscious.

        H This user is from outside of this forum
        H This user is from outside of this forum
        hendrik@palaver.p3x.de
        wrote on 5 Jun 2025, 12:08 last edited by hendrik@palaver.p3x.de 6 May 2025, 08:15
        #7

        I think Radicale, Baikal, SabreDAV or NextCloud are the most common choices. I read those names a lot.
        But I believe only one of those isn't written in PHP.

        I'd really recommend digging into the "hacking" though. Unless you learn from your specific mistakes and avoid that in the future, you might run in to the exact same issue again. And I mean it could be a security flaw in the program code of the WebDAV server. But it could as well be a few dozen other reasons why your server wasn't secure... (Missing updates, insecure passwords, missing fail2ban, a webserver or reverse proxy, unrelated other software... There are a lot of moving gears in a webserver and lots of things to consider.)

        1 Reply Last reply
        7
        • J jasn_de@feddit.org
          5 Jun 2025, 11:04

          Back when I started this compatibility with clients was an issue; but I don't use Android anymore. In any case, is this still an issue?

          Um... How are we supposed to tell you if your unnamed DAV client will have problems with your unnamed new DAV server? Works fine for me.

          A This user is from outside of this forum
          A This user is from outside of this forum
          a_norny_mousse@feddit.org
          wrote on 5 Jun 2025, 12:17 last edited by a_norny_mousse@feddit.org 6 May 2025, 08:19
          #8

          There used to be a mismatch between the spec and Google’s implementation of it.

          O 1 Reply Last reply 5 Jun 2025, 13:09
          0
          • C coyotefacts@lemmy.ca
            5 Jun 2025, 11:24

            I've never had any issues with Radicale, which is dead simple and lightweight. If you end up with Android again, DAVx5 has also never given me any trouble, and it also allows calendars to be cached offline. I'm not sure how you're having compatibility issues as I would think CalDAV is a standard protocol?

            If you're concerned about dependencies and security, why not use Docker or Podman? It makes most of self-hosting in general much simpler, and it's much easier to secure since it's containerized. With containers, even if a hacker somehow hacks your CalDAV server, they can only access the minimal resources that you've given the container. I use this repo for Radicale on Docker.

            A This user is from outside of this forum
            A This user is from outside of this forum
            a_norny_mousse@feddit.org
            wrote on 5 Jun 2025, 12:18 last edited by
            #9

            I’m not sure how you’re having compatibility issues as I would think CalDAV is a standard protocol?

            There used to be a mismatch between the spec and Google's implementation of it.

            1 Reply Last reply
            1
            • A a_norny_mousse@feddit.org
              5 Jun 2025, 12:17

              There used to be a mismatch between the spec and Google’s implementation of it.

              O This user is from outside of this forum
              O This user is from outside of this forum
              onomatopoeia@lemmy.cafe
              wrote on 5 Jun 2025, 13:09 last edited by
              #10

              If you're self hosting, why use anything Google?

              I don't use Google apps, my calendar apps aren't even on Play, and don't use any Google processes.

              1 Reply Last reply
              1
              • S shimitar@downonthestreet.eu
                5 Jun 2025, 11:57

                I use radicale. Safe and solid. Zero php.

                You need to install a separate app if you want a web based calendar ui, or you can just use dav5x on android or any other caldav client.

                D This user is from outside of this forum
                D This user is from outside of this forum
                dbkblk@lemmy.world
                wrote on 5 Jun 2025, 13:36 last edited by
                #11

                Radicale is indeed excellent. Light and safe. I use it for an association!

                1 Reply Last reply
                1
                • A a_norny_mousse@feddit.org
                  5 Jun 2025, 10:52

                  After my previous server got hacked (presumably), I am now looking for new solutions to my needs. CalDAV/CardDAV is a big one.

                  So far I switched from a content management system (PHP) to a static site generator for my blog, and I'm not looking back.

                  I wonder if it makes sense to also step away from PHP wrt CalDAV/CardDAV.

                  As ever so often, this list has some nice info.

                  I'd like to keep dependencies low. Python would be a good choice because it's already installed on my Debian Stable system. But would it be safer?

                  Back when I started this compatibility with clients was an issue; but I don't use Android anymore. In any case, is this still an issue?

                  edit: no, I don't use a web based app; and I'd prefer the server doesn't require admin via web UI either.


                  Thanks for all your replies! I chose Radicale, already set it up. Only what is needed, simple config files. Very nice. It runs under an nginx reverse proxy and they communicate encrypted (and of course the outside is also encrypted and password-protected). And the web UI can be disabled.

                  The documentation is very tutorial-like and security conscious.

                  C This user is from outside of this forum
                  C This user is from outside of this forum
                  cecilkorik@lemmy.ca
                  wrote on 5 Jun 2025, 13:44 last edited by cecilkorik@lemmy.ca 6 May 2025, 09:44
                  #12

                  I've been using Nextcloud for almost a decade (started with Owncloud), publicly exposed to the internet with no VPN, and I've had no issues with security or with DAV. I do nothing special besides keeping it up to date (And using strong passwords, I guess)

                  N A 2 Replies Last reply 5 Jun 2025, 14:06
                  4
                  • C cecilkorik@lemmy.ca
                    5 Jun 2025, 13:44

                    I've been using Nextcloud for almost a decade (started with Owncloud), publicly exposed to the internet with no VPN, and I've had no issues with security or with DAV. I do nothing special besides keeping it up to date (And using strong passwords, I guess)

                    N This user is from outside of this forum
                    N This user is from outside of this forum
                    non_burglar@lemmy.world
                    wrote on 5 Jun 2025, 14:06 last edited by
                    #13

                    I've been using NC for about the same amount of time and I will say I'm no longer as happy with it as I once was, primarily because it's a mess of PHP, gum and popsicle sticks held together by me going in there every 3 upgrades to fix 'occ missing indices', add a sql table or some such error.

                    The caldav integration did allow me to break free from google some more, and it works well, but I've since moved file sync to syncthing and I'm looking for a standalone caldav solution.

                    S C 2 Replies Last reply 29 days ago
                    4
                    • A a_norny_mousse@feddit.org
                      5 Jun 2025, 10:52

                      After my previous server got hacked (presumably), I am now looking for new solutions to my needs. CalDAV/CardDAV is a big one.

                      So far I switched from a content management system (PHP) to a static site generator for my blog, and I'm not looking back.

                      I wonder if it makes sense to also step away from PHP wrt CalDAV/CardDAV.

                      As ever so often, this list has some nice info.

                      I'd like to keep dependencies low. Python would be a good choice because it's already installed on my Debian Stable system. But would it be safer?

                      Back when I started this compatibility with clients was an issue; but I don't use Android anymore. In any case, is this still an issue?

                      edit: no, I don't use a web based app; and I'd prefer the server doesn't require admin via web UI either.


                      Thanks for all your replies! I chose Radicale, already set it up. Only what is needed, simple config files. Very nice. It runs under an nginx reverse proxy and they communicate encrypted (and of course the outside is also encrypted and password-protected). And the web UI can be disabled.

                      The documentation is very tutorial-like and security conscious.

                      J This user is from outside of this forum
                      J This user is from outside of this forum
                      jadedblueeyes@programming.dev
                      wrote on 5 Jun 2025, 16:56 last edited by
                      #14

                      Stalwart recently released CalDAV & CardDAV support, and it's what I use for mail. It's pretty secure by default too.

                      1 Reply Last reply
                      1
                      • S shimitar@downonthestreet.eu
                        5 Jun 2025, 11:57

                        I use radicale. Safe and solid. Zero php.

                        You need to install a separate app if you want a web based calendar ui, or you can just use dav5x on android or any other caldav client.

                        A This user is from outside of this forum
                        A This user is from outside of this forum
                        a_norny_mousse@feddit.org
                        wrote 30 days ago last edited by a_norny_mousse@feddit.org 6 May 2025, 18:56
                        #15

                        Thanks for the tip. Already set it up. I like it - does just what I need and not much more. And the web UI can be disabled.

                        1 Reply Last reply
                        1
                        • C cecilkorik@lemmy.ca
                          5 Jun 2025, 13:44

                          I've been using Nextcloud for almost a decade (started with Owncloud), publicly exposed to the internet with no VPN, and I've had no issues with security or with DAV. I do nothing special besides keeping it up to date (And using strong passwords, I guess)

                          A This user is from outside of this forum
                          A This user is from outside of this forum
                          a_norny_mousse@feddit.org
                          wrote 30 days ago last edited by
                          #16

                          I personally don't like their kitchen sink approach.

                          1 Reply Last reply
                          1
                          • A a_norny_mousse@feddit.org
                            5 Jun 2025, 10:52

                            After my previous server got hacked (presumably), I am now looking for new solutions to my needs. CalDAV/CardDAV is a big one.

                            So far I switched from a content management system (PHP) to a static site generator for my blog, and I'm not looking back.

                            I wonder if it makes sense to also step away from PHP wrt CalDAV/CardDAV.

                            As ever so often, this list has some nice info.

                            I'd like to keep dependencies low. Python would be a good choice because it's already installed on my Debian Stable system. But would it be safer?

                            Back when I started this compatibility with clients was an issue; but I don't use Android anymore. In any case, is this still an issue?

                            edit: no, I don't use a web based app; and I'd prefer the server doesn't require admin via web UI either.


                            Thanks for all your replies! I chose Radicale, already set it up. Only what is needed, simple config files. Very nice. It runs under an nginx reverse proxy and they communicate encrypted (and of course the outside is also encrypted and password-protected). And the web UI can be disabled.

                            The documentation is very tutorial-like and security conscious.

                            S This user is from outside of this forum
                            S This user is from outside of this forum
                            sxan@midwest.social
                            wrote 30 days ago last edited by
                            #17

                            Good choice. I've been running Radicale for years, reverse proxied behind Caddy, and it's been solid.

                            1 Reply Last reply
                            2
                            • N non_burglar@lemmy.world
                              5 Jun 2025, 14:06

                              I've been using NC for about the same amount of time and I will say I'm no longer as happy with it as I once was, primarily because it's a mess of PHP, gum and popsicle sticks held together by me going in there every 3 upgrades to fix 'occ missing indices', add a sql table or some such error.

                              The caldav integration did allow me to break free from google some more, and it works well, but I've since moved file sync to syncthing and I'm looking for a standalone caldav solution.

                              S This user is from outside of this forum
                              S This user is from outside of this forum
                              suzune@ani.social
                              wrote 29 days ago last edited by
                              #18

                              What's wrong with following the official upgrade procedure? Don't complain about missing tables or indices then.

                              The most important thing is that the software does not break and you can maneuver out of every bad situation. This is important for self-hosting.

                              I don't care if it's PHP. Many good things are written in PHP. I find Python and Ruby much worse for web applications. Not because of the language, but because it's hard to maneuver out of some situations.

                              That said I didn't have many problems with Nextcloud. The only thing I criticize is that it solves too many problems at once.

                              N 1 Reply Last reply 28 days ago
                              1
                              • N non_burglar@lemmy.world
                                5 Jun 2025, 14:06

                                I've been using NC for about the same amount of time and I will say I'm no longer as happy with it as I once was, primarily because it's a mess of PHP, gum and popsicle sticks held together by me going in there every 3 upgrades to fix 'occ missing indices', add a sql table or some such error.

                                The caldav integration did allow me to break free from google some more, and it works well, but I've since moved file sync to syncthing and I'm looking for a standalone caldav solution.

                                C This user is from outside of this forum
                                C This user is from outside of this forum
                                cyber@feddit.uk
                                wrote 29 days ago last edited by
                                #19

                                My journey⋮
                                Nextcloud ---> syncthing + radicale

                                Much simpler, easier to maintain, less resources needed

                                N 1 Reply Last reply 28 days ago
                                0
                                • C cyber@feddit.uk
                                  29 days ago

                                  My journey⋮
                                  Nextcloud ---> syncthing + radicale

                                  Much simpler, easier to maintain, less resources needed

                                  N This user is from outside of this forum
                                  N This user is from outside of this forum
                                  non_burglar@lemmy.world
                                  wrote 28 days ago last edited by
                                  #20

                                  Thank you, I'll try radicale.

                                  1 Reply Last reply
                                  0
                                  • S suzune@ani.social
                                    29 days ago

                                    What's wrong with following the official upgrade procedure? Don't complain about missing tables or indices then.

                                    The most important thing is that the software does not break and you can maneuver out of every bad situation. This is important for self-hosting.

                                    I don't care if it's PHP. Many good things are written in PHP. I find Python and Ruby much worse for web applications. Not because of the language, but because it's hard to maneuver out of some situations.

                                    That said I didn't have many problems with Nextcloud. The only thing I criticize is that it solves too many problems at once.

                                    N This user is from outside of this forum
                                    N This user is from outside of this forum
                                    non_burglar@lemmy.world
                                    wrote 28 days ago last edited by non_burglar@lemmy.world about 18 hours from now
                                    #21

                                    I'm not sure what gave you the impression I don't follow the official procedure, I do follow the official upgrade procedure, and always have through its many stupid iterations for the last 8 years.

                                    Example error, from last week:

                                    Devs did not test with NC instances created before v21.x, so the SQL db is broken when going through the official upgrade if your nc has the old structure and I had to manually modify the actual db to work.

                                    This kind of shit happens about twice a year. Mind you, this exact literal thing happened from v18.x to 19.x also, you'd think they has learned their lesson.

                                    And php itself is fine. Not the most secure way to build a webapp, but fine. However, upgrading PHP on various platforms is an exercise in pulling your hair out.

                                    Nextcloud is great when it's working. Most upgrades are fine. But when it poops the bed, it's another hour I can't get back. No other self-hosted software in my stack is like that.

                                    S 1 Reply Last reply 28 days ago
                                    0
                                    • N non_burglar@lemmy.world
                                      28 days ago

                                      I'm not sure what gave you the impression I don't follow the official procedure, I do follow the official upgrade procedure, and always have through its many stupid iterations for the last 8 years.

                                      Example error, from last week:

                                      Devs did not test with NC instances created before v21.x, so the SQL db is broken when going through the official upgrade if your nc has the old structure and I had to manually modify the actual db to work.

                                      This kind of shit happens about twice a year. Mind you, this exact literal thing happened from v18.x to 19.x also, you'd think they has learned their lesson.

                                      And php itself is fine. Not the most secure way to build a webapp, but fine. However, upgrading PHP on various platforms is an exercise in pulling your hair out.

                                      Nextcloud is great when it's working. Most upgrades are fine. But when it poops the bed, it's another hour I can't get back. No other self-hosted software in my stack is like that.

                                      S This user is from outside of this forum
                                      S This user is from outside of this forum
                                      suzune@ani.social
                                      wrote 28 days ago last edited by
                                      #22

                                      So you seriously expect an upgrade from major version 20 or less to major version 31 going well?

                                      It's like upgrading from Windows 3.1 to Windows 11.

                                      N 1 Reply Last reply 28 days ago
                                      0
                                      • S suzune@ani.social
                                        28 days ago

                                        So you seriously expect an upgrade from major version 20 or less to major version 31 going well?

                                        It's like upgrading from Windows 3.1 to Windows 11.

                                        N This user is from outside of this forum
                                        N This user is from outside of this forum
                                        non_burglar@lemmy.world
                                        wrote 28 days ago last edited by non_burglar@lemmy.world about 20 hours from now
                                        #23

                                        You misread that.

                                        The database was from prior to 21.x, because i installed NC 8 years ago at v14 and have upgraded since then. I've been upgrading the same system since late 2016.

                                        Stop picking fights with strangers.

                                        S 1 Reply Last reply 28 days ago
                                        2
                                        • N non_burglar@lemmy.world
                                          28 days ago

                                          You misread that.

                                          The database was from prior to 21.x, because i installed NC 8 years ago at v14 and have upgraded since then. I've been upgrading the same system since late 2016.

                                          Stop picking fights with strangers.

                                          S This user is from outside of this forum
                                          S This user is from outside of this forum
                                          suzune@ani.social
                                          wrote 28 days ago last edited by
                                          #24

                                          No I didn't. You should really read the upgrade guide:

                                          You cannot skip major releases.

                                          1 Reply Last reply
                                          0
                                          Reply
                                          • Reply as topic
                                          Log in to reply
                                          • Oldest to Newest
                                          • Newest to Oldest
                                          • Most Votes

                                          14/25

                                          5 Jun 2025, 16:56


                                          • Login

                                          • Login or register to search.
                                          Powered by NodeBB Contributors
                                          14 out of 25
                                          • First post
                                            14/25
                                            Last post
                                          0
                                          • Categories
                                          • Recent
                                          • Tags
                                          • Popular
                                          • World
                                          • Users
                                          • Groups