Just changing the SSH port to non standard port would greatly reduce that risk. Disable root login and password login, use VLANs and containers whenever possible, update your services regularly and you will be mostly fine

If you are behind CGNAT and use some tunnel (Wireguard, Tailscale, etc.) to access your services which are running on Docker containers, the attack vector is almost not existing.

Doesn’t updating homebrew packages require a reboot?

Do you really need multiple VMs, can’t you run all at one? The easiest would be to install some windows/Linux on a single machine. Then stream your games with Sunshine/Moonshine and connect over RDP/VPN?

Yes, this OS looks interesting and beginner friendly

Why don’t you give PopOS a try, it is quite user friendly Ubuntu/Debian based

I am exactly in the same boat. I might disagree with someone but the amount of work he put into it is admirable

And yet so many people believe in religion without a single scientific proof. But yes, I got your point.

For the record there are a lot of shameful events in your history too, but I am sure your own government has done its utmost to hide those facts.

Just that in the US there is a massive anti China and anti Russia propaganda. Do not get me wrong, I don’t disagree with a lot of their policies, but the US isn’t also spotless and a role model in a lot of ways.

You will be surprised how much of the open source software out there is written and maintained by lefties and tankies.

Sadly conservatives seem to have either lower education and are not notorious for their sharing and selflessness.

https://github.com/awesome-selfhosted/awesome-selfhosted - just pick one or more services from the list and start looking into their documentation.

YouTube and the web are full of information and guides how you can do it. Me personally I would suggest you to use Docker container and Docker compose if possible. You can see how you can install Docker or Podman to run the containers.

Please remind me, weren’t there a couple of Israeli politicians calling Palestinians human animals and asking to drop nuclear bombs on top of them.

Or weren’t some far right looting trucks full of humanitarian aid for famine ridden Gaza.

I can definitely continue this list or you can do yourself a favour by reading some Wikipedia page on the subject, and while at it you can also check (pick a random non affiliated with Israel human rights organisation) think of Israel’s treatment of Palestinians.

You should also consider the time you will spend configuring and setting up everything in Incus.

If you do this with educational purpose go for it, otherwise I will advise you not to, as Proxmox has a wider support and probably finding information, etc. for it is going to be easier.

Alternatively, why don’t you dedicate one of the hosts to Incus and play around with it and decide if it works for you or not.

The most concerning part about Rustdesk is that they delete issues that question the source of the software or Rustdesk’s potential to be influenced by the CPP.

Seriously, if you make the effort to create a big piece of software and then you open source it and then someone opens a ticket in GitHub asking you those questions, how would you feel?

Because neither “what is the source of the software” nor “potential influence by the CPP” has anything to do with the software itself.

You are free to conduct a security audit of the project and based on the results you can open this thread but saying that they have deleted issues opened on their GitHub page that have nothing to do with the software itself is a pure form of witch hunt and I am genuinely surprised how many people have agreed with you.

https://www.reuters.com/article/idUSKBN27D1DO/

https://www.atlasobscura.com/articles/a-brief-history-of-the-nsa-attempting-to-insert-backdoors-into-encrypted-data

https://archive.is/CFLMV

https://www.theguardian.com/world/2021/may/31/denmark-helped-us-spy-on-angela-merkel-and-european-allies-report

Damn, if only the US government didn’t have a proven track record of putting backdoors in commercial software.

But hey, at least they are not authoritarian state so backdoors originating from the US are all fine, right?

I can only feel sorry for you and would strongly recommend you to seek some specialised help.

I am not Chinese, I am born and raised in the EU and I am Caucasian.

I am just irritated that FOSS software is being questioned just because it might have been developed by Chinese programmers.

And for the record you can’t be sure that any commercial software isn’t compromised or it doesn’t have backdoors, it just makes detecting those backdoors a lot harder.

So now I got labelled leftist? That’s very presumptuous of you, don’t you think? You know there are more shades of gray and in normal democracies we have more than two political parties. But nice of you trying to generalise my whole personality, based on a couple of sentences, written in a social platform.

And for the record, English isn’t my native language. And surprisingly there are other reasonable human beings living outside the US (surprise, surprise) who might have slightly different world views from you. The world doesn’t revolve around the US, no matter what your politicians are telling you.

Can you answer me if he will have questioned this piece of software if it was developed in the US, Europe or any other part of the world? And he presumes that by default if something is developed in China must be riddled with backdoors.

Same with the Huawei’s network equipment, that the US forced so many governments not to use. And to the best of my knowledge this was never proven.

Shall I also remind you that the US isn’t spotless either https://www.vice.com/en/article/5d9bp8/us-spies-allies-south-korea-pentagon-leak

U.S. officials have been scrambling to mend ties with its allies following a leak of secret documents showing that the U.S. spied on its friends—again.

And now I am imagining some sophisticated hack that breaches their AI generator and starts slipping command arguments that might expose your system. Probably too much of an effort but still plausible.

CSS can become tedious, especially if you are targeting mobile device and tablets and building this in plain HTML CSS and PHP is way too much work and the end result will probably still not be very responsive and won’t look so great.

This approach is definitely an overkill and if the OP doesn’t want to use this as an educational project I will strongly suggest not to go this route. Just use some of the tools the other has suggested here, like Grav, Hugo, etc.