build your own cloud

TL;DR

Self-hosting private cloud storage reduces dependence on third-party control and can improve data governance and security for personal and business use.

Briefing Cornell Notes

Briefing

Cloud storage doesn’t have to mean handing control of personal or business files to Dropbox, Google Drive, or OneDrive. The core pitch is to host a private “cloud” yourself—either on-premises (inside a home lab or business network) or in a public cloud—so data stays under your control while still enabling remote access, sharing, and sync.

The centerpiece of the walkthrough is File Cloud, positioned as an enterprise-grade private file sharing platform with a free community edition. The appeal isn’t just “self-hosting,” but specific security and governance features that consumer services typically don’t offer in the same way. File Cloud’s community edition adds remote access plus “hyper secure” sharing controls: password-protected links, download limits (including time windows and number of downloads), and the ability to mount shared storage as a network share so it behaves like a drive on your local network. For larger organizations, the enterprise angle expands into data governance and compliance-style tooling—retention policies, data leak prevention, zero-trust file sharing, antivirus scanning, and integrations with identity systems like Active Directory and single sign-on.

To deploy File Cloud, the guide lays out multiple paths: running it on a spare laptop with an external drive, installing it directly on Windows (File Cloud is highlighted as one of the few self-hosted options that supports Windows), running it on Linux, or using Docker. It then goes deep on an AWS-based setup for learning and flexibility. The process starts with creating an AWS EC2 instance from the File Cloud image, logging in via the instance’s public DNS, and installing a community license file. From there, storage is shifted away from the EC2 instance’s local volume to Amazon S3, using an S3 bucket plus an IAM user with permissions generated from File Cloud’s post-install instructions. A key configuration step requires editing File Cloud’s storage implementation setting on the EC2 server so it uses Amazon S3, then entering S3 access key, secret key, and bucket name in File Cloud’s settings. The walkthrough also includes an encryption toggle to enable S3 encryption (AES-256) for data at rest.

After AWS, the guide covers on-prem hosting options (Docker, Linux package install, or pre-baked virtual machine images). It also shows how to attach an external hard drive on Linux: detect the device, format it (EXT4), mount it, adjust permissions so Apache can read/write, and point File Cloud’s storage path to the mounted directory.

For secure access, the guide walks through domain and SSL setup using Cloudflare and an origin certificate flow: create a CSR on the EC2 instance, submit it to Cloudflare, configure Apache for HTTPS, and update File Cloud’s server URL to use the new domain. It then demonstrates the “coolest” usability feature: mounting the File Cloud drive in a way that lets users interact with files like a local mapped drive, including share links with constraints like expiration, download limits, and passwords.

Finally, the alternative is Nextcloud—framed as more home-lab friendly and open source, typically installed via Docker on Linux. Nextcloud offers a broad feature set (contacts, calendar, notes, tasks, and many apps), but the tradeoffs are highlighted: it’s more complex and more “online-service-like,” and it lacks File Cloud’s mapped-drive style experience. The comparison also notes a practical limitation: File Cloud community edition is limited to five users, while Nextcloud supports unlimited users.

The closing guidance is pragmatic: keep consumer services for backup if desired, but move personal or business-critical data to a self-hosted platform when control, security, and governance matter—especially for organizations facing compliance requirements.

Cornell Notes

The transcript argues that replacing consumer cloud storage with a self-hosted private cloud is feasible and can improve control over data security and sharing. File Cloud is presented as an enterprise-oriented option with a free community edition, emphasizing secure sharing controls (password protection, expiration, and download limits) and enterprise-style governance features like retention policies and data leak prevention. A detailed AWS walkthrough shows how to run File Cloud on EC2, then connect it to Amazon S3 using an S3 bucket plus an IAM user, with optional AES-256 encryption. The guide also covers on-prem installs (Docker or Linux packages), external drive mounting on Linux, and HTTPS setup using Cloudflare. Nextcloud is offered as the open-source home-lab alternative, installed via Docker on Linux, with broader app features but different limitations and sharing controls.

Why does self-hosting matter compared with relying on Dropbox, Google Drive, or OneDrive?

Self-hosting keeps data under the owner’s control instead of relying on third-party control over pricing, availability, security posture, and access policies. The transcript frames this as especially important for personal privacy and for businesses that may face regulations requiring tighter governance and auditability. The practical goal is remote access and file sharing without surrendering control of where the data lives and how it’s protected.

What makes File Cloud’s sharing and security approach different from typical consumer sharing?

File Cloud’s community edition is highlighted for “hyper secure” file sharing: password-protected sharing, time-limited access, and download limits (including limiting the number of downloads and restricting downloads until a specified date). It also supports mounting shared storage as a network share so it behaves like a drive. For enterprise use, the transcript adds governance and compliance-style capabilities such as retention policies, data leak prevention, zero-trust file sharing, and antivirus scanning.

How does the AWS deployment shift storage from EC2 local disks to Amazon S3?

After launching a File Cloud EC2 instance, the setup installs the community license, then creates an S3 bucket and an IAM user with permissions tailored for File Cloud. A configuration change on the EC2 instance switches File Cloud’s storage implementation from local to Amazon S3 (editing a PHP config file and copying a sample S3 storage config). Finally, File Cloud’s S3 settings are filled with the IAM access key, secret access key, and bucket name, and the system is verified by uploading a file and checking S3 objects.

What steps are involved in enabling encryption for data stored in Amazon S3?

In File Cloud’s storage settings, the transcript points to an S3 encryption option. Enabling it encrypts data at rest and in transit between Amazon S3 and the File Cloud server. The walkthrough notes that enabling encryption affects existing files too, and it uses AES-256 encryption.

How does the transcript recommend securing access with a custom domain and HTTPS?

It uses Cloudflare with the hosted File Cloud server. The flow includes creating a subdomain DNS record in Cloudflare pointing to the server’s public IPv4, generating a CSR on the EC2 instance with OpenSSL, submitting the CSR to Cloudflare’s Origin Server certificate creation, and configuring Apache to serve HTTPS using the certificate and private key. The final step updates File Cloud’s server URL to use the HTTPS domain so links and sharing work correctly.

What tradeoffs distinguish Nextcloud from File Cloud in this guide?

Nextcloud is positioned as open-source and home-lab friendly, typically installed via Docker on Linux, and it offers many built-in apps (contacts, calendar, notes, tasks) plus integrations. The transcript notes it can feel more like an always-online service and that its sharing controls are similar in some ways (passwords and expiration) but lacks the download-limiting behavior highlighted for File Cloud. It also states File Cloud community edition is limited to five users, while Nextcloud supports unlimited users.

Review Questions

If you wanted to keep File Cloud’s data off the EC2 instance’s local disk, what AWS services and configuration changes are required?
List two File Cloud sharing controls mentioned in the transcript and describe how they affect access to shared files.
Compare the user-limit and sharing-control tradeoffs between File Cloud community edition and Nextcloud as described here.

Key Points

1
Self-hosting private cloud storage reduces dependence on third-party control and can improve data governance and security for personal and business use.
2
File Cloud community edition emphasizes secure sharing controls such as password protection, expiration, and download limits, plus network-share style mounting.
3
An AWS deployment can run File Cloud on EC2 and then store files in Amazon S3 by creating an S3 bucket, an IAM user, and switching File Cloud’s storage implementation to Amazon S3.
4
S3 encryption in File Cloud can be enabled to encrypt data at rest and in transit using AES-256, with existing files affected as well.
5
On-prem hosting options include Docker, direct Linux installs, and virtual machine images; Linux setups can use external drives formatted as EXT4 and mounted with correct permissions for Apache.
6
Domain and HTTPS setup can be handled with Cloudflare by generating a CSR on the server, configuring Apache for HTTPS, and updating File Cloud’s server URL to match the new domain.
7
Nextcloud is a strong open-source home-lab alternative installed via Docker on Linux, but it differs in sharing limitations and overall complexity compared with File Cloud.

Highlights

File Cloud’s sharing controls include password protection plus time and download limits (e.g., one-time or limited-until access), which the transcript frames as missing from consumer services.

The AWS walkthrough shows a complete pattern: EC2 for the app layer, S3 for storage, and IAM permissions to let File Cloud access the bucket securely.

HTTPS setup is demonstrated end-to-end using Cloudflare: CSR generation, Cloudflare origin certificate creation, Apache HTTPS configuration, and updating File Cloud’s server URL.

Mapped-drive style access is presented as a standout usability feature: File Cloud Drive mounts storage so files behave like a local drive and share links can be constrained.

Topics

Self-Hosted Cloud
File Cloud
Amazon S3
AWS EC2
Nextcloud
SSL
Cloudflare
IAM

Mentioned

File Cloud
Nextcloud
Dropbox
Google Drive
OneDrive
Amazon Web Services
AWS
Cloudflare
Docker
VirtualBox
ESXi
Ubuntu
Windows Server
Windows
Apache
McAfee
Salesforce Seam
Microsoft Teams
Microsoft Office
TrueNAS
LE Node
Western Digital
EC2
S3
IAM
DLP
SSO
LDAP
DLP
CSR
SSL
AES-256
TLS
API
NAS
VM
CPU
RAM
IPV4
ULA