make the nextcloud on nextbox accessible from the internet through TOR, instead of through "normal" internet with DNS

[jerabaul29]

Is there a way to make the nextcloud instance running on the nextbox accessible through TOR as a hidden service, instead of making it accessible through reverse proxy or port forwarding + DNS registration as suggested now?

I got myself curious about it after reading this discussion: https://security.stackexchange.com/questions/260136/how-to-set-up-a-restricted-account-for-reverse-ssh-port-forwarding-in-a-safe-way?noredirect=1#comment537479_260136 in particular the comments by mti2935 under the question itself. Following the discussion there, it is clear to me how to make something accessible through SSH as a hidden service, just not sure of if / how the https serving of information offered by the nextcloud on nextbox could be made accessible the same way :) .

To me this would be really exciting and attractive as it would mean:

• no need to forward / open ports on my home router
• no need to perform the DNS registration part
• more anonymous access to my nextbox

The cost would be lower speed / lower bandwidth / higher latency, but I do not think this is an issue - seems already now that the bottleneck is in the responsiveness of the RPi4, not in the network limitations.

Any challenges / downsides I am missing? Would this be possible to get to work with the Nextcloud apps to access the data etc?

[jerabaul29]

I am clearly not the first wondering about this: :)

• https://help.nextcloud.com/t/running-nextcloud-as-a-hidden-service-tor/25488/10
• https://autoize.ch/nextcloud-as-a-tor-hidden-service/

This looks like it really works quite well. At this point, my main concern is if / how easy it will be to use the Nextcloud apps on the smarphone (I see well enough how it will work in a TOR browser on a computer).