This is an automated archive made by the Lemmit Bot.
The original was posted on /r/selfhosted by /u/FunN0thing on 2025-04-23 16:48:36+00:00.
Hey everyone,
I'm planning to self-host a private Docker registry and I want to do it in the cleanest and most secure way possible. Ideally, it should be easy to maintain, support user authentication, and allow for proper access control and auditing.
I've come across Harbor quite a few times—it looks pretty complete with features like RBAC, vulnerability scanning, and replication. But before I dive into it, I wanted to ask:
- Is Harbor still the best option in 2025?
- Are there lighter or simpler alternatives that are just as secure for smaller setups?
- Any tips on hardening a Docker registry if I'm rolling my own or using the vanilla registry image?
- And if you're self-hosting, how are you handling TLS, backups, and uptime monitoring?
Would love to hear what others are using and what kind of setup you'd recommend for a secure, production-ready private registry.
Thanks!