• 11 Posts
  • 230 Comments
Joined 1 year ago
cake
Cake day: December 30th, 2023

help-circle




  • Yeah! That’s cool, I haven’t had any issues so far.

    Everyday I get a bunch of logs of bots trying to access files and folders that don’t exist. It seems that they are targeting wordpress sites because all the files start with ‘wp-’ for example, some tried to access ‘wp-admin/credentials’, but since my site isn’t wordpress I’m not worried. Besides, I’m pretty sure that I could implement some rules on the firewall or even on nginx to block access to said directories by (for example) redirecting them to a different page.


  • I’m learning docker now. I found a whole video about the reverse proxy capabilities of nginx and docker, so I’ll be checking that out.

    My goal is to have my own homelab and expose some services to the internet, or maybe even set up my own vpn so that I may access and configure things on my network from somewhere else.

    I’m still struggling with the port forward thingie, and while Cloudflare tunnels are a nice thing to have, they protect me too much. I want a public IP address that I can use and register on a DNS, or ssh directly into my network from anywhere in the world. As I mentioned, I want to be able to shoot myself in the foot without actually doing so, (hopefully).


  • Yeah, it was kinda scary. I had never hosted anything online, and all of the sudden I get bombarded with scans and attacks from everywhere.

    But I know I can’t lose anything important, and that this is expected on the internet.

    It was just, uh… You know the feeling when someone tells you something is heavy, then they give it to you, and it’s a bit heavier than you expected? And they go: “I told you it was heavy”. And it’s not a big deal, because in the end you just adjust your strenght to match that weight. But there’s that one second of realisation where you go “ooop! What’s this?”. Yeah, it was kinda that.







  • Thanks! I appreciate your concern.

    This website is just a personal fun project, and I haven’t got anything to lose if it gets compromised. On the contrary I’ve gained a lot so far, and I might gain even more if something bad were to happen to it.

    No one can hack into the knowledge and experience I’ve gained so far.

    If you’ve got any advice on security tools, good practices, etc. I’d appreciate them! I may lack the knowledge, but not the will to learn more