Shakedown Social

Martin Boller 🇬🇱 🇺🇦 :tux: :freebsd: :windows: :mastodon:Another short blog post on blocking <a href="https://infosec.exchange/tags/AI" class="mention hashtag" rel="nofollow noopener" target="_blank">#AI</a> <a href="https://infosec.exchange/tags/LLM" class="mention hashtag" rel="nofollow noopener" target="_blank">#LLM</a> <a href="https://infosec.exchange/tags/Bots" class="mention hashtag" rel="nofollow noopener" target="_blank">#Bots</a> that slow down a website. Using <a href="https://infosec.exchange/tags/NGINX" class="mention hashtag" rel="nofollow noopener" target="_blank">#NGINX</a>, but easily adaptable to <a href="https://infosec.exchange/tags/ApacheWebServer" class="mention hashtag" rel="nofollow noopener" target="_blank">#ApacheWebServer</a> <a href="https://infosec.exchange/tags/Caddy" class="mention hashtag" rel="nofollow noopener" target="_blank">#Caddy</a> etc<a href="https://www.infosecworrier.dk/blog/2025/07/botblocker/" rel="nofollow noopener" translate="no" target="_blank">https://www.infosecworrier.dk/blog/2025/07/botblocker/</a>

Jesse SkinnerI'm thinking of developing a new course or workshop in the fall.. would any of these interest you?<a href="https://toot.cafe/tags/webdev" class="mention hashtag" rel="nofollow noopener" target="_blank">#webdev</a> <a href="https://toot.cafe/tags/svelte" class="mention hashtag" rel="nofollow noopener" target="_blank">#svelte</a> <a href="https://toot.cafe/tags/html" class="mention hashtag" rel="nofollow noopener" target="_blank">#html</a> <a href="https://toot.cafe/tags/css" class="mention hashtag" rel="nofollow noopener" target="_blank">#css</a> <a href="https://toot.cafe/tags/javascript" class="mention hashtag" rel="nofollow noopener" target="_blank">#javascript</a> <a href="https://toot.cafe/tags/nginx" class="mention hashtag" rel="nofollow noopener" target="_blank">#nginx</a> <a href="https://toot.cafe/tags/lua" class="mention hashtag" rel="nofollow noopener" target="_blank">#lua</a> <a href="https://toot.cafe/tags/freelancer" class="mention hashtag" rel="nofollow noopener" target="_blank">#freelancer</a>

Third spruce tree on the leftOh snap! `YARR - Yet Another RSS Reader` has a new version and I missed it in March! <a href="https://github.com/nkanaev/yarr/releases/tag/v2.5" rel="nofollow noopener" translate="no" target="_blank">https://github.com/nkanaev/yarr/releases/tag/v2.5</a> YARR is like Feedly or NewsBlur, except more like TinyRSS or FreshRSS - you can self-host. UNLIKE those, you can tell yarr to run at `<ip:port>`, so you can stick it at port 7666 for your reverse <a href="https://mas.to/tags/proxy" class="mention hashtag" rel="nofollow noopener" target="_blank">#proxy</a>. And its lightweight, I run my own AND 3 other instances for fam. members on the same host accessed via different subdomains re-proxied by <a href="https://mas.to/tags/nginx" class="mention hashtag" rel="nofollow noopener" target="_blank">#nginx</a>. <a href="https://mas.to/tags/rss" class="mention hashtag" rel="nofollow noopener" target="_blank">#rss</a> <a href="https://mas.to/tags/smolweb" class="mention hashtag" rel="nofollow noopener" target="_blank">#smolweb</a> <a href="https://mas.to/tags/selfhosted" class="mention hashtag" rel="nofollow noopener" target="_blank">#selfhosted</a>

genehackA couple weeks ago, I added some stuff to my <a href="https://dementedandsadbut.social/tags/Nginx" class="mention hashtag" rel="nofollow noopener" target="_blank">#Nginx</a> config to multiplex SSH and TLS on port 443. Turns out, this FUBARs the downstream TLS logging pretty badly. Anybody have a working config for this use case? <a href="https://dementedandsadbut.social/tags/lazyWeb" class="mention hashtag" rel="nofollow noopener" target="_blank">#lazyWeb</a>

Betmig🚀 New video just dropped!In Part 2 of my self-hosted web app series, I show you how to:✔️ Install Docker on a VPS✔️ Set up NGINX Proxy Manager✔️ Auto-deploy with GitHub Actions✔️ Serve your site with HTTPS using Let's EncryptIt’s all running on a hardened Ubuntu server from Hetzner 🛡️📺 Watch it here → <a href="https://youtu.be/NHzT88413Q8" rel="nofollow noopener" translate="no" target="_blank">https://youtu.be/NHzT88413Q8</a><a href="https://mastodon.social/tags/Docker" class="mention hashtag" rel="nofollow noopener" target="_blank">#Docker</a> <a href="https://mastodon.social/tags/Nginx" class="mention hashtag" rel="nofollow noopener" target="_blank">#Nginx</a> <a href="https://mastodon.social/tags/GitHubActions" class="mention hashtag" rel="nofollow noopener" target="_blank">#GitHubActions</a> <a href="https://mastodon.social/tags/SelfHosting" class="mention hashtag" rel="nofollow noopener" target="_blank">#SelfHosting</a> <a href="https://mastodon.social/tags/DevOps" class="mention hashtag" rel="nofollow noopener" target="_blank">#DevOps</a> <a href="https://mastodon.social/tags/IndieDev" class="mention hashtag" rel="nofollow noopener" target="_blank">#IndieDev</a> <a href="https://mastodon.social/tags/CI_CD" class="mention hashtag" rel="nofollow noopener" target="_blank">#CI_CD</a> <a href="https://mastodon.social/tags/VPS" class="mention hashtag" rel="nofollow noopener" target="_blank">#VPS</a> <a href="https://mastodon.social/tags/OpenSource" class="mention hashtag" rel="nofollow noopener" target="_blank">#OpenSource</a> <a href="https://mastodon.social/tags/BetmigBuilds" class="mention hashtag" rel="nofollow noopener" target="_blank">#BetmigBuilds</a>

Dan LangilleI want Anubis to be used only for /search.php (and maybe /commit.php) - and I can't figure out how to do that. <a href="https://bsd.network/tags/nginx" class="mention hashtag" rel="nofollow noopener" target="_blank">#nginx</a> help please

Jan Wildeboer 😷:krulorange:UPDATE: Thx to the replies, I implemented the change for all my domains, did a `certbot renew --dry-run` and that succeeded. Yay to a cleaner config :)<a href="https://social.wildeboer.net/tags/NerdQuestion" class="mention hashtag" rel="nofollow noopener" target="_blank">#NerdQuestion</a>. When I move {server [...] } blocks in `/etc/nginx/nginx.conf` to separate files in the `/etc/nginx/conf.d` directory, will certbot still find them and will automatic renewals just keep working as before? Anyone with experience on that?<a href="https://social.wildeboer.net/tags/nginx" class="mention hashtag" rel="nofollow noopener" target="_blank">#nginx</a> <a href="https://social.wildeboer.net/tags/letsencrypt" class="mention hashtag" rel="nofollow noopener" target="_blank">#letsencrypt</a> <a href="https://social.wildeboer.net/tags/LazyWeb" class="mention hashtag" rel="nofollow noopener" target="_blank">#LazyWeb</a>

Deni Mintsaev 🇪🇺502 Bad Gateway <a href="https://mastodon.social/tags/coding" class="mention hashtag" rel="nofollow noopener" target="_blank">#coding</a> <a href="https://mastodon.social/tags/webdev" class="mention hashtag" rel="nofollow noopener" target="_blank">#webdev</a> <a href="https://mastodon.social/tags/programming" class="mention hashtag" rel="nofollow noopener" target="_blank">#programming</a> <a href="https://mastodon.social/tags/nginx" class="mention hashtag" rel="nofollow noopener" target="_blank">#nginx</a>

Daniel DetlafHave been thinking about <a href="https://mastodon.social/tags/webdev" class="mention hashtag" rel="nofollow noopener" target="_blank">#webdev</a> and how much I hate Google and <a href="https://mastodon.social/tags/WordPress" class="mention hashtag" rel="nofollow noopener" target="_blank">#WordPress</a> . I've put together a "CMS" that is basically a couple template files that will use server side includes, and some grep/sed aliases for editing them. I skipped most of the history of web development from about 1999 to 2022 ... can anyone wise in the ways of <a href="https://mastodon.social/tags/http" class="mention hashtag" rel="nofollow noopener" target="_blank">#http</a> and <a href="https://mastodon.social/tags/nginx" class="mention hashtag" rel="nofollow noopener" target="_blank">#nginx</a> tell me if there are any pressing security or other reasons I should not take this approach nowadays? For a static site.<a href="https://mastodon.social/tags/smallweb" class="mention hashtag" rel="nofollow noopener" target="_blank">#smallweb</a>

eklemWhat's the simplest <a href="https://social.vivaldi.net/tags/server" class="mention hashtag" rel="nofollow noopener" target="_blank">#server</a> that can take a fetch() post statement (uploading a blob) from a static <a href="https://social.vivaldi.net/tags/JavaScript" class="mention hashtag" rel="nofollow noopener" target="_blank">#JavaScript</a> in the browser?Something <a href="https://social.vivaldi.net/tags/nginx" class="mention hashtag" rel="nofollow noopener" target="_blank">#nginx</a> or OneDrive, Google Drive, JottaCloud or something else?

Volker StolzThe good thing about <a href="https://mastodon.social/tags/Nephentes" class="mention hashtag" rel="nofollow noopener" target="_blank">#Nephentes</a> is that it ups my <a href="https://mastodon.social/tags/nginx" class="mention hashtag" rel="nofollow noopener" target="_blank">#nginx</a> -game.I have to admit I never properly digested the docs, but DID YOU KNOW that `proxy_pass` changes behaviour when using variables!Nice article here by <a href="https://mastodon.social/@dalbuschat" class="u-url mention" rel="nofollow noopener" target="_blank">@dalbuschat</a> that helped me redirect even more useless bots that hit 404s repeatedly into the AI maze vialocation ~ .. { set $upstream http://localhost:port; set proxy_pass $upstream/ai/; }<a href="https://dev.to/danielkun/nginx-everything-about-proxypass-2ona" rel="nofollow noopener" translate="no" target="_blank">https://dev.to/danielkun/nginx-everything-about-proxypass-2ona</a>

stuck.mediaOur shop relies on <a href="https://kolektiva.social/tags/FOSS" class="mention hashtag" rel="nofollow noopener" target="_blank">#FOSS</a> for almost everything:<a href="https://kolektiva.social/tags/debian" class="mention hashtag" rel="nofollow noopener" target="_blank">#debian</a> <a href="https://kolektiva.social/tags/GNULinux" class="mention hashtag" rel="nofollow noopener" target="_blank">#GNULinux</a> is our operating system.<a href="https://kolektiva.social/tags/inkscape" class="mention hashtag" rel="nofollow noopener" target="_blank">#inkscape</a>, <a href="https://kolektiva.social/tags/gimp" class="mention hashtag" rel="nofollow noopener" target="_blank">#gimp</a>, <a href="https://kolektiva.social/tags/krita" class="mention hashtag" rel="nofollow noopener" target="_blank">#krita</a>, <a href="https://kolektiva.social/tags/imageMagick" class="mention hashtag" rel="nofollow noopener" target="_blank">#imageMagick</a>, <a href="https://kolektiva.social/tags/darkTable" class="mention hashtag" rel="nofollow noopener" target="_blank">#darkTable</a>, <a href="https://kolektiva.social/tags/scribus" class="mention hashtag" rel="nofollow noopener" target="_blank">#scribus</a> are our tools.Our website is handwritten HTML/CSS running on an on-prem server with <a href="https://kolektiva.social/tags/hugo" class="mention hashtag" rel="nofollow noopener" target="_blank">#hugo</a> and <a href="https://kolektiva.social/tags/nginx" class="mention hashtag" rel="nofollow noopener" target="_blank">#nginx</a> (launching in June).We contribute to the <a href="https://kolektiva.social/tags/eff" class="mention hashtag" rel="nofollow noopener" target="_blank">#eff</a> and <a href="https://kolektiva.social/tags/wikicommons" class="mention hashtag" rel="nofollow noopener" target="_blank">#wikicommons</a>. To the developers, contributors and maintainers, we salute you!

Jorijn SchrijvershofI'm really surprised that a well-developed product like <a href="https://toot.community/tags/Varnish" class="mention hashtag" rel="nofollow noopener" target="_blank">#Varnish</a> doesn't support connecting to its upstream using TLS. There are quite a few workarounds, but it just seems a bit odd. I'm exploring the idea of serving the contents of an S3 bucket while maintaining a short-lived cache. It shouldn't be too challenging, right?I might just fall back to <a href="https://toot.community/tags/NGINX" class="mention hashtag" rel="nofollow noopener" target="_blank">#NGINX</a>.

Chris Alemany🇺🇦🇨🇦🇪🇸HEY! I just found the fix for the webfinger "403 forbidden” problem I have been having to get my wordpress blog working fully with ActivityPub <a href="https://mastodon.social/@pfefferle" class="u-url mention" rel="nofollow noopener" target="_blank">@pfefferle</a>!Looks like for nginx based servers if you are rolling your own or you have a strict web host you need to create a location statement in your nginx config optionsThe code to add to your options is:location ^~ /.well-known/webfinger { auth_basic off; allow all; default_type text/plain; try_files $uri $uri/ /index.php?$args; break; }From this wordpress support question:<a href="https://wordpress.org/support/topic/i-think-i-tried-everything-403-on-well-known/" rel="nofollow noopener" translate="no" target="_blank">https://wordpress.org/support/topic/i-think-i-tried-everything-403-on-well-known/</a>After adding this, the test at <a href="https://webfinger.net/lookup" rel="nofollow noopener" translate="no" target="_blank">https://webfinger.net/lookup</a> outputs a proper response and Wordpress clears the 'webfinger' error in SiteHealth.Yay! <a href="https://mstdn.chrisalemany.ca/tags/ActivityPub" class="mention hashtag" rel="nofollow noopener" target="_blank">#ActivityPub</a> <a href="https://mstdn.chrisalemany.ca/tags/Wordpress" class="mention hashtag" rel="nofollow noopener" target="_blank">#Wordpress</a> <a href="https://mstdn.chrisalemany.ca/tags/Mastodon" class="mention hashtag" rel="nofollow noopener" target="_blank">#Mastodon</a> <a href="https://mstdn.chrisalemany.ca/tags/Fediverse" class="mention hashtag" rel="nofollow noopener" target="_blank">#Fediverse</a> <a href="https://mstdn.chrisalemany.ca/tags/nginx" class="mention hashtag" rel="nofollow noopener" target="_blank">#nginx</a> <a href="https://mstdn.chrisalemany.ca/tags/selfhost" class="mention hashtag" rel="nofollow noopener" target="_blank">#selfhost</a>

wakest ⁂While at the <a href="https://compost.party" rel="nofollow noopener" translate="no" target="_blank">https://compost.party</a> picnic the other day <a href="https://post.lurk.org/@computersandblues" class="u-url mention" rel="nofollow noopener" target="_blank">@computersandblues</a> showed me how to edit the <a href="https://social.wake.st/tags/nginx" class="mention hashtag" rel="nofollow noopener" target="_blank">#nginx</a> file responsible for redirecting domain.tld/index.html to domain.tld and I added a line to support index.txt and index.svg which was so easy. But one thing I then thought, is there any way to tell a browser to use a different font then the default other then thru CSS or HTML?

Jeff MossMystery maybe kind of solved? 16k+ sessions stuck in FIN_WAIT_1, _2 and growing over time with our webserver, Nginx. After a lot of fiddling with sysctl timeouts nothing made a difference, after a restart the numbers always started climbing again. Removing the dataready accept filter seems to have done the trick, now numbers have been stable for the past hour. I'll check again later and see if that solves it!<a href="https://defcon.social/tags/FreeBSD" class="mention hashtag" rel="nofollow noopener" target="_blank">#FreeBSD</a> <a href="https://defcon.social/tags/Nginx" class="mention hashtag" rel="nofollow noopener" target="_blank">#Nginx</a> <a href="https://defcon.social/tags/AdminLife" class="mention hashtag" rel="nofollow noopener" target="_blank">#AdminLife</a>

tinfoil-hatDropped a new Blogpost <a href="https://tinfoil-hat.net/posts/proxmox-server-vps-single-ip/" rel="nofollow noopener" target="_blank">https://tinfoil-hat.net/posts/proxmox-server-vps-single-ip/</a>Please tell me what you think about it :-)<a class="hashtag" href="https://social.tinfoil-hat.net/tag/blog" rel="nofollow noopener" target="_blank">#Blog</a> <a class="hashtag" href="https://social.tinfoil-hat.net/tag/proxmox" rel="nofollow noopener" target="_blank">#Proxmox</a> <a class="hashtag" href="https://social.tinfoil-hat.net/tag/debian" rel="nofollow noopener" target="_blank">#Debian</a> <a class="hashtag" href="https://social.tinfoil-hat.net/tag/ssh" rel="nofollow noopener" target="_blank">#SSH</a> <a class="hashtag" href="https://social.tinfoil-hat.net/tag/sslh" rel="nofollow noopener" target="_blank">#SSLH</a> <a class="hashtag" href="https://social.tinfoil-hat.net/tag/lxc" rel="nofollow noopener" target="_blank">#LXC</a> <a class="hashtag" href="https://social.tinfoil-hat.net/tag/nginx" rel="nofollow noopener" target="_blank">#Nginx</a> <a class="hashtag" href="https://social.tinfoil-hat.net/tag/ipforwarding" rel="nofollow noopener" target="_blank">#IPForwarding</a> <a class="hashtag" href="https://social.tinfoil-hat.net/tag/ufw" rel="nofollow noopener" target="_blank">#UFW</a> <a class="hashtag" href="https://social.tinfoil-hat.net/tag/iptables" rel="nofollow noopener" target="_blank">#IPtables</a> <a class="hashtag" href="https://social.tinfoil-hat.net/tag/openvpn" rel="nofollow noopener" target="_blank">#OpenVPN</a> <a class="hashtag" href="https://social.tinfoil-hat.net/tag/reverseproxy" rel="nofollow noopener" target="_blank">#ReverseProxy</a> <a class="hashtag" href="https://social.tinfoil-hat.net/tag/letsencrypt" rel="nofollow noopener" target="_blank">#LetsEncrypt</a>

smartperson<a href="https://social.growyourown.services/@FediVideo" class="u-url mention" rel="nofollow noopener" target="_blank">@FediVideo</a> <a href="https://mstdn.social/@spielUndSpass" class="u-url mention" rel="nofollow noopener" target="_blank">@spielUndSpass</a> <a href="https://fosstodon.org/@owncast" class="u-url mention" rel="nofollow noopener" target="_blank">@owncast</a> <a href="https://watch.thepolarbear.co.uk/federation/user/Hamish" class="u-url mention" rel="nofollow noopener" target="_blank">@Hamish</a> <a href="https://mastodon.social/@Mrfunkedude" class="u-url mention" rel="nofollow noopener" target="_blank">@Mrfunkedude</a> maybe! I joined the Rocket.Chat got some good starting advice. I'm missing some parameters in my <a href="https://fosstodon.org/tags/Nginx" class="mention hashtag" rel="nofollow noopener" target="_blank">#Nginx</a> <a href="https://fosstodon.org/tags/reverseproxy" class="mention hashtag" rel="nofollow noopener" target="_blank">#reverseproxy</a> that might be affecting browser performance/behavior. It's worth trying out and seeing if that fixes it. If anyone can collect useful debug info from their browser, it's at <a href="http://vkmphotos.com:8080" rel="nofollow noopener" translate="no" target="_blank">http://vkmphotos.com:8080</a>. Just turn off the audio!!

ShnizmuffiN<a href="https://toots.inbutts.lol/tags/introduction" class="mention hashtag" rel="nofollow noopener" target="_blank">#introduction</a>I make websites. Sometimes I toot about it. <a href="https://toots.inbutts.lol/tags/eleventy" class="mention hashtag" rel="nofollow noopener" target="_blank">#eleventy</a> <a href="https://toots.inbutts.lol/tags/webc" class="mention hashtag" rel="nofollow noopener" target="_blank">#webc</a> <a href="https://toots.inbutts.lol/tags/php" class="mention hashtag" rel="nofollow noopener" target="_blank">#php</a> <a href="https://toots.inbutts.lol/tags/statamic" class="mention hashtag" rel="nofollow noopener" target="_blank">#statamic</a> <a href="https://toots.inbutts.lol/tags/laravel" class="mention hashtag" rel="nofollow noopener" target="_blank">#laravel</a> <a href="https://toots.inbutts.lol/tags/tailwindcss" class="mention hashtag" rel="nofollow noopener" target="_blank">#tailwindcss</a> <a href="https://toots.inbutts.lol/tags/alpinejs" class="mention hashtag" rel="nofollow noopener" target="_blank">#alpinejs</a> uhhh whatever <a href="https://toots.inbutts.lol/tags/sql" class="mention hashtag" rel="nofollow noopener" target="_blank">#sql</a> and I guess <a href="https://toots.inbutts.lol/tags/nginx" class="mention hashtag" rel="nofollow noopener" target="_blank">#nginx</a> <a href="https://toots.inbutts.lol/tags/docker" class="mention hashtag" rel="nofollow noopener" target="_blank">#docker</a> and all that crap all the way down. <a href="https://toots.inbutts.lol/tags/fullstack" class="mention hashtag" rel="nofollow noopener" target="_blank">#fullstack</a>I play RPGs with friends. Sometimes I toot about it. <a href="https://toots.inbutts.lol/tags/ttrpg" class="mention hashtag" rel="nofollow noopener" target="_blank">#ttrpg</a> <a href="https://toots.inbutts.lol/tags/dnd" class="mention hashtag" rel="nofollow noopener" target="_blank">#dnd</a> <a href="https://toots.inbutts.lol/tags/pathfinder" class="mention hashtag" rel="nofollow noopener" target="_blank">#pathfinder</a> <a href="https://toots.inbutts.lol/tags/5e" class="mention hashtag" rel="nofollow noopener" target="_blank">#5e</a> <a href="https://toots.inbutts.lol/tags/pf2e" class="mention hashtag" rel="nofollow noopener" target="_blank">#pf2e</a> I am my group's sysadmin. Sometimes I toot about it. <a href="https://toots.inbutts.lol/tags/selfhosted" class="mention hashtag" rel="nofollow noopener" target="_blank">#selfhosted</a> <a href="https://toots.inbutts.lol/tags/plex" class="mention hashtag" rel="nofollow noopener" target="_blank">#plex</a> <a href="https://toots.inbutts.lol/tags/lemmy" class="mention hashtag" rel="nofollow noopener" target="_blank">#lemmy</a> <a href="https://toots.inbutts.lol/tags/mastodon" class="mention hashtag" rel="nofollow noopener" target="_blank">#mastodon</a> <a href="https://toots.inbutts.lol/tags/pihole" class="mention hashtag" rel="nofollow noopener" target="_blank">#pihole</a> and throw some darts at <a href="https://selfh.st" rel="nofollow noopener" translate="no" target="_blank">https://selfh.st</a> and you catch the rest.Hot takes, bad jokes, etc.

Recent searches

Search options

Administered by:

Server stats:

#nginx