Shakedown Social

1 post1 participant0 posts today

Kevin Karhan :verified:<a href="https://chaos.social/@f4grx" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@f4grx</a> <a href="https://mastodon.social/@nixCraft" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@nixCraft</a> <a href="https://mastodon.social/@torproject" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@torproject</a> not really.<ol><li><a href="https://infosec.space/tags/aws" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#aws</a> has pretty chunky blocks like /14.</li><li>They don't use <a href="https://infosec.space/tags/IPv6" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#IPv6</a>, only <a href="https://infosec.space/tags/IPv4" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#IPv4</a>.</li><li>Blocking entrie <a href="https://infosec.space/tags/ASN" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#ASN</a>|s is easy.</li></ol>I do this with <a href="https://infosec.space/tags/pfSense" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#pfSense</a> & <a href="https://infosec.space/tags/pfBlockerNG" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#pfBlockerNG</a> for quite a while…And the same <a href="https://infosec.space/tags/blocklist" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#blocklist</a> also works for other applications like <a href="https://infosec.space/tags/nginx" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#nginx</a>, <a href="https://infosec.space/tags/HAproxy" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#HAproxy</a>, <a href="https://infosec.space/tags/httpd" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#httpd</a>, etc.

HenrySometimes I'm happy to tinker with <a href="https://social.lol/tags/HomeLab" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#HomeLab</a> stuff, and other times I just want it to work when I thought it'd be a quick job.Related: If anyone knows why I'm getting a 500 error running git-http-backend in a <a href="https://social.lol/tags/FreeBSD" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#FreeBSD</a> jail with <a href="https://social.lol/tags/nginx" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#nginx</a> that'd be great.I've set up directory browsing as well, and that all works fine. Nginx logs show no errors. But cloning always results in a 500 response.<a href="https://social.lol/tags/git" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#git</a> <a href="https://social.lol/tags/AskFedi" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#AskFedi</a>

Jan Korbel 🐧Na pár webech a speciálně na jedné public fotogalerii co spravuji nám ucpávali logy (a traffic) <a href="https://kompost.cz/tags/AI" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#AI</a> boti. Inspiroval jsem se tedy u Robba Knighta a připravil konfigurace <a href="https://kompost.cz/tags/nginx" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#nginx</a>, které jednak servírují robots.txt, ve kterém jsou vyjmenovaní boti s Disallow a druhak na základě User agenta rovnou vracejí kód 403 a nazdar.<a href="https://rknight.me/blog/blocking-bots-with-nginx/" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://rknight.me/blog/blocking-bots-with-nginx/</a>

Bhante Subharo :xmpp:I've got a "prototype" of <a href="https://c.im/tags/OwnCast" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#OwnCast</a> going on my <a href="https://c.im/tags/RaspberryPi" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#RaspberryPi</a> 5, complete with <a href="https://c.im/tags/nginx" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#nginx</a> reverse proxy and SSL. Getting it to work on my cloud VPS, however, will take some time, as my firewalling needs some tinkering.

nigelFinally have my Prosody server all compliant! I had an epiphany last night about something in the nginx config and after sorting that, all the optional XEP listed also pass! Now to convince wife and kids to use it for our group chat... they really don't want to install any more apps, because I'm "being difficult" because they already use whatsapp 😑 The main reason I'm impressed with it over matrix, is reliable notifications. It just works. So far, anyway. Thank you to the people that replied to my post last week suggesting I try xmpp after the matrix server we used shut down. I had written it off as an old platform for nerds, but it's... actually really good ❤️ <a href="https://snac.lowkey.party?t=prosody" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#prosody</a> <a href="https://snac.lowkey.party?t=xmpp" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#xmpp</a> <a href="https://snac.lowkey.party?t=chat" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#chat</a> <a href="https://snac.lowkey.party?t=nginx" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#nginx</a> <a href="https://snac.lowkey.party?t=matrix" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#matrix</a>

Andrew Mark McCallIf anyone wants to give hetzner a go for their cloud server needs, get $20 dollars on me: <a href="https://hetzner.cloud/?ref=WLd2dOrCS4CP" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://hetzner.cloud/?ref=WLd2dOrCS4CP</a> <a href="https://indieweb.social/tags/sysadmin" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#sysadmin</a> <a href="https://indieweb.social/tags/foss" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#foss</a> <a href="https://indieweb.social/tags/infosec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#infosec</a> <a href="https://indieweb.social/tags/docker" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#docker</a> <a href="https://indieweb.social/tags/podman" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#podman</a> <a href="https://indieweb.social/tags/linux" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#linux</a> <a href="https://indieweb.social/tags/opensource" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#opensource</a> <a href="https://indieweb.social/tags/javascript" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#javascript</a> <a href="https://indieweb.social/tags/coding" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#coding</a> <a href="https://indieweb.social/tags/php" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#php</a> <a href="https://indieweb.social/tags/rustlang" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#rustlang</a> <a href="https://indieweb.social/tags/golang" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#golang</a> <a href="https://indieweb.social/tags/debian" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#debian</a> <a href="https://indieweb.social/tags/arch" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#arch</a> <a href="https://indieweb.social/tags/network" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#network</a> <a href="https://indieweb.social/tags/caddy" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#caddy</a> <a href="https://indieweb.social/tags/nginx" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#nginx</a> <a href="https://indieweb.social/tags/apache" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#apache</a> <a href="https://indieweb.social/tags/webdev" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#webdev</a> <a href="https://indieweb.social/tags/development" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#development</a>

Martin Owens :inkscape:I've set up my new <a href="https://floss.social/tags/inkscape" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#inkscape</a> website AI bot tar-baby. It works by giving everyone a chance to not fall into it.An anchor link that says "I am a bot" and links to /tar-baby/{datetime}/ it's got a fixed position at top -100px so should never be seenThe robots.txt says "Disallow: /tar-baby/" so if you were reading the robots, you'd know.Then <a href="https://floss.social/tags/nginx" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#nginx</a> logs the requests to tar-baby/ to a log of their ip-addresses and browser strings and sends them a 301 redirect to google.com<a href="https://floss.social/tags/ai" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#ai</a> <a href="https://floss.social/tags/Scraping" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Scraping</a> 1/2

Daniel ⏚Si ça continue, nous bloquerons Azure, AWS et consort 😡<a href="https://mastodon.eole.education/tags/intelligenceArtificielle" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#intelligenceArtificielle</a> <a href="https://mastodon.eole.education/tags/ia" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#ia</a> <a href="https://mastodon.eole.education/tags/web" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#web</a> <a href="https://mastodon.eole.education/tags/sysadmin" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#sysadmin</a> <a href="https://mastodon.eole.education/tags/netadmin" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#netadmin</a> <a href="https://mastodon.eole.education/tags/kubernetes" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#kubernetes</a> <a href="https://mastodon.eole.education/tags/nginx" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#nginx</a> <a href="https://mastodon.eole.education/tags/ingressNginx" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#ingressNginx</a>

Xavier «X» Santolaria :verified_paw: :donor:📨 Latest issue of my curated <a href="https://infosec.exchange/tags/cybersecurity" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#cybersecurity</a> and <a href="https://infosec.exchange/tags/infosec" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#infosec</a> list of resources for week #13/2025 is out!It includes the following and much more:➝ DNA of 15 Million People for Sale in <a href="https://infosec.exchange/tags/23andMe" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#23andMe</a> Bankruptcy,➝ <a href="https://infosec.exchange/tags/Trump" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Trump</a> administration accidentally texted a journalist its war plans,➝ Critical Ingress <a href="https://infosec.exchange/tags/NGINX" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#NGINX</a> controller vulnerability allows RCE without authentication,➝ <a href="https://infosec.exchange/tags/Cyberattack" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Cyberattack</a> hits Ukraine's state railway,➝ Troy Hunt's Mailchimp account was successfully phished,➝ <a href="https://infosec.exchange/tags/OpenAI" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#OpenAI</a> Offering $100K Bounties for Critical <a href="https://infosec.exchange/tags/Vulnerabilities" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Vulnerabilities</a>,➝ <a href="https://infosec.exchange/tags/Meta" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Meta</a> AI is now available in <a href="https://infosec.exchange/tags/WhatsApp" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#WhatsApp</a> for users in 41 European countries... and cannot be turned offSubscribe to the <a href="https://infosec.exchange/tags/infosecMASHUP" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#infosecMASHUP</a> newsletter to have it piping hot in your inbox every week-end ⬇️<a href="https://infosec-mashup.santolaria.net/p/infosec-mashup-13-2025" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://infosec-mashup.santolaria.net/p/infosec-mashup-13-2025</a>

Felix Palmen :freebsd: :c64:<a href="https://mastodon.social/@bagder" class="u-url mention" rel="nofollow noopener noreferrer" target="_blank">@bagder</a> Wow. For a few months, I was wondering why I suddenly have bandwidth issues when activating my camera in MS Teams meetings, so others can't understand me any more.A look into my <a href="https://mastodon.bsd.cafe/tags/nginx" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#nginx</a> logs seems to clarify. Bots are eagerly fetching my (partially pretty large) <a href="https://mastodon.bsd.cafe/tags/poudriere" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#poudriere</a> build logs. 🧐 (<a href="https://mastodon.bsd.cafe/tags/AI" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#AI</a> "watching shit scroll by"?)I see GPTBot at least occassionally requests robots.txt, which I don't have so far. Other bots don't seem to be interested. Especially PetalBot is hammering my server. And there are others (bytedance, google, ...)Now what? Robots.txt would actually *help* well-behaved bots here (I assume build logs aren't valuable for anything). The most pragmatic thing here would be to add some http basic auth in the reverse proxy for all poudriere stuff. It's currently only public because there's no reason to keep it private....Have to admit I feel inclined to try one of the tarpitting/poisoning approaches, too. 😏

steve mookie kongJust discovered this open source tool screeenly that takes screenshots of webpages. (Found it when I was looking at what bots were hitting my site via my nginx logs).<a href="http://screeenly.com/" rel="nofollow noopener noreferrer" translate="no" target="_blank">http://screeenly.com/</a><a href="https://chow.fan/tags/opensource" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#opensource</a> <a href="https://chow.fan/tags/tools" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#tools</a> <a href="https://chow.fan/tags/web" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#web</a> <a href="https://chow.fan/tags/nginx" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#nginx</a>

Developer OverheidVanochtend is aan het licht gekomen dat een kwetsbaarheid in de Kubernetes Ingress NGINX Controller (ingress-nginx) kwaadwillenden in staat stelt een ongeauthenticeerde remote code execution (RCE) uit voeren.Alle organisaties die gebruik maken van ingress-nginx dienen deze zo snel mogelijk te patchen naar versie 1.11.5. Meer info vind je op: <a href="https://advisories.ncsc.nl/advisory?id=NCSC-2025-0095" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://advisories.ncsc.nl/advisory?id=NCSC-2025-0095</a><a href="https://social.overheid.nl/tags/security" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#security</a> <a href="https://social.overheid.nl/tags/nginx" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#nginx</a> <a href="https://social.overheid.nl/tags/kubernetes" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#kubernetes</a> <a href="https://social.overheid.nl/tags/ingress" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#ingress</a>

Terence EdenRight!<a href="https://mastodon.social/tags/JellyFin" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#JellyFin</a> installed. Most of my media reorganised and indexed.<a href="https://mastodon.social/tags/Tailscale" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Tailscale</a> deleted. I can't be bothered running it 24/7 on my phone.<a href="https://mastodon.social/tags/Docker" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#Docker</a> and <a href="https://mastodon.social/tags/NGINX" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#NGINX</a> reverse proxy manager installed. Probably done that right. No idea if it'll survive a reboot.<a href="https://mastodon.social/tags/LetsEncrypt" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#LetsEncrypt</a> set up with Dynamic DNS. No SSL errors!HD Streaming over 5G works - but will have to see how adaptive it is on shitty hotel WiFi.Bit of a faff, but seems to be working. Next step is configuring a Fire Stick to work with it.

raminfAre you concerned that your online content is getting scraped-up without your permission by search engines or <a href="https://sfba.social/tags/AIML" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#AIML</a> training models?Are you torn between sharing openly and feeling like others are freely taking advantage of your work to enrich themselves?<a href="https://sfba.social/tags/RoboNope" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#RoboNope</a> is here to help: <a href="https://github.com/raminf/RoboNope-nginx" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://github.com/raminf/RoboNope-nginx</a>Ignore at your peril! Feel free to share.<a href="https://sfba.social/tags/opensource" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#opensource</a> <a href="https://sfba.social/tags/AI" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#AI</a> <a href="https://sfba.social/tags/nginx" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#nginx</a>

AlessandroIn my journey on <a href="https://mastodon.uno/tags/selfhosting" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#selfhosting</a> and securing my VPS, I was able to setup <a href="https://mastodon.uno/tags/mTLS" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#mTLS</a> on <a href="https://mastodon.uno/tags/nginx" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#nginx</a> , but on a Mac it’s barely usable. Browser keeps asking for username and password to access system keychain, no matter what I do. Am I missing something?

Stefano MarinelliQuestion: Nginx or HAProxy as a reverse proxy? I’ve tested both. In some cases, I still need nginx, while in others, after a closer look, it’s not necessary. Performance, etc. Opinions from those who use/have used both?<a href="https://mastodon.bsd.cafe/tags/nginx" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#nginx</a> <a href="https://mastodon.bsd.cafe/tags/haproxy" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#haproxy</a> <a href="https://mastodon.bsd.cafe/tags/reverseproxy" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#reverseproxy</a> <a href="https://mastodon.bsd.cafe/tags/IT" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#IT</a> <a href="https://mastodon.bsd.cafe/tags/SysAdmin" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#SysAdmin</a>

Pete Prodoehl 🍕Setting up Nginx Proxy Manager was easier than I thought! A few hurdles at first (longer blog post in the works) but I got it all working without much issue.I am seeing things timeout every now and then but it seems a common problem so hopefully I can get that fixed.<a href="https://mastodon.social/tags/nginx" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#nginx</a> <a href="https://mastodon.social/tags/proxy" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#proxy</a> <a href="https://mastodon.social/tags/selfhosted" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#selfhosted</a>

Pete Prodoehl 🍕Coming up on my task list is getting multiple/different containers running on a single domain using subdomains… can that work?So app1.example.com is one Podman container and app2.example.com is a different Podman container… (both using port 80)I’ve found this guide I might try, but if you have a better way please let me know!➡️ <a href="https://www.redhat.com/en/blog/podman-nginx-multidomain-applications" rel="nofollow noopener noreferrer" translate="no" target="_blank">https://www.redhat.com/en/blog/podman-nginx-multidomain-applications</a><a href="https://mastodon.social/tags/podman" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#podman</a> <a href="https://mastodon.social/tags/docker" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#docker</a> <a href="https://mastodon.social/tags/containers" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#containers</a> <a href="https://mastodon.social/tags/web" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#web</a> <a href="https://mastodon.social/tags/nginx" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#nginx</a> <a href="https://mastodon.social/tags/selfhosted" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#selfhosted</a>

Jan ☕🎼🎹☁️🏋️‍♂️I give up. No matter what I try, I cannot get <a href="https://fedi.kcore.org/tags/nginx" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#nginx</a> to serve <a href="https://fedi.kcore.org/tags/php" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#php</a> from two different locations, one being /var/www/phpmyadmin/html (mount from another container) and another being /var/www/hosting. The paths are all visible inside the container and accessible. Yet, it doesn't work.``` server { listen 80; listen [::]:80; index index.php index.html; location / { alias /var/www/hosting/; } location /phpmyadmin/ { alias /var/www/phpmyadmin/html/; location ~ \.php$ { fastcgi_pass phpmyadmin:9000; fastcgi_param SCRIPT_FILENAME $request_filename; include fastcgi_params; } } } ```This *should* just work, yet it does not. Baffled.

Jan ☕🎼🎹☁️🏋️‍♂️Really struggling getting an <a href="https://fedi.kcore.org/tags/nginx" class="mention hashtag" rel="nofollow noopener noreferrer" target="_blank">#nginx</a> config to do what I want. It's easy imho:``` root /var/www/blank;location /pma/ { alias /path/to/phpmyadmin; }location / { alias /path/to/my/webroot; }yet, it always keeps resolving paths from the root. I don't get it.It's probably gotta be something really silly.

Recent searches

Search options

Administered by:

Server stats:

#nginx