overview for Findmysec

Is StormyCloud the only I2P outproxy? in c/privacy@lemmy.ml

[–] Findmysec@infosec.pub 1 points 4 hours ago

Would you know where I can find a guide to load balance I2P routers?

Is StormyCloud the only I2P outproxy? in c/privacy@lemmy.ml

[–] Findmysec@infosec.pub 2 points 5 hours ago

Thank you, this is very helpful. I'll read

Is StormyCloud the only I2P outproxy? in c/privacy@lemmy.ml

[–] Findmysec@infosec.pub 2 points 13 hours ago (2 children)

Thank you, where can I read a guide on this?

Does Qbittorent support I2P natively? If so, I can probably run it on my seedbox. Never tried it before

Caddy and forgejo in c/selfhosted@lemmy.world

[–] Findmysec@infosec.pub 1 points 17 hours ago

Use something that can do TCP, i.e. HAProxy, NGINX or Apache

21

Is StormyCloud the only I2P outproxy? (infosec.pub)

submitted 17 hours ago* (last edited 17 hours ago) by Findmysec@infosec.pub to c/privacy@lemmy.ml

7 comments fedilink

A lot many individuals run TOR exit nodes, but I never hear about people running their own I2P outproxies. Is it really hard to host, or is there some other reason? I thought that if you could run a TOR exit node I'd think you'd be just fine running an I2P outproxy.

Running more outproxies will help in bridging torrents from the clearnet to I2P, which would be a very good move considering the crackdowns on torrents right now. Companies even want to involve civilians into their lawsuits in Sweden now, making the need for privacy/anonymity even more important when torrenting, which I2P provides.

Why can't I trust Centralised Exchanges, and random Monero nodes ? in c/monero@monero.town

[–] Findmysec@infosec.pub 1 points 2 days ago

Thanks

Why can't I trust Centralised Exchanges, and random Monero nodes ? in c/monero@monero.town

[–] Findmysec@infosec.pub 1 points 3 days ago (2 children)

Nihilist, since you've watched the video can you make another post on the "heuristics" the presenter was talking about? I think the community needs to know how exactly their automated tool discards decoys from the list of transactions to consider.

Why can't I trust Centralised Exchanges, and random Monero nodes ? in c/monero@monero.town

[–] Findmysec@infosec.pub 2 points 3 days ago

In a dystopian world, just owning XMR will soon become grounds for a criminal investigation leading to harassment.

Man pages maintenance suspended in c/linux@lemmy.ml

[–] Findmysec@infosec.pub 4 points 5 days ago

Alright we should use that then

Man pages maintenance suspended in c/linux@lemmy.ml

[–] Findmysec@infosec.pub 14 points 5 days ago (9 children)

I thought AGPL was the more restrictive version of GPL? Which license should we use so that corporates need to pay?

[–] Findmysec@infosec.pub 4 points 5 days ago (1 children)

You must be LTT's chaperone

Man pages maintenance suspended in c/linux@lemmy.ml

[–] Findmysec@infosec.pub 44 points 5 days ago (14 children)

Everything needs to be slapped with the AGPL. Fuck corporate America

Gentoo vs any other distro in c/linux@lemmy.ml

[–] Findmysec@infosec.pub 20 points 6 days ago

Gentoo is the epitome of RTFM. It is beyond the Arch install in "complexity".

147

Does Wikipedia really need my donations? (infosec.pub)

submitted 1 week ago by Findmysec@infosec.pub to c/asklemmy@lemmy.ml

59 comments fedilink

Every now and then I'll get an email from someone higher up in Wikipedia asking for a donation. I don't really mind a tenner but I don't know if it pads the pockets of corporate management or actual contributors. Also, are they really short of money or is this tugging at emotional strings a play at something else? I wish Wikipedia survives but there's a lot of projects I need to donate to and I have a budget.

156

What's with the sheer number of shutdowns recently? (infosec.pub)

submitted 2 weeks ago by Findmysec@infosec.pub to c/piracy@lemmy.dbzer0.com

25 comments fedilink

I've never known so many shutdowns inside 2 weeks as the last two have been. Even websites pirating manga were shut down. What happened? What's with this massive legal wave of shutdowns, and why now?

91

I find no motivation in working for myself (infosec.pub)

submitted 1 month ago by Findmysec@infosec.pub to c/asklemmy@lemmy.ml

67 comments fedilink

The title is really vague, so I'll try to clarify my intentions here:

I am an ardent supporter of FOSS. It will be greatly beneficial for my life and especially my privacy to self-host such software. Yet, I cannot find much motivation to do so.

However, when it comes to hosting software for public use, I can usually give my utmost concentration and dedication.

This is not how I want my life to be. I want to be motivated for myself as well as for the community. And if that's not possible, I need to trick my brain into bringing me into that kind of zone for myself.

What do I do? What would you do in this situation?

161

Why do so many people use NGINX? (infosec.pub)

submitted 1 month ago by Findmysec@infosec.pub to c/selfhosted@lemmy.world

102 comments fedilink

I see so many posts and people who run NGINX as their reverse proxy. Why though? There's HAProxy and Apache, with Caddy being a simpler option.

If you're starting from scratch, why did you pick/are you picking NGINX over the others?

0

[HELP NEEDED] Unable to figure out directory permissions (infosec.pub)

submitted 1 month ago by Findmysec@infosec.pub to c/selfhosted@lemmy.world

4 comments fedilink

cross-posted from: https://infosec.pub/post/15386345

Hi everyone,

This is my CONTAINERFILE for Bind9:

FROM debian

ENV LC_ALL C.UTF-8

# Update and upgrade system
RUN apt-get update -y && apt-get upgrade -y && apt-get dist-upgrade -y

# Install BIND 9 and sudo (for debugging if needed)
RUN apt-get install -y bind9 bind9-dnsutils bind9-libs bind9-utils sudo

# Configure permissions for BIND directories
RUN mkdir -p /var/cache/bind /var/lib/bind /var/log/bind
RUN chown -R bind:bind /var/cache/bind /var/lib/bind /var/log/bind
RUN chmod 664 /var/cache/bind /var/lib/bind /var/log/bind
RUN chmod -R 664 /var/cache/bind /var/lib/bind /var/log/bind

# Create and configure log files
RUN touch /var/log/bind/default.log /var/log/bind/update_debug.log /var/log/bind/security_info.log /var/log/bind/bind.log
RUN chown -R bind:bind /var/log/bind
RUN chmod 644 /var/log/bind/*.log

# Define volumes
VOLUME ["/etc/bind", "/var/cache/bind", "/var/lib/bind", "/var/log/bind"]

# Set the entrypoint to the named executable
ENTRYPOINT ["/usr/sbin/named"]

# Set the default command arguments for the named executable
CMD ["-g"]

I keep getting this error when I run it with podman:

26-Jul-2024 03:18:21.328 loading configuration from '/etc/bind/named.conf'
26-Jul-2024 03:18:21.328 directory '/var/cache/bind' is not writable
26-Jul-2024 03:18:21.332 /etc/bind/named.conf.options:2: parsing failed: permission denied

As you can see from the CONTAINERFILE, the bind user should be able to read and write to /var/cache/bind but for some reason it doesn't.

I have been at this for a while and I'm at my wits end. Your help is appreciated!

2

[HELP NEEDED] Unable to figure out directory permissions (infosec.pub)

submitted 1 month ago by Findmysec@infosec.pub to c/linux@lemmy.world

2 comments fedilink

cross-posted from: https://infosec.pub/post/15386345

Hi everyone,

This is my CONTAINERFILE for Bind9:

FROM debian

ENV LC_ALL C.UTF-8

# Update and upgrade system
RUN apt-get update -y && apt-get upgrade -y && apt-get dist-upgrade -y

# Install BIND 9 and sudo (for debugging if needed)
RUN apt-get install -y bind9 bind9-dnsutils bind9-libs bind9-utils sudo

# Configure permissions for BIND directories
RUN mkdir -p /var/cache/bind /var/lib/bind /var/log/bind
RUN chown -R bind:bind /var/cache/bind /var/lib/bind /var/log/bind
RUN chmod 664 /var/cache/bind /var/lib/bind /var/log/bind
RUN chmod -R 664 /var/cache/bind /var/lib/bind /var/log/bind

# Create and configure log files
RUN touch /var/log/bind/default.log /var/log/bind/update_debug.log /var/log/bind/security_info.log /var/log/bind/bind.log
RUN chown -R bind:bind /var/log/bind
RUN chmod 644 /var/log/bind/*.log

# Define volumes
VOLUME ["/etc/bind", "/var/cache/bind", "/var/lib/bind", "/var/log/bind"]

# Set the entrypoint to the named executable
ENTRYPOINT ["/usr/sbin/named"]

# Set the default command arguments for the named executable
CMD ["-g"]

I keep getting this error when I run it with podman:

26-Jul-2024 03:18:21.328 loading configuration from '/etc/bind/named.conf'
26-Jul-2024 03:18:21.328 directory '/var/cache/bind' is not writable
26-Jul-2024 03:18:21.332 /etc/bind/named.conf.options:2: parsing failed: permission denied

As you can see from the CONTAINERFILE, the bind user should be able to read and write to /var/cache/bind but for some reason it doesn't.

I have been at this for a while and I'm at my wits end. Your help is appreciated!

14

[HELP NEEDED] Unable to figure out directory permissions (infosec.pub)

submitted 1 month ago by Findmysec@infosec.pub to c/linux@lemmy.ml

8 comments fedilink

Hi everyone,

This is my CONTAINERFILE for Bind9:

FROM debian

ENV LC_ALL C.UTF-8

# Update and upgrade system
RUN apt-get update -y && apt-get upgrade -y && apt-get dist-upgrade -y

# Install BIND 9 and sudo (for debugging if needed)
RUN apt-get install -y bind9 bind9-dnsutils bind9-libs bind9-utils sudo

# Configure permissions for BIND directories
RUN mkdir -p /var/cache/bind /var/lib/bind /var/log/bind
RUN chown -R bind:bind /var/cache/bind /var/lib/bind /var/log/bind
RUN chmod 664 /var/cache/bind /var/lib/bind /var/log/bind
RUN chmod -R 664 /var/cache/bind /var/lib/bind /var/log/bind

# Create and configure log files
RUN touch /var/log/bind/default.log /var/log/bind/update_debug.log /var/log/bind/security_info.log /var/log/bind/bind.log
RUN chown -R bind:bind /var/log/bind
RUN chmod 644 /var/log/bind/*.log

# Define volumes
VOLUME ["/etc/bind", "/var/cache/bind", "/var/lib/bind", "/var/log/bind"]

# Set the entrypoint to the named executable
ENTRYPOINT ["/usr/sbin/named"]

# Set the default command arguments for the named executable
CMD ["-g"]

I keep getting this error when I run it with podman:

26-Jul-2024 03:18:21.328 loading configuration from '/etc/bind/named.conf'
26-Jul-2024 03:18:21.328 directory '/var/cache/bind' is not writable
26-Jul-2024 03:18:21.332 /etc/bind/named.conf.options:2: parsing failed: permission denied

As you can see from the CONTAINERFILE, the bind user should be able to read and write to /var/cache/bind but for some reason it doesn't.

I have been at this for a while and I'm at my wits end. Your help is appreciated!

4

Somebody please explain PROXYv2 to me and the myriad of ways to do DoH? (infosec.pub)

submitted 2 months ago by Findmysec@infosec.pub to c/networking@sh.itjust.works

0 comments fedilink

I've been looking to implement DoH

The first idea was to simply follow this - I do not understand the configuration fully but it looked fine.
Then, I decided to use a proxy/Load balancer in front of BIND to deal with HTTPS.

However, I came across PROXYv2 (which is not even mentioned in the docs, just in a blog post) and the likes of DNSdist.

My questions:

I can't find a detailed explanation of what I need to do about PROXYv2 - does my Reverse-proxy absolutely need to have it to be able to communicate with my DNS server?
Why can't I just have any reverse-proxy that can handle HTTPS and put it in front of my DNS resolver? Does my proxy need to have a specific protocol to be able to talk DNS queries?

I am still confused, would really appreciate some help :)

100

Is Backblaze a reliable provider? (infosec.pub)

submitted 2 months ago by Findmysec@infosec.pub to c/selfhosted@lemmy.world

67 comments fedilink

Hi everyone,

I've started pushing backups of media important to me (family pictures, video etc) to backblaze with client-side encryption.

However, are they a reliable storage provider? I can't help but compare them to something like Amazon who likely has a better chance of maintaining my files but they are so expensive that I don't even bother.

What do you think? Yes, I've heard of 3-2-1, however for now I only have backblaze and a local backup. I'm trying not to spend too much on this.

Thanks!