• 0 Posts
  • 343 Comments
Joined 1 year ago
Cake day: June 30th, 2023
  • towerful@programming.devtoSelfhosted@lemmy.worldCloudflare is bad. Youre right.English
    1·
    20 hours ago

    You can do reverse proxy on the VPS and use SNI routing (because the requested domain is in clear text over HTTPS), then use Proxy Protocol to attach the real source IP to the TCP packets.
    This way, you don’t have to terminate HTTPS on the VPS, and you can load balance between a couple wireguard peers so you have redundancy (or direct them to different reverse proxies or whatever).
    On your home servers, you will need an additional frontend(s) that accepts Proxy Protocol from the VPS (as Proxy Protocol packets aren’t standard HTTP/S packets, so standard HTTPS reverse proxies will drop them as unknown/broken/etc).
    This way, your home reverse proxy knows the original IP and can attach it to the decrypted http requests as x-forward-for. Or you can do ACLs based on original client IP. Or whatever.

    I haven’t found a way to get a firewall that pays attention to Proxy Protocol TCP headers, but I haven’t found that to really be an issue. I don’t really have a use case

  • towerful@programming.devtoTechnology@lemmy.worldGoogle, Cloudflare & Cisco Will Poison DNS to Stop Piracy Block Circumvention * TorrentFreakEnglish
    16·
    12 days ago

    Starting with a pool of all users who use alternative DNS for any reason, users of pirate sites – especially sites broadcasting the matches in question – were isolated from the rest. Users of both VPNs and third-party DNS were further excluded from the group since DNS blocking is ineffective against VPNs.

    Proust found that the number of users likely to be affected by DNS blocking at Google, Cloudflare, and Cisco, amounts to 0.084% of the total population of French Internet users. Citing a recent survey, which found that only 2% of those who face blocks simply give up and don’t find other means of circumvention, he reached an interesting conclusion.

    “2% of 0.084% is 0.00168% of Internet users! In absolute terms, that would represent a small group of around 800 people across France!”

    I wonder how much the court case cost, and if those costs are in anyway likely to be recouped even if all 800 of those convert to a subscription.

  • towerful@programming.devtoLinux@programming.devWhat was your latest improvement to your Linux setup?
    3·
    14 days ago

    Yeh, immutable distros… You can install software, it’s just you have to declaratively define what software you want, then apply that as a patch.
    You don’t just apt install cowsay, you have to create a file that defines the installation of cowsay.
    This way, if you have to change how cowsay is installed, you tweak that patch file and reapply it.
    If you have to wipe & reinstall (or get a new computer or whatever) you just apply all your patches, and the system is the same again.

  • towerful@programming.devtoNo Stupid Questions@lemmy.worldHow do I verbally say 2.1 ng/kg
    7·
    16 days ago

    But it is a fixed ratio.
    If it was in pounds, metric tons, moles or atomic mass units… It doesn’t change the ratio, the actual number.

    Would it be acceptable to drop the unit all together?
    “Lethal dose is 0.000000012 : 1 (substance : bodyweight)” (I made up the number).
    I’m not sure if there is a better way of writing the ratio.

    Could a fraction be more applicable?
    “lethal dose is 1/600000 of bodyweight”

    I’m sure it’s written as ng/kg to show the base units are the same, and the rest is just “fiddling” scientific notation