Bazzite is my daily driver and I really like it
- 0 Posts
- 15 Comments
Joined 2 years ago
Cake day: July 21st, 2023
You are not logged in. If you use a Fediverse account that is able to follow users, you can follow this user.
Yeah what you’re talking about is a DMZ, it still won’t help a ton if you don’t have strict firewall controls inside your network too.
I just use wireguard with firewall rules to restrict to just my server with my docker containers on it and my DNS
11·3 months agoI still use a reverse proxy, but to get into my network you need to be on VPN. It’s more secure for me I guess.
I use traefik forward auth, even inside my network on VPN, for an extra layer of security for some apps.
My opinion is that port 443 getting accidentally misconfigured by me is just too likely a scenario. With wireguard on my router I also am able to restrict traffic to ONLY my webserver and DNS servers for my devices.
So I guess that’s another positive of wireguard, you can use your own DNS servers for all your phones all the time and always have ad blocking with pihole or something similar, even on mobile.
By using VPN I don’t have to worry about accidentally exposing a website with a copy paste error or something over my reverse proxy. I can also easily restrict who has access to my VPN and do routing rules from my router per device or subnet (for people who aren’t in my family I have a separate subnet I assign with more strict firewall rules)
If this server is publicly accessible and gets pwned, they can use it as a jump box for your internal devices.
Just close 443 and use VPN with ACME DNS challenges for your certs. That’ll help make it even more secure, nothing is fool proof though and a VPN is a good first step
Only if you hook up a torrent client. There’s no requirement to do so
For jellyfin/Plex you can try downloading everything with lidarr
4·7 months agoSelf hosting email is a terrible idea. Your Internet goes out? All your emails are black holed
I switched to Kagi like 6 months ago and I still love it. Almost never have to go back to google except for maps.
Been my daily driver for months. I love it. And with proton everything just works on steam for the most part
Runs on docker so it should run fine on your system
1·1 year agoTo me at least it seems like Israel was holding back pretty hard. Seems like they could’ve glassed Gaza a long time ago
Double it up with a pihole dns
Idk tbh. We are all by ourselves over here. I do wish we could at least reconsider military spending in the US. But now they seem damned and determined to fight a war with russia and china.
Personally I like how we are involved in this war. We send equipment which we can then 100% determine the efficacy of. It doesn’t cost any American lives. I do also recognize that our country seems to be crumbling
In my office it is