• 0 Posts
  • 101 Comments
Joined 1 year ago
cake
Cake day: June 18th, 2023

help-circle










  • I would reconsider docker because if a specific application leaks some sort of shell access or system file access you’ll be protected out side of container host escalation.

    Unrelated to security, I prefer docker because it leaves the server very clean if you remove different apps. Can also save time configuring more complex applications or applications that conflict with system libraries.

    Add fail2ban on your list of applications it watches logs for invalid logins and puts them on firewall block rules after so many failed attempts.





  • I made the jump to a full server a few years ago and there’s some pretty high limits but you can get them spec’ed pretty low. Something like a dell r730 Single 8 core xenon 32gb ram and a couple tb of storage running 4-500$. They can be upgraded over time to be dual 16 core xenon 1tb ram and petabyte of storage.





  • epyon22toNix / NixOSdnscrypt-proxy2 routed through tor
    link
    fedilink
    English
    arrow-up
    2
    ·
    edit-2
    5 months ago

    Is this whatismyip address on the dns server that should have all its traffic going through tor or just DNS? what is my ip address works by responding with the ip address that is connecting to it. If you are only trying to have dns go over tor what is my ip would respond with a non tor ip address but if all traffic is going through tor then yes something is not working.

    Edit: Reading more in depth of your post 100% whatismyipaddress will not return your tor ip. You’ve just offloaded name resultion ie. www.google.com is 123.123.123.123 ip address. You are still connecting to websites with your ISP ip.