For #homeLab and #SelfHosting people, I have a question - and that's when do you feel ready to make something available on the open web (even just hosting a static site)?
-
For #homeLab and #SelfHosting people, I have a question - and that's when do you feel ready to make something available on the open web (even just hosting a static site)?
I'm perhaps too much of a perfectionist or worry-wort, but I'm not sure I know when I'm 'safe' to do so. I'm doing the basics like:
- Regular updates/patching
- SSH passkey authentication
- FirewallIs there anything else you think is essential to be safe, or do you just YOLO some containers up and assume it'll be OK and I'm being far too paranoid?
-
For #homeLab and #SelfHosting people, I have a question - and that's when do you feel ready to make something available on the open web (even just hosting a static site)?
I'm perhaps too much of a perfectionist or worry-wort, but I'm not sure I know when I'm 'safe' to do so. I'm doing the basics like:
- Regular updates/patching
- SSH passkey authentication
- FirewallIs there anything else you think is essential to be safe, or do you just YOLO some containers up and assume it'll be OK and I'm being far too paranoid?
@hl I was a yolo type, then I was 'forced' to add a badbotblocker + fail2ban + anubis. And reverse proxy, of course.
-
For #homeLab and #SelfHosting people, I have a question - and that's when do you feel ready to make something available on the open web (even just hosting a static site)?
I'm perhaps too much of a perfectionist or worry-wort, but I'm not sure I know when I'm 'safe' to do so. I'm doing the basics like:
- Regular updates/patching
- SSH passkey authentication
- FirewallIs there anything else you think is essential to be safe, or do you just YOLO some containers up and assume it'll be OK and I'm being far too paranoid?
@hl here is what you are going to do
You'll get a simple VPS. 2GB 2-4 core server.
You'll install Pangolin on it - https://pangolin.net
once pangolin is setup , add your home machine as a site on it. You will NOT open home machine to the public.
The pangolin client on your home machine will talk to VPS
On pangolin, you'll create a site - service.domainname.com that routes to your home machine at the docker containers local port number. You can easily add auth via pangolin too.
-
@hl here is what you are going to do
You'll get a simple VPS. 2GB 2-4 core server.
You'll install Pangolin on it - https://pangolin.net
once pangolin is setup , add your home machine as a site on it. You will NOT open home machine to the public.
The pangolin client on your home machine will talk to VPS
On pangolin, you'll create a site - service.domainname.com that routes to your home machine at the docker containers local port number. You can easily add auth via pangolin too.
@hl If any of this sounds too tricky, reach out and we can talk and get this sorted via a call
-
For #homeLab and #SelfHosting people, I have a question - and that's when do you feel ready to make something available on the open web (even just hosting a static site)?
I'm perhaps too much of a perfectionist or worry-wort, but I'm not sure I know when I'm 'safe' to do so. I'm doing the basics like:
- Regular updates/patching
- SSH passkey authentication
- FirewallIs there anything else you think is essential to be safe, or do you just YOLO some containers up and assume it'll be OK and I'm being far too paranoid?
I typically don't these days due to the proliferation of bullshit machine scrapers.
Everything is behind a VPN.
However, I'd definitely be using a robust full-ASN blocklist to firewall off the known bad actors before considering it, just from the noise perspective.
-
R relay@relay.infosec.exchange shared this topic
