I’m not sure this is what I’m looking for, I appreciate it though!
I’m hoping for something where the only thing I need to have on someone elses system is DNS entries, ideally.
I know I can use duckdns to automatically update my dns entries when my public IP expires (residential conn), and I know how to handle setting up DNS entries themselves(I hate dns 😓) but I’m just not sure how to configure nginx or apache. As it stands the only “get this thing on the web” tool I’m actually proficient with is streamlit, which I can’t use with my selfhosted tools.
That’s how I use it, cloudflare handles my DNS and traefik does all the routing, I’d have to look again (been a year since I set it up) but it dynamically updates with my IP
Isn’t cloudflare a pretty common part of remotely accessing your server? I don’t use it but I’ve seen lots of people talk about it and recommend using them.
yes. it also prevents attacks. it’s basically a necessity these days.
if you host your own stuff and get any traffic you’ll get DDoSed by bots. cloudflare prevents this by detaching your DNS from your IP and distributing requests.
just port forwarding on your home network these days… and you’ll get dozens of attacks per hour.
the internet is not ‘nice’ anymore. services like cloudflare are a necessity for any active services beyond personal use. long gone are the days you could host a web server from your bedroom.
I do use it myself (free tier only) but it’s out of ease and convenience. I’m ready to abandon it but I like the security it brings. My stuff is just personal garbage with no strict uptime requirement - if I lose public access I still have Tailscale and a VPN to my router as backup.
So, it’s a deal with the devil for sure, but it’s one I wore protection for when signing.
It’s probably not half of the Internet, but the fact that it’s so many very visible sites should be a warning sign to everyone that the Internet is nowadays too reliant on a few points of failure (which can cause other problems, e.g. censorship).
From a security perspective when you consider this, along with our reliance on mobile phones, POS systems, digital payment processors, iot devices, cell phone providers, etc etc.
Sooner or later someone with ill intent is going to savagely fist fuck the whole fucking ecosystem to death and take a shit on the flaming wreckage.
Law enforcement neither understands nor gives a fuck about tech for the most part, unless you’re dealing with high end espionage type shit. Good luck getting officers dunning and Krueger to take action on anything suspicious when they think their ability to use an iPhone means they’re the greatest thing to happen to tech since the microprocessor.
The makers of consumer tech products could give a fuck about security. Wireless providers similarly could not give a squirt of fucking piss about security as long as you’re paying your monthly bills and they can harvest data. Politicians only care insofar as they’re able to use tech to push their moral bullshit, control and police peoples’ actions. It goes on and on and on and on.
We are reliant on all manner of tech products, both hardware and software, to participate in modern life, and yet the political apparatus treats it all like it’s disposable, as if it’s 1996 and it doesn’t matter if all of this goes to shit.
We are a naked, drunk 16 year old girl at a frat house with a sign that says “fuck me, I’m wasted” around our necks and we’re pretending like there are no consequences to this, or worse yet that nothing bad will happen.
The Spider Jerusalem of the tech world. But I want to slap some of my colleagues. The number of times I caught some making everybody administrator so they don’t have to deal with security is too high.
Cloudflare is in an interesting space. They are a service provider (ddos protection, scalable edge caching, SSL termination, etc) that allows the highly centralized internet to function. However they aren’t a gatekeeper at all. You only need cloudflare if you are in the top 5% of internet websites by volume. So when cloudflare has a problem, Lemmy isn’t affected, but Reddit is. My blog isn’t affected, but someone like https://blog.ipspace.net/ is affected.
My personal browsing habbits meant I didn’t even realize there was a cloudflare problem until I read an article about it on Lemmy. Anyway, just a tangent, but as a network engineer I’m sure i’ll be interested in the RCA.
You are not logged in. However you can subscribe from another Fediverse account, for example Lemmy or Mastodon. To do this, paste the following into the search field of your instance: [email protected]
This is the official technology community of Lemmy.ml for all news related to creation and use of technology, and to facilitate civil, meaningful discussion around it.
Ask in DM before posting product reviews or ads. All such posts otherwise are subject to removal.
Rules:
1: All Lemmy rules apply
2: Do not post low effort posts
3: NEVER post naziped*gore stuff
4: Always post article URLs or their archived version URLs as sources, NOT screenshots. Help the blind users.
5: personal rants of Big Tech CEOs like Elon Musk are unwelcome (does not include posts about their companies affecting wide range of people)
6: no advertisement posts unless verified as legitimate and non-exploitative/non-consumerist
7: crypto related posts, unless essential, are disallowed
Annoying pretty much
Yes. All my fedi services are still happy tho :)
Most Lemmy images stopped working. And maybe what my server is showing me in terms of posts is just what it still has stored.
Edit: My server is actually much more responsive with most of the big Lemmy instances being down. I really hope 1.0 brings great improvements.
Piefed.ca
iswas down because of it :( Edit: it’s back online!Gonna be a run day at work today
Cloudflare is increasingly a SPOF for the web
It’s hilariously probably at the point where it’s beneficial for them from a PR perspective to recommend alternatives to new customers now
maybe if big tech stopped firing all their engineers and investing in ai, this could have been prevented.
No, sorry. Shareholder value. Gotta keep the bubble inflating.
Damn, I really shouldn’t have trusted cloudflare tunnel. All my selfhosted servers are inaccessible… It’s running behind traefik so no ports are open.
Anyone have a decent guide on migrating from CF tunnels over to a proper reverse proxy? I hate networking 😓
Check out traefik, not sure how easy or the process to switch but configuring it is relatively easy
I’m not sure this is what I’m looking for, I appreciate it though!
I’m hoping for something where the only thing I need to have on someone elses system is DNS entries, ideally.
I know I can use duckdns to automatically update my dns entries when my public IP expires (residential conn), and I know how to handle setting up DNS entries themselves(I hate dns 😓) but I’m just not sure how to configure nginx or apache. As it stands the only “get this thing on the web” tool I’m actually proficient with is streamlit, which I can’t use with my selfhosted tools.
That’s how I use it, cloudflare handles my DNS and traefik does all the routing, I’d have to look again (been a year since I set it up) but it dynamically updates with my IP
Oh amazing, thank you, I’ll take a look at the docs this afternoon 😊
I used these guides to get set up https://www.simplehomelab.com/
There’s some malicious satisfaction watching centralized internet burning in dumpster fire while your self hosted stuff is still up
Except many of us use cloudflare tunnels to reach our selfhosted kit from the internet because we’re behind CGNATs…
Isn’t cloudflare a pretty common part of remotely accessing your server? I don’t use it but I’ve seen lots of people talk about it and recommend using them.
yes. it also prevents attacks. it’s basically a necessity these days.
if you host your own stuff and get any traffic you’ll get DDoSed by bots. cloudflare prevents this by detaching your DNS from your IP and distributing requests.
just port forwarding on your home network these days… and you’ll get dozens of attacks per hour.
the internet is not ‘nice’ anymore. services like cloudflare are a necessity for any active services beyond personal use. long gone are the days you could host a web server from your bedroom.
Maybe you guys are hosting more than me but I’ve got a few ports forwarded and don’t see any unusual activity. I guess I’m just lucky.
For me what triggered getting a lot of malicious login attempts in the logs was pointing a dns record directly at my ip
Ah, yeah I don’t do that. Haven’t had much of a reason to so far. Only have a few minor convenience type services opened up
I do use it myself (free tier only) but it’s out of ease and convenience. I’m ready to abandon it but I like the security it brings. My stuff is just personal garbage with no strict uptime requirement - if I lose public access I still have Tailscale and a VPN to my router as backup.
So, it’s a deal with the devil for sure, but it’s one I wore protection for when signing.
I haven’t exposed anything to internet and self hosted headscale instance. I’m not behind CGNAT so it was quite easy.
hell yea
Canva is affected.
It’s so funny :P just months ago one of my most used forums adopted cloudflare and many asked “Are you sure?”. Well…
Are they vibe-coding or something?
Probably
Either that or DNS :)
Or BGP
The age old question: was it DNS or LLM?
Never replace your code monkeys with clankers, boys.
It reminds me more of the AWS outage last month.
It’s probably not half of the Internet, but the fact that it’s so many very visible sites should be a warning sign to everyone that the Internet is nowadays too reliant on a few points of failure (which can cause other problems, e.g. censorship).
From a security perspective when you consider this, along with our reliance on mobile phones, POS systems, digital payment processors, iot devices, cell phone providers, etc etc.
Sooner or later someone with ill intent is going to savagely fist fuck the whole fucking ecosystem to death and take a shit on the flaming wreckage.
Law enforcement neither understands nor gives a fuck about tech for the most part, unless you’re dealing with high end espionage type shit. Good luck getting officers dunning and Krueger to take action on anything suspicious when they think their ability to use an iPhone means they’re the greatest thing to happen to tech since the microprocessor.
The makers of consumer tech products could give a fuck about security. Wireless providers similarly could not give a squirt of fucking piss about security as long as you’re paying your monthly bills and they can harvest data. Politicians only care insofar as they’re able to use tech to push their moral bullshit, control and police peoples’ actions. It goes on and on and on and on.
We are reliant on all manner of tech products, both hardware and software, to participate in modern life, and yet the political apparatus treats it all like it’s disposable, as if it’s 1996 and it doesn’t matter if all of this goes to shit.
We are a naked, drunk 16 year old girl at a frat house with a sign that says “fuck me, I’m wasted” around our necks and we’re pretending like there are no consequences to this, or worse yet that nothing bad will happen.
The Spider Jerusalem of the tech world. But I want to slap some of my colleagues. The number of times I caught some making everybody administrator so they don’t have to deal with security is too high.
Does spider Jerusalem eat Palestine flies?
Cloudflare is in an interesting space. They are a service provider (ddos protection, scalable edge caching, SSL termination, etc) that allows the highly centralized internet to function. However they aren’t a gatekeeper at all. You only need cloudflare if you are in the top 5% of internet websites by volume. So when cloudflare has a problem, Lemmy isn’t affected, but Reddit is. My blog isn’t affected, but someone like https://blog.ipspace.net/ is affected.
My personal browsing habbits meant I didn’t even realize there was a cloudflare problem until I read an article about it on Lemmy. Anyway, just a tangent, but as a network engineer I’m sure i’ll be interested in the RCA.
Payment processors another censor choke.
Lemmy works so let the world just burn down. oh also chatgpt does not work hurraayyy
Lemmy.zip apparently uses Cloudflare.
i feel bad for you
lemmy world was down apparently.
are them still down?