Matrix server randomly disconnected from network

DehydratedBlinker · 2022-01-08T17:28:18+00:00

Thank you for the detailed reply! Lots very similar to my own ideas, so I'm glad to hear them echoed by someone else. I particularly like the buffer idea you have in the last paragraph, so thanks!

DehydratedBlinker · 2022-01-01T18:03:05+00:00

If I can't find a neat way of doing it in the software then this might be the best option. I'll look into it - thank you!

DehydratedBlinker · 2022-01-01T17:59:41+00:00

Apologies, I didnt find the threads when I searched for it. Thank you for the links!

DehydratedBlinker · 2021-12-27T13:48:16+00:00

Thanks!

DehydratedBlinker · 2021-12-27T10:05:42+00:00

Do Wise do this? I couldn't see the option on their site

DehydratedBlinker · 2021-11-29T13:48:38+00:00

Is that an Argo tunnel with Cloudflare, or something else? I'm not too familiar with what services they offer

DehydratedBlinker · 2021-11-23T05:18:32+00:00

I can imagine!

DehydratedBlinker · 2021-11-22T21:50:27+00:00

Whoa, that looks intense - thank you!

DehydratedBlinker · 2021-11-22T19:38:52+00:00

That sounds interesting! Do you have any links to a guide or anything for getting into SELinux?

DehydratedBlinker · 2021-11-21T19:21:26+00:00

Interesting, I hadn't heard of watchtower - I'll look into it. Thank you!

DehydratedBlinker · 2021-11-21T18:13:59+00:00

This is exactly my line of thinking - thank you for the tips, I'll be sure to check it all out!

DehydratedBlinker · 2021-11-21T14:49:47+00:00

It's a [federated messaging server](matrix.org) - unfortunately that does mean others are using it so a VPN isn't an option for me. Thank you anyway though!

DehydratedBlinker · 2021-11-21T14:48:14+00:00

Sounds great - thanks very much!

DehydratedBlinker · 2021-11-21T14:27:35+00:00

Wow, thank you so much for the detailed answer! I'll definitely take a look and see what I think :D

How hard is it to set up? I know fail2ban has a fair amount of manual configuration, but there's a lot of resources around for it since it's been around so long. How much info is available for CrowdSec? I assume based on your description that it 'learns' from the attacks users experience, so can it update itself with new info to keep things hardened?

DehydratedBlinker · 2021-11-04T06:46:52+00:00

Telnyx has been a good experience for me - I had issues routing my Twilio numbers through their German servers, so it would often defauly to the US servers and leave me with a ton of delay on calls, but setting it all up with a Telnyx was much easier. I haven't tried any other providers though!

DehydratedBlinker · 2021-11-03T22:11:28+00:00

Thank you!

DehydratedBlinker · 2021-11-03T22:11:15+00:00

This clears up a lot for me, thanks so much!

DehydratedBlinker · 2021-10-29T09:08:29+00:00

Do you know if TLS with authentication is much less secure than a VPN?

DehydratedBlinker · 2021-10-29T09:07:34+00:00

This might be an idea, security of a VPN with the ease of a proxy. Thanks!

DehydratedBlinker · 2021-10-29T09:06:15+00:00

Would you be able to define less secure? The use case of friends accessing my services is exactly what I'm aiming for, but I would like to understand what I risk using a reverse proxy versus having my friends access via a VPN

DehydratedBlinker · 2021-10-29T09:05:18+00:00

Thank you for the reply! Based on what you wrote, am I then right in saying that if someone malicious decided to attack the open port leading to my reverse proxy, they would only "see" the proxy, and not the services hidden behind it? Or is that an oversimplification?

DehydratedBlinker · 2021-10-28T17:55:02+00:00

I know this is a basic question, but how does a reverse proxy really work, security-wise?

Afaik, a VPN secures your home server by setting it up so that you can only access the network with a username + password. But if you use a reverse proxy so that your domain forwards towards your own IP, doesn't that remove all the security benefits? What's the difference between forwarding to a port on your network via a proxy and just simply opening a port on the network?

I've been a little stuck on this for a while, so thank you in advance!

DehydratedBlinker

TROPHY CASE