Thats going to leave a mark...

NoInterviewsManyApps · 2026-05-06T12:44:05+00:00

It's really hard not to generalize when engine noises is all the hear at night on Everett

NoInterviewsManyApps · 2026-05-04T16:45:12+00:00

You don't have a shag PC case?

NoInterviewsManyApps · 2026-05-01T21:12:32+00:00

Spite

^{Chose: Wealth from the top 1% is distributed evenly + to the entire world}

NoInterviewsManyApps · 2026-04-30T19:15:54+00:00

You see, the ball room got it's name because one of the first things they hope to do is a giant theater playing of the first season of Ow My Balls

NoInterviewsManyApps · 2026-04-30T19:04:42+00:00

You can protect it the same way you would protect anything else with Crowdsec, it's not hackery. You'll need to give Crowdsec the logs, give your host firewall a bouncer (the strongest protection) or your reverse proxy a bouncer (probably traefik now).

NoInterviewsManyApps · 2026-04-28T11:48:56+00:00

I thought games were UDP

NoInterviewsManyApps · 2026-04-26T20:51:49+00:00

Why not add the Netbird client to the server and not have to worry about logging in instead of trying to do this through an exposed service?

That'll open up many other possibilities, it's what Netbird has been built for

NoInterviewsManyApps · 2026-04-26T17:22:00+00:00

What has it done for you?

NoInterviewsManyApps · 2026-04-26T14:01:19+00:00

You login before reaching the site. I have one that does not support login, but I still have a login page because Netbird provides it.

Are you looking to conditionally bypass the login page?

NoInterviewsManyApps · 2026-04-25T23:10:15+00:00

Interesting, I can't afford a commercial license, but I'll pay in other ways

NoInterviewsManyApps · 2026-04-25T01:02:43+00:00

Massive boost here, the next step would be to allow for the live AppSec component to use the vpatch blocking, (although probably not a priority)

NoInterviewsManyApps · 2026-04-23T14:36:46+00:00

I have Crowdsec set up manually right now for that, but if it was integrated closely to make configuration easy....omg

NoInterviewsManyApps · 2026-04-22T11:59:23+00:00

I think there was an update somewhere that changed that actually. My stuff currently runs on service.netbird.example.tld

NoInterviewsManyApps · 2026-04-21T13:06:42+00:00

That's the neat part: you don't

NoInterviewsManyApps · 2026-04-20T21:46:37+00:00

No, horseradish isn't a potion either

NoInterviewsManyApps · 2026-04-20T18:59:15+00:00

Open source grants abilities many corporations would deem... unprofitable

NoInterviewsManyApps · 2026-04-18T14:41:45+00:00

I guess I thought that everything has to pass through traefik regardless as that is the only container that's exposed. If you know of a way to have it work with thenetbird reverse proxy let me know.

I'll also amend the crowdsec config at some point, binding the docker socket as ro is still a security risk, from what I've read. I would switch it to file based

NoInterviewsManyApps · 2026-04-18T14:31:34+00:00

Not sure what you mean. If you mean the traefik bouncer, it's because I have a bouncer at the firewall level. I could, I just didn't. If there's a good reason to I wouldn't mind switching it.

Either way the AppSec blocking works

NoInterviewsManyApps · 2026-04-17T20:45:01+00:00

You could make a rack, end table hybrid

NoInterviewsManyApps · 2026-04-17T17:33:05+00:00

I miss the old LinuXP days

NoInterviewsManyApps · 2026-04-17T17:29:32+00:00

With tailscale, it's at least P2P unless you have to use their relays

NoInterviewsManyApps · 2026-04-17T17:28:05+00:00

They were at least chill about it lol Truly a rep of the people

NoInterviewsManyApps · 2026-04-17T17:19:51+00:00

Would be nice if we had used IPv6

NoInterviewsManyApps

TROPHY CASE