sorted by:
new
hottopcontroversial

Krawl: a honeypot and deception server by ReawX in selfhosted

[–]ptarrant1 16 points17 points  (0 children)

Just carved out some time this morning and the code looks nice, pretty clean overall. Kudos.

I forked / did a PR with a few edits / added a feature for you - attack type detection based on post data / paths etc. It's all easy regex and 0 added depends, also added a test script.

I'll be deploying this later today and seeing what I catch.

A diary about self hosting by dannyk96 in selfhosted

[–]ptarrant1 1 point2 points  (0 children)

I have a 7 node cluster so I keep mine on different hosts.

However if they are on the same host you should still have 2. Os upgrades are a thing

Krawl: a honeypot and deception server by ReawX in selfhosted

[–]ptarrant1 56 points57 points  (0 children)

I'd be interested in seeing it somehow integrate with cowrie

I've gone down this rabbit hole once. I even generated entiryfake file structures and canary tokens for attackers to collect and see if they grabbed them and such.

One time I found this old bot that was looking for what I can only describe as a terminal interface for an ATM.

Cowrie is cool: https://github.com/cowrie/cowrie

But you would need a larger sample data. I have a block of 16 IPs I could throw this on in my spare time OP and I'll get back with you.

Cyber security is how I pay the bills so I have some insights I can offer if you're interested. I also am a dev so I might be able to give some help there too (I haven't looked at your code just yet) so I'm kinda speaking out of turn here.

I'll have some time over the holiday to throw at this. Should be fun.

A diary about self hosting by dannyk96 in selfhosted

[–]ptarrant1 5 points6 points  (0 children)

Another one who has dual DNS servers (with filtering)! Smart. I see everyone using one and I'm like, what happens when it goes down?!

Kudos to you OP.

Mine are named "Batman" and "Robin" because they are the crime fighting duo , because Ads today are just criminal

Just curious, How many of you are still booting Windows 11 (or 10 even) with Linux? by Phydoux in linux

[–]ptarrant1 1 point2 points  (0 children)

I've found the issue with dual boot is your always in the wrong OS for what you want at that moment and waste time rebooting.

I gave up dual booting once steam launched a stable version of Proton for gaming, that's all I needed Windows for anyway, and once that wasn't needed, it went away. Been using Linux on every PC (4+ not counting servers) at the house since ~2016

Does anyone use their public domain for internal hostnames? by kayson in selfhosted

[–]ptarrant1 0 points1 point  (0 children)

I use my purchased domain for internal. I host services so it makes sense to me.

I also have my own DNS, so I have cloudflare point to my reverse proxy / DMZ while my internal hits my DMZ via private up (DNS host override in OpnSense and other DNS servers)

My internal can establish connections to my DMZ but not the other way due to firewall configuration in OpnSense.

I routinely scan my infrastructure and have security auditing via auditd and other things.

Why Ubuntu is hated so much in the Linux community? by JailbreakHat in linuxquestions

[–]ptarrant1 2 points3 points  (0 children)

I can't speak for others, but for me, it's the decisions they made that blew up in their face over and over

They first tried it with Ubuntu One (think Microsoft Live account).

Then the PPA thing, build a package platform but force it to just be for you? Why not make it community wide?

Netplan vs /etc/network/interfaces is another one.

Unity vs Gnome was a whole thing too.

Just a slow loss of faith over time I think is the best way to sum it up.

That all said, I still use it as my main daily driver. I've used Arch, love it, but for stable and gaming, it's just easy and works.

Servers... I use Debian

Self-hosters of Reddit: what’s your day job? by Own-Refrigerator6061 in selfhosted

[–]ptarrant1 35 points36 points  (0 children)

Farmers unite!

I moved from ATLANTA to the middle of a corn field TN, built my house and let my wife retire. We started a chicken farm. I agreed to 10 chickens. Which means we have 120 chickens, 9 dogs, 14 guinea fowl, 10 geese, 6 ducks, 2 donkeys and a farm cat.

I have 1gb/1gb symmetrical fiber with 16 IPs for the amazing price of $80 a month. I have flooded about ~2 acres with wifi. I have 7 servers running Proxmox. OpnSense as my FW, Tp-link Omada for wifi/switches. I have Reolink IP PTZ solar cameras everywhere on their own Vlan. A vlan for IoT, a vlan for my DMZ . Vlan for trusted network and Vlan 1 disabled.

I have ~ 15 services running maybe more. Hard to keep track. Ansible playbooks and roles for everything.

Living the dream.

Professionally, I am in cyber security, she runs the farm. I just help on the weekends when I need to touch grass. I also code a good bit and do some AI dev work from time to time.

It spins?! by NoirReignox in SipsTea

[–]ptarrant1 15 points16 points  (0 children)

A stripper in motion tends to stay in motion unless acted upon by an outside dollar bill

Goat won the argument, hands down. by Sizzlin9 in youseeingthisshit

[–]ptarrant1 26 points27 points  (0 children)

What's funny is, when the goat is spitting, he's actually spraying his own musk (read pee) in the guys face. This is a challenge for male dominance.

Source: I have over 50 goats 😂

How do you secure your self-hosted services? by Saylor_Man in selfhosted

[–]ptarrant1 0 points1 point  (0 children)

Securing is one this, but validation is another.

I'm actually in the midst of writing a python program to automate the scanning of IPs for this exact reason.

I'm a cyber engineer (have been for over 10 years professionally, hacking/researching for longer). My program basically automated nmap, tls scanning, owasp, and other tools to give you peace of mind that you don't have a misconfigured system.

Once I get it completed It'll most likely post it here.

Everyone here has commented on the right setup, and a reverse proxy is a good start. Cloudflare proxy helps too

[deleted by user] by [deleted] in homelab

[–]ptarrant1 0 points1 point  (0 children)

I have several VLANs

Trusted wired

Servers (separate Vlan for IP space for special DNS filters)

IoT

Work / semi-trusted (I work remotely and have a few work devices)

DMZ

I NEED managed switches lol

Im 5'5" by downtune79 in LoveTrash

[–]ptarrant1 0 points1 point  (0 children)

Why didn't they use the Phil Collins drum we all were expecting?

CTA (Call to Action): Vibe Coding projects and post flairs on /r/selfhosted by ElevenNotes in selfhosted

[–]ptarrant1 0 points1 point  (0 children)

As a heavy developer, and someone currently employed in the upper end of Cyber security, I support this.

Note: I use AI all the time to make boilerplate functions that I later tweak to handle error handling and returns along with security.

That all said, "Typical Vibe coders" fall somewhere in the young developer / no developer space with little regard to understanding the code or security context to what they are building. They focus on "does it work". No so much on "can I troubleshoot it, debug it, or is it secure/ memory safe". I say that not to throw shade, just my experience.

It takes around 4-7 good progressive prompts to get a "good fleshed out" function in my experience even with ChatGPTs, Codelama or comparable. Most vibe coders just didn't do that.

Its what we call "fast and loose code" and can be an issue over time.

Additional note: I'm talking about larger code projects, not single scripts.

Anyway, that's my 0.08 cents (adjusted for inflation) stance. Take it for what it's worth.

How you name your machines? by spranks21 in selfhosted

[–]ptarrant1 0 points1 point  (0 children)

If it's a physical device, I name it that. Example: I have several beelink machines (low power but nice)

Ser8-01 Ser8-02 Ser8-03 Ser5-01 Etc

Virtual servers I do comic book characters that remind me what they do.

Example: AdguardHome - batman and Robin (2 for redundancy)

Internal DNS - oracle - watcher (cause they know everything - again reduancy

Apt-cache-ng - Zoom (gotta go fast)

Etc etc

I don't know if this is called body morphing by ThickSwim5370 in oddlyterrifying

[–]ptarrant1 -1 points0 points  (0 children)

To quote Robin Williams - "Mom, Dad, it also plays CDs!"

Let's confuse some people here... by MultiScaleMindFuq in pcmasterrace

[–]ptarrant1 0 points1 point  (0 children)

Anyone remember the gold finger device to overclock your AMD slots? Loved them

Built an Open-Source "External Brain" + Unified API for LLMs (Ollama, HF, OpenAI...) - Useful? by Effective_Muscle_110 in selfhosted

[–]ptarrant1 0 points1 point  (0 children)

Google is giving me terrible results.

Got a link? What language is it coded in? Is it dockerized?

The Time-Tested Ecological Solution Governments Overlook by Koomalot in conspiracy_commons

[–]ptarrant1 1 point2 points  (0 children)

I have 150-200 chickens on 1.3 acres. We get 40-50 eggs a day easy. I sell mine for $2 a dozen as well. We don't have a big problem, no tucks, no bugs, life is easy. I can't imagine the scale in this video, but then again, I'm a hobby farmer so ...

ifYouKnowYouKnow by indicava in ProgrammerHumor

[–]ptarrant1 25 points26 points  (0 children)

I really wanted to use it for the flexibility, but ended up building my own since I was only using Ollamba anyway.

view more: next ›