Collaborate Disseminate
I have a problem with hiding the VPS IP using Cloudflare. My IP can be found on search.censys.io. I don’t have any DNS leaks. I’m using nginx to reverse proxy a node.js server. Is it possible to hide the IP somehow to protect against DDoS … Continue reading Cloudflare not hide VPS IP (ngnix)
So essentially I do not want people to be able to access my NGINX site, unless it is through the domain name. I have a flask instance running that controls the requests. Anyways I have used this command,
server {
listen 80 default_ser… Continue reading Disabling an IP based access to my NGINX site [migrated]
I have a GKE standard deployment in GCP. I have TLS terminating at an IAAS managed load balancer, provided by their Ingress controller. The certificates are GoogleManagedCertificates. I’m fine with traffic past the load balancer and traffi… Continue reading Do you encrypt traffic between GKE nodes and external Load balancers?
I previously asked about this problem. By firing the rule 912140, although it has a nolog action, audit logs are created with no message. How can I solve it?
a created audit log:
{"transaction":{"client_ip":"192.16… Continue reading the rule 912140 causes audit logs with no message [closed]
My setup consists of a public-facing VPS running NGINX, and a local machine running certain services. The VPS and the local machine are connected using WireGuard, and NGINX on the VPS is using WireGuard IPs to serve content from the servic… Continue reading Can a NGINX reverse proxy reveal the backend if serving non-static content?
My setup consists of a public-facing VPS running NGINX, and a local machine running certain services. The VPS and the local machine are connected using WireGuard, and NGINX on the VPS is using WireGuard IPs to serve content from the servic… Continue reading Can a NGINX reverse proxy reveal the backend if serving non-static content?
I have small home server that runs a qBittorrent in docker container, and I was wondering how bad/risky it is if I’d forward the port for the web UI so I can access it from outside my network.
I know that it’s not wise to open ports mindle… Continue reading How bad it is to open qBittorrent web UI port
I am trying to install modsecurity in nginx 1.18.0 in ubuntu jammy 22.04.1 for a project by following hackersploit’s tutorial:
https://www.linode.com/docs/guides/securing-nginx-with-modsecurity/
When building the modsecurity module for ngi… Continue reading Nginx 1.18.0. ModSecurity WAF installation ./configure error [migrated]
I’m not a Docker specialist, I know how to install, configure and do only basic Docker hardening based on Docker official documentation.
I know nothing about AppArmor,SELinux and GRSEC.
But i need to put my C# app backend in production; My… Continue reading Is better for security to not run Nginx and Backend inside docker but use docker only for database and not external exposed services?
I have this kind of entries in my nginx log. If I read them correctly, someone is trying to call index.php script that is trying to download some shell script, but I don’t have any PHP on this server (at least not that I know of), and it s… Continue reading Suspicious log entries [duplicate]