Can a NGINX reverse proxy reveal the backend if serving non-static content?

My setup consists of a public-facing VPS running NGINX, and a local machine running certain services. The VPS and the local machine are connected using WireGuard, and NGINX on the VPS is using WireGuard IPs to serve content from the servic… Continue reading Can a NGINX reverse proxy reveal the backend if serving non-static content?

Can you guys help me on my decentralized and non-pyramidal DNS PKI secured with Wireguard and gnupg open source project?

I can regularly observe TLS 1.3 secured website duplications. The attacker indicates its presence by slight modifications on the web page. In particular I obseved this on the two following web pages:
https://en.wikipedia.org/wiki/Henry_Kis… Continue reading Can you guys help me on my decentralized and non-pyramidal DNS PKI secured with Wireguard and gnupg open source project?

Would it be a good idea to converge towards a non-pyramidal DNS PKI with free certificates using the state-of-the-art Wireguard protocol? [closed]

The TLS 1.3 is not always correctly implemented on the DNS PKI. We shall replace it with the state-of-the-art Wiregard. There are several aspects to consider in the DNS:

The concentration of risk in a PKI
The generation of websites certif… Continue reading Would it be a good idea to converge towards a non-pyramidal DNS PKI with free certificates using the state-of-the-art Wireguard protocol? [closed]

How to securely transfer the privatekey and pass it to wireguard in a memory safe manner?

Suppose I have a game server with only the wireguard port open, the client request wireguard configuration from a HTTPS server. And use the obtained configuration in a modified wireguard. The configuration restrict AllowedIPs and the modif… Continue reading How to securely transfer the privatekey and pass it to wireguard in a memory safe manner?

Is WireGuard fixed IP address obtainable by LAN clients if VPN is running on the router? WebRTC/STUN risk?

WireGuard does not assign dynamic IP addresses, which may be a privacy risk.

It is known that while WireGuard may offer advantages in terms of
performance, by design it is not ideal for privacy, because it doesn’t
allocate VPN IP Addresse… Continue reading Is WireGuard fixed IP address obtainable by LAN clients if VPN is running on the router? WebRTC/STUN risk?