I’ve migrated about half of my services off of cloudflare DNS proxy. Guess which half still worked this afternoon. (Self hosting pangolin with CrowdSec as replacement). I wasn’t even using the cloudflare tunnel. Just their proxy for some bot mitigation.
Vanilla_PuddinFudge@infosec.pub 2 days ago
I remember the day I went why are we all selfhosting and still relying on a site like Cloudflare?.
I’m glad I agreed with me on it.
talentedkiwi@sh.itjust.works 2 days ago
SidewaysHighways@lemmy.world 2 days ago
been really enjoying pangolin so far! i got scared and ended I’ll not installing crowdsec.
am i missing out? how hard would that be to add after the fact?
talentedkiwi@sh.itjust.works 2 days ago
Can’t speak to how difficult it would be to do after the fact. My guess is just adding in the lines in the docker compose. As for CrowdSec, it seems to run in the background and I haven’t looked at it much. I’ve triggered it a few times and locked myself out. So I’ve added my home IP to the whitelist (it’s running on a VPS). It also locked out my uptime Kuma so I whitelisted that too.
sugar_in_your_tea@sh.itjust.works 2 days ago
I use it for DNS and domain hosting, but that’s it, none of their proxying stuff.
Joeffect@lemmy.world 2 days ago
Why though? You have other options less detrimental to the internet than using and supporting them…
sugar_in_your_tea@sh.itjust.works 2 days ago
Domain registration and renewal is at cost, and DNS is free. I’m not sure what’s detrimental to the internet about that…
My paid hosting is elsewhere, so they’re not making any money off me.
Redex68@lemmy.world 2 days ago
For me it’s because it’s free, easy to use, and supported by ddclient.
GreenKnight23@lemmy.world 2 days ago
still hard. most projects still CDN online instead of packaging into a single application.
it’s one of the most infuriating things about self-hosting. so I made my own self-hosted CDN and have rewrite rules that replace most public cdb domains and reroute them to my own local.
it would be great if I could just have something in the middle that would download once and cache locally on request, but it’s effort that would be taken from my time afk.
iknowitwheniseeit@lemmynsfw.com 2 days ago
By self-hosted you mean you have hardware geographically distributed? Like… boxes at friend’s houses or…?
GreenKnight23@lemmy.world 2 days ago
no, self-hosted meaning it’s all on the local network. it’s just a folder on NAS that has a local DNS route to it.
rewrite rules that rewrite the HTML and replaces “cdn.stuff.com” to “mycdn.local.net”.
so not a true CDN, but a mock.
lka1988@lemmy.dbzer0.com 1 day ago
I used Cloudflare tunneling for a while, then started to have similar thoughts. I’m off Cloudflare now.
anas@lemmy.world 2 days ago
this “me” character is so smart, aren’t they
Vanilla_PuddinFudge@infosec.pub 2 days ago
Oh, he’s the best. Keeps me out of trouble, that one.