I’ve migrated about half of my services off of cloudflare DNS proxy. Guess which half still worked this afternoon. (Self hosting pangolin with CrowdSec as replacement). I wasn’t even using the cloudflare tunnel. Just their proxy for some bot mitigation.
Vanilla_PuddinFudge@infosec.pub 4 weeks ago
I remember the day I went why are we all selfhosting and still relying on a site like Cloudflare?.
I’m glad I agreed with me on it.
talentedkiwi@sh.itjust.works 4 weeks ago
SidewaysHighways@lemmy.world 3 weeks ago
been really enjoying pangolin so far! i got scared and ended I’ll not installing crowdsec.
am i missing out? how hard would that be to add after the fact?
talentedkiwi@sh.itjust.works 3 weeks ago
Can’t speak to how difficult it would be to do after the fact. My guess is just adding in the lines in the docker compose. As for CrowdSec, it seems to run in the background and I haven’t looked at it much. I’ve triggered it a few times and locked myself out. So I’ve added my home IP to the whitelist (it’s running on a VPS). It also locked out my uptime Kuma so I whitelisted that too.
sugar_in_your_tea@sh.itjust.works 3 weeks ago
I use it for DNS and domain hosting, but that’s it, none of their proxying stuff.
Joeffect@lemmy.world 3 weeks ago
Why though? You have other options less detrimental to the internet than using and supporting them…
sugar_in_your_tea@sh.itjust.works 3 weeks ago
Domain registration and renewal is at cost, and DNS is free. I’m not sure what’s detrimental to the internet about that…
My paid hosting is elsewhere, so they’re not making any money off me.
Redex68@lemmy.world 3 weeks ago
For me it’s because it’s free, easy to use, and supported by ddclient.
GreenKnight23@lemmy.world 3 weeks ago
still hard. most projects still CDN online instead of packaging into a single application.
it’s one of the most infuriating things about self-hosting. so I made my own self-hosted CDN and have rewrite rules that replace most public cdb domains and reroute them to my own local.
it would be great if I could just have something in the middle that would download once and cache locally on request, but it’s effort that would be taken from my time afk.
iknowitwheniseeit@lemmynsfw.com 3 weeks ago
By self-hosted you mean you have hardware geographically distributed? Like… boxes at friend’s houses or…?
GreenKnight23@lemmy.world 3 weeks ago
no, self-hosted meaning it’s all on the local network. it’s just a folder on NAS that has a local DNS route to it.
rewrite rules that rewrite the HTML and replaces “cdn.stuff.com” to “mycdn.local.net”.
so not a true CDN, but a mock.
lka1988@lemmy.dbzer0.com 3 weeks ago
I used Cloudflare tunneling for a while, then started to have similar thoughts. I’m off Cloudflare now.
anas@lemmy.world 3 weeks ago
this “me” character is so smart, aren’t they
Vanilla_PuddinFudge@infosec.pub 3 weeks ago
Oh, he’s the best. Keeps me out of trouble, that one.