Keep your software up to date
Comment on I finally bought a domain! Now what
philanthropicoctopus@thelemmy.club 3 days ago Thank you for this tip
I have just set it up and holy shit it worked straight away! This is so exciting!
My question, now that my apps are exposed to the internet, aside from having strong passwords is there anything else I should be doing to keep safe?
I just read no media servers on free tunnels so I’ll have to use nginx for jellyfin
cybervseas@lemmy.world 3 days ago
valkyre09@lemmy.world 3 days ago
Yes in zero trust > access controls > applications you can specify a web site and then tell it how you want it protected. In its most basic form you can have it email you a login code, but if you link it to either google or Microsoft you can have users of those services use them allowing you to sso straight through.
You can also specify a wildcard *.mydomain.net and then by default anything that is in your domain will be protected. Means when you’re testing something new you won’t forget to lock it down.
You’re correct about media, I use nginx proxy manager for emby, but everything else goes through the tunnels
Svinhufvud@sopuli.xyz 3 days ago
Using cloudflare tunnels means that the TLS is terminated at cloudflare. This means that cloudflare has the capability to snoop on your traffic, so you have trust cloudflare not to do that, especially if your traffic contains sensitive information.
Also, the ‘no media in free tunnels’ is outdated information as far as I know, so be sure to check up to date information on that.
I think you have to turn off caching or else they’ll nuke you