sandwichsaregood
@sandwichsaregood@lemmy.world
- Comment on How much do you secure a home server that's only accessible with VPN? 1 day ago:
I agree that there is some value to obscurity generally, but Wireguard already evades port scans and fingerprinting. Unless a packet is signed with a known key, it gives no response to traffic, so scanners and fingerprinters see a closed port. You ISP can identify WG traffic while you are connected by inspecting your traffic, but random scanners won’t see anything. Look on shodan, you won’t see Wireguard.
- Comment on Which caddy docker builds to use? 2 weeks ago:
I ended up building it myself, which may be the best option if you want to use other plugins. I have it set up in my own Forgejo with a CI configuration to auto build the binary and docker image. Forgejo let’s you also host container images, so I can just pull from the latest build wherever I need it.
- Comment on Are ISPs responsible for bots having residential IPs or is this a user problem? 2 weeks ago:
Both those tools analyze service logs for suspicious activity and block based on patterns. If you aren’t hosting anything externally, they probably aren’t doing anything.
- Comment on Self-Host Weekly #150: Watchtower No More 6 months ago:
Tugtainer is pretty nice, and has a webui.