Туннели CloudFlare.com: делаем вебсервер дома без публичного IP

#proxy #VPN #vless #xtls #cloudflare #этаСтрана #РосКомПозор

Леонид Каганов 2025_07_04

Ллео разродился запоздавшей инструкцией как сделать веб-сервер без публичного IP-адреса.

Вкратце: предлагается использовать туннель от Cloudflare. Который успешно банится ТСПУ от РосКомПозора в сетях мобильных операторов.

https://lleo.me/dnevnik/2025/07/04

#VPN apps and #proxy services should be *invisible* with ZERO clues it's a VPN/proxy connection. And they definitely should not advertise their identity

'Sudan has been wracked by a civil war since fighting broke out between the army and the Rapid Support Forces (RSF) in April 2023, causing one of the world's worst humanitarian crises with more than 12 million people forced to flee their homes. '

link below:
https://www.bbc.com/news/articles/cvgee0q590qo

Nginx Proxy Manager 2.12.4 lands with API schema fixes, performance improvements, and a batch of new DNS providers for Certbot plugin support.
https://linuxiac.com/nginx-proxy-manager-2-12-4-released-with-certbot-enhancements/

A short history of #web bots and #bot detection techniques - #js #javascript #http #fingerprinting #captcha #proxy #socks #networking

https://sinja.io/blog/bot-or-not

Amazon Remote Disables Piracy Apps Sideloaded on Fire TV Devices

https://torrentfreak.com/amazon-remote-disables-piracy-apps-sideloaded-on-fire-tv-devices-250628/

Oh snap! `YARR - Yet Another RSS Reader` has a new version and I missed it in March!
https://github.com/nkanaev/yarr/releases/tag/v2.5
YARR is like Feedly or NewsBlur, except more like TinyRSS or FreshRSS - you can self-host.

UNLIKE those, you can tell yarr to run at `<ip:port>`, so you can stick it at port 7666 for your reverse #proxy. And its lightweight, I run my own AND 3 other instances for fam. members on the same host accessed via different subdomains re-proxied by #nginx.

#Proxy Services Feast on #Ukraine’s IP Address Exodus

https://krebsonsecurity.com/2025/06/proxy-services-feast-on-ukraines-ip-address-exodus/

My homelab got it's final touches. I finally removed #Nextcloud and switched completely to #Stalwart, i added automatic #database backups using #cronjobs for all my #databases, i've set up most of my publicly exposed services to run behind the #cloudflare #proxy, improved the directory structure for my #docker #containers, and finally set up pihole as the #dns server on my router. This feels so good.

Nginx Proxy Manager: La forma más segura y eficiente de exponer servicios al exterior #docker #redes_y_seguridad #nginx #proxy
https://nosololinux.es/nginx-proxy-manager-la-forma-mas-segura-y-eficiente-de-exponer-servicios-al-exterior/

Cloudflare or not Cloudflare? I have to confess I've been using it for a while, and while I do enjoy its multiple benefits (proxy, WAF, DNS management, security rules, automatic email obfuscation...), I dont like the idea of transmitting all the data through a 3rd party, especially based in the USA.

Mastodon tech people, I summon you!

What are your thoughts?
Do you use Cloudflare?
Or is it a non negociable no to you?
Have you tried European based solutions like Bunny.net?
Do you just live without such tools?

I'm interested in hearing your thoughts!
Boosts appreciated

gibt es eigentlich ähnliche Projekte wie #yacy nur eine Nummer kleiner?

Ich hätte gerne etwas das als #Proxy funktioniert und einfach nur die Seiten indiziert die ich besucht habe und dann auch nur für mich durchsuchbar.

gibt es da ggfs. etwas das mit #squid funktioniert oder einem anderen Proxy Server?

Hướng dẫn tạo Telegram API Proxy trên Cloudflare Worker

Hướng dẫn tạo Telegram API Proxy trên Cloudflare Worker #Telegram #API #Proxy #CloudflareWorker #HướngDẫn #Dev #Programming Bài viết này hướng dẫn bạn cách tạo một Telegram API proxy sử dụng Cloudflare Workers. Phương pháp này giúp tăng cường bảo mật và độ ổn định khi tương tác với Telegram Bot API, đặc biệt hữu ích trong các trường hợp cần bypass hạn chế địa lý hoặc tăng tốc độ truy cập.

https://maychu.top/2025/05/30/huong-dan-tao-telegram-api-proxy-tren-cloudflare-worker/

The Sharp Taste of Mimo'lette: Analyzing Mimo's Latest Campaign targeting Craft CMS

Between February and May, multiple exploitations of CVE-2025-32432, a Remote Code Execution vulnerability in Craft CMS, were observed. The attack chain involves deploying a webshell, downloading an infection script, and executing malicious payloads including a loader, crypto miner, and residential proxyware. The Mimo intrusion set is believed responsible, using distinctive identifiers like '4l4md4r' and 'n1tr0'. The group deploys XMRig for cryptomining and IPRoyal for bandwidth monetization. Two potential operators, 'EtxArny' and 'N1tr0', were identified through social media analysis. While showing interest in Middle Eastern affairs, the group's primary motivation appears financial. Detection opportunities include monitoring for unusual processes in temporary directories and kernel module alterations.

Pulse ID: 68360c3f4169ef29b7c93f6f
Pulse Link: https://otx.alienvault.com/pulse/68360c3f4169ef29b7c93f6f
Pulse Author: AlienVault
Created: 2025-05-27 19:02:23

Be advised, this data is unverified and should be considered preliminary. Always do further verification.

Wayback Proxy Lets Your Browser Party Like It’s 1999 - This project is a few years old, but it might be appropriate to cover it late sinc... - https://hackaday.com/2025/05/26/wayback-proxy-lets-your-browser-party-like-its-1999/ #internetarchive #retrocomputing #internethacks #earlyinternet #rasberrypi #geocities #proxy #web

Just released: #swad 0.11 -- the session-less swad is done!

Swad is the "Simple Web Authentication Daemon", it adds cookie/form #authentication to your reverse #proxy, designed to work with #nginx' "auth_request". Several modules for checking credentials are included, one of which requires solving a crypto challenge like #Anubis does, to allow "bot-safe" guest logins. Swad is written in pure #C, compiles to a small (200-300kiB) binary, has minimal dependencies (zlib, OpenSSL/LibreSSL and optionally libpam) and *should* work on many #POSIX-alike systems (#FreeBSD tested a lot, #Linux and #illumos also tested)

This release is the first one not to require a server-side session (which consumes a significant amount of RAM on really busy sites), instead signed Json Web Tokens are now implemented. For now, they are signed using HMAC-SHA256 with a random key generated at startup. A future direction could be support for asymmetric keys (RSA, ED25519), which could open up new possibilities like having your reverse proxy pass the signed token to a backend application, which could then verify it, but still not forge it.

Read more, grab the latest .tar.xz, build and install it ... here:

https://github.com/Zirias/swad