So your vote is an external library
AnApexBread
joined 2 years ago
It's basically the same as any other time people expose something to the internet.
Most don't know what they're doing or how to do it safely so they put a vulnerable device out in a vulnerable state.
The only reason a NAS is worse is because it's more common for a home user to have a NAS then it is to do something like host a WordPress, and a NAS has more personal stuff than a WordPress does (usually)
I do. I monitor it in a lot of ways.
- IDS at the router
- Anomoli Detection at the router
- Host based agents on everything I can
- L7 Firewalls on everything I can
- DNS based monitoring for everything
Wireguard and Cloudflare Tunnels make network traffic monitoring difficult because it's all encrypted traffic.
MSDN used to be free so this was a common approach, but they re-org'ed all their programs so I think those keys are now hiding under the paid MSDN program...
You can still get Windows 11 Dev VMs for free;
https://developer.microsoft.com/en-us/windows/downloads/virtual-machines/
And you can get Evaluation keys for 11 Enterprise, Server 2022, SQL Server 2022, and System Center 2022.
I don't even let my friends have unrestricted access to my server because I don't want the liability that could come with one of them searching for/downloading illegal content.
Sure I would technically fall under safe harbor laws but I don't want to spend the money on court/lawyer fees to prove that I'm not that one downloading shit.
It's bots trying to brute force your SSH login. It happens all the time.
Just change SSH to key based only (disable password login) and move on.
Cloudflare will host videos at $5 per 1000 minutes and an extra $1 per 1000 minutes watched per month.
https://www.cloudflare.com/products/cloudflare-stream/
That's the only Cloudflare approved way to do videos and images through the proxy
Google Photos.
I pay $15 a month for unlimited storage.
Photos of my family are of the most important things to me so I'm paying out for guaranteed redundancy.
I still host a local photo storage version but I also backup everything to Google Photos.
Have you tried using a USB drive bay station with proxmox before?
I'm debating getting a 5 bay station, plugging it into my proxmox and passing the USB through to an OMV VM but I'm not sure if that will work.
In short cloudflare is both a DNS server and a reverse proxy. When you add a DNS record in there and mark it as proxy cloudflare will publish the DNS record but will instead give its own IP as the destination.
When a visitor enters your URL instead of getting your IP they will be given Cloudflare's IP. The visitor will then send their web request to Cloudflare. Cloudflare will then send that request to your actual IP.
That's the basic version. However, Cloudflare's position as a proxy gives it the ability to inspect and act on traffic as a WAF, blocking traffic that meetings the IDS/IPS rules.
It all comes down to "what are you trying to do."
Not everyone runs applications, so docker is not the answer to everything.
But if you only have 8Gb of RAM and are trying to run VMs then I'd advise you to go buy more RAM.
Would that be better than just mounting the NFS on the host and assigning that directory as the Immich upload directory?