I built a Web Application Firewall (WAF) using an Nginx reverse proxy to improve cheapskatesguide's robot blocking capabilities.

My goals for this firewall were mostly to provide better robot blocking and perhaps some more powerful DDoS protection than my Raspberry Pi 3 web server is capable of delivering. I still have to do some testing before I will know if my new firewall actually provides either of those, but at least I now have the additional ability to run multiple physical web servers on my LAN. Exploring that should be fun, and fun is a very important component of running a home web server.

Not my article. Just sharing.

  • Auth@lemmy.worldEnglish
    952·
    6 days ago

    All this effort to block clankers? Absolutely worth it fuck clankers.

    • henfredemars@infosec.pubEnglish
      531·
      6 days ago

      I absolutely love the term clankers. It’s the perfect blend of dystopian cyberpunk and the very real threat of AI.

      • Vupware@lemmy.zipEnglish
        121·
        6 days ago

        It seems goofy to me — I wish we had collectively picked a term with more oomph.

        I’m struggling to come up with an alternative though.

        • addie@feddit.ukEnglish
          62·
          6 days ago

          I’m still trying to make ‘sloppers’ happen. Perfectly describes the lack of thought that goes into what they produce.

          • 4grams@awful.systemsEnglish
            10·
            6 days ago

            I like ‘sloppers’ as a term for the morons distrubing and consuming the shit that the clankers are excreting.

        • mhague@lemmy.worldEnglish
          44·
          6 days ago

          Stealing a slur from Star Wars and engaging in traditional name calling to show we disapprove of uncreative slop.

          We can’t even think of an original term. We can’t think of a novel way to shit on AI. We just copy what everyone else is doing to make fun of the plagiarism machine.

    • BaroqueInMind@piefed.socialEnglish
      11·
      6 days ago

      Opnsense > pfsense

      The fact that I have to go through a fucking purchase page, even though pfsense is free (for now), is sketch as hell. First step in their inevitable enshittification.

      Opnsense is funded by European non-profits, and is has a better UI

      • ms.lane@lemmy.worldEnglish
        2·
        5 days ago

        Not to mention they tried running a disinformation campaign against OPNsense for a few years, which was resolved in court.

        Also they implemented a WireGuard module that after a review upstream on FreeBSD was found to be completely hocus.

  • quick_snail@feddit.nlEnglish
    710·
    6 days ago

    Aka “how to harm marginalized folks” and prevent them from accessing your content too