@stux@mstdn.social avatar stux , to random

Pff.. How do I redirect requests in ?

My server constantly gets DOSed because of the massive amount of requests from the Fedi

This isn't fun anymore

@fox@social.lol avatar fox , to random Polish

No i mamy kolejny odcinek !!

https://wtfs.stream/@what_the_fox_says/episodes/baterie-przyszlosci-satelity-amazona-i-kryzys-open-source-od-gitlaba-po-upadek-ingress-nginx

Chińczycy odpalają pierwszą linię produkcyjną baterii all solid state z realną szansą na elektryki o zasięgu ponad 1000 km, Amazon wchodzi na poważnie w internet satelitarny z terminalem Leo Ultra i pomysłami na data center w kosmosie,

@m0bi@mastodon.com.pl avatar m0bi , to random Polish

⁂ Postawiłem sobie dzisiaj pl-fe od Nicole @mkljczk dla mojego Fedika.pl

Z małym zgrzytem. wymagał drobnej korekty location. To pomyślałem że podzielę się, bo może ktoś się odbije od tego samego. Tu akurat domyślna konfiguracja nginx w -owej apce "My webapp" nie zadziałała. Wyskakiwały 404 przy logowaniu do domeny instancji.

Domyślne location było:

try_files $uri $uri/ /index.php?$args =404;

a powinien być dodany index.html, bo to przecież / :

try_files $uri $uri/ /index.html =404;

Niniejszym macie receptę jak do swoich GtSów na YunoHost dodać własne .

Polecam, to najlepszy klient webowy i na telefon 👍

P.S. Zacznę chyba nazywać bo mi się pl-fe średnio podoba 😉

Ekran pl-fe na mojej instancji GtS Fedika.pl Niebieska ciemna skórka, widać timeline i moje konto.
ALT
@h4ckernews@mastodon.social avatar h4ckernews Bot , to random
@piwo@fosstodon.org avatar piwo , to random Polish

🎬 Skryptowanie nginx-a za pomocą js-a. Case study na rzecz wydajności i prywatności

@kuba z Fundacji @icd pokazuje, jak wykorzystać do skryptowania oraz jak ta technika może poprawić wydajność i zwiększyć prywatność użytkowników.

👉 PeerTube: https://tube.pol.social/w/2BbPBaXKQU1c2QCEThGQNR
👉 YouTube: https://www.youtube.com/watch?v=O8wkSDxssLw

@h4ckernews@mastodon.social avatar h4ckernews Bot , to random
@jwildeboer@social.wildeboer.net avatar jwildeboer , to random

What and can do. Had an idea, discussed it here. Seemed to rhyme with people. Booked two domains. Created a landing page with and CI/CD from a repo on my instance. Created logo with . Added certificate. Put it on my VPS (Virtual Private Server) running Red Hat Enterprise Linux, () where it is now served with . Git repo mirrored to so all can join. In under 8h.

https://devbnb.eu

https://codeberg.org/jwildeboer/devbnb

Building the static pages for the website automatically with the forgejo runner that runs after every push to the repo.

Building the static pages for the website automatically with the forgejo runner that runs after every push to the repo.
ALT
@h4ckernews@mastodon.social avatar h4ckernews Bot , to random
@guardianproject@librem.one avatar guardianproject , to random

has completed implementation for and there is a pull request:

https://github.com/nginx/nginx/pull/840

If you want to see ECH in nginx sooner rather than later, please jump in and review, give feedback, thumbs up, etc.

@stux@mstdn.social avatar stux , to random

So according to this article: https://www.dropsitenews.com/p/meta-facebook-tech-copyright-privacy-whistleblower

is scraping the media proxies of mstdn, masto and .coffee..

If this is true, this is very worriying and pisses me very much off

No wonder our media loads so crappy if they are constantly tapping in..

Fuck to hell

stux OP ,
@stux@mstdn.social avatar

Just edited our configs and added

if ($http_user_agent ~* "Meta-ExternalAgent") {
return 403;
}

to the server block

@itisiboller@infosec.exchange avatar itisiboller , to random

Another short blog post on blocking that slow down a website. Using , but easily adaptable to etc

https://www.infosecworrier.dk/blog/2025/07/botblocker/

@kayo77@pol.social avatar kayo77 , to random Polish

Blokować ai boty na nginx czy nie blokować… Oto jest pytanie

@kaixin@snac.bsd.cafe avatar kaixin , to random

Pilot compiling with for went well! It did seem a bit complicated to configure at first but sing ports made easy with and . It was so simple and straightforward to actually run that I secretly thought it took out all the fun of seeing scrolling screens of compling!

terminal emulator running FreeBSD poudriere
ALT
zirias ,
@zirias@bsd.cafe avatar

@kaixin @feld or just setup to serve the creates: live observation in the browser.

All the "scrolling crap" ends up in individual logfiles, very helpful to debug occassional issues.

kaixin OP ,
@kaixin@snac.bsd.cafe avatar

@zirias I am considering it since I won't need for anything else

@h4ckernews@mastodon.social avatar h4ckernews Bot , to random
@smartperson@fosstodon.org avatar smartperson , to random

Is there anyone out there with experience with and willing to help a lost soul? I am setting up a live feed and I don't know how to debug the fact that my desktops all buffer 90% of the time while my mobile devices all work perfectly. Big newbie here.

smartperson OP ,
@smartperson@fosstodon.org avatar

@FediVideo @spielUndSpass @owncast @Hamish @Mrfunkedude maybe! I joined the Rocket.Chat got some good starting advice. I'm missing some parameters in my that might be affecting browser performance/behavior. It's worth trying out and seeing if that fixes it. If anyone can collect useful debug info from their browser, it's at http://vkmphotos.com:8080. Just turn off the audio!!

@doctormo@floss.social avatar doctormo , to random

I've set up my new website AI bot tar-baby. It works by giving everyone a chance to not fall into it.

An anchor link that says "I am a bot" and links to /tar-baby/{datetime}/ it's got a fixed position at top -100px so should never be seen

The robots.txt says "Disallow: /tar-baby/" so if you were reading the robots, you'd know.

Then logs the requests to tar-baby/ to a log of their ip-addresses and browser strings and sends them a 301 redirect to google.com

1/2

scottmeme , (edited ) to Selfhosted in Selfhosting GitLab?
@scottmeme@sh.itjust.works avatar

Incoming wall of text

Here is my install script to set up Ubuntu since it has a bit of extra steps for privileged ports
https://gitlab.meme.beer/-/snippets/1

Docker compose example, note that my config has a shared network with containers in another compose called nginx to keep traffic inside docker.

name: "gitlab"
services:
  gitlab:
    image: 'gitlab/gitlab-ce:latest'
    #command: update-permissions
    restart: always
    hostname: 'gitlab.example.com'
    environment:
      GITLAB_OMNIBUS_CONFIG: |
        external_url 'https://gitlab.example.com'

        pages_external_url 'https://pages.example.com'
        pages_nginx['enable'] = true
        pages_nginx['listen_port'] = 6000
        pages_nginx['listen_https'] = false
        pages_nginx['redirect_http_to_https'] = false

        #puma['per_worker_max_memory_mb'] = 2048 # 2GB

        gitlab_rails['gitlab_email_from'] = '[email protected]'
        gitlab_rails['gitlab_email_display_name'] = 'GitLab'
        gitlab_rails['smtp_enable'] = true
        gitlab_rails['smtp_address'] = "smtp.sendgrid.net"
        gitlab_rails['smtp_port'] = 587
        gitlab_rails['smtp_user_name'] = 'apikey'
        gitlab_rails['smtp_password'] = '$SENDGRID_API_KEY_HERE'
        gitlab_rails['smtp_domain'] = "smtp.sendgrid.net"
        gitlab_rails['smtp_authentication'] = "login"
        gitlab_rails['smtp_enable_starttls_auto'] = true
        gitlab_rails['smtp_tls'] = false

        gitlab_rails['gitlab_default_theme'] = 2

        gitlab_rails['gitlab_shell_ssh_port'] = 2224

        gitlab_rails['gitlab_default_projects_features_container_registry'] = true
        gitlab_rails['registry_enabled'] = true
        gitlab_rails['registry_api_url'] = 'https://registry.example.com'
        gitlab_rails['registry_issuer'] = 'gitlab-issuer'
        registry['log_level'] = 'info'
        registry_external_url 'https://registry.example.com'
        registry_nginx['enable'] = true
        registry_nginx['listen_port'] = 5050
        registry_nginx['listen_https'] = false
        registry_nginx['redirect_http_to_https'] = false

        gitlab_shell['log_level'] = 'INFO'
        letsencrypt['enable'] = false
        nginx['error_log_level'] = 'info'
        nginx['listen_https'] = false
        #nginx['proxy_protocol'] = true
        #nginx['trusted_proxies'] = ["10.0.0.0/8", "172.16.0.0/12", "192.168.0.0/16"]

        # Workhorse
        gitlab_workhorse['enable'] = true
        gitlab_workhorse['ha'] = false
        gitlab_workhorse['listen_network'] = "tcp"
        gitlab_workhorse['listen_addr'] = "127.0.0.1:8181"
        gitlab_workhorse['log_directory'] = "/var/log/gitlab/gitlab-workhorse"

        # Errors
	# for sentry error logging the GitLab service
        #gitlab_rails['sentry_enabled'] = true
        #gitlab_rails['sentry_dsn'] = ''
        #gitlab_rails['sentry_clientside_dsn'] = ''
        #gitlab_rails['sentry_environment'] = 'production'
        # Add any other gitlab.rb configuration here, each on its own line
    networks:
      - nginx
    ports:
      # gitlab loves https on 443
      #- '80:80'
      #- '443:443'
      - '2224:22'
    volumes:
      - ./config:/etc/gitlab
      - ./logs:/var/log/gitlab
      - ./data:/var/opt/gitlab
    shm_size: '256m'
    #deploy:
    #  resources:
    #    limits:
    #      cpus: '6'
    #      memory: 12G
    #    reservations:
    #      cpus: '4'
    #      memory: 6G
    # disable healthcheck for restoring backup
    #healthcheck:
    #  disable: true
networks:
  nginx:
    external: true
    name: nginx
@nixCraft@mastodon.social avatar nixCraft , to random