A general purpose HTTP reverse proxy and forwarding tool. Now written in Go!
did a thing!
Big problem in #selfhosting is making sure you've set things up right: #dns resolution, #ports, rev/ #proxy. _Sometimes_ its helpful to query _from the outside_ of your local network.
`canuseeme` - a single binary #webservice that will query the URI you give it and see if its reachable by randos/services on the internet. A bit like a #webproxy, but can exercise it programmatically, and not limited to HTTP/S ports.
Setting up Nginx Proxy Manager was easier than I thought! A few hurdles at first (longer blog post in the works) but I got it all working without much issue.
I am seeing things timeout every now and then but it seems a common problem so hopefully I can get that fixed.
One of things I suffer on #FreeBSD using an #Iranian connection, is that all package mirrors are terribly slow.
Currently, as a workaround, I'm using #proxychains with the FreeBSD package manager. Unfortunately, setting a SOCKS5 #proxy through pkg.conf does not seem to work.
Using a proxy or a #VPN is not a big deal for a typical developer based in #Iran. But it's the first time I have to change IP(and route) to properly use an OS's first class package manager.
Maybe I could host a mirror for Iranians if FreeBSD stays as my main OS. Tho I don't see much point with only myself being the FreeBSD user in here.
@torproject same with #obfs4 bridges: there is no option to say like ports=80,443 or similar, which makes it cumbersome to get said bridges.
And trying to get places to #DontBlockTor that criminalize the use of #Tor is foolish at best.
This afternoon, I got close to what I wanted to achieve in terms of load-balancing between the two #AI #sabots I have running.
I had originally planned to use #OpenBSD's #OpenHTTPD or #RelayD to do the job, but #HAProxy #PROXY protocol was the limiting factor… so I went #nginx instead.
One thing I haven't worked out yet, is how to pass the client IP by PROXY protocol to a HTTP back-end. Seems I can do it for a generic TCP stream, but not HTTP.
The alternative is to set X-Forwarded-For, and have the back-ends trust it, like they trust PROXY for the gateway's IPv4 address for #sniproxy.
But… it works, you can hit https://sabot.vk4msl.com/ and you'll either get sabot01 (which uses nepenthes) or sabot02 (which uses iocaine). Since neither cares about the URI, I can bounce the client between them.
This did get me thinking though, if enough of us did it, we could have a #AISabotAsAService for websites to redirect/link to when they think they're being scraped by an AI bot.
We could provide a pool of servers that would provide the link maze. Front-end proxies would just bounce you between all the pool members, feeding your bot nonsense.
#Go Module Mirror served #backdoor to devs for 3+ years
A mirror #proxy #Google runs on behalf of developers of the Go programming language pushed a backdoored package for more than three years until Monday, after researchers who spotted the malicious code petitioned for it to be taken down twice.
#security
@TheDoctor512 @steampixel noice.
Idealerweise per #burp nen #MITM-#Proxy reinknallen und dessen Zertifikate in den Speicher des Smartphones/Tablets importieren?
Ich frage mich jetzt schon länger was 2025 die Vor- und Nachteile eines "Secure Web Gateway" sind?
Ein SWG ist ein (Forward) Proxy mit zusätzlichen Sicherheitsfeatures. Darunter z.B.:
- TLS-Interception
- Datei-Zerlegung
- URL Filtering
- AV-Scanning
- MIME Erkennung
- Datenverkehrmanipulation
Ein Download einer schädlichen Datei über einen E2E verschlüsselten Cloud-Anbieter (z.B. MEGA oder Filen) würde das alles aushebeln.
Aber um "Grundrauschen" abzufangen?!
@tauon Also what goid is an encryption like @signalapp is you don't have #SelfCustody of all the keys?
I can setup over a dozen #TechIlliterates 1:1 with #XMPP accounts and #monoclesChat & @gajim / #gajim in the time it takes me to get a #nonKYC #eSIM from overseas with a phone number as mandated by @signalapp and maintaining that number for #Signal will easily cost like $2,50 p.m. at minimum.
In fact even legitimately acquiring and registering a #Prepaid #SIM in-store in #Germany takes longer than setting up #Fdroid & monocles chat & a XMPP account whilst on throttled #EDGEland speeds...
@wmd @miqokin I've yet to find a nation that criminalizes @torproject but not #VPN|s that facilitate the same...
Whereas #Tor has multiple ways to circumvent #InternetCensorship, includibg multiple #proxy & 9bfuscation systems like #obfs4, #meek, #webtunnel and regular #TorBridges on included, public query-able amd private lists...
Is there a #WebServer or #proxy that can:
* serve a file from a local disk; if missing
* try to get the file via #http from another server; if can't contact promptly (say, 1s)
* try to get the file via http from a third #server
Context: I want to serve slippy map tiles. These can already be rendered (local file), rendered by a fast but possibly not present computer (my laptop), or by the server it self (which is 7y older and has 1/4th of the RAM and possibly not all data will be on the SSD).
@bagder Problem with that is (besides occasional bugfixes), most people including myself would see #curl to be functionally complete and anything "nice to have" would be considered not worth the balooning in #complexity and #size.
I mean, does curl need to be able to do #BitTorrent (magnet:), #IPFS (ipfs://) or god forbid #blockchain (i.e. #EVM) support?
Do you really want to integrate @torproject / #Tor support natively into curl when using #HTTP (localhost:8118) and #SOCKS5 (localhost:9050) #proxy allows for the same and doesn't necessitate having to handle and ingest Tor arguments as well??
In fact if #toybox didn't have a #wget implementation that I could use for OS/1337 I would've merely chosen tiny-curl -o as a global alias or if #tinycurl wasn't an option, curl -o instead.
RightToPrivacy & Tech Tips 
tor support built-in will go and IDK make i.e. #neocurl or sth. along those lines or build something like #ethcurl or #torcurlor #ipfscurl or whatever...That being said I am glad curl isn't solely maintained by you but has other contributors (give them a shoutout!) but I also am glad you maintain that vital software that most "#TechIlliterate #Normies" most likely never heard of but propably use on a daily basis as part of all the #tech they use to #consume media with...
curl is more than just a downloader and more intuitive than vim) with wget being "the #vi of downloaders" (tho wget is even simpler to use than vi)...Either way, curl is awesome...
#Cloudflare Must Block 'Piracy Shield' #Domains and IP Addresses Across its Service * TorrentFreak
The order, which applies in #Italy , affects Cloudflare's #CDN , #DNSresolver , #WARP and #proxy services. It also includes a broad data disclosure section.
#dns #security #privacy #piracyshield
@MatthiaMach ich dachte schon an nen #Snowflake-#Proxy-#Botnet welches Leute ranked wievielen anderen diese ins Interwebz helfen konnten!
A modern competitor to #OperaMini with:
Why?
OFC since #Opera #Mini needs a trustworthy proxy backend any "#clone" would need an #OpenSource'd & #SelfHosting-capable #backend (similar to @ActionRetro 's #FrogFind .com as it breaks #E2EE.
Needless to say it would be a godsent for anyone stuck on #EDGEland and slower speeds (i.e. #SATCOM like #Iridium)...
I created a .js file containing the following, then just configured FireFox to point to this file in the "Automatic proxy configuration URL" using 'file:///'.
This will proxy everything related to youtube or google. Well, at least most things since google use so many different hosts for various content. This works and is a good start.
Thanks to @HeNeArXn !
