Conversation

Notices

1. Embed this notice
   Alex Gleason (alex@gleasonator.com)'s status on Wednesday, 15-Mar-2023 09:17:14 JST Alex Gleason

   A good reminder to force everything through Cloudflare. Don’t tell me Cloudflare is bad or I’ll stab you. ?

   ufw default deny incoming ufw default allow outgoing ufw allow ssh ufw enable ufw allow from 173.245.48.0/20 to any port 80 ufw allow from 103.21.244.0/22 to any port 80 ufw allow from 103.22.200.0/22 to any port 80 ufw allow from 103.31.4.0/22 to any port 80 ufw allow from 141.101.64.0/18 to any port 80 ufw allow from 108.162.192.0/18 to any port 80 ufw allow from 190.93.240.0/20 to any port 80 ufw allow from 188.114.96.0/20 to any port 80 ufw allow from 197.234.240.0/22 to any port 80 ufw allow from 198.41.128.0/17 to any port 80 ufw allow from 162.158.0.0/15 to any port 80 ufw allow from 172.64.0.0/13 to any port 80 ufw allow from 131.0.72.0/22 to any port 80 ufw allow from 104.16.0.0/13 to any port 80 ufw allow from 104.24.0.0/14 to any port 80 ufw allow from 2400:cb00::/32 to any port 80 ufw allow from 2606:4700::/32 to any port 80 ufw allow from 2803:f800::/32 to any port 80 ufw allow from 2405:b500::/32 to any port 80 ufw allow from 2405:8100::/32 to any port 80 ufw allow from 2a06:98c0::/29 to any port 80 ufw allow from 2c0f:f248::/32 to any port 80 ufw allow from 173.245.48.0/20 to any port 443 ufw allow from 103.21.244.0/22 to any port 443 ufw allow from 103.22.200.0/22 to any port 443 ufw allow from 103.31.4.0/22 to any port 443 ufw allow from 141.101.64.0/18 to any port 443 ufw allow from 108.162.192.0/18 to any port 443 ufw allow from 190.93.240.0/20 to any port 443 ufw allow from 188.114.96.0/20 to any port 443 ufw allow from 197.234.240.0/22 to any port 443 ufw allow from 198.41.128.0/17 to any port 443 ufw allow from 162.158.0.0/15 to any port 443 ufw allow from 172.64.0.0/13 to any port 443 ufw allow from 131.0.72.0/22 to any port 443 ufw allow from 104.16.0.0/13 to any port 443 ufw allow from 104.24.0.0/14 to any port 443 ufw allow from 2400:cb00::/32 to any port 443 ufw allow from 2606:4700::/32 to any port 443 ufw allow from 2803:f800::/32 to any port 443 ufw allow from 2405:b500::/32 to any port 443 ufw allow from 2405:8100::/32 to any port 443 ufw allow from 2a06:98c0::/29 to any port 443 ufw allow from 2c0f:f248::/32 to any port 443
   • Embed this notice
     fiatjaf (3bf0c63fcb93463407af97a5e5ee64fa883d107ef9e558472c4eb9aaaefa459d@mostr.pub)'s status on Wednesday, 15-Mar-2023 09:53:21 JST fiatjaf

     in reply to
     Very decentralized.
     Alex Gleason likes this.
   • Embed this notice
     Alex Gleason (alex@gleasonator.com)'s status on Wednesday, 15-Mar-2023 10:44:25 JST Alex Gleason

     in reply to

     • fiatjaf

     @3bf0c63fcb93463407af97a5e5ee64fa883d107ef9e558472c4eb9aaaefa459d Don’t worry, we’re gonna rewrite Cloudflare open source.

   • Embed this notice
     Fediverse Contractor (bot@seal.cafe)'s status on Wednesday, 15-Mar-2023 10:45:16 JST Fediverse Contractor

     in reply to

     • fiatjaf
     Seems fake.
   • Embed this notice
     realcaseyrollins ✝️ (realcaseyrollins@social.teci.world)'s status on Wednesday, 15-Mar-2023 10:48:23 JST realcaseyrollins ✝️

     in reply to

     • fiatjaf
     @alex @3bf0c63fcb93463407af97a5e5ee64fa883d107ef9e558472c4eb9aaaefa459d Somebody has to
     Alex Gleason likes this.
   • Embed this notice
     PunishedD (punishedd@poa.st)'s status on Wednesday, 15-Mar-2023 10:49:01 JST PunishedD

     in reply to

     • Stephanie Bustcakes
     @Stephanie_Bustcakes @alex 3 days of the Farms getting DDOSed and nobody even noticed, until Josh said so today. KiwiFlare wins.
     Alex Gleason likes this.
   • Embed this notice
     Stephanie Bustcakes (stephanie_bustcakes@poa.st)'s status on Wednesday, 15-Mar-2023 10:49:03 JST Stephanie Bustcakes

     in reply to
     @alex ? flare 4ever
   • Embed this notice
     Alex Gleason (alex@gleasonator.com)'s status on Wednesday, 15-Mar-2023 10:49:44 JST Alex Gleason

     in reply to

     • josh
     • PunishedD
     • Stephanie Bustcakes

     @PunishedD @Stephanie_Bustcakes I wonder how @josh did it. ?

   • Embed this notice
     msilvya (msilvya@gleasonator.com)'s status on Wednesday, 15-Mar-2023 12:11:49 JST msilvya

     in reply to
     @alex Is this only for Mostr? Or for us owners too? *ahem*
   • Embed this notice
     Alex Gleason (alex@gleasonator.com)'s status on Wednesday, 15-Mar-2023 12:11:49 JST Alex Gleason

     in reply to

     • msilvya

     @msilvya If you’re using Cloudflare, it’s a good idea to firewall everything that isn’t Cloudflare.

   • Embed this notice
     SheistyPenguin (sheistypenguin@poa.st)'s status on Wednesday, 15-Mar-2023 12:50:56 JST SheistyPenguin

     in reply to

     • josh
     • PunishedD
     • Stephanie Bustcakes
     @alex
     According to his kiwifarms thread about it, it's a custom implementation of haproxy-protection. Maybe using some kind of proof-of-work or other hueristics to stump the bots?
     
     gitgud.io/fatchan/haproxy-protection/
     
     kiwifarms.net/threads/kiwiflare.147312/
     @PunishedD @Stephanie_Bustcakes @josh
     Alex Gleason likes this.
   • Embed this notice
     PunishedD (punishedd@poa.st)'s status on Wednesday, 15-Mar-2023 12:51:22 JST PunishedD

     in reply to

     • josh
     • SheistyPenguin
     • Stephanie Bustcakes
     @SheistyPenguin @alex @Stephanie_Bustcakes @josh It's proof-of-work, modified to work across the multiple front end servers KF has in rotation. It also handles multiple tabs, and the token works on the browser instead of IP so it's not tripped by VPN.
     Alex Gleason likes this.