Self-Hosted Main

502 readers

1 users here now

A place to share alternatives to popular online services that can be self-hosted without giving up privacy or locking you into a service you don't control.

For Example

Service: Dropbox - Alternative: Nextcloud
Service: Google Reader - Alternative: Tiny Tiny RSS
Service: Blogger - Alternative: WordPress

We welcome posts that include suggestions for good self-hosted alternatives to popular online services, how they are better, or how they give back control of your data. Also include hints and tips for less technical readers.

Useful Lists

Awesome-Selfhosted List of Software
Awesome-Sysadmin List of Software

founded 1 year ago

MODERATORS

communick@selfhosted.forum

Just curious about this ip (alien.top)

submitted 10 months ago by 9acca9@alien.top to c/main@selfhosted.forum

11 comments fedilink hide all child comments

what could be the reason for an amazon ip in my nginx access.log file?

3.88.16.48 - - [11/Nov/2023:19:20:07 -0300] "GET / HTTP/1.1" 200 615 "-" "Mozilla/5.0 (X11; Linux x86_64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/58.0.3029.110 Safari/537.36"

https://www.abuseipdb.com/check/3.88.16.48

top 11 comments

sorted by: hot top controversial new old

[–] multidollar@alien.top 1 points 10 months ago

I once had a Senior Infrastructure Engineer looking at the logs of our public VPN host. A VPN host that is open to the world on 0.0.0.0/0 because that's the requirement we had. This Engineer saw thousands of failed login attempts to the VPN; things like admin/admin admin/password1 etc. Regular internet crap, a bot will scrape the web page and try its luck then move on.

This person then decided to initiate security breach procedure and immediately shut down the VPN, because "we'd been hacked!".

There's a lot of noise on the internet. The challenge is working out the best way to isolate your resources just enough and block anything that doesn't need access. This is why things like Web Application Firewalls exist.

[–] 9acca9@alien.top 1 points 10 months ago

Have SSH open.

[–] RuffKez@alien.top 1 points 10 months ago

Get yourself crowdsec and the background noise of the web will be reduced in secounds

[–] sniff122@alien.top 1 points 10 months ago

It will likely be some sort of crawler

[–] autisticit@alien.top 1 points 10 months ago

There are thousands of reasons.

[–] mrbmi513@alien.top 1 points 10 months ago

Just about anyone can spin up resources in AWS and do whatever until they're caught.

[–] ndragon798@alien.top 1 points 10 months ago (1 children)

Pro tip set up user agent blocks in nginx and have it respond with a 444 it will have nginx stop responding instead of giving a 403. Block anything under chrome 100.

[–] 9acca9@alien.top 1 points 10 months ago

oh, thanks for this!

[–] djgizmo@alien.top 1 points 10 months ago

And?

[–] krisnaw@alien.top 1 points 10 months ago

You can also use the free version of cloudflare to block ddos, block traffic from certain countries, create page rules etc

[–] phein4242@alien.top 1 points 10 months ago

You will be in for a surprise once you learn about tcpdump ;-) Welcome to internet hosting!