top | item 46457546

(no title)

robertcope | 2 months ago

Security. I host personal sites on Linodes and other external servers. There are no inbound ports open to the world. Everything is accessed via Cloudflare Tunnels and locked down via their Zero Trust services. I find this useful and good, as I don't really want to have to develop my personal services to the point where I'd consider them hardened for public internet access.

discuss

h33t-l4x0r|1 month ago

Not even ssh? What happens if cloudflare goes down?

c0balt|1 month ago

Not oc, but services like Linode often offer "console" access via a virtualized tty for VPS systems.

Having a local backup user is a viable backup path then. If you wire up pam enough you can even use MFA for local login.

robertcope|1 month ago

Then I log in to Linode or whatever and open a hole up in the firewall. That's easy. But Cloudflare rarely goes down, not really something I worry about.

nwellinghoff|1 month ago

You could restrict the ssh port by ip as well.