I use Zip Bombs to Protect my Server
Bots be warned By Ibrahim Diallo
Published Apr 17 2025 ~ 5 minutes read
The majority of the traffic on the web is from bots. For the most part, these bots are used to discover new content. These are RSS Feed readers, search engines crawling your content, or nowadays AI bots crawling content to power LLMs. But then there are the malicious bots. These are from spammers, content scrapers or hackers. At my old employer, a bot discovered a wordpress vulnerability and inserted a malicious script into our server. It then turned the machine into a botnet used for DDOS. One of my first websites was yanked off of Google search entirely due to bots generating spam. At some point, I had to find a way to protect myself from these bots. That's when I started using zip bombs.
ClickHouse Keeper: A ZooKeeper alternative written in C++
Tom Schreiber and Derek Chia
Sep 27, 2023 - 21 minutes read
Introduction
ClickHouse is the fastest and most resource-efficient open-source database for real-time applications and analytics. As one of its components, ClickHouse Keeper is a fast, more resource-efficient, and feature-rich alternative to ZooKeeper. This open-source component provides a highly reliable metadata store, as well as coordination and synchronization mechanisms. It was originally developed for use with ClickHouse when it is deployed as a distributed system in a self-managed setup or a hosted offering like CloudHouse Cloud. However, we believe that the broader community can benefit from this project in additional use cases.
Lychee 6 - Une alternative open source à Google Photos
Le 11 mai 2025
par Korben ✨ -
DeveloppementOpen-SourceGoogle Photos, c’est super pratique, mais est ce vraiment bien raisonnable de confier 15 ans de souvenirs à une entreprise américaine en ce moment ? Surtout qu’ils changent de conditions d’utilisations encore plus souvent que vous ne changez de slip, c’est dire !! (parce oui, vous n’en changez pas assez souvent.)
Mycoria
Mycoria is an open and secure overlay network that connects all participants. It values freedom of connectivity and aims to imitate the curious and adventurous spirit of the early Internet:
Anubis
Weigh the soul of incoming HTTP requests using proof-of-work to stop AI crawlers
LearnDMARC - Testez et comprenez la sécurité de votre serveur mail en 2 minutes
Le 10 avril 2025
par Korben ✨ -
Internet-ReseauxCloudConfigurer un serveur mail c’est vraiment un truc bien relou. Surtout qu’aujourd’hui, ça ne se fait plus comme en 1997… ça a bien évolué avec des nouveaux concepts liés à la sécurité comme SPF, DKIM ou encore DMARC. Et sans ces protections, c’est open bar pour les criminels qui peuvent envoyer des emails en se faisant passer pour vous. Flippant, non?
Perso, pendant longtemps je n’y comprenais pas grand chose jusqu’à ce que je découvre LearnDMARC. Ce site, créé il y a 3 mois, est une petite pépite qui permet de visualiser et comprendre comment fonctionnent réellement ces protocoles de sécurité email. L’interface est intuitive et montre en temps réel comment les serveurs communiquent quand vous envoyez un message.
rstun
A TCP/UDP tunnel over QUIC written in Rust.
rstun is a high-performance TCP/UDP tunneling solution. It leverages the Quinn library for QUIC transport, ensuring efficient, low-latency bidirectional communication, secured by QUIC’s integrated TLS layer.
Key Features
Bidirectional TCP and UDP communication over a single QUIC tunnel.
Encryption provided by QUIC’s inherent TLS layer.
Self-Hosting A Cluster On Old Phones
1 Comment
by: Bryan Cockfield April 9, 2025
The phones most of us carry around in our pockets every
A simple, yet
powerful dashboard
for your server.
A sleek, modern dashboard that puts all of your apps and services at your fingertips. Control everything in one convenient location. Seamlessly integrates with the apps you've added, providing you with valuable information.
a regarder pour plus tard
Longhorn delivers simplified, easy to deploy and upgrade, 100% open source, cloud-native persistent block storage without the cost overhead of open core or proprietary alternatives.
Dufs is a distinctive utility file server that supports static serving, uploading, searching, accessing control, webdav...
demo
Features
Serve static files
Download folder as zip file
Upload files and folders (Drag & Drop)
Create/Edit/Search files
Resumable/partial uploads/downloads
Access control
Support https
Support webdav
Easy to use with curl
(pour configurer wallabag)
chatgpt me dit:
# (English comment: Modified to use quadlets integration instead of deprecated 'podman generate systemd')
[Unit]
Description=Podman container %i
After=network-online.target
Wants=network-online.target
[Service]
Restart=always
# (English comment: Run container with systemd integration via '--systemd=always')
ExecStart=/usr/bin/podman run --rm --systemd=always --name %i your-image
ExecStop=/usr/bin/podman stop %i
KillMode=none
[Install]
WantedBy=multi-user.targetlacez ce fichier dans /etc/systemd/system/container-%i.service, puis activez-le par :
# (English comment: Enable and start the container service)
systemctl enable --now container-yourname.serviceCette méthode vous offre une intégration native avec systemd via les Quadlets.
mais je ne vois pas le rapport pour l'instant
remplaçant dropbox, install & forget