[-] Ooops@feddit.org 1 points 1 minute ago

"Erst nach Bestätigung über den Link in der E-Mail können Ihre Antworten in die Auswertung einfließen. Wir nutzen Ihre E-Mail-Adresse lediglich zur Bestätigung Ihrer Antworten und löschen sie nach Abschluss der Konsultation."

Also genau so wie ich in dem Moment, wo ich die Bestätigungsmail erhalten hab... 👍

[-] Ooops@feddit.org 2 points 13 minutes ago* (last edited 11 minutes ago)

"Close ally" my ass... Those vile creatures have no allies, and in this particular case the hatred and lots of personal insults are well documented. For a lack of concepts for normal functioning human beings -because they are none- the only thing these corrupt idiots know and understand is what lie to scream loudly at every moment of their life to get the biggest amount of power and/or money.

[-] Ooops@feddit.org 7 points 2 hours ago

You are right. I don't know what your personal definition of "security through obscurity" is as it's very obviously not matching actual reality.

[-] Ooops@feddit.org 2 points 2 hours ago

Ich weiß zwar, was 'ne Dystrophie ist, aber ich glaube niemand mag degenerative Störungen...

[-] Ooops@feddit.org 2 points 2 hours ago

Glücklicherweise... wäre ja noch schlimmer für Deutschland, wenn die Union nur das eigene Land kaputt macht, statt auch alle unsere Nachbarn mit nach unten zu ziehen.

[-] Ooops@feddit.org 4 points 15 hours ago

"Deren Kern dürfte übrigens sein, dass man den Technologiestandort Deutschland bei den Zukunftsthemen aufgibt und alles, was moderne Automobilprodukte ausmacht in China und den USA entwickelt."

Ja, klar... der Konzern, der sich seit Ewigkeiten mit Händen und Füßen gegen den offensichtlichen Fortschritt wehrt, hat stattdessen Deutschland als Problem identifiziert und will jetzt anderswo die Entwicklung der Zukunftsthemen angehen. Wer's glaubt... 😂

[-] Ooops@feddit.org 8 points 15 hours ago* (last edited 15 hours ago)

Wenn die Bevölkerung hinter dem Verbotsverfahren steht, kann die Politik nicht länger Nein sagen.

Kein Grund es nicht trotzdem zu versuchen, aber ich fürchte es werden später eine Menge Leute sehr enttäuscht sein, die an den Spruch geglaubt haben.

Erinnert sich niemand mehr an Millionen wochenlang und zeitgleich auf deutschen Straßen, um gegen den Rechtsruck zu protestieren und die folgende "Fickt euch, uns doch egal! Jetzt erst recht weiter stramm nach Rechts!"-Reaktion, die folgte?

[-] Ooops@feddit.org 56 points 15 hours ago* (last edited 15 hours ago)

There was never an actual notion of "security through obscurity". LInux runs the complete Internet and most coporate server infrastructure. That's where the actual money is.

People hallucinating that Linux is something obscure simply have no clue and confused their home desktop for real computing. Windows desktops are constantly targeted not because they are -unlike Linux- so wide-spread but because they are already insanely insecure. They are the low hanging fruit where you can cobble together some cheap shit and will still find million of PCs vulnerable. If you want to find a Linux comparison it's definitely not server or desktops but cheap IoT devices not having seen an update (or any security to speak of) for many years.

For reference: We are talking about guests in a virtual pc escaping it's container. That's not something obcure. That's basically all cloud hoster's whole business model, thus the reason Google pays a lot of money for finding such exploits.

[-] Ooops@feddit.org 6 points 21 hours ago

This whole "we can't stop screaming about our pedophile president yet are too corrupt for actual consequences, too complacent for action and too stupid to not be distracted by yet another war the moronic orange started"-shitshow gets boring after a while. And for the people directly affected by your wars it's even worse. How about you actually fix your corrupt authoritarian state or shut up and live with the failed state you are seemingly too lazy to do anything against?

[-] Ooops@feddit.org 6 points 21 hours ago* (last edited 21 hours ago)

Oh, chat control in general much more even.

But this specific vote by the parliament when they rejected to extend this bullshit chat control 1.0 temporary exception was instantly repeated within a week because the right-wing morons didn't like the result. They got the same one again, so they now cheated and introduced the same thing again via the EU commision instead, one day before the summer break when not enough parliament members were still there to reject it a third time.

[-] Ooops@feddit.org 43 points 1 day ago* (last edited 16 hours ago)

35 years ago: We should do something about climate change but it's important to see first how to do it without any effects on industry and economy.

25 years ago: We should really do something about climate change but let's evaluate the option again, or their might be an effect on the economy.

15 years ago: We now know that we don't need actually so anything. Just set climate goals, establish CO₂ trading and let the wonderful free market work its magic.

5 years ago: We should actually really increase CO₂ costs to more realistic levels but then our rich donors could feel offended so let's keep those plans with unrealistical steep increases much too late.

Now: We really need to scrap the cimate targets as CO₂ trading is finally beginning to have an effect (who would have thought?) and our stalwart rejection of any actual technology/industry not dependent on obsolete fossil fuel burning means negative effects for the economy.

10 years from now: We really, really tried (trust us... we did totally not fuck you over for benefits from our friends in the fossil fuel industry...) but seemingly action against climate change is simply impossible so let's stop trying.

PS: Also let's never talk about businesses/economy/industry that invested in a green transition, constantly criticise this insane flip-flopping, and gets also fucked over all the time. That's not the story we should hear, so the media makes sure we won't.

[-] Ooops@feddit.org 23 points 1 day ago

Petitions are useless

Protests are useless

Governments and corporations conspire to implement surveilance knowing what comes next

<-- we are here

Actual resistence

35
submitted 1 month ago by Ooops@feddit.org to c/unixporn@lemmy.world

25
submitted 3 months ago* (last edited 3 months ago) by Ooops@feddit.org to c/selfhosted@lemmy.world

As this will -thanks to me being quite clueless- be a very open question I will start with the setup:

One nginx server on an old Raspi getting ports 80 and 443 routed from the access point and serving several pages as well as some reverse proxies for other sevices.

So a (very simplified) nginx server-block that looks like this:

# serve stuff internally (without a hostname) via http
server {
	listen 80 default_server;
	http2 on;
	server_name _; 
	location / {
		proxy_pass http://localhost:5555/;
                \# that's where all actual stuff is located
	}
}
# reroute http traffic with hostname to https
server {
	listen 80;
	http2 on;
	server_name server_a.bla;
	location / {
		return 301 https://$host$request_uri;
	}
}
server {
	listen 443 ssl default_server;
	http2 on;
	server_name server_a.bla;
   	ssl_certificate     A_fullchain.pem;
    	ssl_certificate_key A_privkey.pem;
	location / {
		proxy_pass http://localhost:5555/;
	}
}
#actual content here...
server {
	listen 5555;
	http2 on;
    	root /srv/http;
	location / {
        	index index.html;
   	} 
    	location = /page1 {
		return 301 page1.html;
	}
    	location = /page2 {
		return 301 page2.html;
	}
        #reverse proxy for an example webdav server 
	location /dav/ {
		proxy_pass        http://localhost:6666/;
	}
}

Which works well.

And intuitively it looked like putting Anubis into the chain should be simple. Just point the proxy_pass (and the required headers) in the "port 443"-section to Anubis and set it to pass along to localhost:5555 again.

Which really worked just as expected... but only for server_a.bla, server_a.bla/page1 or server_a.bla/page2.

server_a.bla/dav just hangs and hangs, to then time out, seemingly trying to open server_a.bla:6666/dav.

So long story short...

How does proxy_pass actually work that the first setup works, yet the second breaks? How does a call for localhost:6666 (already behind earlier proxy passes in both cases) somehow end up querying the hostname instead?

And what do I need to configure -or what information/header do I need to pass on- to keep the internal communication intact?

view more: next ›

Ooops

0 post score
0 comment score
joined 2 years ago