Hey guys, hope you are doing great
I am about to set up a domain to use on the Onion network, I already have the domain name and the Apache and database set up. However, because this is going to be on my own network I want to try to be as safe as possible.
Measures I’m taking are:
A Linux OS => behind a WAF => on it’s own VLAN => with VPN (Proton) => and then Tor.
That is basically how I picture the setup.
No dynamic content nor JavaScript will run on the site.
The intention is to avoid anyone from figuring out where I am, AND to keep the site safe from attacks to the best of my abilities.
What are your opinion on this?
Sorry for any spel errors, english is not my language, I checked but you never know.
Hey Danus, thanks for the suggestion. I’m not on the discord server, I’m not a fan of discord, I don’t like it.
It’s ok if people don’t reply, just wanted some feedback that’s all.
I’ll be going with it regardless.
You just need to check the access log time by time and if it not a PHP/Python WebApp
you don’t need to be scared at all ! and there is some bots that do random attacks don’t be scared of it (you’ll notice these attacks in the access log) most of it uses old bugs or whatever …
@yeezi, I understand why you say that. However, I need to right now, and I don’t trust a vps or anything I can’t get my hands on at any time. It was a possibility tho, to run it on some vps provider, but I prefer my data close by.
Good tip @DamaneDz, I’ll configure some alarms and specify to show scans and/or non http(s) trafic on a diferent monitor window. That’ll help to keep things clear.
