Message from @Goz3rr | DiscordLeaks

Security Advisory: Links in messages may lead to maliciously operated websites that could track your IP address and reveal your identity, or they may contain harmful files. The DiscordLeaks team does not check links and cannot make any statements about the safety of following these links.

Some ways to protect yourself are:

Do not open files downloaded from links, and do not run any programs that try to download themselves to your computer.
Follow safe browsing practices including JavaScript blockers like NoScript.
Use anonymization measures such as Tor Browser or a VPN.

If you are using the Privacy Badger or other privacy extensions, you may need to whitelist Discord and related domains in order for the images to load.

Message from @Goz3rr

Discord ID: 528562031486304266

2018-12-29 13:08:30 UTC

No worries. I'm just trying to avoid that hour long trawl through the MDL forums that I always end up doing, I'll suck it up and stop being lazy.

2018-12-29 13:10:43 UTC

@Goz3rr from what I understand, for using a srv record, the service would need to be discoverable already

2018-12-29 13:10:58 UTC

which isn't if my IP is internal

2018-12-29 13:11:01 UTC

I never used AWS so I'm not familiar with what they do, but on azure they just open up different ports

2018-12-29 13:11:04 UTC

reading what AWS does now

2018-12-29 13:11:06 UTC

I can't set 10.10.10.1 as a target

2018-12-29 13:11:16 UTC

but it looks like they use a ssh server on the host as a proxy

2018-12-29 13:11:19 UTC

oh I tried to find that out, too

2018-12-29 13:13:36 UTC

you can uh

2018-12-29 13:13:41 UTC

set up one ssh server as a gateway

2018-12-29 13:13:47 UTC

that redirects based on key

2018-12-29 13:13:54 UTC

because the protocol doesn't actually send the hostname

2018-12-29 13:14:05 UTC

the key thing is a good idea though

2018-12-29 13:14:32 UTC

http://quark.humbug.org.au/publications/ssh/ssh-tricks.html

2018-12-29 13:14:36 UTC

the first paragraph here

2018-12-29 13:15:08 UTC

that looks like what I want to do

2018-12-29 13:15:12 UTC

I'll try that out

2018-12-29 13:15:35 UTC

if it works I can make a nice script to deploy the keys and it's good to go

2018-12-29 13:16:02 UTC

then there is always the overkill "traefik" setup

2018-12-29 13:16:33 UTC

yes but that's also just http

2018-12-29 13:16:48 UTC

alternatively most ssh clients support jumphosts

2018-12-29 13:16:59 UTC

so you ssh in to your host, and then it runs the ssh command to ssh into the instance you want

2018-12-29 13:17:12 UTC

jumphosts are what I am using now but I spend a few hours / week explaining people how to use jumphosts

2018-12-29 13:17:14 UTC

really ? i always thought traefik can do almost anyhting on packets you want

2018-12-29 13:17:29 UTC

ah

2018-12-29 13:17:59 UTC

our girl @小機器豬 for example is hosted on one of such VMs

2018-12-29 13:20:02 UTC

cant you specify what port goes to what port on vm on traefik ?

2018-12-29 13:20:13 UTC

yes but only for http services

2018-12-29 13:20:14 UTC

should that just clear your headache with ssh etc

2018-12-29 13:20:44 UTC

```@tbouvet as mentioned in the README, Traefik is an http (only) reverse proxy, then the answer is no. We want to add TCP support in the future, you can follow this issue #10.```

2018-12-29 13:20:47 UTC

https://github.com/containous/traefik/issues/1611

2018-12-29 13:20:51 UTC

really traefik is just http

2018-12-29 13:21:03 UTC

TIL

2018-12-29 13:23:22 UTC

so ? https://docs.nginx.com/nginx/admin-guide/load-balancer/tcp-udp-load-balancer/

2018-12-29 13:23:25 UTC

to help ?

2018-12-29 13:24:00 UTC

actualy im quite suprised there is no "easy to use" tool for this

2018-12-29 13:24:41 UTC

let me check that out, nginx is actually quite easy to use

2018-12-29 13:24:51 UTC

a reverse proxy is 5 lines of configuration but I though it's also just http

2018-12-29 13:25:14 UTC

maybe I can actually abuse nginx load balancer for that

2018-12-29 13:58:12 UTC

@Droidbot why are you lecturing me about it? I know all of this. I still stand by my conviction that "getting rid of most of it != getting rid of it"

2018-12-29 13:58:24 UTC

ergo, coreboot does not get rid of ME