/meta/ - im663.com Blog Questions

/meta/ - 16chan Discussion

Discussion, Feedback, and Improvement of 16chan


Name
Säge
Subject
Message

Max message length: 5000

Files

Max file size: 50.00 MB

Max files: 5

Options
Password

(used to delete files and postings)

Misc

  • Supported file types: GIF, JPG, PNG, WebM, OGG, and more
  • Remember to follow the rules

Janitor/Global Moderator/Developer applications are now open! Please email admin@16chan.xyz or message 663 on Twitter if you're interested.

• The 16chan Android App is now live! Follow the installation guide here


 [Return] [Catalog] [Bottom] [Refresh]

(46.71 KB 851x453 Screenshot_20191103_191403.png)
im663.com Blog Questions 663 Board owner 11/04/2019 (Mon) 00:15:31 No. 917
This thread is dedicated to any questions you might have about the content on im663.com.
>>917
For those interested in making their own imageboard using the LynxChan engine, I made a comprehensive writeup here: https://im663.com/
You should totally mention some basic security things like disabling password login, installing ufw to disable ports that shouldn't be exposed, and installing fail2ban. The world is a scary place, and simply typing in "lastb" on your production server shows it all. Since your guide is targeting people who are new to linux, you should totally add a link to Digital Ocean's tutorials!

>To create a restricted user and setting up ufw (18.04)
https://www.digitalocean.com/community/tutorials/initial-server-setup-with-ubuntu-18-04


>To create a restricted user, setting up ufw, disabling PasswordAuthentication (16.04)
https://www.digitalocean.com/community/tutorials/initial-server-setup-with-ubuntu-16-04

God bless digital ocean for their amazing documentation.
(55.91 KB 970x626 1570216073454.jpg)
>>919
Another thing you should add is in your nginx config, You can add rate limiting, which will prevent people from spamming your api. Lynxchan might have a method to deter this already, but I would add it just to be safe, it's a few lines that might save people from brute forcing your password and takes less than an hour to understand and setup correctly.

Read more about it here
https://docs.nginx.com/nginx/admin-guide/security-controls/controlling-access-proxied-http/
>>917
The article was written very well. If you write another article about the android app, it would be even better. If you have a video tutorial, it's better!


 [Return] [Catalog] [Top]
Delete
Report/Ban

Captcha (required for reports and bans by board staff)


no cookies?