Just released: #swad v0.3!

https://github.com/Zirias/swad/releases/tag/v0.3

swad is the "Simple Web Authentication Daemon", your tiny, efficient and (almost) dependency-free solution to add #cookie + login #form #authentication to whatever your #reverse #proxy offers. It's written in pure #C, portable across #POSIX platforms. It's designed with #nginx' 'auth_request' in mind, example configurations are included.

This release brings a file-based credential checker in addition to the already existing one using #PAM. Also lots of improvements, see details in the release notes.

I finally added complete build instructions to the README.md:

https://github.com/Zirias/swad

And there's more documentation available: manpages as well as a fully commented example configuration file.

Je suis pas un gros "viewer" sur Twitch, mais quand je peux, je regarde #Proxy d'@arretsurimages.

Là, suis dèg', j'ai raté celui du 1er avril en live, mais on le peut voir replay.

Ça parle du rapport sur la pub qui a fuité après avoir "calé une table" quelques mois dans le bureau du 1er ministre.

J'aime bien que @lorisguemart rappelle, à chaque fois qu'il aborde l'ARPP, que c'est une association et pas une "Autorité" .

(c'est d'ailleurs rappelé dans ledit rapport)

https://www.arretsurimages.net/articles/climat-un-rapport-explosif-veut-interdire-des-pubs-les-medias-peu-interesses

#PgDog is a #network #proxy and it can see every byte sent between #Postgres and the clients. It understands #SQL and can infer where queries should go, without requiring changes to application code. In this article, we discuss how we handle the Postgres wire protocol and manipulate it to serve queries to multiple databases at the same time. https://pgdog.dev/blog/hacking-postgres-wire-protocol

The developers of the mitmproxy tool describe it as the Swiss army knife for debugging, testing, data protection analysis, and penetration testing HTTP(S) connections. Holger Reibold shows you how mitmproxy can be a useful addition to your security toolbox.
https://www.admin-magazine.com/Archive/2025/85/Traffic-analysis-with-mitmproxy?utm_source=mlm
#OpenSource #mitmproxy #debugging #testing #security #proxy #MITM

#GoAccess pour les journaux #Nginx #Proxy Manager passe en version 1.1.35
https://github.com/xavier-hernandez/goaccess-for-nginxproxymanager

Just released: #swad v0.2

SWAD is the "Simple Web Authentication Daemon", meant to add #cookie #authentication with a simple #login form and configurable credential checker modules to a reverse #proxy supporting to delegate authentication to a backend service, like e.g. #nginx' "auth_request". It's a very small piece of software written in pure #C with as little external dependencies as possible. It requires some #POSIX (or "almost POSIX", like #Linux, #FreeBSD, ...) environment, OpenSSL (or LibreSSL) for TLS and zlib for response compression.

Currently, the only credential checker module available offers #PAM authentication, more modules will come in later releases.

swad 0.2 brings a few bugfixes and improvements, especially helping with security by rate-limiting the creation of new sessions as well as failed login attempts. Read details and grab it here:

https://github.com/Zirias/swad/releases/tag/v0.2

New blog post

𝐂𝐨𝐧𝐟𝐢𝐠𝐮𝐫𝐢𝐧𝐠 𝐀𝐒𝐏.𝐍𝐄𝐓 𝐂𝐨𝐫𝐞 𝐅𝐨𝐫𝐰𝐚𝐫𝐝𝐞𝐝 𝐇𝐞𝐚𝐝𝐞𝐫𝐬 𝐌𝐢𝐝𝐝𝐥𝐞𝐰𝐚𝐫𝐞

Running ASP.NET Core behind a proxy?

Then you need to configure ForwardedHeadersMiddleware the right way.
Trust proxy IPs
Handle X-Forwarded-* headers
Avoid broken IPs, schemes & hosts

Read it https://nestenius.se/net/configuring-asp-net-core-forwarded-headers-middleware/

Zxc – Rust TLS proxy with tmux and Vim as UI, BurpSuite alternative

https://github.com/hail-hydrant/zxc

did a thing!

Big problem in #selfhosting is making sure you've set things up right: #dns resolution, #ports, rev/ #proxy. _Sometimes_ its helpful to query _from the outside_ of your local network.

`canuseeme` - a single binary #webservice that will query the URI you give it and see if its reachable by randos/services on the internet. A bit like a #webproxy, but can exercise it programmatically, and not limited to HTTP/S ports.

https://github.com/tezoatlipoca/canuseeme

Concorso 2025 - Ambiente Proxy per secondarie di secondo grado

https://peertube.uno/videos/watch/1cdaa3f8-3a83-4789-984f-2ddfac6897b1

Important study @science.org Advances Showing sediment records of past #tropical #cyclone activity. These types of #proxy records are incredibly important for our understanding of the impact of #climatechange on #extreme weather.
https://www.science.org/doi/10.1126/sciadv.ads5624

GitHub - fatedier/frp: A fast reverse proxy to help you expose a local server behind a NAT or firewall to the internet. https://github.com/fatedier/frp #OpenSource #firewall #internet #forward #reverse #service #GitHub #golang #https #proxy #http #port #nat #tcp #udp

Setting up Nginx Proxy Manager was easier than I thought! A few hurdles at first (longer blog post in the works) but I got it all working without much issue.

I am seeing things timeout every now and then but it seems a common problem so hopefully I can get that fixed.

One of things I suffer on #FreeBSD using an #Iranian connection, is that all package mirrors are terribly slow.

Currently, as a workaround, I'm using #proxychains with the FreeBSD package manager. Unfortunately, setting a SOCKS5 #proxy through pkg.conf does not seem to work.

Using a proxy or a #VPN is not a big deal for a typical developer based in #Iran. But it's the first time I have to change IP(and route) to properly use an OS's first class package manager.

Maybe I could host a mirror for Iranians if FreeBSD stays as my main OS. Tho I don't see much point with only myself being the FreeBSD user in here.

Och ffs ey. Ich will #Seafile in #Docker mit einem #apache-#Proxy in einer #virtuellenMaschine installieren (weil ich das Testen will und nur Chuck Norris in Prod testet). Warum geht das nicht wenigstens halbwegs out-of-the-box?

Auch ohne den apache-Proxy klappt das nicht. (Edit: da spielt ja jetzt immer noch ein #caddy mit rum, bei dem nicht dokumentiert ist, ob ich ihn wirklich brauche, wenn hinter apache, oder wie da die Einstellungen sein müssen.)