Closed. This question does not meet Stack Overflow guidelines. It is not currently accepting answers.
This question does not appear to be about a specific programming problem, a software algorithm, or software tools primarily used by programmers. If you believe the question would be on-topic on another Stack Exchange site, you can leave a comment to explain where the question may be able to be answered.
Closed 5 years ago.
Improve this question
How can I hide IP from Nmap scanning?
Thanks in advance (sorry if my English so bad)
The most popular services are: Tor, Proxy Chains and Privoxy.
If you want to prevent your IP Address from being leaked, you could use a proxy, VPN, or other service.
A proxy simply forwards your traffic through another server. There are web proxies and proxies for your whole system. Hide.Me and HMA both have web proxies. SamAir.RU has proxies that you can set up through your proxy settings. Proxies are typically free, but not as secure as VPNs.
A VPN (Virtual Private Network) sets up a secure, encrypted connection between you and another target, which your traffic is tunneled through. Some popular VPNs are PIA, ExpressVPN, NordVPN, Hotspot Shield, and VyprVPN. These all provide different costs and security, do some research before using one. Some keep IP/history logs, which kind of defeats the purpose.
You can also use other services, like Tor (The Onion Router) and FreeNet. Tor uses onion routering, or multiple layers of encryption, goes through multiple servers, etc., and has been super secure for years. However, the NSA cracked Tor and can now view people's browsing and IPs. FreeNet is similar to Tor, but hasn't been cracked by the NSA (yet).
Related
Closed. This question is not about programming or software development. It is not currently accepting answers.
This question does not appear to be about a specific programming problem, a software algorithm, or software tools primarily used by programmers. If you believe the question would be on-topic on another Stack Exchange site, you can leave a comment to explain where the question may be able to be answered.
Closed 12 days ago.
Improve this question
How can I check if website can be viewed without getting blocked by firewalls like the ones in the schools or in the public places?
I want my website to possibly be viewed from everywhere.
I have Cloudflare DNS and an SSL Certificate from Let's Encrypt
Thank you!
I don't know what to try.
I hope you have only the best intentions with this 😬
I first want to point out, that there are many different scenarios of your site to get blacklisted/blocked. Which would reach from a school blacklisting you to a government DNS blocking your website.
In contrast there would be whitelisting e.g. the school deciding that the people in their network only can view this list of websites. In this case you could do very little to be reached from this network.
To circumvent the blockage of a website it normally requires the user to get around it e.g. by using a VPN.
That said, it seems to me that for a new site it would be most effective to not get blacklisted in the first place.
Closed. This question does not meet Stack Overflow guidelines. It is not currently accepting answers.
This question does not appear to be about a specific programming problem, a software algorithm, or software tools primarily used by programmers. If you believe the question would be on-topic on another Stack Exchange site, you can leave a comment to explain where the question may be able to be answered.
Closed 11 months ago.
Improve this question
I have a web server set up at home for hosting a web site and I bought a domain from NameCheap. Now I want to connect the two together. I watched a lot of tutorials and I can see that the most popular way of registering your server is with a DNS 'A record' by connecting to my IP address. The problem is that my IP address is changing every once in a while and I am not sure if this means that I have to make my IP static. Is that possible and how do I do that? Also, is this a good way of connecting my domain to my server or is there a better way?
It's possible, there are 2 options:
Call your ISP, and ask if they offer a static IP as an option for your service (depending on where you live, this could be expensive, and not available for home connections). Then point the DNS A to your new fix IP.
Use a service like "No-IP": In this scenario you have to associate a CNAME (instead of a A Record) to a subdomain from No-IP, and they will redirect to your home dynamic IP.
Now take into account, for those 2 cases, you'll need to forward that domain to your local computer using the function of DDNS of your router, plus another settings like port forwarding.
Closed. This question does not meet Stack Overflow guidelines. It is not currently accepting answers.
This question does not appear to be about a specific programming problem, a software algorithm, or software tools primarily used by programmers. If you believe the question would be on-topic on another Stack Exchange site, you can leave a comment to explain where the question may be able to be answered.
Closed 6 years ago.
Improve this question
I am currently living at the student homes to my university. I want to set up a NAS / server to run backups, VM and some other small task. This is also something I want to set up to learn more about Linux and networking. I am currently planning how to set it up and what hardware to buy, but I want to run arch Linux on it with RAID 1. A problem I'm thinking about is that I don't have access to the router and therefore I can't set up port forwarding to connect to the server. Is there a way to get remote access to it without adjusting the settings in the router?
At my University we have the ability to connect to a vpn so we can access services only available through a specific University IP.
I haven't tested this method but I believe it could work.
Set up your services like normal and configure them to use port 80 if they need any data from the outside.
Make a script, probably available somewhere, to send you your internally ip address on e.g. mail.
That way you can use your schools VPN service to connect to the lan and from there you can access an internal ip address(your server).
This all depends on this VPN service and if you are connected to the same network.
#iporSircor commented on a method you can use. It's basically the same as what I wrote, but instead of connecting to schools VPN you will connect to your own VPN(server).
Test it out and let us know what method you used, what worked, what didn't.
And also you should talk to your school to find out if using Tor or even setting up a server on their network is allowed.
Closed. This question does not meet Stack Overflow guidelines. It is not currently accepting answers.
This question does not appear to be about a specific programming problem, a software algorithm, or software tools primarily used by programmers. If you believe the question would be on-topic on another Stack Exchange site, you can leave a comment to explain where the question may be able to be answered.
Closed 8 years ago.
Improve this question
is it possible to use transaction layer security (tls) to secure an external client/server application without modifying the code of the application itself?
Say a client application on a machine connects to several servers on several machines over an unsecured connection. I want to encrypt this connection using openssl/tls, but I can't modify neither client nor servers, but the machine configurations (linux os running underneath). I just found stunnel but it seems that it just supports a 1:1 connection.
Thanks in advance.
If you have a finite (and reasonably small) number of servers and you can configure the port number on your client for each connection, you could run stunnel on multiple ports, each one corresponding to a different destination.
However, it sounds like setting up a VPN between all these machines would be a better option. Some VPN implementations rely on TLS, but I'm not sure it would be the best choice here. You might want to investigate other methods, such as IPSec too.
Closed. This question does not meet Stack Overflow guidelines. It is not currently accepting answers.
Closed 8 years ago.
This question does not appear to be about a specific programming problem, a software algorithm, or software tools primarily used by programmers. If you believe the question would be on-topic on another Stack Exchange site, you can leave a comment to explain where the question may be able to be answered.
This question does not appear to be about programming within the scope defined in the help center.
Improve this question
I have a dedicated server running Linux.
The operating system runs the following -let's call them- components:
PostgreSQL
Access rule: Only staff (and local access of course)
Apache
Sites
Public site: Every one
Private site: Only staff
The staff reaches these components via WAN, and I'd like to know which is the best, easiest, and most flexible way to apply these Access rules (also centralized so I don't have to configure every component).
Of course the server will run much more stuff, but I think I'll manage when I'll have a solution for the above.
I thought about some ways though:
VPN: Which won't work as I have a public thing that has to be available to the world, and it seems a bit complicated to me either... I don't know
LDAP auth: This seem to be the best, but I only the definition of LDAP
What are your guesses guys?
Would you recommend any good readme to me?
VPN is your best solution. It is widely used in exactly the same scenario - Postgre and the private site are on 192.168.x.x addresses (you can configure this using virtual interfaces, e.g. eth0:0 and then tell them to listen only on this interface), the public site is on a real public IP address. When the staff connects via VPN, they also get a 192.168 IP address and have authenticated and encrypted access to all internal components - otherwise, only the public site can be accessed. If you can afford additional resources, the best solution is a de-militarized zone (http://en.wikipedia.org/wiki/DMZ_%28computing%29). There are other solutions, but none that work with Windows clients out-of-the-box.