12

I know there was a ddos attack a while back, but it would be nice to access and be able to log in to this site again using Tails/Tor without giving location away. Using a VPN after Tor on Tails is a security risk and is difficult to figure out how to install on Tails for most people. Beginning with it's creation and right up to the attack, Tor exit nodes weren't blocked. Now they still are. Opening it up again might increase the userbase. Using sites like proxysite.com via Tor only works to read posts here about 1 out of 10 attempts and never allows log ins here.

you are viewing a single comment's thread
view the rest of the comments
[-] admin@monero.town 9 points 3 days ago

The site is still being attacked. Biggest issue is the lemmy-ui crashing under the load, the server itself could just about handle it. I've talked to Digilol who I'll likely hire to move town to a new server and set up proper .onion support but the current server is still pre-paid for 200 more days and even after the move it's still possible that the lemmy-ui would go down anyways :/

[-] Grapes@reddthat.com 1 points 1 day ago

Tor introduced native DDoS protection for onion services using a transparent Proof-of-Work defense over a year ago: https://blog.torproject.org/introducing-proof-of-work-defense-for-onion-services/

You should strongly consider making the switch and turning on this feature. I was very surprised to find that this instance was being Cloudflare blocked. Maybe we could help with funding if needed.

[-] admin@monero.town 2 points 10 hours ago

The DDoS comes from exit nodes via clearnet so Tor PoW doesn't work, most likely there will be a total server migration at some point that adds tor support with pow and a tor friendly frontend.

[-] Grapes@reddthat.com 2 points 5 hours ago

Yes. I think what I wanted to say is you can set up Tor PoW for an onion in addition to currently using Cloudflare for clearnet, but sounds like that will be part of the server migration rather than happening now. Thanks for the response.

[-] ksilverstein@monero.town 2 points 2 days ago

Thanks for the update. https://lemmy.cafe/c/monero doesn't block Tor, but no one ever posts there except rottenwheel.

[-] nutomic@lemmy.ml 4 points 3 days ago

Did you try to setup caching? That could reduce server load a lot.

https://github.com/LemmyNet/lemmy-ansible/issues/195

[-] admin@monero.town 3 points 3 days ago

Is this on by default after v1.5.0?

[-] nutomic@lemmy.ml 3 points 3 days ago

If you install with ansible it should be included by default. You can check if your nginx config contains the cache lines. There is also a line you can uncomment to see the cache status with each request.

https://github.com/LemmyNet/lemmy-ansible/blob/main/templates/nginx.conf#L71

[-] admin@monero.town 2 points 3 days ago

I'll have a look, thank you!

Have you considered trying another frontend instead of lemmy-ui?

[-] admin@monero.town 3 points 3 days ago

I've looked into alexandrite and photon before but to be honest, the install is quite messy since I didn't really know what I was doing back then. Makes it pretty hard to figure out how to properly set these up and I'd rather start over on a new server.

this post was submitted on 19 Nov 2024
12 points (92.9% liked)

Monero

1686 readers
16 users here now

This is the lemmy community of Monero (XMR), a secure, private, untraceable currency that is open-source and freely available to all.

GitHub

StackExchange

Twitter

Wallets

Desktop (CLI, GUI)

Desktop (Feather)

Mac & Linux (Cake Wallet)

Web (MyMonero)

Android (Monerujo)

Android (MyMonero)

Android (Cake Wallet) / (Monero.com)

Android (Stack Wallet)

iOS (MyMonero)

iOS (Cake Wallet) / (Monero.com)

iOS (Stack Wallet)

iOS (Edge Wallet)

Instance tags for discoverability:

Monero, XMR, crypto, cryptocurrency

founded 1 year ago
MODERATORS