this post was submitted on 15 Sep 2025
837 points (98.2% liked)

memes

17393 readers
1082 users here now

Community rules

1. Be civilNo trolling, bigotry or other insulting / annoying behaviour

2. No politicsThis is non-politics community. For political memes please go to !politicalmemes@lemmy.world

3. No recent repostsCheck for reposts when posting a meme, you can only repost after 1 month

4. No botsNo bots without the express approval of the mods or the admins

5. No Spam/Ads/AI SlopNo advertisements or spam. This is an instance rule and the only way to live. We also consider AI slop to be spam in this community and is subject to removal.

A collection of some classic Lemmy memes for your enjoyment

Sister communities

founded 2 years ago
MODERATORS
Tenthrow@lemmy.world
The_Picard_Maneuver@lemmy.world
The_Picard_Maneuver@startrek.website
837
Welcome to 2025 (content.federation.network)
submitted 3 days ago by daniel@federation.network to c/memes@lemmy.world
82 comments fedilink hide all child comments
 

Welcome to 2025
@memes@lemmy.world

top 50 comments
sorted by: hot top controversial new old
[–] Friendlybirdseggs@sopuli.xyz 3 points 1 day ago

Mole vpn

[–] yamamoon@lemmings.world 3 points 1 day ago

I unfortunately use cloudflare. They apparently charge the same price they pay for domain names.

What better options do we have? I really want to know.

[–] lena@gregtech.eu 21 points 2 days ago (4 children)

Though I'm not a big fan of centralization, I use cloudflare. Their DDoS protection is unmatched, they have scraping protection, and just in case they decide to screw their users over, switching to another service is trivial.

[–] But_my_mom_says_im_cool@lemmy.world 2 points 1 day ago (2 children)

I don’t know what cloud flare is and at this point im afraid to ask

[–] echodot@feddit.uk 3 points 1 day ago

Basically they work as a bouncer in front of your website and stop all the undesirables getting in. I.e. AI scrapers. Also if somebody decides they want to try and hack you or otherwise cause problems the bouncer beats them up and you never have to hear about it.

If you use a VPN the bouncer is very suspicious of you and you have to jump through all sorts of hoops to get in, which is why some people don't like websites using it. Unfortunately there isn't really a solution since there are a lot of illegitimate uses for having a VPN connection as well, so you have to be suspicious of them.

[–] justme@lemmy.dbzer0.com 2 points 1 day ago

You use it as reverse proxy, to not expose your hosting servers (e.g. websites, Lemmy instances or what not) directly to the Internet. The idea is that they take care of a lot of security concerns for you, which can otherwise be very demanding if you are self hosting

load more comments (3 replies)
[–] echodot@feddit.uk 2 points 1 day ago

Yeah well if it weren't for all of the LLM bots and scrapers in general and of course all the Russian and Chinese hackers (they may mostly be script kitties, but they're still annoying), we wouldn't need cloud flare. But they do exist so we don't really have a choice.

[–] DaPorkchop_@lemmy.ml 132 points 3 days ago (14 children)

if you can provide me a better way to keep my homelab from getting DDoSed every five minutes then by all means, please share it

[–] daniel@federation.network 29 points 2 days ago (8 children)

@DaPorkchop_@lemmy.ml @memes@lemmy.world Is that an actual issue or a hypothetical one? I've never had an attack in 10 years of publicly hosting stuff.

[–] purplemonkeymad@programming.dev 19 points 2 days ago (1 children)

As someone else who used to host via an open port, you get random connections all the time. Almost constantly and the request paths make it obvious they are scanning for vulnerabilities. Via cloud flare the number of those requests is much lower, as they have to know at least the DNS to do so, (and can't guess it from a presented SSL cert.)

[–] sobchak@programming.dev 11 points 2 days ago

Yeah, I see random https and other connections all the time blindly scanning for vulnerabilities. Not enough to cause any real problems though. One time I publicly exposed redis or rabbitmq (can't remember which) and didn't set a password, so someone set a password for me :). That's about the worst that's happened to me.

load more comments (7 replies)
[–] wildbus8979@sh.itjust.works 57 points 3 days ago* (last edited 3 days ago) (4 children)

Just put it behind a wireguard server and don't expose any ports?

If you absolutely must expose some stuff, get a cheap 3$/mo vps that connects via wireguard to your home and setup a reverse proxy? They almost all come with DDoS protection.

[–] Kolanaki@pawb.social 41 points 3 days ago* (last edited 3 days ago) (12 children)

How do I stop a DDOS attack of my website without having port 80 or 443 open, so you can access the website?

load more comments (12 replies)
[–] jim3692@discuss.online 8 points 2 days ago

Conservatives will get really upset once they realize you are changing genders

load more comments (2 replies)
[–] expr@programming.dev 15 points 2 days ago (2 children)

https://anubis.techaro.lol/

You don't need Cloudflare.

[–] daq@lemmy.sdf.org 2 points 1 day ago

Awesome project, but that's just one of many features CF offers. Most people I suspect rely on tunnels more than bot protection.

[–] DaPorkchop_@lemmy.ml 12 points 2 days ago (1 children)

That doesn't help against a SYN flood.

load more comments (1 replies)
[–] daniskarma@lemmy.dbzer0.com 15 points 2 days ago* (last edited 2 days ago) (1 children)

Is you homelab getting ddosed constantly?

I had had it for years and never ever got ddosed.

Are you sure it's actually ddos and not just the typical bots scanning for vulnerabilities? Which are easy defended for by keeping updated.

It's weird as a DDOS is not something that's just happens, it's a targeted attack. It's a rare occurrence that someone decided to attack a homelab.

[–] DaPorkchop_@lemmy.ml 9 points 2 days ago (1 children)

I spent multiple days getting SYN flooded to the point my router would crash and reboot over and over, and it stopped the moment I set up cloudflare and asked my ISP to change my IP. This was the instance which pushed me over the edge, but there had been smaller attacks lasting a few minutes each for years leading up to this.

[–] gagootron@feddit.org 11 points 2 days ago (5 children)

What kind of router to you have? A good router should not crash from any amount WAN traffic. But yes, if you host anything you will get scanned even harder than usual.

load more comments (5 replies)
load more comments (9 replies)
[–] mlg@lemmy.world 101 points 3 days ago (1 children)

I deadass got a cloudflare error after reopening this post:

[–] GreenKnight23@lemmy.world 52 points 3 days ago

the people on selfhost would be very upset if they could read this.

[–] lefixxx@lemmy.world 28 points 2 days ago (2 children)

cloudflare ddos protection is cetralization?

[–] ne0phyte@feddit.org 65 points 2 days ago (3 children)

About 20% of global traffic is routed through Cloudflare so unfortunately Cloudflare is very much a massive case of centralization.

A Cloudflare outage would affect a huge number of websites and services and they have some degree of control over the way you host your and use their services.

[–] skepller@lemmy.world 33 points 2 days ago

Yeah, did people forget the last big Cloudflare outage already? A good chunk of all big services went down simultaneously. Discord, Amazon, Twitter and even the PS and Xbox consoles networks lmao.

[–] espurr@sopuli.xyz 1 points 1 day ago

Isn't it pretty easy to just disable cloudflare?

[–] InFerNo@lemmy.ml 12 points 2 days ago (1 children)

How long before a website not behind something Cloudflare is considered suspicious or unwanted

[–] maus@sh.itjust.works 1 points 1 day ago (1 children)

Source? Or is this just fearmongering?

[–] yamamoon@lemmings.world 2 points 1 day ago

It's definitely speculation, but I'd say it's warranted.

The same thing applies when trying to sign up for a service without a big-name email address.

[–] MonkderVierte@lemmy.zip 7 points 2 days ago

Yes, use a competitor at least.

[–] wintervoid@lemmy.blahaj.zone 6 points 2 days ago (2 children)

I mean I don't really have a choice because i don't see a better way to put my home server on a url because I live in a dorm and can't port forward or get a static ip

[–] Vittelius@feddit.org 2 points 1 day ago* (last edited 1 day ago)

This is what I use: https://github.com/fosrl/pangolin

Creates a wireguard connection from your home server to a vps, which then exposes it to the public using a traefik reverse proxy.

[–] jimitsoni18@lemmy.zip 2 points 1 day ago (2 children)

If you don't have a static IP, how did you get a domain?

[–] wintervoid@lemmy.blahaj.zone 1 points 1 day ago

I use cloudflares tunneling service cloud flared which allowes me to have the service running on my home server and then cloudflare will automatically make the subdomains point towards the ip

[–] ErmahgherdDavid@lemmy.dbzer0.com 2 points 1 day ago (1 children)

That's what they're saying. They're dependent on cloudflare who offer a DNS service that routes traffic to one of their static ips, down a tunnel initiated by the server without an IP address.

[–] jimitsoni18@lemmy.zip 1 points 1 day ago (2 children)

I'd like to know how to create a tunnel; do you have the docs? I need to host my home server and noip isn't working for me.

[–] bjoern_tantau@swg-empire.de 27 points 3 days ago (1 children)

Don't forget your SSL certificate to prevent man-in-the-middle attacks. 🤪

[–] pulsewidth@lemmy.world 9 points 2 days ago (1 children)

Don't forget to have the SSL certificate supplied and managed by Cloudflare, of course 🤫

load more comments (1 replies)
load more comments
view more: next ›