this post was submitted on 23 Jan 2024
1089 points (96.3% liked)

Greentext

4459 readers
570 users here now

This is a place to share greentexts and witness the confounding life of Anon. If you're new to the Greentext community, think of it as a sort of zoo with Anon as the main attraction.

Be warned:

If you find yourself getting angry (or god forbid, agreeing) with something Anon has said, you might be doing it wrong.

founded 1 year ago
MODERATORS
 
you are viewing a single comment's thread
view the rest of the comments
[–] [email protected] 1 points 10 months ago (1 children)

just wondering, but what are they commonly doing wrong?

[–] [email protected] 3 points 10 months ago

The most common thing you see is the idea that the holy grail of security being “not forwarding ports in your router”. Put your publicly accessible web service running on your unsegmented home LAN behind a cloudflare tunnel and you’re “secure”, problem solved, job done. If you point out the fact that this doesn’t solve any of the problems that go along with “port forwarding” or that CF tunnels MITMs all their data, you’ll get downvoted as a “CloudFlare hater”.

Similarly they tend to believe that there’s no reason to separate your publicly accessible server from the rest of the devices on your home LAN, especially because the home LAN is “safe”.