Notices by 👺防空識別區👹 (adiz@mtl.jinxian.casa), page 3

Well, that is done! I am assuming it works. I really have no idea if it works or doesn't work! But, I've cleared out all mitractl and ufw rules and now manage incoming and outgoing server connections via /etc/hosts and /etc/hosts.deny files.

I've learned a lot about both mitractl and my firewall and Linux networking along the way on this quest to protect this instance. Unfortunately, some of my content was able to "leak out" from this instance to a notorious bad actor instance, even despite that instance having been IP-denied in+out via ufw. However, that instance is behind CloudFlare, and I couldn't deny all the associated IP addresses therein. Just unrealistic. Hence, this journeys towards a (hopefully) better solution with hosts files.

We will see if it works! Time will tell. ---Or, a friendly Fedi user with more knowledge and expertise to tell me that I'm wrong! 😅

RE: https://mtl.jinxian.casa/objects/0194f25a-fecb-0959-a135-14e67b2f7cd9

Search does not work for me on Mitra. 🤔

@p I need to learn how to rsync so that I can easily maintain my websites. @dcc @r000t @ins0mniak

Good night, Fedi. Going to Anguilla tomorrow morning. 🏝️

@nyanide Wait……Tumblr, Wordpress…Fediverse?

@nyanide I've never had such issues, but that sucks. I really love how lightweight and performance XMPP is.

@nyanide XMPP actually works great, including MUCs (unless you're introducing encryption like OMEMO into MUCs, then things start falling apart very quickly).

I don't want to tag + bother @silverpill but he would probably know and we were contextually already discussing this yesterday. 😅

RE: https://mtl.jinxian.casa/objects/0194f086-0c50-e01f-e3e9-5316d9b0ee26

@silverpill I use ufw for managing my firewall on Debian (iIrc it's the recommended interface for handling the firewall "out of the box"). I'm assuming I can do the same via it if I can ascertain the IPs of the instances I'm trying to block access to…… @genmaicha

@silverpill Yeah, so, basically, if I understand this correctly, I can delete all my mitractl "reject" rules if I want. Then, I can use ufw to do like sudo ufw deny from <ip_address> to any and the instance for which that IP address is applicable will essentially not be able to connect to my server, thereby won't be able to receive any of my messages nor activities. I think I have that right? Then, I would basically not exist to them, for all intents and purposes. I think? Yes? 😅 @genmaicha

@genmaicha That's what I'm searching about online right now, but not really getting any meaningful answers as of yet. I feel like it should be possible, right? My networking experience is also virtually non-existent, so……

So, I've got plush.city (and others) rejected from federation via mitractl add-filter-rule reject......however, I'm still getting content from that instance federating/populating in here. What's the deal?

@mischievoustomato It's honestly probably something that I've done since I only know enough to break things and get into trouble. @silverpill

@mischievoustomato I also wildcard rejected things like toot.*, mas.*, masto.*, etc., which Mitra's docs say you can do:

> Target is a domain name or a wildcard pattern (e.g. *.example.com).

However, I've seen a couple of those get through too. I'm wondering if someone I follow engages with the content I can see it? I don't care too much about that, so much as I don't want them to see my content. There is an entire swath of the Fediverse I want to be essentially non-existent towards. @silverpill