Ecosyste.ms: Awesome

An open API service indexing awesome lists of open source software.

Awesome Lists | Featured Topics | Projects

https://github.com/Artiume/docker

Last synced: 3 months ago
JSON representation

Host: GitHub
URL: https://github.com/Artiume/docker
Owner: Artiume
Created: 2019-01-21T10:39:56.000Z (almost 6 years ago)
Default Branch: master
Last Pushed: 2020-06-02T19:15:49.000Z (over 4 years ago)
Last Synced: 2024-06-28T06:38:54.117Z (5 months ago)
Language: Shell
Size: 185 KB
Stars: 66
Watchers: 10
Forks: 11
Open Issues: 0
Metadata Files:
- Readme: README.md

Awesome Lists containing this project

README

My goal is to provide a means of security while having fun.

I have created a default toml-less traefik.yml which has full HSTS capabilities, dynamic DNS resolvers (both for traefik itself and for ACME), enhanced security features, and whitelistings to help with compatibility.

Test your website here!

https://www.ssllabs.com/ssltest/

https://www.grc.com/dns/dns.htm

https://securityheaders.com/

https://observatory.mozilla.org/

Dns Leak Tests

https://github.com/macvk/dnsleaktest/blob/master/README.md

https://www.privateinternetaccess.com/forum/discussion/23924/easy-quick-dns-and-ipv6-leak-testing-via-command-prompt-line-method-no-browser-or-website-needed

Here's some good information to learn about

https://www.acunetix.com/blog/articles/a-fresh-look-on-reverse-proxy-related-attacks

https://github.com/ssllabs/research/wiki/SSL-and-TLS-Deployment-Best-Practices#25-use-forward-secrecy

https://scotthelme.co.uk/https-cheat-sheet/

https://www.toptenreviews.com/secure-encryption-methods

https://dnsprivacy.org/wiki/display/DP/DNS+Privacy+Project+Homepage

https://openvpn.net/security-advisory/the-voracle-attack-vulnerability/

https://www.cisecurity.org/cis-benchmarks/

https://matt.traudt.xyz/posts/vpn-tor-not-mRikAa4h.html

https://en.wikipedia.org/wiki/Salt_(cryptography)

https://blog.qualys.com/ssllabs/2012/09/14/crime-information-leakage-attack-against-ssltls

https://tonsky.me/blog/disenchantment/

I am currently working on creating a frontend and backend traefik which will remove the socket access to the traefik facing the internet.

I want to also get a elevated permissions proxy setup for the system https://github.com/Tecnativa/docker-socket-proxy

Reading :
https://www.wired.com/story/notpetya-cyberattack-ukraine-russia-code-crashed-the-world/