Cloudron makes it easy to run web apps like WordPress, Nextcloud, GitLab on your server. Find out more or install now.


Skip to content
  • Categories
  • Recent
  • Tags
  • Popular
  • Bookmarks
  • Search
Skins
  • Light
  • Cerulean
  • Cosmo
  • Flatly
  • Journal
  • Litera
  • Lumen
  • Lux
  • Materia
  • Minty
  • Morph
  • Pulse
  • Sandstone
  • Simplex
  • Sketchy
  • Spacelab
  • United
  • Yeti
  • Zephyr
  • Dark
  • Cyborg
  • Darkly
  • Quartz
  • Slate
  • Solar
  • Superhero
  • Vapor

  • Default (No Skin)
  • No Skin
Collapse
Brand Logo

Cloudron Forum

Apps | Demo | Docs | Install
  1. Cloudron Forum
  2. SearXNG
  3. Is it possible to restrict access (say to my IP) to searx?

Is it possible to restrict access (say to my IP) to searx?

Scheduled Pinned Locked Moved SearXNG
firewall
6 Posts 3 Posters 1.3k Views 4 Watching
  • Oldest to Newest
  • Newest to Oldest
  • Most Votes
Reply
  • Reply as topic
Log in to reply
This topic has been deleted. Only users with topic management privileges can see it.
  • jdaviescoatesJ Offline
    jdaviescoatesJ Offline
    jdaviescoates
    wrote on last edited by girish
    #1

    Because the more people use it, the less it works:

    Public instances listed here may yield less accurate results as they have much higher traffic and consequently have a higher chance of being blocked by search providers such as Google, Qwant, Bing, Startpage, etc. Hosting your own instance or using an instance that isn't listed here may give you a more consistent search experience.

    From: https://searx.space/#

    I'm wondering if that's why Searx basically stopped working for me. I pretty much stopped using it then, but would like to do so again.

    I use Cloudron with Gandi & Hetzner

    1 Reply Last reply
    0
    • girishG Offline
      girishG Offline
      girish
      Staff
      wrote on last edited by
      #2

      @jdaviescoates Currently, there is no way to IP restrict. Can you make a new feature request post? It's probably quite easy to add (just some nginx firewall rule, I assume).

      1 Reply Last reply
      1
      • girishG Offline
        girishG Offline
        girish
        Staff
        wrote on last edited by girish
        #3

        FWIW, you can install it in a non-guessable subdomain 🙂 If you use wildcard certificates, then the domain name is not logged anywhere in public either (i.e won't be in CT reports).

        jdaviescoatesJ 1 Reply Last reply
        1
        • girishG girish

          FWIW, you can install it in a non-guessable subdomain 🙂 If you use wildcard certificates, then the domain name is not logged anywhere in public either (i.e won't be in CT reports).

          jdaviescoatesJ Offline
          jdaviescoatesJ Offline
          jdaviescoates
          wrote on last edited by
          #4

          @girish said in Is it possible to restrict access (say to my IP) to searx?:

          If you use wildcard certificates,

          Just to check you mean not using (in my case) Gandi API but instead just do the wildcard A record, right?

          then the domain name is not logged anywhere in public either (i.e won't be in CT reports).

          What are CT reports? 🙂

          Thanks!

          (I do actually have one domain currently using a Wildcard so perhaps I'll move my instance to a non guessable sub-domain of that and see how I get on)

          I use Cloudron with Gandi & Hetzner

          girishG 1 Reply Last reply
          0
          • jdaviescoatesJ jdaviescoates

            @girish said in Is it possible to restrict access (say to my IP) to searx?:

            If you use wildcard certificates,

            Just to check you mean not using (in my case) Gandi API but instead just do the wildcard A record, right?

            then the domain name is not logged anywhere in public either (i.e won't be in CT reports).

            What are CT reports? 🙂

            Thanks!

            (I do actually have one domain currently using a Wildcard so perhaps I'll move my instance to a non guessable sub-domain of that and see how I get on)

            girishG Offline
            girishG Offline
            girish
            Staff
            wrote on last edited by
            #5

            @jdaviescoates Correct, if you use Gandi API you are using wildcard certs and good.

            When a cert is issued, most of the current certificate providers these days "log" the domain name as part of the https://en.wikipedia.org/wiki/Certificate_Transparency project. These reports can then be scanned later. For example, go to https://crt.sh/ and search for say %google.com%. This gives various subdomains of google. When you use wildcard certs, only *.domain.com is logged and thus the subdomain is hidden. So, if you install searx at mysecretsearch.domain.com, there is no way for anyone to know the subdomain mysecretsearch since DNS has no subdomain search.

            1 Reply Last reply
            0
            • JOduMonTJ Offline
              JOduMonTJ Offline
              JOduMonT
              wrote on last edited by JOduMonT
              #6

              I was looking if someone, somehow Cloudron implemented Filtron and apparently not
              it would be nice to have this, even as a sidekick instance.

              Otherwise for now; I limit the query via Cloudflare with their ZeroTrust service
              Screen Shot 2024-07-05 at 07.01.28.png

              1 Reply Last reply
              0
              Reply
              • Reply as topic
              Log in to reply
              • Oldest to Newest
              • Newest to Oldest
              • Most Votes


              • Login

              • Don't have an account? Register

              • Login or register to search.
              • First post
                Last post
              0
              • Categories
              • Recent
              • Tags
              • Popular
              • Bookmarks
              • Search