Cloudron makes it easy to run web apps like WordPress, Nextcloud, GitLab on your server. Find out more or install now.


  • Categories
  • Recent
  • Tags
  • Popular
  • Bookmarks
Skins
  • Light
  • Cerulean
  • Cosmo
  • Flatly
  • Journal
  • Litera
  • Lumen
  • Lux
  • Materia
  • Minty
  • Morph
  • Pulse
  • Sandstone
  • Simplex
  • Sketchy
  • Spacelab
  • United
  • Yeti
  • Zephyr
  • Dark
  • Cyborg
  • Darkly
  • Quartz
  • Slate
  • Solar
  • Superhero
  • Vapor

  • Default (No Skin)
  • No Skin
Collapse

Cloudron Forum

Apps | Demo | Docs | Install

don't let webserver respond

Scheduled Pinned Locked Moved Feature Requests
9 Posts 4 Posters 149 Views
    • Oldest to Newest
    • Newest to Oldest
    • Most Votes
Reply
  • Reply as topic
Log in to reply
This topic has been deleted. Only users with topic management privileges can see it.
  • adisonA Offline
    adisonA Offline
    adison
    wrote on last edited by
    #1

    hello. when i go to my webservers IP, cloudron, it responds. this is kinda dangerous. and it shouldn't direct to your my domain either. in stead, it should take you to your main website, AKA the first domain you imported when setting up. it could be dangerous for the IP to respond.
    thanks

    my website is not available right now

    1 Reply Last reply
    0
  • girishG Do not disturb
    girishG Do not disturb
    girish Staff
    wrote on last edited by
    #2

    Why is it dangerous to respond? It will only show a template page like "You are seeing this page because the DNS record of xx is set to this server's IP but Cloudron has no app configured for this domain." .

    It intentionally does not redirect anywhere (to an app or the dashboard) so as to not leak the domain name. Note that we can't redirect either to main website because this would mean a http redirect which in turn means we are leaking domain name.

    1 Reply Last reply
    1
  • nebulonN nebulon marked this topic as a question on
  • adisonA Offline
    adisonA Offline
    adison
    wrote on last edited by
    #3

    its dangerous because if i know it responds, then i know its up.
    then, if the ISP/VPS provider is not robust, i can start fludding it with DDOS attacks or doing nasty things with the IP itself. what i usually do myself is just disallow all ports on the webserver to the public, only allowing port443 on cloudflares IPs, then only allwoing ports443 and 22 for my vpn so i can access the dashboard.

    my website is not available right now

    1 Reply Last reply
    0
  • adisonA Offline
    adisonA Offline
    adison
    wrote on last edited by
    #4

    yeah, if someone, say, tryes pinging it, or doing an nmap scan on it, wile the IP won't be shown, it cant respond or do anything.

    my website is not available right now

    1 Reply Last reply
    0
  • adisonA Offline
    adisonA Offline
    adison
    wrote on last edited by
    #5

    *will be shown. my bad, my keyboard went wild on me

    my website is not available right now

    1 Reply Last reply
    0
  • girishG girish marked this topic as a regular topic on
  • BrutalBirdieB Online
    BrutalBirdieB Online
    BrutalBirdie Staff
    wrote on last edited by
    #6

    I still don't fully understand your request.

    Do you mean this screen?

    image.png
    That should not respond? 🤔
    You say you are using Cloudflare, so you mask the IP with the proxy feature.

    Oh and because the unknown wildcard record responds to the normal IP it will expose the real IP, that is what you mean, right?

    Like my work? Consider donating a drink. Cheers!

    1 Reply Last reply
    0
  • adisonA Offline
    adisonA Offline
    adison
    wrote on last edited by
    #7

    yes, that is what i mena

    my website is not available right now

    1 Reply Last reply
    0
  • adisonA Offline
    adisonA Offline
    adison
    wrote on last edited by
    #8

    as for the image, i am a blind person. please explain the image if you can

    my website is not available right now

    fbartelsF 1 Reply Last reply
    0
  • fbartelsF Offline
    fbartelsF Offline
    fbartels App Dev
    replied to adison on last edited by
    #9

    @adison it reads "You are seeing this page because the DNS record of $host is set to this server's IP but Cloudron has no app configured for this domain." But instead of $host its the ip or dns name you just requested.

    1 Reply Last reply
    2

  • Login

  • Don't have an account? Register

  • Login or register to search.
  • First post
    Last post
0
  • Categories
  • Recent
  • Tags
  • Popular
  • Bookmarks