Cloudron makes it easy to run web apps like WordPress, Nextcloud, GitLab on your server. Find out more or install now.


Skip to content
  • Categories
  • Recent
  • Tags
  • Popular
  • Bookmarks
Skins
  • Light
  • Cerulean
  • Cosmo
  • Flatly
  • Journal
  • Litera
  • Lumen
  • Lux
  • Materia
  • Minty
  • Morph
  • Pulse
  • Sandstone
  • Simplex
  • Sketchy
  • Spacelab
  • United
  • Yeti
  • Zephyr
  • Dark
  • Cyborg
  • Darkly
  • Quartz
  • Slate
  • Solar
  • Superhero
  • Vapor
  • Default (No Skin)
  • No Skin
Collapse
Brand Logo

Cloudron Forum
Apps | Demo | Docs | Install
D

d1rk

@d1rk
About
Posts
17
Topics
2
Groups
0
Followers
0
Following
0

Posts

Recent Best Controversial
  • Adding a storage-adapter in ghost
    D d1rk

    I am using ghost to blog. I prefer the interface over working with Wordpress. The interface, including the templates is clean and easy to use.

    Since the team over at ghost decided not to build a media-manager, I prefer to not upload my media to the ghost installation itself, but to something externally.

    Luckily ghost offers storage adapters for that. Sadly enough, most of them are outdated. Not even sure, they work.

    The ones I found to be recent are:

    • Google Drive
    • Google Cloud Storage
    • WebDAV
    • BunnyCDN

    The last one has been released just recently. That's great as it is cheap (starts at 1 USD / month) and has a built-in cdn, to allow for even faster page-speeds.

    According to the documentation one has to add the relevant code at content/adapters/storage to make the adapter available.

    Then, one has to add a snippet to the configuration, according to the documentation.

    So, using the Cloudron file manager, it was quite easy to achieve:

    1. Add the folder storage underneath /content/adapters
    2. Upload the required files to said folder
    3. Update the config-file, according to the documentation
    4. Restart the app

    Done.

    My question to make that process a bit easier: Could we package up the storage-adapters to the ghost-base image to save the first two steps here?

    Hope this helps as a guide, as well as a starting point for discussion 🙂

  • Cloudron Instance Platform Check App(s)
    D d1rk

    @robi Thanks for your explanation. Based on the abuse-mails and the information they shared, I'd assume it was a script trying to login to various sites/platforms, especially their Wordpress-instances. So I assume it is a worm, that tries to spread that way: But in the end: Yes: could be, that the traffic being generated then happened like this.

    That is, why I asked for a more general monitoring solution, for network-activity, as this is the most obvious one.

    I also found out about netdata, and think about installing it on our machine, as @imc67 and @fbartels already suggested. Not sure, though which way to use for the installation.

  • PocketBase
    D d1rk

    I See, but that is also being said about Immich, http://immich.app. Yet, it is wonderful to use 🙂

  • Any issues with including NetData on the root server and as an app add-on?
    D d1rk

    @imc67 I understood, that installing netdata via the Kickstart command is not a bad thing to do?

    https://learn.netdata.cloud/docs/installing/one-line-installer-for-all-linux-systems

    ofc, taking into account, that messing with the system like that deviates from what is suggested for obvious reasons by Cloudron and is in my responsibility.

  • PocketBase
    D d1rk

    Adding to this, also: It is a developer tool: So the people using it, would definitely be aware of such a caveat, I guess.

  • Automatisch.io
    D d1rk

    Just found automatisch.io - seems like a decent open source Zapier alternative. They do have some kind of docker-setup, apparently.

    Automatisch.io Screenshot

  • Apps with multiple domains
    D d1rk

    @girish Hey, no. No multisite: Some Plugins allow translation or other kind of services through the use of different domains.

    Have a look for example at this:

    https://cln.sh/cSMg8YWg

    This makes use of the domain-feature in polylang, documentation for this can be found here:

    https://polylang.pro/doc/url-modifications/#subdomains-name-and-domains

    It is just one use-case, but a couple of plugins make use of such a feature. So, if you could add that to the managed Wordpress app, that would be amazing. I bet there are other customers that could make use of that feature.

    I See, though, why you would go for the developer version of Wordpress for a multisite. But that is not, what I am looking for.

    Thanks for your support.

  • Cloudron Instance Platform Check App(s)
    D d1rk

    Thank you all, for this wonderful conversation. I really enjoyed reading that. What I take from it, is there is many things you can do, but the question remains: what should be done, also in terms of the product Cloudron itself.

    Since I've been confronted with a bunch of abuse-report myself that started yesterday, I checked all the apps and their stats, respectively for an abnormal behavior. The traffic had surged to roughly 1gb per hour, which could be seen in the providers traffic-reports, but the system itself incl. every single app I checked, the network-io for the past 7 days was totally normal (read: low to non-existent).

    That way, I was NOT able to find the app in question. Also, I missed a feature, where I could overlay ALL active apps in one graph to sort out, which one of them is the most active or verbose one, in regard of network-traffic. So that would be a nice addition to the admin-panel, e.g. the System-Info page, where it shows some graphs, even lists all apps and their corresponding disk-usage, but a networking information would be helpful here, I guess.

    Out of despair, I allowed myself to install nethogs and bmon via apt as root on the server, against the advise but figured it would not hinder or hurt the installation, as it usually is not creating any conflicts. Please advise, if I'm wrong on that for any reason.

    But the traffic that occurred was not captured on the cloudron network-io graph for reasons that I can not explain. What I found was a compromised Wordpress-installation that had malicious scripts on them. I de-activated the app in question and wonder if that fixes the issue.

    The traffic has been not constant up, but 3-4 hours at 1-2 GB / hour and then nothing again, for another 3-5 hours. So it is harder to track and needs some monitoring and observation.

    Additional information: I had a provider-based firewall active, so only ICMP was allowed, as well as port 80/443. ssh was blocked (I turn it on, when I need it). All outgoing connections are allowed, obviously. All Email functionality is set to outbound only, with the logs not showing any weird behavior as well.

    tldr - open questions:

    • How can the network graph not show the traffic, that was generated (if it was the Wordpress in question, that is still unclear)
    • Please add a multi-app network monitoring graph (or even more stats) to compare apps with another and find those, that take more resources
    • Is there a way to monitor network-usage of the system itself, that are not from the apps?
    • How much impact can be expected, if little monitoring helpers are installed via apt (as root) on a Cloudron that could hurt future maintenance?

    Thank you so much for your attention.

  • Any issues with including NetData on the root server and as an app add-on?
    D d1rk

    Thanks for your feedback. Yeah, that would have been my approach, anyway:

    • disable any remote communication
    • use local webUI
    • install via kickstart (which results in apt-packages)

    Ok, I would give it a go and see for myself.

  • Adding a storage-adapter in ghost
    D d1rk

    @girish I see that problem. Especially, as the quality of the storage adapter is questionable, at its best...

  • Login
  • Don't have an account? Register
  • Login or register to search.
  • First post
    Last post
0
  • Categories
  • Recent
  • Tags
  • Popular
  • Bookmarks