this post was submitted on 19 Nov 2024
11 points (92.3% liked)
Monero
1686 readers
47 users here now
This is the lemmy community of Monero (XMR), a secure, private, untraceable currency that is open-source and freely available to all.
Wallets
Android (Cake Wallet) / (Monero.com)
iOS (Cake Wallet) / (Monero.com)
Instance tags for discoverability:
Monero, XMR, crypto, cryptocurrency
founded 1 year ago
MODERATORS
you are viewing a single comment's thread
view the rest of the comments
view the rest of the comments
The site is still being attacked. Biggest issue is the lemmy-ui crashing under the load, the server itself could just about handle it. I've talked to Digilol who I'll likely hire to move town to a new server and set up proper .onion support but the current server is still pre-paid for 200 more days and even after the move it's still possible that the lemmy-ui would go down anyways :/
Tor introduced native DDoS protection for onion services using a transparent Proof-of-Work defense over a year ago: https://blog.torproject.org/introducing-proof-of-work-defense-for-onion-services/
You should strongly consider making the switch and turning on this feature. I was very surprised to find that this instance was being Cloudflare blocked. Maybe we could help with funding if needed.
The DDoS comes from exit nodes via clearnet so Tor PoW doesn't work, most likely there will be a total server migration at some point that adds tor support with pow and a tor friendly frontend.
Yes. I think what I wanted to say is you can set up Tor PoW for an onion in addition to currently using Cloudflare for clearnet, but sounds like that will be part of the server migration rather than happening now. Thanks for the response.
Thanks for the update. https://lemmy.cafe/c/monero doesn't block Tor, but no one ever posts there except rottenwheel.
Did you try to setup caching? That could reduce server load a lot.
https://github.com/LemmyNet/lemmy-ansible/issues/195
Is this on by default after v1.5.0?
If you install with ansible it should be included by default. You can check if your nginx config contains the cache lines. There is also a line you can uncomment to see the cache status with each request.
https://github.com/LemmyNet/lemmy-ansible/blob/main/templates/nginx.conf#L71
I'll have a look, thank you!
Have you considered trying another frontend instead of lemmy-ui?
I've looked into alexandrite and photon before but to be honest, the install is quite messy since I didn't really know what I was doing back then. Makes it pretty hard to figure out how to properly set these up and I'd rather start over on a new server.