sad/segfault
1
0
Fork 0
mirror of https://github.com/hackerschoice/segfault.git synced 2024-06-25 00:08:47 +00:00
Code Issues Packages Projects Releases Wiki Activity

initial beta

Browse Source
This commit is contained in:
SkyperTHC 2022-05-11 12:44:09 +01:00 committed by GitHub
parent 1be7060d71
commit f34cfd7ed6
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
1 changed files with 36 additions and 20 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

56
README.md
View File

@ -1,29 +1,40 @@
# segfault
# beta.segfault.net - back from the dead
Regional Cluster design:
```mermaid
graph TD;
DockerShell1-->DockerSSHD1;
DockerShell2-->DockerSSHD1;
DockerShell3-->DockerSSHD2;
DockerShell4-->DockerSSHD2;
DockerShell5-->DockerSSHD2;
DockerSSHD1-->Server1;
DockerSSHD2-->Server2;
Server1-- Optional VPN -->OpenVPN;
Server2-- Optional VPN -->OpenVPN;
OpenVPN -- Leaving Region -->NordVPN
NordVPN-->INTERNETZ
A root shell for every (creative) person. Free. Anonymous. Secure.
```shell
$ ssh root@beta.segfault.net # password is 'segfault'
```
1. Server is running OpenSSH in a docker and shares /var/run/docker.sock with the OpenSSH-Docker instance. This allows to have just the docker_cli to be installed and spin up a shell for the user without having to run an extra docker-daemon (but using the docker-daemon from Server instead).
1. On small deployments the ```OpenVPN Server``` can be the same as Server[12]. This allows to run *everything* off 1 single server.
1. AWS Fargate could be utilized by nesting the entire setup in a Docker-in-Docker (dind) configuration.
A new instance is spawned for every new connection. Each instance has these features:
1. Dedicated ```root server``` for every user.
1. All traffic is routed via NordVPN.
1. All DNS traffic is encrypted (DNS over HTTPS).
1. TOR pre-installed.
1. Encrypted/Persistent storage in ```/sec```. Private to the User.
1. Each User has his own ```SECRET``` to access his data.
1. No trace (beside encrypted data) after the User logs off.
1. No logs are kept.
---
# BETA TESTING BETA TESTING
Please report back
1. Tools missing
1. Features needed
Some suggestions by others:
1. Allow user to share data via webserver accessible by normal Internet and TOR (.onion) [thanks 0xD1G, L]
1. Allow email access [thanks L]
1. **PM me if you have more suggestions**
---
Cluster can be deployed in various regions for less latency.
TODO:
Misc infos:
1. https://docs.docker.com/engine/security/userns-remap/
1. On small deployments the ```OpenVPN Server``` can be the same as Server[12]. This allows to run *everything* off 1 single server.
1. AWS Fargate could be utilized by nesting the entire setup in a Docker-in-Docker (dind) configuration.
Helpful links
1. https://github.com/nicolaka/netshoot
@ -41,3 +52,8 @@ VPN Providers:
Hosting providers:
1. https://www.linode.com/
1. https://1984hosting.com/
---
Telegram: https://t.me/thcorg
Twitter: https://twitter.com/hackerschoice