mirror of
https://github.com/hackerschoice/segfault.git
synced 2024-06-25 00:08:47 +00:00
initial beta
This commit is contained in:
parent
1be7060d71
commit
f34cfd7ed6
56
README.md
56
README.md
@ -1,29 +1,40 @@
|
||||
# segfault
|
||||
# beta.segfault.net - back from the dead
|
||||
|
||||
Regional Cluster design:
|
||||
```mermaid
|
||||
graph TD;
|
||||
DockerShell1-->DockerSSHD1;
|
||||
DockerShell2-->DockerSSHD1;
|
||||
DockerShell3-->DockerSSHD2;
|
||||
DockerShell4-->DockerSSHD2;
|
||||
DockerShell5-->DockerSSHD2;
|
||||
DockerSSHD1-->Server1;
|
||||
DockerSSHD2-->Server2;
|
||||
Server1-- Optional VPN -->OpenVPN;
|
||||
Server2-- Optional VPN -->OpenVPN;
|
||||
OpenVPN -- Leaving Region -->NordVPN
|
||||
NordVPN-->INTERNETZ
|
||||
|
||||
A root shell for every (creative) person. Free. Anonymous. Secure.
|
||||
|
||||
```shell
|
||||
$ ssh root@beta.segfault.net # password is 'segfault'
|
||||
```
|
||||
|
||||
1. Server is running OpenSSH in a docker and shares /var/run/docker.sock with the OpenSSH-Docker instance. This allows to have just the docker_cli to be installed and spin up a shell for the user without having to run an extra docker-daemon (but using the docker-daemon from Server instead).
|
||||
1. On small deployments the ```OpenVPN Server``` can be the same as Server[12]. This allows to run *everything* off 1 single server.
|
||||
1. AWS Fargate could be utilized by nesting the entire setup in a Docker-in-Docker (dind) configuration.
|
||||
A new instance is spawned for every new connection. Each instance has these features:
|
||||
1. Dedicated ```root server``` for every user.
|
||||
1. All traffic is routed via NordVPN.
|
||||
1. All DNS traffic is encrypted (DNS over HTTPS).
|
||||
1. TOR pre-installed.
|
||||
1. Encrypted/Persistent storage in ```/sec```. Private to the User.
|
||||
1. Each User has his own ```SECRET``` to access his data.
|
||||
1. No trace (beside encrypted data) after the User logs off.
|
||||
1. No logs are kept.
|
||||
|
||||
---
|
||||
# BETA TESTING BETA TESTING
|
||||
|
||||
Please report back
|
||||
1. Tools missing
|
||||
1. Features needed
|
||||
|
||||
Some suggestions by others:
|
||||
1. Allow user to share data via webserver accessible by normal Internet and TOR (.onion) [thanks 0xD1G, L]
|
||||
1. Allow email access [thanks L]
|
||||
1. **PM me if you have more suggestions**
|
||||
---
|
||||
|
||||
Cluster can be deployed in various regions for less latency.
|
||||
TODO:
|
||||
Misc infos:
|
||||
1. https://docs.docker.com/engine/security/userns-remap/
|
||||
|
||||
1. On small deployments the ```OpenVPN Server``` can be the same as Server[12]. This allows to run *everything* off 1 single server.
|
||||
1. AWS Fargate could be utilized by nesting the entire setup in a Docker-in-Docker (dind) configuration.
|
||||
|
||||
Helpful links
|
||||
1. https://github.com/nicolaka/netshoot
|
||||
@ -41,3 +52,8 @@ VPN Providers:
|
||||
Hosting providers:
|
||||
1. https://www.linode.com/
|
||||
1. https://1984hosting.com/
|
||||
|
||||
---
|
||||
Telegram: https://t.me/thcorg
|
||||
Twitter: https://twitter.com/hackerschoice
|
||||
|
||||
|
Loading…
Reference in New Issue
Block a user