Hello, recently I have started to see the limit’s of vps’s and have been thinking about getting a hetzner dedicated server from the auction. My question is are they worth it and if so what would be the best way to make use of them.
By that I mean should I get something like proxmox on it and make use if it that way, or install a stable os like debian and have it all installed in docker making use of the pure power of the system that way?
Edit: My use case for my server vps is my main website, but I also host a lot of alternative frontend’ and some other thing like a feed reader (miniflux) and other things like that, that with time I have accumulated and if I wanted to have them all running well would either have to spend money in uograding one vps, or buy multiple smaller one’s. In both cases this could end up quite costly.
Reason I can’t do it on my own hardare is space contraint’s, part’s avalibility where I live and prices. They are high.
Edit2: If there is any other good alernartive dedicated server peovider that won’t break a bank like hetzner, please recommend them.
Hetzner got caight MITM https traffic from their servers recently or something similar if i recall
Really? That’s a rather big claim, and would change a lot for me if true. Do you have anything by the way of a source?
Also, how do you MITM https traffic without one of the parties just handing you their keys?
It was Hetzner and Linode. Likely from police wiretapping.
That was fascinating. Thank you for sharing. I’m still early on my self-hosting journey, but a year or two ago I would have understood next to nothing of that. :D
Wait, they managed to forge Let’s Encrypt certificates? While it explains the attack on TLS (though technically not https as originally claimed, not that it makes much of a difference), that’s even worse…
If you have control over the host, getting a legit valid cert is trivial.
They’re a hosting company. It wouldn’t take much for them to temporarily have a vps grab some certs for domains that already point at them. Every hosting company has this power. Few use it.
Technically you don’t even need to have control over the host, just over the data flow to the IP.
It’s true, links already shared by others, the thing is that I’m sure other providers would’ve done the same.
Yeah, that’s the key point. They weren’t trawling all the servers, they probably had a wiretap order for one specific server. As a legal business, you can’t just say no to police because you don’t like mitm.