I’ve just started hosting stuff and i’ve been using frp’s stcp to make stuff accessible when i’m at school. I was wondering if I should bother setting up/switching over to wireguard which is apparently the way to go?

  • Moonrise2473@feddit.it
    link
    fedilink
    English
    arrow-up
    1
    arrow-down
    1
    ·
    1 month ago

    never heard about stcp nor i see something called like that in their github repository

    Does it have authentication?

    For safety i’d add an additional layer of authentication. Easy way: cloudflare access + cloudflare tunnel; hard mode: authelia + a reverse proxy

    • EpicStuffOP
      link
      fedilink
      English
      arrow-up
      1
      ·
      edit-2
      1 month ago

      id say it’s basically tcp with a password

      try ctrl f on the readme?

  • Possibly linux@lemmy.zip
    link
    fedilink
    English
    arrow-up
    1
    arrow-down
    2
    ·
    1 month ago

    You didn’t expose it to the internet right? Right?

    Use Netbird and a network share. I don’t know what stcp is but I would go with SMB or syncthing

    • seang96@spgrn.com
      link
      fedilink
      English
      arrow-up
      2
      ·
      1 month ago

      From the link in the post it’s a reverse proxy backed by terminos which is a secure OS for kubernetes and is really good, so I imagine this proxy is also really good. So OPs setup is already likely fine as is.

    • EpicStuffOP
      link
      fedilink
      English
      arrow-up
      1
      ·
      edit-2
      1 month ago

      uh, i did?

      can u explain why its a bad idea?

      • seang96@spgrn.com
        link
        fedilink
        English
        arrow-up
        1
        ·
        edit-2
        1 month ago

        The proxy you are using seems like a good one and if you are using auth on it you aren’t exposing the services under it directly, so the vulnerability would be proxy or your password to reach any potential vulnerabilities on the service. Sure there could be some crazy bad vulnerability on the proxy, but as long as your using a good trusted one and not doing some config to bypass their security, and updating it, you should be fine. Some people here think you could use vpns and such for everything and sometimes you just gotta share your services and going through a proxy service is a good solution.

      • Possibly linux@lemmy.zip
        link
        fedilink
        English
        arrow-up
        1
        arrow-down
        1
        ·
        1 month ago

        Anything on the internet gets hammered. As soon as there is any sort of vulnerability you are compromised.

        You don’t need to take that risk