Sion's blog

Methods to prevent leaking website's origin server IP behind CDN

There are some methods that you can use to help your server from detection, including IP whitelist, hostname/port change, OpenSSL/SNI patch, website/backend faking, header/client certificate authorization, etc. All in all: Think like a scanner, and you will be fine.

Doubt

Questionmark on backdoor of the Ze3kr's panel

Backdoor does not exist in the open-source version. However, all of the server-side Cloudflare partner panels are not safe because of man-made calamity. Only the offline panels, which can be hosted on GitHub pages are safe.

Dairy

Application to join TSI

Telegram is facing serious (non-political) setbacks in China, hostility breeds among the people. I'm sending the application to join TSI in hope of improving the current sitiation. I am really haunted by a future where there is no trust among people and no protection of our privacy.