proxy – Tom's IT Cafe

Mission Brief

Plain text communication is loud. It’s bleeding data.
Prying eyes can see every bit in the wire.

You have to isolate the backend – the Semaphore UI and MySQL containers stay locked down. Unreachable for the external work.
Open a tiny hole on the stronghold to the world – the frontend is an NginX SSL proxy.

You use:

Podman pod for network and container isolation
The Semaphore and MySQL containers without exposing them to the world
An NginX proxy container with SSL

Continue reading →

M	T	W	T	F	S	S
1	2	3	4	5	6	7
8	9	10	11	12	13	14
15	16	17	18	19	20	21
22	23	24	25	26	27	28
29	30	31

Tag: proxy

Protecting The Wire – Semaphore Behind SSL Proxy

Mission Brief