Hey, hey!

This morning (Pacific time) I changed the nameservers on lemmy.studio, switching to a service that provides a CDN and a WAF. It’s a cautionary measure to protect us from DDOS attacks. That caused some instabilities, sorry for that.

I also noticed that the CDN was too aggressive, caching URLs regardless of the Content-type, and it seems that Lemmy uses content negotiation (the same endpoint can return HTML or JSON depending on the headers). I’ve fixed the caching to take the headers in consideration, so hopefully you won’t be seeing JSON responses when accessing the website on your desktop. If you do, let me know!

On a related note, I created a spreadsheet showing the monthly expenses on the instance, and how much we’re making from user donations on Ko-fi. The sheets was shared with the current supporters. If you can spare a dollar (or five) every month to help the instance run smoothly please do, anything helps.

Thanks!

4 points

Be real careful with content-type when caching. Depending on your design you can cache and leak secrets in url params

permalink
report
reply
4 points

Huh, that’s not a bad price for WAF + CDN. Can’t say I’ve heard of them, but if they get the job done then awesome! Good on you for trying to prevent DDoSing before it starts.

permalink
report
reply
3 points

Thanks for the update. Let me get comfortable here for a bit then I’ll pitch in when I can.

Remember to link (and use) the mastadon account too.

permalink
report
reply

Lemmy

!lemmy@lemmy.studio

Create post

Discussions about the lemmy.studio instance, troubleshooting, suggestions, etc.

Community stats

  • 1

    Monthly active users

  • 32

    Posts

  • 85

    Comments

Community moderators