If theres vulnerabilities in the software, like RCE’s or SQL Injections that can lead to access…Cloudflare wont do much for you. For example Kbin has already have PRs for SQL injections and even XSS vulns.
These will get flushed out with time and more people maintaining them of course. But I dont know if I would want that on my personal network even if on a DMZ. If for no other reason than if your instance starts spamming outbound traffic and you get flagged by your ISP.
Heck I had one of my domains flagged by my works Cisco Umbrella instance and the dang thing wasnt even in prod yet.
Yeah, you generally wouldn’t want to run a public Internet server on the same network as your personal systems.
With cloudflare tunnel it is ok
mmm. thats debateable.
If theres vulnerabilities in the software, like RCE’s or SQL Injections that can lead to access…Cloudflare wont do much for you. For example Kbin has already have PRs for SQL injections and even XSS vulns.
These will get flushed out with time and more people maintaining them of course. But I dont know if I would want that on my personal network even if on a DMZ. If for no other reason than if your instance starts spamming outbound traffic and you get flagged by your ISP.
Heck I had one of my domains flagged by my works Cisco Umbrella instance and the dang thing wasnt even in prod yet.
Wow, I had no idea.
Thanks for your input.
Sure, it would keep the origin from being publicly accessible on the Internet, but you would want to put that server on its own network, anyway.