Closed kuj0nell0 closed 1 month ago
@maintainers Warning, instance found in the commit history, make sure to wait 1 week before adding the instance if needed. See here for more information: https://github.com/searxng/searx-instances#add-a-previously-submitted-instance
Commit ID: 0284c37b7ca8e9e3ebc2d259f9e93567836791e0
- Date: Fri Feb 10 09:49:10 2023 +0000
- Description: remove opnxng.com and search.kvj.ovh bad uptime
- Author: Émilien Devos (perso)
Commit ID: 07441c3fa3fcd8f7d1794d2f141ff476c8f79f4a
- Date: Sun Oct 30 06:10:37 2022 +0000
- Description: Update search.kvj.ovh with searx.kujonello.cf
- Author: ononoki
Please consider joining our Matrix room for public instance maintainers by joining our Matrix room: https://matrix.to/#/#searxng:matrix.org then pinging @ unixfox, @ dalf and @ mrpaulblack for asking to be invited to the Matrix room. We discuss troubles managing a public instance, sharing some advices (like how to protect against bots), announcing big changes in searxng and more.
Hi @kuj0nell0, your TLS grade is only F. Please at least get an E grade for your instance to be added.
Closing due to lack of replies.
@ononoki1 @unixfox Hey, sorry for not responding in time, had a tought time in school recently. I've increased my TLS grade to B on ssllabs (would check on website ononoki1 provided, but would have to wait some time for it to let me again). I hope this TLS ranking is sufficient. Any help regarding this issue is welcomed.
Current TLS config on traefik: ` [tls] [tls.options] [tls.options.default] sniStrict = true cipherSuites = [ "TLS_ECDHE_RSA_WITH_AES_128_CBC_SHA256", "TLS_ECDHE_ECDSA_WITH_AES_128_GCM_SHA256", "TLS_ECDHE_ECDSA_WITH_AES_256_GCM_SHA384", "TLS_ECDHE_RSA_WITH_CHACHA20_POLY1305", "TLS_ECDHE_ECDSA_WITH_CHACHA20_POLY1305", "TLS_AES_128_GCM_SHA256", "TLS_AES_256_GCM_SHA384", "TLS_CHACHA20_POLY1305_SHA256", "TLS_FALLBACK_SCSV" # Client is doing version fallback. See RFC 7507.
]`
You need to have better letter than F on cryptcheck or your instance can't be added sorry.
B on ssllabs seems to indicate a bad TLS security.
You need to have better letter than F on cryptcheck or your instance can't be added sorry.
B on ssllabs seems to indicate a bad TLS security.
will try at 22:46:41 UTC (I guess)
Ok great, for me your TLS configuration seems to be a bit too harsh now.
See mine: https://cryptcheck.fr/https/searx.be
Like android 6, IE11 on windows 10 and early versions of Edge won't be able to load your instance.
https://ssl-config.mozilla.org/ is a good starting point for a good ssl configuration. I meant starting point because you won't get an A+ directly, you need to tweak a little bit more.
Please don't triple post, use the edit button on your previous message.
Requirements (make sure to read all of them)
check.searx.space
to check my instance (every 3 hours for the response times, every 24 hours for the other tests).Bot protection requirement
server.public_instance
parameter.Source code URL
No response
Comment
using docker: searxng/searxng:latest