ram

I set up Nginx Proxy Manager, and one of my services I want to serve is my Jellyfin which is hosted on another machine. Instead of Proxying the stream though, it'd be easier on the network to use the Nginx Stream module for facilitating that, I would expect.

The issue I'm facing is it seems like the only way to set up Nginx Stream is based on port, rather than by domain, and if I want to do it based on domain, I'd be proxying the data instead.

Is there any way to Stream to my Jellyfin rather than Proxying?

Thanks!

archive

Google has been caught hosting a malicious ad so convincing that there’s a decent chance it has managed to trick some of the more security-savvy users who encountered it.

Looking at the ad, which masquerades as a pitch for the open-source password manager Keepass, there’s no way to know that it’s fake. It’s on Google, after all, which claims to vet the ads it carries. Making the ruse all the more convincing, clicking on it leads to ķeepass[.]info, which when viewed in an address bar appears to be the genuine Keepass site.

A closer link at the link, however, shows that the site is not the genuine one. In fact, ķeepass[.]info —at least when it appears in the address bar—is just an encoded way of denoting xn--eepass-vbb[.]info, which it turns out, is pushing a malware family tracked as FakeBat. Combining the ad on Google with a website with an almost identical URL creates a near perfect storm of deception.

“Users are first deceived via the Google ad that looks entirely legitimate and then again via a lookalike domain,” Jérôme Segura, head of threat intelligence at security provider Malwarebytes, wrote in a post Wednesday that revealed the scam.

Information available through Google’s Ad Transparency Center shows that the ads have been running since Saturday and last appeared on Wednesday. The ads were paid for by an outfit called Digital Eagle, which the transparency page says is an advertiser whose identity has been verified by Google.

Google representatives didn’t immediately respond to an email, which was sent after hours. In the past, the company has said it promptly removes fraudulent ads as soon as possible after they’re reported.

The sleight of hand that allowed the imposter site xn--eepass-vbb[.]info to appear as ķeepass[.]info is an encoding scheme known as punycode. It allows unicode characters to be represented in standard ASCII text. Looking carefully, it’s easy to spot the small comma-like figure immediately below the k. When it appears in an address bar, the figure is equally easy to miss, especially when the URL is backed by a valid TLS certificate, as is the case here.

The use of punycode-enhanced malware scams has a long history. Two years ago, scammers used Google ads to drive people to a site that looked almost identical to brave.com, but was, in fact, another malicious website pushing a fake, malicious version of the browser. The punycode technique first came to widespread attention in 2017, when a Web application developer created a proof-of-concept site that masqueraded as apple.com.

There’s no sure-fire way to detect either malicious Google ads or punycode encoded URLs. Posting ķeepass[.]info into all five major browsers leads to the imposter site. When in doubt, people can open a new browser tab and manually type the URL, but that’s not always feasible when they’re long. Another option is to inspect the TLS certificate to make sure it belongs to the site displayed in the address bar.

archive.org

X, the platform formerly known as Twitter, will begin charging new users $1 a year to access key features including the ability to tweet, reply, quote, repost, like, bookmark, and create lists, according to a source familiar with the matter. This change will go live today for new users in New Zealand and the Philippines.

Roughly 20 minutes after this story published, X’s Support account confirmed the details, writing that “this new test was developed to bolster our already successful efforts to reduce spam, manipulation of our platform and bot activity, while balancing platform accessibility with the small fee amount. It is not a profit driver.”

Starting today, we're testing a new program (Not A Bot) in New Zealand and the Philippines. New, unverified accounts will be required to sign up for a $1 annual subscription to be able to post & interact with other posts. Within this test, existing users are not affected.

This new test was developed to bolster our already successful efforts to reduce spam, manipulation of our platform and bot activity, while balancing platform accessibility with the small fee amount. It is not a profit driver.

And so far, subscription options have proven to be the main solution that works at scale. — Support (@Support) October 17, 2023

The company published the “Not-a-Bot Terms and Conditions” today outlining its plan for a paid subscription service that gives users certain abilities on their platform, like posting content and interacting with other users. This program is different from X Premium, which offers more features like “Undo” and “Edit” for posts for $8 a month. Given the company’s tumultuous reputation under Musk, some users have voiced their hesitancy to turn over their credit card info.

X owner Elon Musk has long floated the idea of charging users $1 for the platform. During a livestreamed conversation with Israeli prime minister Benjamin Netanyahu last month, Musk said “It’s the only way I can think of to combat vast armies of bots.”

Shortly after the announcement, Musk tweeted that you can “read for free, but $1/year to write.”

“It’s the only way to fight bots without blocking real users,” Musk wrote. “This won’t stop bots completely, but it will be 1000X harder to manipulate the platform.”

X CEO Linda Yaccarino was asked last month onstage at Vox’s Code Conference about how going to a full subscription model on X will affect revenue, something that is now going live to users today. Yaccarino answered at the time, “Did he say that or did he say he’s thinking about it?”

I have a bunch of services on a home machine and I use cloudflare tunnels to access them on the WAN. My ISP locks down ports 80 and 443, and so tunnels were the most viable way for me to get various pages online easy; especially helped since it's easy to configure and free to boot.

But I've been seeing more people talk about it being privacy invasive, and while I'm probably gonna remain largely ignorant on why, I was wanting to know if there was an alternative to this that I can use?

ghostarchive
context^[^^ghostarchive^^]^

An opinion piece recently appeared stating that Google “just flat out deletes queries and replaces them with ones that monetize better.” We don’t. The piece contains serious inaccuracies about how Google Search works. The organic (IE: non-sponsored) results you see in Search are not affected by our ads systems.

In particular, the piece seems to misunderstand how keyword matching is related to showing relevant ads on Google Search.

Ad keyword matching is a long-standing and well-known process that is designed to connect people to relevant ads. Learn more here:
^[^^ghostarchive^^]^ https://support.google.com/google-ads/answer/7478529

A separate process, which has nothing to do with ads, is used to match organic results to a query, as explained here:
^[^^archive.org^^]^ https://www.google.com/search/howsearchworks/how-search-works/ranking-results/
It’s no secret that Google Search looks beyond the specific words in a query to better understand their meaning, in order to show relevant organic results. This is a helpful process that we’ve written about many times:

^[^^archive.org^^]^ https://www.google.com/search/howsearchworks/how-search-works/ranking-results/
^[^^archive.org^^]^ https://blog.google/products/search/search-language-understanding-bert/
^[^^archive.org^^]^ https://blog.google/products/search/how-ai-powers-great-search-results/

^[^^archive.org^^]^ https://blog.google/products/search/google-search-breakthroughs-over-25-years/
This ensures that Google Search can better show people organic results and connect them to helpful resources. If you make a spelling mistake, or search for a term that’s not on a page but where the page has a close synonym, or if you aren’t even sure exactly how to search for something, our meaning matching systems help.