e:["$","$L15",null,{"type":"newest","initialPosts":[{"by":"omifarhan75","descendants":0,"id":46363420,"score":1,"text":"Running a Hetzner VPS with Coolify (Docker-based PaaS). The IP appears to have been indexed by scanners - seeing constant automated probes for common PHP webshells (WSO, Wolverine shell variants, etc).\nCurrent mitigation plan:

Migrate DNS to Cloudflare (proxy all A records)\nUFW: deny all, allow SSH + Cloudflare IP ranges only for 80/443\nFail2Ban for SSH\nWAF rules to block .php, .env, wp-admin requests

Questions:

Should I request a new primary IP from Hetzner, or is proxying through Cloudflare sufficient to make the old IP irrelevant?\nAny recommended Traefik middlewares for rate limiting since Coolify uses Traefik?

Stack: Coolify, Docker, Traefik, Node.js apps","time":1766477451,"title":"Hardening a VPS after IP exposure – Cloudflare and firewall sufficient?","type":"story"},{"by":"signa11","descendants":0,"id":46363419,"score":1,"time":1766477431,"title":"An uncomfortable but necessary discussion about the Debian bug tracker","type":"story","url":"https://nibblestew.blogspot.com/2025/12/an-uncomfortable-but-necessary.html"},{"by":"sonamMG","descendants":0,"id":46363416,"score":1,"time":1766477414,"title":"Agentic AI: Building Autonomous AI Systems That Plan and Act","type":"story","url":"https://substack.com/inbox/post/182398278"},{"by":"sooryagangaraj","descendants":0,"id":46363380,"kids":[46363383],"score":1,"time":1766477014,"title":"Show HN: VideoToScreenshots – Auto-extract sharp frames from videos","type":"story","url":"https://videotoscreenshots.com/"},{"by":"cnych","descendants":0,"id":46363372,"kids":[46363373],"score":1,"time":1766476909,"title":"Another Unified AI API","type":"story","url":"https://www.apipod.ai"},{"by":"signa11","descendants":0,"id":46363368,"score":1,"time":1766476836,"title":"Write code that you can understand when you get paged at 2am","type":"story","url":"https://www.pcloadletter.dev/blog/clever-code/"},{"by":"guowuzong","descendants":0,"id":46363361,"kids":[46363362],"score":1,"time":1766476707,"title":"Nano Banana AI Image Editor Advanced Image Generation and Edit","type":"story","url":"https://nano-bananaai.org/"},{"by":"radimm","descendants":0,"id":46363360,"score":2,"time":1766476705,"title":"Instant database clones with PostgreSQL 18","type":"story","url":"https://boringsql.com/posts/instant-database-clones/"},{"by":"Petiver","descendants":0,"id":46363348,"score":1,"time":1766476506,"title":"Horace Fletcher","type":"story","url":"https://en.wikipedia.org/wiki/Horace_Fletcher"},{"by":"patriceckhart","descendants":0,"id":46363322,"score":4,"time":1766476217,"title":"Self-Hosted GenesisDB: Deploy GenesisDB on your infrastructure at minimal cost","type":"story","url":"https://www.genesisdb.io/blog/posts/2025-12-23/self-hosted-genesisdb"},{"by":"steffoz","descendants":0,"id":46363319,"score":3,"time":1766476203,"title":"10 years bootstrapped: €6.5M revenue with a team of 13","type":"story","url":"https://www.datocms.com/blog/a-look-back-at-2025"},{"by":"thomassmith65","descendants":0,"id":46363311,"score":1,"time":1766476110,"title":"Steve Allen on hippies, and coining the word \"Hippie\" (1989)","type":"story","url":"https://www.youtube.com/watch?v=CwxpjKp94H0"},{"by":"KnuthIsGod","descendants":0,"id":46363307,"score":2,"time":1766476077,"title":"The Pentagon and A.I. Giants Have a Weakness. Both Need China's Batteries, Badly","type":"story","url":"https://www.nytimes.com/2025/12/23/climate/pentagon-weapons-ai-artificial-intelligence-china-batteries.html"},{"by":"saikatsg","descendants":0,"id":46363278,"score":1,"time":1766475728,"title":"The Dark Data Tax: How Hoarding is Poisoning Your AI","type":"story","url":"https://www.dataengineeringweekly.com/p/the-dark-data-tax-how-hoarding-is"},{"by":"binarycrusader","descendants":0,"id":46363275,"score":1,"time":1766475682,"title":"We Saved Reboot","type":"story","url":"https://www.youtube.com/watch?v=L00jx-GH2w8"},{"by":"todsacerdoti","descendants":0,"id":46363266,"score":2,"time":1766475580,"title":"The lightest notes app implementation in 111 loc","type":"story","url":"https://github.com/antonmedv/textarea"},{"by":"ivanvolt","descendants":0,"id":46363248,"score":1,"text":"Hi HN,

I’m the maker of Aluo.\nIt’s an AI product photo and ecommerce image editor.

Recently I’ve been doing a major rebuild of the product.\nSome features are still being refined, but the core workflows for product images are already usable.

I’m sharing it here to get early feedback and learn from the community.\nHappy to answer any questions.","time":1766475344,"title":"Show HN: Aluo – AI product photo and ecommerce image editor","type":"story","url":"https://aluo.ai"},{"by":"Tomte","descendants":1,"id":46363240,"kids":[46363247],"score":2,"time":1766475250,"title":"32-bit x86 Position Independent Code – It's that bad (2015)","type":"story","url":"http://ewontfix.com/18/"},{"by":"ahamez","descendants":0,"id":46363239,"score":1,"time":1766475249,"title":"Paperbacks and TikTok","type":"story","url":"https://calnewport.com/on-paperbacks-and-tiktok/"},{"by":"Tomte","descendants":1,"id":46363238,"kids":[46363243],"score":1,"time":1766475234,"title":"How to Eat a Tomato (2011) [pdf]","type":"story","url":"https://ruhlman.com/wp-content/uploads/2011/08/Tomatoes.pdf"},{"by":"DemiKone2","descendants":0,"id":46363206,"kids":[46363207],"score":1,"time":1766474870,"title":"Obsera – Real time monitopring dashboard","type":"story","url":"https://www.obsera.xyz/"},{"by":"aussieguy1234","descendants":1,"id":46363200,"kids":[46363339],"score":2,"time":1766474826,"title":"US regulator approves pill form of Wegovy weight-loss drug","type":"story","url":"https://www.bbc.com/news/articles/ce86le5dyxyo"},{"by":"agentictime","descendants":0,"id":46363184,"score":1,"time":1766474646,"title":"Introduction to Software Reverse Engineering","type":"story","url":"https://go.mcptotal.io/blog/introduction-to-software-reverse-engineering"},{"by":"nataz","descendants":1,"id":46363166,"kids":[46363171],"score":1,"time":1766474398,"title":"Vince Zampella didn't just make hit games. He changed the medium","type":"story","url":"https://www.washingtonpost.com/entertainment/video-games/2025/12/22/vince-zampella-death-call-of-duty/"},{"by":"cfcfcf","descendants":0,"id":46363160,"score":2,"time":1766474331,"title":"List of films in the public domain in the United States","type":"story","url":"https://en.wikipedia.org/wiki/List_of_films_in_the_public_domain_in_the_United_States"},{"by":"deostroll","descendants":0,"id":46363109,"score":1,"text":"How to create work from home opportunities in the locality you live? How to generate leads for this? My first thought was something like digitalization of the public courts. It is a tall order. There are many aspects to this; and primarily I think this is a "short-term work". But what are simpler WFH jobs people can do? In many countries I am sure we can see ads, but, they are hard to trust. What can generate trust? Something like, "it is backed by the city council, or, mayor". Is it impossible? Just wanted various viewpoints on this. When can opportunities come? How to seek them? Etc.","time":1766473544,"title":"Ask HN: How to generate Work From Home Opportunities in a locality?","type":"story"},{"by":"tempodox","descendants":0,"id":46363101,"score":4,"time":1766473480,"title":"I foretold that Mac app notarization is security theater","type":"story","url":"https://lapcatsoftware.com/articles/2025/12/5.html"},{"by":"iamevandrake","descendants":0,"id":46363089,"score":1,"text":"I’m exploring whether there’s a real market for buying and selling Substack publications.

Substacks increasingly look like small businesses: they have email lists, recurring revenue, retention metrics, and audience trust. But unlike micro-SaaS or content sites, there’s no obvious place to sell one if you’re done running it.

I’m curious:

Would you ever sell a Substack you built but no longer want to operate?

Would you buy one rather than start from zero?

What would make this feel legitimate vs sketchy?

I’m not pitching a finished product yet, just trying to understand whether this is a real asset class or a dead end.

Appreciate any thoughts, especially from people who’ve bought/sold small internet businesses before.","time":1766473316,"title":"Ask HN: Is there a market for buying/selling Substack publications?","type":"story"},{"by":"lwhsiao","descendants":0,"id":46363085,"score":1,"time":1766473195,"title":"Eilmeldung: A TUI RSS Reader","type":"story","url":"https://github.com/christo-auer/eilmeldung"},{"by":"gautandatla","descendants":1,"id":46363064,"kids":[46363065],"score":1,"time":1766472872,"title":"Executable governance for AI: turning policy text into runnable tests","type":"story","url":"https://arxiv.org/abs/2512.04408"}]}]

Hardening a VPS after IP exposure – Cloudflare and firewall sufficient?

An uncomfortable but necessary discussion about the Debian bug tracker

Agentic AI: Building Autonomous AI Systems That Plan and Act

Show HN: VideoToScreenshots – Auto-extract sharp frames from videos

Another Unified AI API

Write code that you can understand when you get paged at 2am

Nano Banana AI Image Editor Advanced Image Generation and Edit

Instant database clones with PostgreSQL 18

Horace Fletcher

Self-Hosted GenesisDB: Deploy GenesisDB on your infrastructure at minimal cost

10 years bootstrapped: €6.5M revenue with a team of 13

Steve Allen on hippies, and coining the word "Hippie" (1989)

The Pentagon and A.I. Giants Have a Weakness. Both Need China's Batteries, Badly

The Dark Data Tax: How Hoarding is Poisoning Your AI

We Saved Reboot

The lightest notes app implementation in 111 loc

Show HN: Aluo – AI product photo and ecommerce image editor

32-bit x86 Position Independent Code – It's that bad (2015)

Paperbacks and TikTok

How to Eat a Tomato (2011) [pdf]

Obsera – Real time monitopring dashboard

US regulator approves pill form of Wegovy weight-loss drug

Introduction to Software Reverse Engineering

Vince Zampella didn't just make hit games. He changed the medium

List of films in the public domain in the United States

Ask HN: How to generate Work From Home Opportunities in a locality?

I foretold that Mac app notarization is security theater

Ask HN: Is there a market for buying/selling Substack publications?

Eilmeldung: A TUI RSS Reader

Executable governance for AI: turning policy text into runnable tests

Ask HN: Books for LLMs