Hey y’all

Here’s an Ansible playbook

that sets up the following:

• Ubuntu on Digitalocean
• Streamlit listening on localhost
• Apache reverse proxy listening on https

If you have any suggestions, feel free to create a github issue.

Here’s a video going through a full setup using the playbook:

If you prefer YouTube:

cloud-config has some public ssh keys there. If those are active - please, make sure to immediately change your SSH keys.

Hey @CHerSun

Those are there to serve as examples.

They are public keys however. As far as I know, there isn’t any issue with sharing public keys. It’s private keys that you want to avoid sharing.

Ed

/bore mode on

Yep, public keys directly do not pose a threat, but computers are getting ever more powerful, allowing to do brute-force computations (sometimes augmented by algorithms’ flaws). For example, for RSA - 512 bits were considered safe some time ago. Now I believe that 512 bits can be broken in a few hours and the recommended length is 2048 already, while 1024 is considered unbreakable to amateurs yet (not sure about specialized agencies). That’s with ordinary computing, but if you take into account quantum computing development - breaking exposed keys in near real-time might be a question of a few years.

Exposing real keys (even public keys or password hashes) isn’t recommended, especially if private ones are not changed on regular basis.

/bore mode off

Not boring at all! You raise interesting points. Thank you @CHerSun

Great contribution! Thanks.

Thanks for checking it out @asehmi