Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

Add https://search.canine.tools #584

Closed
10 tasks done
hyperdefined opened this issue Aug 29, 2024 · 4 comments
Closed
10 tasks done

Add https://search.canine.tools #584

hyperdefined opened this issue Aug 29, 2024 · 4 comments
Labels
instance add Declare a new instance instance related to instance

Comments

@hyperdefined
Copy link

Requirements (make sure to read all of them)

  • It is my instance. I bought the domain myself and I own this domain. Free domains (e.g. Freenom) and shared domains (e.g. noip.com) are not allowed.
  • I'll keep my instance up to date, at the very least 1 week old. Example program for keeping up to date: watchtower, cron, ouroboros.
  • I give the right to check.searx.space to check my instance (every 3 hours for the response times, every 24 hours for the other tests).
  • I acknowledge that managing a public instance is not an easy task and require spending time to keep the instance in good health. E.g. look after your instance by using a monitoring system.
  • I guarantee to keep an uptime per month of my instance at minimum 90%. Please ask for a removal of your instance if there is a planned long downtime or notify us here for a short downtime.
  • I do not track the users of my instance with any analytics or tracking software.
  • I won't try to manipulate the ranking of my instance in a way that give an unfair advantage over the other public instances in the list. (e.g. caching requests for searx.space server)
  • I control the final webserver (software) that is serving the requests to the users of my instance. Here is a non-exhaustive list of forbidden hosting types: Cloudflare, PaaS, managed (hosting provider controlled) HTTP(S) load balancer (e.g. AWS ALB), shared Web hosting. TCP load balancer is fine. Cloudflare DNS only (grey cloud) is fine.
  • If needed, I can restrict users from accessing my instance for the only sole reason of keeping my instance in working conditions for the other users (detailed description - evidence need to be provided when asked). Other means of restriction is forbidden.

Bot protection requirement

  • Yes I have configured the server.public_instance parameter.

Source code URL

No response

Comment

No response
@hyperdefined hyperdefined added instance related to instance instance add Declare a new instance labels Aug 29, 2024
@github-actions GitHub Actions
Copy link

Please consider joining our Matrix room for public instance maintainers by joining our Matrix room: https://matrix.to/#/#searxng:matrix.org
then pinging @ unixfox, @ dalf and @ mrpaulblack for asking to be invited to the Matrix room.
We discuss troubles managing a public instance, sharing some advices (like how to protect against bots), announcing big changes in searxng and more.

@ononoki1
Copy link
Collaborator

ononoki1 commented Sep 5, 2024

Hi @hyperdefined, the image search does not work well. Please either enable image_proxy or adjust your CSP policy.

@hyperdefined
Copy link
Author

I'm not really sure why the images are failing, I have image_proxy enabled. I am using NGINX in place of Caddy:

location ~ ^/(config|healthz|stats/errors|stats/checker)$ {
        add_header Access-Control-Allow-Methods "GET, OPTIONS";
        add_header Access-Control-Allow-Origin "*";
        proxy_pass http://localhost:3011;
        proxy_set_header X-Forwarded-Port $server_port;
        proxy_set_header X-Forwarded-Proto $scheme;
	proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
        proxy_set_header X-Real-IP $remote_addr;
    }
	
location ~* ^/static/ {
        add_header Cache-Control "public, max-age=31536000";
	proxy_set_header X-Forwarded-Port $server_port;
        proxy_set_header X-Forwarded-Proto $scheme;
        proxy_set_header X-Real-IP $remote_addr;
	proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
        proxy_pass http://localhost:3011;
    }
	
location = /image_proxy {
        add_header Content-Security-Policy "default-src 'none'; img-src 'self' data:";
	proxy_set_header X-Forwarded-Port $server_port;
        proxy_set_header X-Forwarded-Proto $scheme;
        proxy_set_header X-Real-IP $remote_addr;
	proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
        proxy_pass http://localhost:3011;
    }
	
location / {
        add_header Cache-Control "no-cache, no-store";
        add_header Pragma "no-cache";
        add_header Content-Security-Policy "upgrade-insecure-requests; default-src 'none'; script-src 'self'; style-src 'self' 'unsafe-inline'; form-action 'self' https://github.com/searxng/searxng/issues/new; font-src 'self'; frame-ancestors 'self'; base-uri 'self'; connect-src 'self' https://overpass-api.de; img-src 'self' data: https://*.tile.openstreetmap.org; frame-src https://www.youtube-nocookie.com https://player.vimeo.com https://www.dailymotion.com https://www.deezer.com https://www.mixcloud.com https://w.soundcloud.com https://embed.spotify.com";
        proxy_pass http://localhost:3011;
        proxy_set_header X-Forwarded-Port $server_port;
        proxy_set_header X-Forwarded-Proto $scheme;
        proxy_set_header X-Real-IP $remote_addr;
	proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;
    }

@hyperdefined
Copy link
Author

I believed I have fixed it, please let me know if everything seems to be working and configured correctly.

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
instance add Declare a new instance instance related to instance
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
2 participants
@hyperdefined @ononoki1