Learn More
Resend Email
39
linuxxx
6y

Alright so the security blog is coming up soon (as in, days probably) and I'm working hard together with 404response on the privacy site.

I do want to gain some insight into visitor numbers and so on but OF COURSE, commercial/closed source options are a no-go for me!

I am thinking about maybe using Piwik with all the privacy options enabled Also self hosted obviously. What do you guys/gals think?

rant

analytics

open source

privacy
Favorite
Ranter
Comments
  • 6
    6y
    I'm pretty sure that you're using PHP, so why bot increment some variable (in database maybe), everytime some ip requests the site?
  • 5
    6y
    @Gatgeagent Yeah was thinking about that one as well but I like graphs 😊. If I enable all privacy options I think it should be fair enough but I just want to run it through here to see what other people think :) (@Ashkin @runfrodorun @JoshBent aaaand a few others
  • 3
    6y
    @linuxxx will you put it on github? If so I would write you all the graphs you want.
  • 2
    6y
    @plusgut What part exactly?
    @ThatDude Of course! Which one though or both? 😅
  • 6
    6y
    @linuxxx If you put your project on github, I will write the complete frontend part for all the graphs you want. Did that answer your question?

    P.S. i love writing graphs.
  • 4
    6y
    @plusgut Yes it does :). Just wondering what kinda data I'd have to collect? Keep in mind that I won't be saving IP addresses :). If someone attacks my sites, either my host will catch that or the firewall!
  • 2
    6y
    @linuxxx you obviously should only collect the data, that you want to display. And I'll show the data that seems to be interesting.
    I guess we shouldn't spam this thread, how about communicating via messenger.
  • 2
    6y
    @plusgut Is encrypted chatting through matrix also an option for you?
  • 2
    6y
    @linuxxx sadly it isn't, it's not working on my server, could you recommend one? Another option would be the app wire. Or whatever you prefer.
  • 3
    6y
    @plusgut I'm using Riot myself, end to end encryption option included, you could also use it with your own server/account
  • 2
    6y
    <@Gatgeagent>
    Wouldn't it be easy to DDOS the database this way?
  • 3
    6y
    @Skayo I'd probably be using Redis (in memory) which can perform more than 40-60K read/write operations a second but I'm more worried about the php side haha.

    Although CSF (the firewalling interface I'm using on top of IPTables) can probably block loads of false requests as well as the rate limiting of NGINX
  • 2
    6y
    @linuxxx my admin explicitly disallowed my to enable encryption on the server, because it breaks something. Don't ask me why, I'm not to much into server stuff.
    What do you want me to use, to communicate to you?
  • 2
    6y
    @plusgut But that's the thing, it's client side encryption, that's the thing with end to end crypto! Anyways, if that's not an option for you, would torchat work out for ya?
  • 2
    6y
    @plusgut Sure! Let me message you :D
  • 1
    6y
    @linuxxx it has been already mentioned similarly, but just inserting a timestamp into any sort of database and then graphing those is the way I did it often (which both allows you to check what times somebody visited most, but also how many per day, per hour, .. without having to record anything else), when some solution was overkill or I didn't want to leak any data outside my server.
  • 2
    6y
    @runfrodorun Good points, couldn't you just download a geoip database though?

    @JoshBent Yeah sounds great
  • 2
    6y
    @plusgut @JoshBent @runfrodorun What about this: a simple counter (probably stored in Redis) which counts the visits, amount of times a specific browser is detected and the same for the OS.

    So it would solely be an increasing number in the database, nothing with identifiable data.
  • 1
    6y
    @linuxxx I would like that :) but with a timestamp
  • 2
    6y
    @plusgut Yeah that would be the best option imho
  • 1
    6y
    @linuxxx redis with persistence enabled though? since won't you lose it all if something crashes?

    btw for geolocation theres offline datasets you can download and then just match against only part of the IP, iirc you can define how much of the IP should be passed to things like php.
  • 2
    6y
    @JoshBent Yeah of course :). Couldn't I juse query the geo data before inserting anyting into the database?
  • 0
    6y
    @linuxxx query the offline geo-ip dataset you mean? yes, query the dataset and then just insert which location its from or what do you mean?
  • 2
    6y
    @JoshBent Exactly
  • 1
    6y
    @linuxxx With the collecting data part, you could display country user conects from (geoip_country_name_by_name method?), the number of people on the web (maybe by checking for same sessions in last 10 minutes?), how many people read an article ($i++) and so on. I am sure you can do some data mining without cookies and loads of JS. Btw, its so nice how much you care about devRant community
  • 2
    6y
    @CopyPasteCode Thanks for the feedback! What exactly are you referring to with the last sentence? 😊
  • 1
    6y
    @linuxxx Everything, without your devRant activity (blog, sickass rants, ...) this would be cold, dark space 😂
  • 1
    6y
    Piwik is open source Google analytics, use it all the time and it works great, your welcome. https://piwik.org
  • 1
    6y
    @CopyPasteCode Awhhhhh 😊
Related Rants
devRant © 2021 Hexical Labs LLC
Privacy Policy  |  Terms of Service
Add Comment