zimit icon indicating copy to clipboard operation
zimit copied to clipboard
verified publisher icon openzim

Should zimit IP be made public so people can whitelist it?

Open Popolechien opened this issue 8 months ago • 4 comments

There's been this interesting case over at Reddit where a user's host blocks zimit via Captcha. It does not sound like they can do much about it, but should / could we make our IP public so that people can whitelist it and thus allow zimit to run without having to reach out to us first?

Popolechien avatar Apr 30 '25 07:04 Popolechien

Good point. I can't think of any valid reason not to.

rgaudin avatar Apr 30 '25 10:04 rgaudin

Are we speaking about the IP behind zimit.kiwix.org worker(s)? Or any of our zimit workers in general?

I'm not convinced that we are yet at a stage where publicly disclosing all workers IPs is a good idea, it can definitely drive more attacks on our infra from my PoV, and workers security is not that strong.

And I'm not even sure that the zimit user you are speaking about was running from zimit.kiwix.org or its own machine (in which case it would not help to whitelist our IP).

benoit74 avatar May 05 '25 10:05 benoit74

I can't find the discussion anymore but my impression (and question) was they were discussing zimit.kiwix.org

Popolechien avatar May 05 '25 13:05 Popolechien

Discussion is here and they indeed used zimit.kiwix.org

benoit74 avatar May 05 '25 13:05 benoit74