Awesome Blog

Skidz Awesome Server

Part 1 – Digital Freedom with your own Command Center

by

Skidz Tweak
in ,

So, you’ve decided to do it. You’re tired of being just another digital peasant, renting a tiny plot of land on the vast estates of Google, Meta, and a dozen other tech overlords. You’ve decided to build your own castle in the cloud, a digital kingdom where you make the rules. A place to call your own.

This multi-part guide is your friendly, slightly sarcastic blueprint to building that kingdom. In this first part, we’re not even going to touch a server. Nope. This is the prep work, the digital surveying, the part where we gather our supplies and draw a treasure map before we start digging. Because nothing says “I’m an amateur” like realizing your server’s fancy new IP address was previously owned by a Nigerian prince’s email marketing service.

The Awesome Stuff: Your Server, Your Rules 🏰

First, let’s talk about why you’re doing this. What’s the point of having your own server exposed to the wild, wild west of the internet? Oh, my friend, the possibilities are glorious.

Imagine this:

  • A Network-Wide Ad-Blocking Butler: Set up your own private DNS resolver (using something like Pi-hole) that automatically vaporizes ads and trackers across your entire home network. Every device, from your phone to your smart toaster, will be blissfully ad-free. It’s like a magic forcefield against pop-ups.
  • Your Own Private Netflix: Run a media server like Plex or Jellyfin. Rip those Blu-rays you “definitely own” and stream them to any device, anywhere in the world.
  • Break Up with Dropbox: Host your own cloud storage with Nextcloud. Keep your files, calendars, and contacts on your turf, not on some company’s server waiting to be data-mined.
  • Fort Knox for Your Passwords: Stop trusting third-party services with the keys to your digital life. Host your own password manager like Bitwarden.

You get to be the master of your own digital domain. You decide what services to run, how they’re configured, and who gets access. It’s the ultimate power trip for the modern nerd.

Picking Your Digital Real Estate (And a Kewl Name)

Before you can build your castle, you need an address. This is your domain name. It’s how you’ll find your way home.

Now, you could be server1.some-boring-name.com, but where’s the fun in that? You need something with personality. This is your chance to be the-digital-fortress.net or not-a-secret-server.xyz.

For this sacred task, I highly recommend Hover.com. They have a clean interface, no-nonsense pricing, and they don’t try to upsell you on a thousand things you don’t need. They just sell you the domain and get out of the way. Find a name you love, buy it, and feel the thrill of owning your very own slice of the internet.

Choosing Your Cloud Landlord & Getting the Keys

You’ve got the address, now you need the land. For this, we turn to a cloud provider. Think of them as landlords who rent you a virtual plot of land (a server) where you can build anything you want.

While there are many great options like Linode or Vultr, my go-to is DigitalOcean. They have a straightforward interface and are developer-friendly. When you start the process of creating a server (a “Droplet” in their world), you’ll face a few key choices.

First, the server plan. As we discussed, go with more memory over raw processing power. Many services are thirstier for RAM than they are for CPU cores.

Next, and this is critically important, you’ll choose your authentication method. You’ll see two options: a password or an SSH Key. Please, for the love of all that is secure, choose SSH Key. Using a password to protect a server exposed to the internet is like leaving your house key under the doormat. Using an SSH key is like securing your front door with a bank vault that only opens to your unique thumbprint.

Cloud providers like DigitalOcean make this easy. You’ll generate a secure key pair on your own computer, which consists of a public key (that you can share) and a private key (that you guard with your life). You then copy the public key into the DigitalOcean dashboard. When your new server is created, it will automatically install that public key. From then on, you can only log in from a computer that has the matching private key. No password, no guessing, just pure cryptographic security.

Finally, after creating the server, add a Floating IP address. This is a static, public IP that you control separately from the server itself. Before you assign it, do a background check. Cloud providers recycle IPs, so use a tool like MXToolbox’s Blacklist Check or AbuseIPDB to vet it. If the IP has a bad reputation, just release it and grab a new one. Repeat until you find a clean IP, then assign it to your server. This prevents future headaches and ensures you’re not inheriting someone else’s digital garbage.

The DNS Shell Game: A Touch of Clever Security

Okay, you have your domain, your server with its clean Floating IP, and a super-secure SSH key for access. Now it’s time to connect your domain to your server using DNS (Domain Name System).

We’re going to do something a little sneaky here. It’s a prime example of “security through ambiguity,” which, while not a replacement for real security, is a fun and effective way to trip up casual attackers.

Here’s the plan:

  1. Point your main domain to a decoy. In your DNS settings at Hover, create an A record for your main domain (yourkewldomain.com). Point this to a different IP address, like a dummy IP (127.0.0.1). When someone looks up your main domain, they do not get the IP of your actual server.
  2. Point a wildcard to the real server. Next, create another A record. This time, the “host” will be an asterisk (*) and the value will be your server’s real Floating IP address. This wildcard record means that any subdomain—like plex.yourkewldomain.com or files.yourkewldomain.com—will point to your actual server.

Why do this? It prevents attackers from easily discovering your server’s front door just by looking up your main domain. They would need to guess the subdomains you are using. It’s a simple, elegant layer of misdirection.

And with that, our prep work is done! You’ve secured your name, rented your land, created a secure entry method, and set up a clever bit of misdirection.

In Part 2, we’ll finally get our hands dirty, use our SSH key to log into the server for the first time, and start laying the real foundation for your new digital kingdom.

Comments

3 responses to “Part 1 – Digital Freedom with your own Command Center”

  1. Hardening the Command Center & Going Dark – Awesome Blog

    […] operator. In Part 1, we acquired the hardware, secured a covert domain, and forged an unbreakable encryption key. Your […]

    Reply
  2. Building the Servers Operations Wing & Going Off-Grid – Awesome Blog

    […] foundation is laid out in Part 1 & Part 2. Your command center is hardened, stealthed, and fortified against the mindless rabble […]

    Reply
  3. The Engine Room – Your First Covert Operation with n8n – Awesome Blog

    […] Part 1: So You Want a Digital Kingdom? We surveyed the land and secured our name. […]

    Reply

Leave a Reply

Your email address will not be published. Required fields are marked *