Gerowen @ gerowen @lemmy.world

Posts

3

Comments

63

Joined

2 yr. ago

I generally do a few things to protect SSH:

1. Disable password login and use keys only
2. Install and configure Fail2Ban
3. Disable root login via ssh altogether. Just change "permit root login" from "no password" to just "no". You can still become root via sudo or su after you're connected, but that would trigger an additional password request. I always connect as a normal user and then use sudo if/when I need it. I don't include NOPASSWD in my sudoers to make certain sudo prompts for a password. Doesn't do any good to force normal user login if sudo doesn't require a password.
4. If connecting via the same network or IPs, restrict the SSH open port to only the IPs you trust.
5. I don't have SSH internet visible. I have my own Wireguard server running on a separate raspberry pi and use that to access SSH when I'm away, but SSH itself is not open to the internet or forwarded in the router.

They straight up ambushed those guys. Makes me wonder if the car accident was staged specifically to attract emergency workers.

So far I haven't seen any attempts to change their user agents. I've seen one or two other bots poking around, but nothing to write home about so I've left them alone.

I have heard however that changing user agents is a tactic they do indeed employ, especially Claude, so it may be that I'll eventually have to adapt my defenses.

I've been fending off AI bots the last week or so; wrote about it here:

https://gerowen.substack.com/p/the-ai-data-scraping-is-getting-out

Alternatively though, if an app has KDE library dependencies for example, it's kinda nice to not have to install a whole other desktop system wide.

I made one the other day, though I bought the music from HDTracks instead of "acquiring" it from Limewire or Kazaa. Burned it to a CD because the bus I drive has a CD player but no SD card slot or anything.

Why did they get removed? I feel like I'm missing a whole backstory here.

I'm not sure. I've only noticed it on my TV and have even noticed it with content that I personally ripped from DVDs or Blurays and encoded to x265 or AV1. Since it only affects the TV apps I'm wondering if it isn't a lack of support for some color space or something by the TV hardware because when I'm encoding I don't usually change anything about the dimensions, color space, frame-rate, etc., just the codec and quality. If the video is 10 bit, I encode it as 10 bit. If it's HDR, I pass that thru. I've checked with the mobile and desktop app and the web player on content the TVs had issues with and those same files played fine everywhere else, so it's something specific to the LG and Roku apps for Plex.

I do my own ripping direct from disc and I've still seen it happen. So far it's exclusive to the TV apps so I think it's something to do with the lack of hardware support for certain things.

Lemmy looks and works fine in a mobile browser; why do you even need an app?

It had the best loading animation with the comets flying by. Much better than IE rotating and becoming the planet earth. This was back when you actually had to wait for pages to load.

This is one of those things that wouldn't surprise me in the least. Something has felt "off" for a while between him and Russia. But I'm not gonna go spreading it around as if it's fact if I have no evidence.

Plex has recently started applying a green filter to certain content.

The files Plex has a problem with work just fine in Jellyfin.

If you're offending Trump supporters then you're doing something right.

If buying isn't owning, then piracy isn't theft. ;-)

I've thought about it; but with a wife and two kids it would be difficult if not impossible to pick up and move somewhere else and start all over.

They are regulated, but there's a lot of breakdowns in the system. People passing background checks who shouldn't, prior offenders passing background checks because local cops didn't report them to the feds, etc. The DC Navy Yard shooter years back literally had fired a weapon into his neighbor's apartment before and still passed a background check to buy the weapons he committed the shooting with. I also think if you're a parent and you leave your weapon accessible by your children, and they go shoot up their school, you should be held at least partially liable. As somebody who is former military, the civilian population gets away with a hell of a lot with regards to firearms. No federally mandated training standards, concealed carry licenses are haphazard and go state by state, and not all states recognize other states' permits, no federally mandated storage requirements, etc. When I was in the military, if I wanted to go target practice on base with my personal weapons I had to register them with the provost marshal on base, keep the weapons and ammo separate in locked boxes out of my reach while driving to the range, etc. And if one weapon went missing the entire base was locked down; gates closed and nobody in or out until it was located. Civilians get by with way too much.

I think a lot of our problem is loose or missing standards at the federal level, which leaves each individual state to kind of make things up as they go along and not communicate properly with feds when things go wrong.

1975 was 49 years ago, that's basically half a century, 😋

Because they're not the "default". Most folks stick with whatever comes on their device by default; Edge on Windows, Safari on MacOS/iOS, Chrome on Android, etc. Anything beyond just picking it up and turning it on requires forethought and effort, which most users don't care about.

Just one or two, and it's been quite a while. One of them, I don't remember which, it was because of some anti cheat that caused the issue.