Meh. I know everyone is giving OP the piss, but I used to fret about this type of stuff long time ago. LOL That became a job. Then I learned a little more and realized I wasn't being targeted specifically by some hooded specter in a dimly lit basement emphatically announcing 'I'm in!', but that these were bots. Sophisticated bots tho, I'll give them that.
Not on AWS and yes I know I can’t stop port scanning and bad traffic is a thing. Doesn’t stop me from filling out the form.
On occasion, if they end up in recidive, I'll report them to AbuseIPdb. If I did it for all attempts, I'd be as busy as a squirrel in a nut factory, because the bots are thick out in the ether. Like every minute of the day they're out there throwing rocks at the castle wall. I had to start logrotating because logs were getting so big it was difficult to review and audit. Every so once in a while, they'll break out the trebuchet and lob something significant, but I've had no breaches to date.
My servers are single user only, so buttoning things down is a little less complicated for me.
I've always thought about a 'button' on your phone that you could press and wipe an entire encrypted drive. Conversely you could have to log in at an appointed time/interval or the same scenario goes into play.
I am reminded of a Richard Pryor skit in which he tells about a football player he knew who bit the fingers off of an opponent who was trying to gouge his eyes through his helmet. When Pryor asked him why he bit the guy's fingers off he said 'Everything outside the mask is his. Everything inside the mask is mine.'
VPN - I currently pay for Proton, and we use it on the FireTV, but it sucks cause it doesn’t have killswitch.
I have been using Private Internet Access so long I can't remember when I first started but it's been years. I've had great success with PIA and I never fire up a device locally without it. It does have a killswitch, advanced killswitch, split tunnel, multi-hop with shadowsocks or socks5 proxy, openVPN or Wireguard configurations, and a dedicated IP option.
I've tried other top name VPNs, but imho, none come up to what PIA does.
Hey bro. I'm just a FNG here, but I've found that the more detail you can give, the better the results (answers) will be. However, two sentences about a Cloudfare error is probably not going to garner much interest. People here I've found, are willing to help, but they can't guess what it is you're talking about.
Sure, but there are a lot of things you can do with the use of a good firewall, Pi-Hole, VPN, et al, you can mitigate those leaks. Anytime I fire up a new piece of software, my firewall pops up and says 'Hey bro, you really want this chatty piece of software running uninhibited on your network?' and here I go plugging holes. It's not 100%. Some software absolutely refuses to work unless it has internet access. Bluebeam comes to mind. You do what you can, and decide if the hardwired software is something you really need or not.
The same thing can happen even when you are first doing the setup process.
I might get a bit too stressed about standing up a server than I should, but this notion has always been in the back of my mind, prompting me to hurry the fuck up and secure everything before some bot detected I was remiss we in having this or that in place in the initial setup. So, it's like a sprint trying to get all security in place.
I don't share my servers with others like a lot you guys do, so it's a little simpler. Implementing host.allow and host.deny (ALL:ALL) does the trick. Over the course of 24 hours, I think, conservatively hundreds of bots visit.
I've always figured that if it was free on the internet, at some point I'd have to find something else to do the same as the former free software/item. That's just the way it goes. Hardly anything stays the same.
Dude. Just wanted to catch up with you and say 'thanks' for pointing me in the direction of the fork. It's been running a week now, updating as it should, with no issues whatsoever.
Interesting. I have a whole house Generac too x 2. I don't have a fancy set up like yours tho although mine came with the switching mechinism. Mine are the G0072910 model, and tho I am not one for putting wi-fi on any and everything willy nilly, but I would have to say it is handy. Also the wi-fi on the Traeger is very nice too. Out where I am is mostly farming and we are some of the last people to get power restored. Thankfully, this state has a real good track record for keeping the power on.
For the rack in the closet, I cut a 4" duct off the ac, and piped it into the top of the closet. For one of my computers, it seemed to always run hot, so I bought two 6" box fans and mounted one over each of the two CPU. I have a little gadget that comes with Open Hardware Monitor so I can keep an eye on it. Currently running 100 freedom degrees, but it will fluctuate +/- 10 degrees depending on load. The only downside is they are a bit noisy, not extremely, but you can hear them buzzing away keeping shit cool so I don't complain much and just turn the music up. LOL
idk..Some of the stuff I've heard sounds like they eavesdropped in on a board room roundtable. Other stuff sounds like instructions how to install something. They probably are siphoning data off YT.
A few years ago I picked up an online gig with a company that trained AI. You'd log in to your dashboard and be presented with questions you had to answer in the best way, such as 'Is the earth round?'. Well, it's round in nature but is not perfectly round. So you'd have to pick the best solution from the answer list. It was interesting, but tedious. It put taters on the table, so I got that going for me....which is nice.
I'm a big fan of options my dude. Checked it out. Looks very interesting. I do like these video caps you guys include in your instructions. Being a very visual person, it helps out a lot. It is bookmarked in my projects folder.
I did not know Caddy could do that. TIL
Thanks