lungdart @ lungdart @lemmy.ca

Posts

1

Comments

98

Joined

2 yr. ago

All software ads exploits. Antivirus software mitigates already exploited systems.

And yes, some antivirus programs are infamous for being difficult to work with, but also remember that any vector that allows a user to easily override antivirus features can also be done by malicious software.

Moving the port doesn't reduce attack surface. It's the same amount of surface.

Tailscale is a bit controversial because it requires a 3rd party to validate connections, a 3rd party that is a large target for threat actors, and is reliant on profitability to stay online.

I would recommend a client VPN like wireguard, or SSH being validated using signed keys against a certificate authority your control, with fail2ban.

This is not true and bad security practice.

There are exploits that can be installed without a mistake made on the users part, the user can make a mistake, and almost every user downloads and open files regularly.

Windows is less secure than the other options, but the other options are not impenetrable. The biggest botnets are made of Linux IoT devices, and nobody opened the wrong email on they're thermostat...

What a virus scanner will do is check your filesystem and possibly program memory for known footprints. A tool like this can save you from becoming a node on a botnet or being crypto locked. More importantly, if you work from home it can save your company from this issue as well!

I think mandatory military service is likely a good thing for a population (maybe not the individual). With a highly trained population, volunteering would likely increase and reduce the need for conscription during times of war.

The benefits of military service for young adults are numerous. Discipline, exercise, comeradity, professional exposure, etc. Could reduce some of the mental issues we see due to isolation through technology. Of course I'm taking in peace time.

Sounds like you were out of resources. That is the goal of a DoS attack, but you'd need connection logs to detect if that was the case.

DDoS attacks are very tricky to defend. (Source: I work in DDoS defence). There's two sections to defense, detection and mitigation.

Detection is very easy, just look at packets. A very common DDoS attack uses UDP services to amplify your request to a bigger response, but then spoof your src ip to the target. So large amounts of traffic is likely an attack, out of band udp traffic is likely an attack. And large amount of inband traffic could be an attack.

Mitigation is trickier. You need something that can handle a massive amount of packet inspection and black holing. That's done serious hardware. A script kiddie can buy a 20Gbe/1mpps attack with their moms credit card very easily.

Your defence options are a little limited. If your cloud provider has WAF, use it. You may be able to get rules that block common botnets. Cloudflare is another decent option, they'll man in the middle your services, and run detection and mitigation on all traffic. They also have a decent WAF.

Best of luck!

kernel version beyond 5.6, so it doesn't allow any modification

Wut?

When coolant heats up, it can evaporate of there's a way out. Do you have any residue on the inside of your hood?

If you're experience a LOT of coolant loss it could be escaping into the engine through a falling head gasket. In this case you wouldn't see any residue on the inside of your hood.

God speed.

What you're looking for is an HRM. try these options: https://github.com/awesome-selfhosted/awesome-selfhosted#human-resources-management-hrm

Most people just use a browser these days, and they behave the same in every OS.

Steam has proton to run non native games on Linux, and works well enough for most things.

Try a few live images before making the switch.

Many programs have compile time options, and the binaries may not have them enabled.

Gotem!

You don't require docker to self host. You have a lot to learn, so trimming down the amount of things your doing is the right idea. Ignore it for now.

You don't have to buy a domain, you can use your IP directly, or use a free dynamic dns service.

Mastadon may be too complicated for a first host for a beginner. I would recommend trying something simpler first, but it's your hobby so do it how you want to.

Jack is the man. This is literally the only podcast I've ever listened to.

Very common.

Don't feel pressured to approve anything you don't want to, but still be chill. It's just work after all. (This duality takes years to figure out, but if you can, you'll be very valuable)

Get the PM involved. Bring it up in retro and stand up.

Examples.

"I don't feel this is PR is up to our company standards. Here's a link to the document. Specifically tests are breaking, coverage is reduced, and your using global variables. If you need help with quality we can code pair next sprint or if I finish my tasks early. Let me know"

"Just a reminder that we have 3 PRs with needs work sitting in the queue. If you're not able to finish them before the end of the sprint, let the scrum master/PM know in case it's a high priority"

"We've all signed off on a standards guideline, and lots of PRs are falling short. Either we need more training time each sprint to reach it, or were going to have to officially reduce our standards. Let me know which one the CTO prefers"

You'd need nested virtualization enabled on your CPU, but yup, you can do it.

Looks like you've edited /etc/default/grub with a kernel flag that may not be supported.

Try removing i915.enable_psr=0 from that file and trying again.

EDIT: Typos. I'm on mobile

I used to play it that way to. OP. To the max. It was more fun to try the other weapons and items to be honest. The game has tonnes of unique gear!

• Ff4, 6, and 7
• Chronotrigger
• Super Metroid
• Castlevania SOTN
• Zelda a Link to the past
• Tony hawk's pro skater 1 and 2
• Any of the street fighter
• Pokemon
• Star craft + brood war
• Diablo 1 and 2

And so much more!

Your host sets it's own DNS servers, if the router isn't on the list, they don't get pinged. Now they could try to man in the middle you, so you could try DNS over TLS, but it's probably not your issue.

You're DNS server settings likely never took hold. Like if you use a DHCP client, then override your DNS settings, that won't take effect until you request a new DHCP connection.

Some Linux distros will have local DNS servers that you always point to which are a pain to update as well. Not sure about Windows and MAC.

good luck man!

Try changing your DNS server in that case!