So first, let me be clear - I don't know if an alternative to that software you first brought up. But some of our earlier CTFs had a similar issue with isolation.
We ended up spinning up new VLANs per contestant, each having a single Kali Linux VM with xrdp, along with each contestants target systems. Our router/fw blocked all access in/out of those VLANs, save for RDP/SSH traffic from our Apache Guacamole server on the DMZ.
So contestants would hit our portal (Guacamole), then from there connect into their own dedicated Kali instance and environment.
Later, we had to make additional fw exemptions for our scoreboard/docs, etc.
I throw CTFs for a living (among other things), and I'm happy to help out a fellow Infosec person.
What kind of infrastructure can you deploy? Is this going to be in the cloud, on-prem (via a hypervisor like Proxmox/vSphere, or hosted on a single laptop/server?
I found it myself, Note that if you're on a Steam Deck (like I am), you'll need to go to desktop mode.
Go to Steam, then Settings
Scroll down to Compatiblity, then look for the two toggles: Enable Steam Play for supported titles, and Enable Steam Play for all other titles. Ensure both are checked.
I also noticed that my "Run other titles with:" was not set to the latest Proton, but the dialbo 4 proton. Not sure if this made a difference?
I just got into act 3 of Balder's gate and took a break because I don't want the game to end. Instead, I have fallen back on my old favorite on the steam deck, Dave the Diver.
I put grapheneos on my old Pixel 6 as a "Yolo" phone for a Infosec conference this past year.
It's very... okay for apps. You effectively have two options, install a third party app store (F-Droid), or setup a new profile with Google services enabled and use Play store over on that.
GApps alternatives are mixed quality - nothing really beats Maps (at least in the US), but other things like Chrome are easily replaced with DuckDuckGo browser or Firefox.
It was an interesting experiment to see if I could go Google apps free, and it worked okay for 4 days, but going full time to it would be rough.
To add to this, technically Trump could still be elected president even without Colorado, but he would have to flip another state or multiple states to get to the 270 electoral votes.
Keep in mind Colorado went for Biden by a margin of 13% last time - it trends blue-ish/purple, so if Trump becomes the nominee, his path to 270 would probably not count on Colorado.
What this might do is deaden down ballet GOP candidates. The GOP wouldn't put up a replacement presidential candidate for just Colorado, so it would be write in only and that could mean less GOP straight ticket voters, impacting House and state elections.
One last thought - even if Trump loses this bid to remain on the ballot, I sincerely doubt it would impact his chances of being the party's nominee.
I'm not familiar with the Australian political terms, can you share what this means:
inner dialogue between their mobs and local governments
To me, that sounds like the Aboriginal/Torres Strait Islanders are free to think about what they want, and then form a potentially violent, roughly organized group of people to confront local officials... But I assume I'm missing something.
The podcast How Did This Get Made just did an episode on the movie Bats. It sounded so good from the first five to ten minutes of the pod that I stopped listening so it wouldn't get spoiled.
Maybe. It's also weird because ROG has their led control app, Aura which will auto adjust your RGB based on apps/profiles. She either had a profile set up to do the flashy-lid or it was triggered by an application.
Regardless, you would think a lawyer who requested such a device would know how to disable that profile and/or how to disable the light show without literally shutting the lid and covering it.
Well, it's a ROG laptop, and they can go for north of $1000 USD fairly easily.
What I'm curious about is why does her law firm do byod? You'd want client files locked down with whole disk encryption - and probably domain joined. It's much more likely that you get a Thinkpad or Dell something.
I've switched over to using a publicly resolvable domain name, but with a lan prefix (e.g. lan.mystuff.dev) so that I can do DNS challenge let's encrypt certs.
Paired with PowerDNS that acts as an authority for the lan.mystuff.dev domain, I can go to a legit certificate/SSL protected https://sonarr.lan.mystuff.dev url. If I wanted to, I could add cloudflare records for the same services exposed through my router (Like for vpn.lan.mystuff.dev) so that both internal and external resolution is possible.
The only thing I'd be wary of in that case is OS driver support. I don't have experience dual booting, nor with Windows support - but I'm sure other folks have gone that route.
I can weigh in on this - I've been using my Steam Deck docked and in desktop mode for about 6 months. The os is read-only, but you can switch it to RW... but that's the beginning of your troubles.
The Steam repo mirror is woefully out of date, and occasionally while installing packages with AUR/pacman there will be an untrusted key (untrusted because it's outdated) that prevents the package from being installed (or prerequisites from being installed)
The base OS+games rapidly consumes the NVMe. You can get a 1 or 2TB replacement for hundreds of dollars, but that's basically your only good option.
Every so often, they'll push an update that breaks your customizations - the OS goes RO again, your installed packages are deleted (but configuration files remain), meaning you have to do manual clean up before reinstalling.
pezhore @ pezhore @lemmy.ml Posts 9Comments 254Joined 3 yr. ago
So first, let me be clear - I don't know if an alternative to that software you first brought up. But some of our earlier CTFs had a similar issue with isolation.
We ended up spinning up new VLANs per contestant, each having a single Kali Linux VM with xrdp, along with each contestants target systems. Our router/fw blocked all access in/out of those VLANs, save for RDP/SSH traffic from our Apache Guacamole server on the DMZ.
So contestants would hit our portal (Guacamole), then from there connect into their own dedicated Kali instance and environment.
Later, we had to make additional fw exemptions for our scoreboard/docs, etc.