thisisawayoflife @ thisisawayoflife @lemmy.world

Posts

8

Comments

406

Joined

2 yr. ago

Nextcloud coupled with the Collabora (CODE) application suite.

This is probably the issue. I still think there should be something that tells the user that there is connectivity or throughput issues (progress bar or friendlier errors).

Get rid of the GI Bill, or at the very least, tie it to the draft. As in, you don't get post service benefits unless there's a draft going on. Otherwise you just volunteered.

Then, provide those same benefits we provided since 1944 to the legal and medical professionals. Kids enter into service at 18-20 and come out as public defenders, nurses and doctors, where they are subject to working in poor areas to help the underserved.

Permissive mode is definitely a life saver. My path was usually exercising the application in permissive mode for a few days then running the SELinux scanner on the log file to determine what roles needed to be setup. Same with the Debian/Ubuntu equivalent.

Good luck!

What is the reason to shy away from Ubuntu? It is pretty solid in terms of automatic updating and rebooting. I used to be hardcore centos but I gave up after all of the hubbub around 8. I just need to server to update, reboot when necessary and keep running all my stuff so I don't have to touch it. In my old age, I don't care to tinker anymore - I just want my services running and I want reports given to me about health and status.

Also, if you're concerned about privilege escalation, running a MAC is probably a good idea. SELinux saved my hide one a dozen years ago with a php bug where I did not sandbox an app properly. Thankfully, SELinux caught this and prevented anything bad from happening.

Yes! This is it! Thank you so much, I'm not sure how I overlooked this in settings!

Yep, we are in agreement! 😃

Don't cross streams.

How many tugs did it take to get their ships there?

I mean, we were there 20 years. The Afghans took over. People just don't like the Afghans that took over. 🤷🤷‍♀️🤷‍♂️

I kind of agree. 16 is way too young to legally drive, 18 is way too young to be able to join the military, 60-whatever is way too old for retirement, etc.

Metcal.

Good. Do Twitter, Instagram and Facebook next. NYC should be running it's own platforms for information dissemination and citizen engagement.

Cool

Secure SSH. You should disable all password login capability and tighten the ciphers, KEX and MAC requirements. This will force modern SSH terminal use, something a lot of bots don't do, so they won't even get to the point of key exchange.

https://cipherlist.eu/

On your client, you can define an SSH config with a list of friendly host names that include direct IP addresses, the key to use to initiate login and whatever other properties you need. This way, you can just type in "ssh" and you don't need to specify the key or IP address every time.

Finally, configure Fail2Ban to ban/block on first failed SSH attempt. You won't be falling to login if you've configured a config definition file and are using keys.