savvywolf
@savvywolf@pawb.social
Hello there!
I’m also @savvywolf@mastodon.scot , and I have a website at www.savagewolf.org .
- Comment on What actual damage do you secure your servers against? Whats the attack vector? 21 hours ago:
People exfiltrating movies from your Jellyfin account sounds harmless until you get a knock on the door from the police asking why you’re running a piracy sharing site. Depending on the attacker’s level of access, they may also wonder why your server is now serving kiddie fiddling videos. Or maybe the attacker just replaces all your movie metadata images with ones from the Bee Movie.
To me at least, DOS and region locking should come after properly locking down public facing services. They aren’t 100% reliable at preventing intrusions.
I’d be surprised if there wasn’t a large difference between the power usage of a cpu at rest (like most servers will be) and one at full power. Especially if it had a gpu in it. They certainly sound a lot louder in my experience.
You can never be truly sure how bad a compromised system has been compromised, or even easily detect when it has happened. It could be running as part of a botnet, stealing your credentials or probing your local/mesh network.
In my eyes, competent cybersecurity abilities are an important part of selhosting which seems to fall by the wayside. It’s important to know exactly what your server is doing, what is running and who has access. If your system is on the public internet, you have a moral obligation to behave and not have it turn into a botnet or spam machine.
- Comment on Those who are hosting on bare metal: What is stopping you from using Containers or VM's? What are you self hosting? 9 months ago:
I’ve always done things bare metal since starting the selfhosting stuff before containers were common. I’ve recently switched to NixOS on my server, which also solves the dependency hell issue that containers are supposed to solve.