EncryptKeeper
@EncryptKeeper@lemmy.world
- Comment on Reitti (v1.1.0) Update: Family mode, faster processing, colors! 3 days ago:
They sorta look like they have the exact same focus
- Comment on Is there anything like a self-hosted version of medium of substack ? 3 days ago:
The problem isn’t really CSS, it’s that each theme has its own components with their own rules you have to learn. There’s no real standardization even within one kind of SSG.
- Comment on Is there anything like a self-hosted version of medium of substack ? 4 days ago:
- Comment on Is there anything like a self-hosted version of medium of substack ? 4 days ago:
You can tell OP is a younger Gen Z by this post lol.
It sounds like a stupid question but if OP isn’t 30+ it’s perfectly understandable to not be aware of the former ubiquity of self hosted blogs.
- Comment on Is there anything like a self-hosted version of medium of substack ? 4 days ago:
SSG are really a pain in the ass to work with, especially if you want something other than the standard theme.
- Comment on Got my first script kiddy 6 days ago:
Port scanning in and of itself is not really abuse.
Being a script kiddie that’s abusing AWS abuse report process on the other hand…
- Comment on The Steam controller was ahead of its time 1 week ago:
That’s sounds truly awful lol
- Comment on The Steam controller was ahead of its time 1 week ago:
I’m struggling to wrap my head around how a controller without two joysticks is supposed to word in the year of our lord 2025
- Comment on Anubis, The Opensource Defender Against AI Bots: I fight bots in my free time 1 week ago:
The creator of Anubis did an interview on the Selfhosted Show podcast a little while back and explains this is detail, and it’s worth a listen.
The interview begins at 6:30
- Comment on VMware’s rivals ramp efforts to create alternative stacks 1 week ago:
Is Proxmox really a VMware competitor? I mean it is another virtualization system but even like Hyper-V these days is not as big of a shitshow as it once was and it much closer in functionality to VMWare. And as jank as it is I’m seeing companies move to Nutanix over Proxmox
- Comment on Old gamers don't understand what mobile gaming has become 1 week ago:
Yes the needs of your very special child are so unfathomably different from all the other children in the planet lol
- Comment on goodbye plex 2 weeks ago:
Honestly, the easiest thing to do is put it on a mesh VPN like Tailscale and connect their streaming device to your tailnet. If they’re non technical parents then if their TV OS doesn’t support Tailscale, you can pick up a Walmart brand ONN streaming box for <$50 which supports for Tailscale and Jellyfin.
- Comment on goodbye plex 2 weeks ago:
I am also not up to date on Jellyfin security issues but the biggest one I care about is that its clients don’t support OIDC. There’s a neat plugin for OIDC, but without client support it only works with the web client and I’m not a fan of leaving login pages open to the internet.
- Comment on Why is the manosphere on the rise? UN Women sounds the alarm over online misogyny 2 weeks ago:
I wonder what the comment that was replying to looks like…
- Comment on Nginx Proxy Manager 2.12.4 Released with Certbot Enhancements 2 weeks ago:
Caddy is my web server of choice but it doesn’t have a UI like NPM.
- Comment on Jellyfin over the internet 2 weeks ago:
Yeah Nextcloud won’t mention VPN for hardening because the assumption is you want it publicly accessible.
I have a number of things publicly accessible and there are a number of things I do to secure them. crowdsec monitoring and blocking, a reverse proxy with OIDC for authentication, a WAF in front of it all. But those are only for the things I have exposed because I want other people to use them. If it’s something just for me, I don’t bother with all that and just access it via VPN.
- Comment on Jellyfin over the internet 2 weeks ago:
It’s not the only answer, but it’s the one that will get you the most secure with the least amount of effort.
- Comment on Jellyfin over the internet 2 weeks ago:
Not so much a fight as an exercise in futility lol
- Comment on Linkwarden (v2.11.0) - open-source collaborative bookmark manager to collect, organize, and preserve webpages, articles, and documents (tons of new features!) 🚀 2 weeks ago:
Worse. KaraKeep was partially inspired by Linkwarden.
- Comment on Linkwarden (v2.11.0) - open-source collaborative bookmark manager to collect, organize, and preserve webpages, articles, and documents (tons of new features!) 🚀 2 weeks ago:
Have they fixed the titles of saved links being clipped for no reason?
I found Linkwarden entirely unusable because of this and switched to KaraKeep the moment I realized they’d mastered the ancient magic “Make sure the link titles are actually fully visible”
- Comment on Death Stranding 2: On the Beach | Review Thread (92/100 OpenCritic) 2 weeks ago:
The first game is a ton of fun. And by all accounts it seems this one is as fun if not more so. It’s even reviewed better. If you liked the first one there’s no reason to think you wouldn’t like this one.
- Comment on Jellyfin over the internet 2 weeks ago:
This is the biggest weakness of Jellyfin. Native OIDC support would really be a no brainer at this point.
- Comment on Jellyfin over the internet 2 weeks ago:
You’ve argued from a position of weakness against a well known and accepted truth, and have provided zero proof to back up your outlandish claim. On the contrary you’ve admitted to the existence of unwanted access attempts to your services, as well as your usage of mitigations to the same problem you insist doesn’t exist.
It’s over man. You’re certified expert yapper but that’s not going to convince me or anyone else here that you know what you’re talking about.
- Comment on Jellyfin over the internet 2 weeks ago:
It’s over man. You’ve made it very clear you have no idea what you’re talking about, how any of this works, or even what’s going on with your own selfhosted services. Back peddling away from your own arguments and trying to sweep up the beans you’ve already spilled isn’t going to help your case.
Maybe stick to your day job, I just don’t think that cybersecurity career is in the cards for you.
- Comment on Jellyfin over the internet 2 weeks ago:
As OP should be. 2k attempts a day at unauthorized access to your services is a pretty clear indicator of that. Seems you’ve mitigated it well enough, why would you suggest that OP not bother doing the same? If you’re so convinced those 2k attempts are not malicious, then go ahead and remove those rules if they’re unnecessary.
Perhaps as someone with only meager experience running a Jellyfin server who can’t even recognize malicious traffic to their server, and zero understanding of the modern internet threat landscape, you shouldn’t be spreading misinformation that’s potentially damaging to new selfhosters?
- Comment on Jellyfin over the internet 2 weeks ago:
a rule blocking connections from other countries, and also requiring the request for the login page come from one of the services on your domain, will block virtually all malicious attempts to access your services.
Whoa whoa whoa. What malicious attempts?
You just told me you were the statistical wonder that nobody is bothering attack?
That’s 2k requests made. None of them were served.
So those 2k requests were not you then? They were hostile actors attempting to gain unauthorized access to your services?
Well there we have it folks lmao
- Comment on Jellyfin over the internet 2 weeks ago:
Yes they are. To suggest they’ve would be a statistical wonder.
2k requests made to the Authelia login page in the last 24 hours
Are you logging into your Authelia login page 2k times a day? If not, I suspect that some (most) of those are malicious lol.
You don’t know jack shit about what’s going on in another persons network
It’s the internet, not your network. And I’m well aware of how the internet works.
I’m not sure why you’re acting like some kind of expert
Well I am an expert with over a decade of experience in cybersecurity, but I’m not acting like an expert here, I’m acting like somebody with at least a rudimentary understanding of how these things work.
- Comment on Signatures skyrocket for Stop Killing Games campaign after big youtubers take up the cause, resulting in 100k signatures in 2 days. (Details on how to help in text body of post) 2 weeks ago:
There’s a group with a petition to “Stop Killing Games” which seeks to legally remedy the issue of game developers making games that are later turned off and left unplayable even in the case of them being single player.
Thor or PirateSoftware owns a development outfit that makes indie games and he also does a lot of streams. He’s against Stop Killing Games, but doesn’t seem to even understand it, and has publicly spoke out against it, going so far as to spread misinformation about it.
- Comment on Death Stranding 2: On the Beach | Review Thread (92/100 OpenCritic) 2 weeks ago:
What about the 92 metacritic score and the vast majority of reviews calling it “better than the first game in every way” makes it look like a 5/10 for you?
- Comment on Jellyfin over the internet 2 weeks ago:
Anything you expose to the internet publicly will be attacked, just about constantly. Brute force attempts, exploit attempts, the whole nine. It is a ubiquitous t and fundamental truth I’m afraid.