jemikwa

@jemikwa@lemmy.blahaj.zone

This is a remote user, information on this page may be incomplete. View at Source ↗

⁨Comment⁩ on ⁨The percentage of the population who did/didn't know of Crowdstrike probably reversed in the past week⁩ ⁨⁨3⁩ ⁨months⁩ ago⁩:
It’s definitely not the latter. It’s a fancy antivirus known as an EDR - Endpoint Detection and Response. Purely security software for defending against cyber attacks
⁨Comment⁩ on ⁨Leaked Windows 11 "Government Edition” that has no telemetry tracking or bloatware is actually FAKE⁩ ⁨⁨4⁩ ⁨months⁩ ago⁩:
This might be fake, but LTSC is not. It’s been around in Windows 10 for years, designed for bloat free stability for IoT and operational devices. A consumer shouldn’t technically use it but there are ways.
I don’t know how much 11’s version has been debloated, but it might be a good experience.
⁨Comment⁩ on ⁨Am I supposed to ask stupid questions here, or *not* ask stupid questions?⁩ ⁨⁨6⁩ ⁨months⁩ ago⁩:
WHAT
When did it die? That’s so sad
⁨Comment⁩ on ⁨Best deal you ever got?⁩ ⁨⁨7⁩ ⁨months⁩ ago⁩:
I bought Minecraft a month before Beta came out and man what a deal that was. Only something like $10. I got thousands of hours out of that over the following 5ish years. I don’t play it as often any more, but I still think it was worth it
⁨Comment⁩ on ⁨Google now blocks spoofed emails for better phishing protection⁩ ⁨⁨7⁩ ⁨months⁩ ago⁩:
SPF, DKIM, and DMARC are standards that improve email sender authenticity and should be enforced by every email provider. This is a great next step that basically enforces that the source of the message is pre approved by the domain’s owner. There’s no downside and any company seriously impacted isn’t using bare minimum email sending settings.
You still have to be cautious for lookalike domains, but this should help block lazy spoofing attempts.
⁨Comment⁩ on ⁨What are y'all buying on the steam sale?⁩ ⁨⁨8⁩ ⁨months⁩ ago⁩:
Sorry, I don’t really have any for PC, we played Pico using remote coop
⁨Comment⁩ on ⁨CFCs⁩ ⁨⁨8⁩ ⁨months⁩ ago⁩:
By comparison, there were a few systems that had issues on February 29th because of leap day. Issues with such a routine thing in this current day should be unthinkable.
⁨Comment⁩ on ⁨What are y'all buying on the steam sale?⁩ ⁨⁨8⁩ ⁨months⁩ ago⁩:
Pico Park made our group rage in the best way. It’s a cute and fun game
⁨Comment⁩ on ⁨Anybody here running AD on-prem in your homelab?⁩ ⁨⁨9⁩ ⁨months⁩ ago⁩:
In shorter terms to what the other comment said, your website won’t work in networks that use DNS served by your DC. The website is fine on the Internet, but less so at home or at an office/on a VPN if you’re an enterprise. “I can’t go to example.com on the VPN!” was a semi common ticket at my last company 🙃
⁨Comment⁩ on ⁨Downfall (Steam Standalone) was Breached. Please read.⁩ ⁨⁨10⁩ ⁨months⁩ ago⁩:
This is a mod for Slay the Spire, not the game itself. You’re still free to buy it, a lot of people enjoy it, but the mod devs won’t get anything
⁨Comment⁩ on ⁨Self-Hosting Email - Software Recommendations?⁩ ⁨⁨11⁩ ⁨months⁩ ago⁩:
Short answer, likely yes. It’s not definitive, you could still slip by after sending enough mail, but you are also very likely to get whacked because that VPS doesn’t have an email sending reputation.

Longer answer, email gateways like Google, Microsoft, and Proofpoint don’t really care who owns what IP. Well, they might, but they’re more concerned about the sending habits of an IP. While you might send good mail from that IP, there’s no reputation for it, so you could be whacked for having a neutral reputation (the ol’ credit score dilemma but for email). In order to have a good reputation, you have to send a large volume of messages very gradually over several weeks to “warm” your IP as a reputable sender. I went over this slightly more in detail in another reply, but this article is pretty concise on how you could do this with a dedicated IP at a provider like SendGrid: docs.sendgrid.com/ui/…/warming-up-an-ip-address
⁨Comment⁩ on ⁨Self-Hosting Email - Software Recommendations?⁩ ⁨⁨11⁩ ⁨months⁩ ago⁩:
It’s about sample size. Mail gateways won’t designate an IP as a reputable sending IP until it assesses a large volume of mail sent over a long period of time. You can’t send the quantity it wants all at once or even in a short window because then you’ll be designated as a spammer. So you start small with a few a day and gradually ramp up sending over multiple weeks or months to eventually send several thousands of messages in that period.

Spammers and malicious actors too often spin up new IPs for sending mail, so gateway patterns already implicitly mandate that email should come from IPs it’s already judged reputable.

You as an individual can’t reasonably warm your own IP. This is why services like Amazon SES or Sendgrid exist because they have huge IP pools that are ready to go. Plus, those services are very concerned with reputation and have bounce/complaint metrics defined to warn customers that abuse or poorly configure their sending habits.

This next example is what I’m most familiar with, but I’m sure there are other services like this. If you’re a big enterprise and want your own dedicated sending IP because you’re concerned about using a shared pool, you could use something like Amazon Pinpoint which allocate IPs for your org to use in SES, but they have to be warmed before you switch your production workloads over to it full-time. It automates some of the gradual-ness of warming so you use a mix of SES plus your Pinpoint IPs to keep mail flowing for your product.
⁨Comment⁩ on ⁨Challenge accepted⁩ ⁨⁨11⁩ ⁨months⁩ ago⁩:
Ohno
⁨Comment⁩ on ⁨Self-Hosting Email - Software Recommendations?⁩ ⁨⁨11⁩ ⁨months⁩ ago⁩:
Definitely listen to this. IP Warming is a very real problem and you have to send thousands of messages for most email gateways to 1) Mark you as a proper email sender, and 2) classify you as a reputable one that isn’t sending spam. Using a public/private cloud IP isn’t enough, it should be a service already used for mail sending.

If you self host email, make sure it isn’t at home. ISPs often block SMTP traffic to keep people from spamming others from their home. A lot of IP blocklists also auto block home IPs so you may not ever get your messages delivered.
⁨Comment⁩ on ⁨Word???⁩ ⁨⁨11⁩ ⁨months⁩ ago⁩:
Nah I love that team haha I might steal it during my next online session
⁨Comment⁩ on ⁨Word???⁩ ⁨⁨11⁩ ⁨months⁩ ago⁩:
Online, we call it a “bio break” or just “bio” because it can also include getting more water or snacks
⁨Comment⁩ on ⁨GoOn⁩ ⁨⁨1⁩ ⁨year⁩ ago⁩:
ONCE AND FOR ALL
⁨Comment⁩ on ⁨Ditching MyQ for OpenGarage - Open Source Garage Door Control⁩ ⁨⁨1⁩ ⁨year⁩ ago⁩:
We added a tilt sensor to our door that shows the state of the door for the most part. The threshold we have it at doesn’t detect if it’s partly open, but that’s okay for us because we never leave it cracked
⁨Comment⁩ on ⁨Ditching MyQ for OpenGarage - Open Source Garage Door Control⁩ ⁨⁨1⁩ ⁨year⁩ ago⁩:
Our solution that we set up years ago was to connect a Shelly to circuits on a normal, dumb door opener. The Shelly triggers open/closed itself and since the signal comes from the opener, there’s no crypto nonsense to figure out. It always works, no matter what MyQ/Chamberlain/LiftMaster do.
We also supplemented this with a tilt sensor so we know the state of the garage door. The door can still be cracked and not registered as opened, but that’s a compromise we’re okay with since we never leave it intentionally cracked.
⁨Comment⁩ on ⁨I finally figured out how to virtualize my OPNsense firewall. Suck it, Roku.⁩ ⁨⁨1⁩ ⁨year⁩ ago⁩:
Yeah you’d need an L7 application layer filtering firewall to catch DoH since it would detect the SSL packet signature on port 53. Unfortunately that balloons the cost of the device past a reasonable level for a home aficionado.
⁨Comment⁩ on ⁨WoW Is Finally Adding A New Endgame Activity, Made With Smaller Groups In Mind⁩ ⁨⁨1⁩ ⁨year⁩ ago⁩:
Or Variant/Criterion dungeons from xiv. Basically 4-man raids :/
⁨Comment⁩ on ⁨Most trustable hair shampoo company?⁩ ⁨⁨1⁩ ⁨year⁩ ago⁩:
Similarly, make sure if you use any conditioner that it is silicone free. Sulfates also exist in shampoo to strip built up silicones from the hair, so if you’re removing sulfates, you’ll miss removing the silicones. Silicones can be any compound that ends in -cone.
⁨Comment⁩ on ⁨15 Underrated Indie Games⁩ ⁨⁨1⁩ ⁨year⁩ ago⁩:
I love CrossCode, makes me happy to see others point out how wonderful it is
⁨Comment⁩ on ⁨Easy peasy⁩ ⁨⁨1⁩ ⁨year⁩ ago⁩:
The good news is, based on the diagram looking like it’s straight from AWS docs, there’s a Cloud formation template for all that.
Bad news, good luck troubleshooting any of it if something breaks
⁨Comment⁩ on ⁨Best secure router for home use?⁩ ⁨⁨1⁩ ⁨year⁩ ago⁩:
My only complaint is that coming from a networking background, Ubiquity’s OS is awful and makes me want to gouge my eyeballs out. It’s not very granular in how you can configure certain filtering settings, dual wan setups are difficult to manually change over, and good luck looking at logs to troubleshoot any traffic flow issues (hint: you can’t).

For someone who just needs a firewall and a VPN endpoint, it’s great. If you need anything more than that, get opnsense/pfsense.