ryokimball
@ryokimball@infosec.pub
- Comment on Realities of hosting a tor relay node at home 1 week ago:
I feel like I should mention the Snowflake browser plug-in, which to my understanding, creates a relay in your browser basically.
- Comment on Encrypting without full disk encryption question 1 week ago:
Yes, you can have docker scripts decrypt a drive/storage. You might also consider an encrypted home partition separate from the root partition, or user space encryption of your home directory.
- Comment on Fresh Proxmox install w/ full disk encryption—so install Debian first, then Proxmox on top? 2 weeks ago:
I think when people want to remotely decrypt fde the usual advice is installing dropbear SSH to remotely enter the password. Sorry for not providing links but it should be easy to find.
- Comment on Chrono Odyssey: 17-Minute Gameplay Walkthrough 2 weeks ago:
www.youtube.com/watch?v=xOJMQcBnwFc
Found it on youtube. Couldn’t get the IGN webpage to play it (at least, not without signing up for stuff)
- Comment on File collecting program? 3 weeks ago:
Firefox Send is open source, even though the public service is no longer offered.
Here are some public instances and instructions for self hosting: github.com/timvisee/send-instances/tree/master?ta…
- Comment on IPv6 for self hosters 4 weeks ago:
Thanks for posting this. The idea of individual services having their own IP address had never occurred to me and would solve so many issues.
- Comment on Self hosted Teams alternative? 5 weeks ago:
I have not tried Matrix yet but I hear it’s a good replacement, fashioned more to the likes of Discord but I think it has everything you’re looking for
- Comment on In 2005, OLPC’s $100 laptop was going to change the world — then it all went wrong 1 month ago:
www.youtube.com/watch?v=OefB1PG0vY8
The Children’s Machine – Dual Core
- Comment on Using DVD slot for second 3.5" drive? 1 month ago:
Occasionally some manufacturers use some weird proprietary connection but usually both DVD drives and 3.5" disks use the same SATA connectors. Heck, even in the old IDE/PATA days you could use the same connection on either.
So yeah, the connection is the same and probably will plug and play without any configuration needed
- Comment on Self hosted place check-ins 1 month ago:
I’ve heard that immich and other picture-organizing software can will something like this?
- Comment on [deleted] 2 months ago:
I don’t have my glasses on right now but just reading the title, sounds like you might want this
- Comment on How to self-host a distributed git server cluster? 2 months ago:
So, to be clear, GitHub is not git. Git is intrinsically distributed. GitHub is basically a repository Management service.
I did some googling for about 10 seconds and afaik GitHub does not support any type of self hosting. I know you can selfhost gitlab , but I don’t see a project for either GitHub or gitlab called spokes.
Not knowing anymore than this about what you actually want to accomplish, my advice would be to just figure out how to run your own git server (without the management fluff) and do a 3-2-1 backup scheme. You could of course also create a gitlab instance with an HA set-up, plus backing that up to the cloud.
- Comment on US Gov Funding Expires for MITRE- Cyber Vulnerability Database 2 months ago:
- Comment on Secrets 2 months ago:
- Comment on Encrypting data on local servers? 2 months ago:
I just bought some PoE hats for my rpis, and have a managed PoE switch; rumor is, this combo basically translates to rPi WoL.
(Not meaning to ignore the rest of your comment, but not in a position to respond fully)
- Comment on Encrypting data on local servers? 2 months ago:
This has been on my mind, I have yet to do it but the implementation seems trivial.
You can use typical luks full disk encryption with a password. Luks actually has five password slots. Passwords do not have to be actual text, they can be a file or even part of a file.
So my idea is, buy some really cheap, low profile USB flash drives and store some seemingly innocuous data like cat pictures or public domain books, IDK and it doesn’t matter what the actual data is. Use full disk encryption and set a regular password, then add a second password that is a file or part of a file that lives on the flash drives, and have it set up to look for that file on boot as an option for unlocking.
Now the disc is fully encrypted but will boot/reboot without interruption as long as the flash drive is installed. You can remove the flash drive when you’re feeling paranoid, or even better only install it when you are going to be away for a while. If you leave with the machine having the flash drive but are feeling worried, you can remote into the machine and edit / delete the file or just clear the key slot from Luks.
That’s what’s been on my mind, anyway. I think the typical suggestion/solution is to just use drop bear and remotely unlock using that, or don’t use full disk encryption and selectively encrypt your data instead (partitions or userspace encryption).
I’m not going to proofread this so I hope it makes sense
- Comment on Who's fastest, Sonic or The Flash? 3 months ago:
Both can go faster than light and “therefore” break through dimensional thresholds or go backwards in time; at that point actual measurement is kinda pointless. However, Flash is bound to the Speedforce (of whatever dimension/timeline/etc he’s in) and when that’s shared with any other speedsters, he becomes less capable. Sonic does not seem to share this “weakness” therefore would be considered faster.
This is the same argument for why Superman is actually faster than Flash, too. And ignores the use of chaos emeralds.
- Comment on Introducing old.infosec.pub 4 months ago:
Oh, I love this. Saw the original request but didn’t realize how much I wanted it. Thanks!
- Comment on YSK: There's a protest today at noon at your state capitol. 4 months ago:
My suspicion of these “data collecting” / honey pot claims are that the claims themselves are suppression tactics