mangaskahn
@mangaskahn@lemmy.world
- Comment on YSK about 15 bean soup. 1 day ago:
Oh, sure, it’s fine with Skittles, but do that with people and they get all mad about it.
- Comment on Including a Pangolin VPS in homelab cluster? 3 days ago:
A layered defense is always best. Nothing is 100%, but knowing your threat model will help define how far you have to go and how many layers you want in the way. Defending against State level actors looks different than swatting the constant low effort bot traffic. You’re right, if a bad actor gets root on your machine, all security is forfeit. The goal is to minimize that possibility by keeping applications and packages updated and only allowing necessary connections to the machine. You mentioned wireguard or tail scale. Set that up first. Then set up the host firewall to only allow outbound traffic onto the VPN to the required ports and endpoints on the LAN. If the VPS isn’t hosting any public facing services, disable all traffic except the VPN connection from and to the public Internet both on the cloud provider’s firewall and the host firewall. If it is hosting publicly accessible services then use tools like fail2ban and crowdsec to identify and block problem IPs.
- Comment on Including a Pangolin VPS in homelab cluster? 3 days ago:
Firewall rules on outbound traffic from the VPS to the LAN would do it. Allow traffic to the hosts and ports that the VPS needs to reach and block everything else.
- Comment on It's Not Just You: Music Streaming Is Broken Now 6 days ago:
That’s true, from a certain point of view. What they actually did was give everyone a common target. We still get everything compressed and limited into a flat line, just now we don’t have to adjust the volume on our stereo between songs.
- Comment on Using Clouds for too long might have made you incompetent 2 months ago:
I agree with your lack of affection for cloud services, but I think your view might be a little skewed here. Does a senior mechanic need to understand the physics of piston design to be a great mechanic, or just gather years of experience fixing problems with the whole system that makes up the car?
I’m a Senior Systems engineer. I know very little about kernel programming or OS design, but i know how the packages and applications work together and where problems might arise in how they interact. Software Engineers might not know how or don’t want to spend time to set up the infrastructure to host their applications, so they rely on me to do it for them, or outsource my job to someone else’s computer.
- Comment on Cultural differences 2 months ago:
If you want to live vicariously, check out this playlist. A guy did just that and his channel is great.
- Comment on Here, have some unpleasant knowledge about Mario. 5 months ago:
Perhaps they’re carried. It would be pretty easy to grip them by the husk.
- Comment on How would you know if you ate a bad prune? 5 months ago:
If your monkey dies, the dates were bad, not sure if it works for prunes though.
- Comment on The universe is bottle-necked at processor speed 10 months ago:
Good enough for me. 🤷♂️
- Comment on Beware Hollywood’s digital demolition: it’s as if your favourite films and TV shows never existed 11 months ago:
The Disney Vault!