diegantobass

@diegantobass@lemmy.world

This is a remote user, information on this page may be incomplete. View at Source ↗

Came here for the biscuits

⁨Comment⁩ on ⁨I am cornholio⁩ ⁨⁨3⁩ ⁨days⁩ ago⁩:
Rrrrolios
⁨Comment⁩ on ⁨What's the security situation when opening a jellyfin server up for casting?⁩ ⁨⁨4⁩ ⁨days⁩ ago⁩:
This whole thread (that I shamelessly hijacked) is very informative and allowed me to understand that cybersecurity is in practice a mixture of concrete nerdy log books and vague feeling of being under a threshold of worthiness.

I woke up this morning and there was a faint noise coming from the server: immediately thought “ok that’s it, it’s pawned and become a node in a vast grid of malicious bots”…it was a cron verification of drives
⁨Comment⁩ on ⁨What's the security situation when opening a jellyfin server up for casting?⁩ ⁨⁨4⁩ ⁨days⁩ ago⁩:
Low hanging fruits are, in my personal case, pictures of my cats and public domain cultural artefacts.

Industrializing hacking of random servers sounds like a shitty idea at the end of the day…
⁨Comment⁩ on ⁨What's the security situation when opening a jellyfin server up for casting?⁩ ⁨⁨5⁩ ⁨days⁩ ago⁩:
Ignoring ? Nah someone mentionned my ISP might be protecting me uphill.
⁨Comment⁩ on ⁨What's the security situation when opening a jellyfin server up for casting?⁩ ⁨⁨5⁩ ⁨days⁩ ago⁩:
Non standard port. But aren’t secret chinese hack farm scanning wider than just 22 ? I don’t know and deep down believe that it’s pawned and scrubbing logs.
⁨Comment⁩ on ⁨What's the security situation when opening a jellyfin server up for casting?⁩ ⁨⁨5⁩ ⁨days⁩ ago⁩:
React2Shell is exactly the shitshow situation yes. Suddenly we are all at risk. But in this case, I’m sorry to say that my cats’ pictures are worthless.

Your point on nginx/wireguard makes me think that it might be better to htaccess through a reverse proxy than relying on a built in login system. For exemple, I should deactivate jellyfin’s login and put it behind an htaccess at the proxy’s level. Is that completely dumb?

Anyway, I clearly need to research “threat models” and cyber/infosec more. Thank you very much!
⁨Comment⁩ on ⁨What's the security situation when opening a jellyfin server up for casting?⁩ ⁨⁨5⁩ ⁨days⁩ ago⁩:
This is great thanks for this video
⁨Comment⁩ on ⁨What's the security situation when opening a jellyfin server up for casting?⁩ ⁨⁨5⁩ ⁨days⁩ ago⁩:
Aren’t zero day very specific? Or maybe it’s become a very generic term.

Anyway, I am under the impression that either it’s suddenly very simple to hack into EVERYONE because someone zero dayed the wireguard protocol and there a major flow in it, it’s a shitshow, for all, for some, just me or nobody, whatever. Or it’s a very targeted attack on me personaly, and that’s a whole other story and the means to protect my pictures of my cats and my cool public domain movies collection are different (think social engineering). Also port 22 being bombarded by brute force attempts so don’t choose a password that’s 6 letters thanks.

I KNOW I am missing many things, but still, I don’t get it.
⁨Comment⁩ on ⁨What's the security situation when opening a jellyfin server up for casting?⁩ ⁨⁨5⁩ ⁨days⁩ ago⁩:
Quick question: If I look through the ssh log and I don’t see the hundred of attempts, what could be going on?..
⁨Comment⁩ on ⁨What's the security situation when opening a jellyfin server up for casting?⁩ ⁨⁨5⁩ ⁨days⁩ ago⁩:
Yeah sorry I missed the part where it has no authentification whatsoever, that’s just open bar.
⁨Comment⁩ on ⁨What's the security situation when opening a jellyfin server up for casting?⁩ ⁨⁨5⁩ ⁨days⁩ ago⁩:
Okay thanks for mentionning overblown paranoia, that’s what I have.

What kind of exploitable server misconfigurations are we talking about here?? Brute forcing won’t work because fail2ban, right? I’m a noob and deep down I’m convinced that my homeserver is compromised and has beenpart of a bitcoin mining farm for years… Yet, not a single proof…
⁨Comment⁩ on ⁨What's the security situation when opening a jellyfin server up for casting?⁩ ⁨⁨6⁩ ⁨days⁩ ago⁩:
Dumb question: why does everyone is so terribly afraid of opening stuff to the internet ? What’s the scenario?
⁨Comment⁩ on ⁨Is anyone NOT steaming their Music?⁩ ⁨⁨2⁩ ⁨months⁩ ago⁩:
After steaming I compress the tracks into a purée with 192 kilograms of olive oil. Good omega-3kHz.
⁨Comment⁩ on ⁨Is anyone NOT steaming their Music?⁩ ⁨⁨2⁩ ⁨months⁩ ago⁩:
It’s also the only cooking method that preserves nutrients in the groovy basslines
⁨Comment⁩ on ⁨US presidents are getting younger over time⁩ ⁨⁨2⁩ ⁨months⁩ ago⁩:
That’s a major discovery of political sciences through the use of advanced data visualization. I’d aim straight for the American Journal of Political Science. THAT’S SCIENCE RIGHT THERE GENTLEDUDES!
How could AI be better than an encyclopedia?
Submitted ⁨⁨3⁩ ⁨months⁩ ago⁩ to ⁨nostupidquestions@lemmy.world⁩ | ⁨27⁩ ⁨comments⁩
⁨Comment⁩ on ⁨When will we have reached enough productivity?⁩ ⁨⁨4⁩ ⁨months⁩ ago⁩:
Karl Marx enters the chat
⁨Comment⁩ on ⁨The hidden cost of self-hosting⁩ ⁨⁨5⁩ ⁨months⁩ ago⁩:
That’s the neat part…
⁨Comment⁩ on ⁨The hidden cost of self-hosting⁩ ⁨⁨5⁩ ⁨months⁩ ago⁩:
It looks like we found another person that’s immune! Sample their blood
⁨Comment⁩ on ⁨The hidden cost of self-hosting⁩ ⁨⁨5⁩ ⁨months⁩ ago⁩:
Scaryyyy !

I just very recently discovered that bitwarden (vaultwarden) has this perfect feature like a “trusted contact” (not sure) where you can choose a person that can request access to your password vault, and if you DON’T answer in X days (configurable), they get access.
⁨Comment⁩ on ⁨The hidden cost of self-hosting⁩ ⁨⁨5⁩ ⁨months⁩ ago⁩:
And so little time!
⁨Comment⁩ on ⁨The hidden cost of self-hosting⁩ ⁨⁨5⁩ ⁨months⁩ ago⁩:
You’re right, but I’d need a graphic card < money.tar.gzip
⁨Comment⁩ on ⁨The hidden cost of self-hosting⁩ ⁨⁨5⁩ ⁨months⁩ ago⁩:
Definitely second your feeling. I am similar in my relationship to cleaning. It feels like a lot of effort, but efforts feel good afterwards.
⁨Comment⁩ on ⁨The hidden cost of self-hosting⁩ ⁨⁨5⁩ ⁨months⁩ ago⁩:
Thinking back on you rhetorical question, I think it’s just it.

It’s the goal. The goal was always to try and make me think that I am not just simply taking care of my stuff (and by extension myself). Because taking care (of yourself) isn’t valorized in a capitalist society.

Fuck it all. I’m putting YEARS of work into just sorting myself out.
⁨Comment⁩ on ⁨The hidden cost of self-hosting⁩ ⁨⁨5⁩ ⁨months⁩ ago⁩:
Or I could not. Ever.
⁨Comment⁩ on ⁨The hidden cost of self-hosting⁩ ⁨⁨5⁩ ⁨months⁩ ago⁩:
I’m in the long process of paperlessing. It’s THE perfect example of that (not so) hidden cost. But there’s no lying or trying to sell you magic. You put effort in a systematization that empowered by a great tool and a well thought out and tried model, and voila, winning.
⁨Comment⁩ on ⁨The hidden cost of self-hosting⁩ ⁨⁨5⁩ ⁨months⁩ ago⁩:
The workflow with linkding and the linkding injector is gold.
⁨Comment⁩ on ⁨The hidden cost of self-hosting⁩ ⁨⁨5⁩ ⁨months⁩ ago⁩:
Actualy a lot more than I thought, and they bring joy, as souvenirs :)
⁨Comment⁩ on ⁨The hidden cost of self-hosting⁩ ⁨⁨5⁩ ⁨months⁩ ago⁩:
Pain feels good. It’s like sport, is it? Is it sport? I’m healthy.
⁨Comment⁩ on ⁨The hidden cost of self-hosting⁩ ⁨⁨5⁩ ⁨months⁩ ago⁩:
This. I’m not that old yet, but the realization hit me in the face pretty hard. And all the more reasons to sort it out. And definitely simplify. Or “make it usable” let’s say.