emhl
@emhl@feddit.org
- Comment on [deleted] 1 week ago:
Privileged ports can be used by processes that are running without root permissions. So if the sshd process would crash or stop for some other reason, any malicious user process could pretend to be the real ssh server without privilege escalation. To be fair this isn’t really a concern for single user systems. But setting up fail2ban or only making ssh accessible from a local network or VPN would probably be a more helpful hardenening step
- Comment on [deleted] 1 week ago:
Running SSH on a non-provileged port brings new issues. And using 2222 doesn’t bring any meaningful security by obscurity advantages.
The rest of the options look nice. It would have if there would be explanations on what the options do in the example configs
- Comment on Federation map? 1 month ago:
The source code for it can be found on codeberg.org/wintermute/lemmymap
But with Wintermute going missing and feddit.de shutting down is has been shut down as well.
- Comment on Philosophy moment 3 months ago:
full source docs.google.com/document/d/…/edit?pli=1&tab=t.0