redlemace
@redlemace@lemmy.world
- Comment on Guinness wasn't proud of this one. 1 week ago:
Nah … The info is not 100% conclusive but it’s a huge risk to say the least. Still, there is more that does not add up. 36 can’s equals 9 Liters (304 US ounce) of red bull … Try washing down 9 Liters of a super sugary (lightly-) carbonated drink.
- Comment on Thoughts about my (potential) first server? 1 week ago:
No idea. Built-in in the Imm firmware. Just partial screenshot from imm web gui
- Comment on Guinness wasn't proud of this one. 1 week ago:
Yet 48hrs before the ‘event’ at Guiness HQ
- Comment on Am I doing this (networking) safely? 1 week ago:
Fail2ban does not listen on any port for it has no user interface. No interface at all actually. It’s just a process that monitors your logfiles and changes firewall rules and writes to syslog if you tell it to.
I run it on internet facing servers so I use a ‘regular’ install and never docker. I see no advantage for docker in this case, but one huge disadvantage: Docker changes a lot on the network side. It creates bridges, and picks IP’s all by itself. I hate that. (I know you can put in a lot of effort to manage it, but no thanks stay of my network config thank you)
- Comment on Guinness wasn't proud of this one. 1 week ago:
I only feel sorry for the Guinness World Record judge
- Comment on Thoughts about my (potential) first server? 1 week ago:
Powered down 12 Watt which is just the PSU and the IMM (I had one power supply connected) Powered up 100 Watt
The IMM info, one PSU with 230 Volt feed: Image
Bear in mind I had no VM’s running…
- Comment on Thoughts about my (potential) first server? 1 week ago:
I have an x3500m4 but found it using way too much energy for my requirements. A regular pc does the job for less than 25% of the electricity.
So, i’d say check your needs and the footprint. Electricity bill comes every month and something runnin 24/7 adds up real quick.
- Comment on US Government Deploys Elon Musk's Grok as Nutrition Bot, Where It Immediately Gives Advice for Rectal Use of Vegetables 1 week ago:
simply rebrand it to xxxAI
- Comment on Whats the best way to clean up 15 years of stuff around the house? 1 week ago:
I’d advise against. It’s a rabbithole. We did the math, buying new is often much cheaper than storage. Rent storage 2 months max. And that does not fit (by far the) most hoarders. They sooner rent more storage. Imagine the financial impact
- Comment on Whats the best way to clean up 15 years of stuff around the house? 1 week ago:
Aint gonna be easy. Deciding what has to go won’t work. Maybe try reversed,: Everything has to go and (cherry) pick what to keep. But with a hoarder… It’s tough. Each and every item will be point of discussion.
- Comment on Amazon's Ring and Google's Nest Unwittingly Reveal the Severity of the U.S. Surveillance State 1 week ago:
Recent tv’s became thin client’s. Turn it on and it first need to download the app('s)
- Comment on Amazon's Ring and Google's Nest Unwittingly Reveal the Severity of the U.S. Surveillance State 1 week ago:
“I don’t have anything to hide” is such an insidious little lie
And easy to debunk. Take their phone, ask the pin. 9 out of 10 won’t. Open bank app ask pin again. You won’t get that far.
- Comment on Amazon's Ring and Google's Nest Unwittingly Reveal the Severity of the U.S. Surveillance State 1 week ago:
I don’t use anything cloud based and much of my shit isn’t even allowed out to the internet.
It’s a drop in the ocean, for too many say “But it’s sooooo convenient and I’ve got nothing to hide” and open up all they got. Share camera’s with amazon, email address book with facebook etc. not realizing nor caring I make an appearance in their instances too and I DO mind.
- Comment on Cheap or free periodical externals scans 2 weeks ago:
There are variouse alternatives to see what ports are open. Usually they autyo scan just the ip you come from, to avoid being used to scan a potential target.
If you want more, just use Greenbone. Run it twice. Once from another IP just to know how the world sees you. One time internal network and add accounts to greenbone allowing it to login and check further.
If you run linux, then Lynis is awesome to verify your config
- Comment on A Statement From The White House 2 weeks ago:
It’s satire, but saying it’s gonna happen now for real is a safe bet. (the coupons, not his pet asking to stop it)
- Comment on A Statement From The White House 2 weeks ago:
Thanks for clearing that up. (still can’t wrap my head around it though)
- Comment on A Statement From The White House 2 weeks ago:
Americans are more used to using brands rather than product names.
An European would just ask for ibruprofen and swallow whatever brand they throw on the counter, where an american would ask for Advil ( and from what I heard they often think anything else not to have the same effect. )
- Submitted 2 weeks ago to selfhosted@lemmy.world | 4 comments
- Comment on The new Microsoft copilot key is impossible to properly remap. 2 weeks ago:
nail polish. cost next to nothing, any color you like
- Comment on The new Microsoft copilot key is impossible to properly remap. 2 weeks ago:
IT ALSO HAS DEDICATED BUTTONS FOR VOLUME CONTROL
Bro, that’s so cool … your keys have backup’s
- Comment on The new Microsoft copilot key is impossible to properly remap. 2 weeks ago:
Let’s be grateful, they could have swapped it with the spacebar.
- Comment on Non-US cloud storage for backup? 2 weeks ago:
Then don’t go to the cloud! (or use encrypted storage if you really have to)
My view: Unless I can access the hardware 24/7/365 the data isn’t mine for ‘they’ can deny me access to my data anytime while they keep full access. (hence store it decryped)
- Comment on Am I doing this (networking) safely? 2 weeks ago:
whitelist of allowed ips
Not exactly.
If source is whitelisted, Accept (avoid being locked out myself)
So all IP’s are allowed to begin with, but some (“my” IP’s like at home, my office etc) are on a whitelist ahead of everything else. They can’t become blacklisted to avoid myself becoming locked out. Then it’s the drop all on the blacklisted, followed by portscan detection. Only after that the ‘normal’ rules (allow https, smtp etc) begin.
- Comment on Am I doing this (networking) safely? 2 weeks ago:
the spacebar on my Remington isn’t what it used to be, maybe a drop of oil will help ;)
- Comment on Am I doing this (networking) safely? 2 weeks ago:
Well, here is the CPU load:
And there is no increase on delay’s or jitter compared to what i’m already facing on the WAN itself.
It keep’s 6000+ hosts with possible harmful intend away from the ports I need/want open to the world. Actually, the router -while still being bored- offloads the services behind it. I really can’t see a reason not to keep doing it. But, sure, it’s a personal choice.
- Comment on What's your opinion on Ubiquiti/Unifi gear? 2 weeks ago:
I only use their WiFi because I got some in- and outdoor ap’s for free. The Wifi manager is selfhosted and has no internet access. For upgradesi downoad the deb file, trasnsfer and install. It’s not the best out there, but works for me and i’m still happy with it.
- Comment on Am I doing this (networking) safely? 2 weeks ago:
I’m using RouterOS. In the firewall rules you can create a rule that if an IP touches a port, it get added to a address list (optional with a time-out). So my FW rules begin like this:
- If source is whitelisted, Accept
- If source IP is in the blacklist, drop all
- if source IP tries to connect to port 21,22,25,137-139, 113 (and a bunch of others) add it to the blacklist
- …
- …
This too has endless possibilities. t.ex. like port knocking. (‘touch’ one or more ports in a specified sequence in a specified time to be allowed to access the actual service port)
- Comment on Wish I still had a CD player 2 weeks ago:
No offence taken
- Comment on Am I doing this (networking) safely? 2 weeks ago:
Safety is relative.
It’s also not a state you can reach, it’s a mindset as well as an on-going process
- Comment on Am I doing this (networking) safely? 2 weeks ago:
I wasn’t being a total idiot
that goes unanswered ;) it’s not unlikely selfhosters have at least one loose screw.
