IlliteratiDomine

@IlliteratiDomine@infosec.pub

This is a remote user, information on this page may be incomplete. View at Source ↗

⁨Comment⁩ on ⁨Proper HDD clear process?⁩ ⁨⁨11⁩ ⁨months⁩ ago⁩:
There are many ways to setups full disk encryption on Linux, but the most common all involve LUKS. Providing a password at mount (during boot, for a root partition or perhaps later for a “data” volume) but you can also use things like smart cards (like a Yubikey) or a keyfile (basically a file as the password rather than typed in) to decrypt.

So, to actually answer your question, if you dont want to type passwords and are okay with the security implementations of storing the key with/near the system, putting a keyfile on removable storage that normally stays plugged in but can be removed to secure your disks is a common compromise. Here’s an approachable article about it.

Search terms: “luks”, " keyfile", “evil maid”
⁨Comment⁩ on ⁨Choose wisely!⁩ ⁨⁨1⁩ ⁨year⁩ ago⁩:
You’ve got it all backwards. Einstein’s corpse is now energy and fast AF.
⁨Comment⁩ on ⁨A lot of societies problems would be solved if they taught about forming healthy relationships in school.⁩ ⁨⁨1⁩ ⁨year⁩ ago⁩:
That tends to be how things develop when you’re talking about systems. There’s not a cackling Bad Guy engineering these things, but a system of socioeconomic carrots and sticks that, right now, favor exploitation. Schools and education happen within that incentive structure so its natural that they would take on it’s characteristics.
⁨Comment⁩ on ⁨LinkedIn user data leaked: Database shows emails, profile data, phones, full names, and more confidential info.⁩ ⁨⁨1⁩ ⁨year⁩ ago⁩:
I made that move and had no issues. You can copy/paste your way through DNS setup and the rest is just configuring your proton account how you want.

You’ll want to be familiar with proton and some of the tradeoffs in its privacy model, but it’s most likely more feature-full than a hosting provider. Dreamhost, for one, is quite basic.
⁨Comment⁩ on ⁨I finally figured out how to virtualize my OPNsense firewall. Suck it, Roku.⁩ ⁨⁨1⁩ ⁨year⁩ ago⁩:
Well, I’m back and can confirm the sneaky DNS resolver. I have two roku devices and they both were making requests to 8.8.8.8.

Thanks for this post! TIL.
⁨Comment⁩ on ⁨I finally figured out how to virtualize my OPNsense firewall. Suck it, Roku.⁩ ⁨⁨1⁩ ⁨year⁩ ago⁩:
Interesting. I set an adblocking dns via DHCP and, as far as I know, the Roku respects it. Ads are blocked and I can see it failing to delivery telemetry in my dns logs (most persistent thing on the network).

I set a rule to catch outside dns to see if anything, the roku included, has been misbehaving.
⁨Comment⁩ on ⁨US ad revenue at Musk's X declined each month since takeover -data⁩ ⁨⁨1⁩ ⁨year⁩ ago⁩:
Here’s twitters ad revenue by quarter from 2013 to 2022Q2

There’s a spike in 2021 and then things started to come back to earth, but its an overall upward trend throughout that time.
⁨Comment⁩ on ⁨CNET is deleting old articles to try to improve its Google Search ranking⁩ ⁨⁨1⁩ ⁨year⁩ ago⁩:

Red Ventures [a private equity-backed marketing firm that owns CNET] has applied a ruthless SEO strategy to its slate of outlets, which also includes The Points Guy, Healthline, and Bankrate.

Whoa, how did my search engine blocklist end up in a Verge article?