Get a WAF. Sophos firewall is free if you want to diy. If not, use cloudflare.
Opening ports, logging, monitoring, nailing up allow listed IP addresses and dicking around with fail2ban is such a timesuck. None of that crap will stop something from exploiting a vulnerability.
Some things are worth farming out to a 3rd party. Plus, you can just point your DNS entry over and be mostly done. No more dynamic IP bs.
I didn’t think that this needed to be said, but I suppose it does.
IT IS NOT OK TO FUCK CHILDREN,PULL YOUR DICK OUT AND DO STUFF TO THEM WITH IT OR MAKE THEM DO STUFF WITH YOUR DICK. IT IS NOT OK TO LURE KIDS IN WITH THE END GOAL OF FUCKING OR MOLESTING THEM. THIS IS VERY BAD AND YOU SHOULD NEVER DO IT. RICH WHITE PEOPLE, THIS IS MAINLY FOR YOU.
There, I hope that helps.
Yeah, that’s not how big corporations line their pockets though.
I set up HA a few years ago and I’m very happy with it. However, it has consumed a LOT of my free time in order to learn it.
I have used homemade sensors and controllers only a handful of times. I only do it when they are relatively simple to make or that the options to purchase are terrible and/or expensive. I’ve made some WLED devices with super cheap ESP32 devices and some soldering.
I wanted to do power monitoring for my home, but all of the commercial solutions are super expensive or require some stupid cloud account. I’m using the same cheap esp32s and some inductive coils to act as pickups for the power mains. I’ve found some plans that people have used and I have cobbled together something that should work. Board is flashed with ESPHome.
Either it will work or I will burn the house down. Can’t wait to find out!
Omg, I got a reputation as being anti progressive because I kept telling the boss that maybe we shouldn’t go all in with cloud. Being in security, I was worried about putting all our shit on the internet and hoping it would be safe. Given the wildly primitive tools we had to see what was happening, I felt my caution was justified.
Nope, shut up you Luddite, we will save big money and move faster.
Now we save money by paying Microsoft an arm and a leg every month for their shitty services. We also have to pay cloudflare another ransom to add the protection that Microsoft can’t. We also pay Wiz buttloads of money to make sure that the first two things are working right.
Then someone who doesn’t like the security controls just creates a new tenant and puts a mountain of exposed PII there to get stolen and random’d.
The cloud is the best.
This is the truth. Once he got money, he turned into the asshole he was always wanted to be and oh, what an asshole he’s blossomed into.
Now he’s added piece of shit who likes genocide AND is entirely brain damaged about what the KKK does and has done.
Pretty solid work to show that you’re a piece of shit, like murder and have zero clue about the KKK all in one go.
If this country is going up in flames, can we put the boomers on the front line? They love to talk a big game, let them live up to their own hype.
Tl;dr two over privileged teenage psychopaths stole a stupid idea from Meta/google that was hated by many and are going to make it worse by going all-in on the reasons people hate them.
Let’s get these guys some money!!!
Fuck these talentless twerps.
In the us, home chargers will typically run on 240 volts, similar to a dryer or electric stove.
The amperage can be as low as 16 amps (not common) and up to 40 amps. There are higher amperage chargers, but they’re not super common. Most homes dont have that much capacity provisioned and adding it to the breaker box means new circuits and often the power company has to provide a higher capacity meter. It gets expensive.
Since volts x amps = watts, a 240 volt charger that operates at 40 amps will charge at 9600 watts or 9.6 kilowatts (maximum).
You can charge using a standard 120v outlet, most are rated for 15 amps. However, you will get 120v x 15a = 1800 watts or 1.8 kilowatts (maximum).
Used to make tarpits with reverse proxies. Accept the connection and then set the responses for a few seconds before default TCP timeout. Doesn’t eat much resource as long as you have enough TCP connections and can reuse them effectively.
It will be true if people are unwilling to put in a little effort to demand better or stop using windows.
You want your games to run on something else? Don’t buy them until they do. Sadly, most people are 100% unwilling to delay that instant gratification and sacrifice even the smallest convenience.
That’s how we got here. You cannot expect change if you are unwilling to do anything to make it happen.
This is why sloth is a deadly sin.
Donations are considered revenue. However, depending on the receiving entity, they could be qualified differently.
Its called clickbait and Jalopnik is a piece of shit site anyway.
It would have to get pretty bad before people would be willing to forgo convenience.
That stuff is a nasty drug, very addictive and people will sell everything they got to keep it. They’d rather pay and arm and a leg instead of learning a little technology so they could help themselves.
People will slave themselves to the company that lets them be the most ignorant person possible but still enjoy the fun of technology.
Could you imagine if all mobile devices stopped using face recognition to unlock phones? I’d be willing to bet that a big chunk of people wouldn’t be able to use them at all. I’m surprised that google and apple haven’t started charging extra for that.
So we have the EU and their bullshit (which also has global scope), we have credit card processors and their bullshit, now we have Canada and some.of their own bullshit.
On one hand, we have been talking about the potential for full surveillance across the internet for a while, so this is hardly a surprise, but everyone all at once? What the hell is behind this new massive push?
It seems that the response to this will be a lot of services moving to countries that dont give a shit about us/EU laws and a rise in cryptocurrencies. It will take a while before the common folks to get pissed enough to figure it out, but all things have limits.
I presume there will be a patchwork of country-level blocks put into place, VPN blocks, tor filtering etc. This feels like the end of the open internet as we know it. It has been a greed fueled mess for a long time now, but this round of government invasion feels like the final knife in the chest.
It will suck for users, it will be expensive for any company to maintain compliance, it will be horribly complex from a technology perspective if any of these layers break and it will be a goddamn nightmare to secure. Organized crime hackers are going to have a field day once they get access to all the stuff being monitored and logged. Encryption backdoors will take it to a whole new level.
What? No, this is a horrible practice.
If you can’t figure out how to set identity-based ACLs you shouldn’t be working in technology! Oh I’ll just set this shit to any/any and figure out later. FUCK ANYONE WHO DOES THIS IN THEIR LEFT EAR.
I agree. The reality is that nobody should be trusting these platforms with such sensitive data. As demonstrated, there is so much that can go wrong when you trust these companies. This is a LOT of risk for very little reward.
Whatever you put online you should think “what if this were made public and attributed to me” before you post it.
Say it loud
Last two places I worked we used HireRight to run background checks on all new hires. I have my own document. I worked in Cyber; one company was data analytics, the other was finance.
The service will take the information you submitted at application and verifiy if it is true. They literally call former employers and the schools you list (college only). They run a public records check and when its all done, it goes to the HR goons. I never saw the reports except my own. Each one costs about $600. There are always some minor discrepancies, the company will add a note; if there are little ones, they will note and advise that there is nothing concerning. I never had one come back bad. A different leader did, and it just means that they have a conversation with the candidate and let them explain.
On mine, I had some criminal history hits for a different person with the same name as me. They were in states where I did not live and it was pretty clear it was someone else. They also did a credit report.
So they are real and they do happen. They are VERY thorough. They are also expensive and most places dont want to pay for them. I had it done as I was a senior director in cyber security. I doubt all parts of the workforce have it done.
Huh? Richest dude on the planet did and nothing bad has happened to him. Sadly, it appears to be 100% ok to go full Hitler anymore.
If only these people would go FULL Hitler and finish themselves off (sooner rather than later).
It isn’t a magic solution, no, but you have a lot more control than crummy layer 3 firewall rules and endless lists.
The big players have far more data about what bad looks like. Either we can play whack a mole with outdated tools and techniques or get smart and learn to use what is available.
Self hosting doesn’t mean we go backward in terms of the sophistication and difficulty, it means embracing modern solutions.
In the dinosaur days, we had primitive tools, but so did the attackers. We cannot hope to self host with any measure of security if we bring piss to a shitfight.