The 2nd amendment, at least for now.

Depends on the drive too, I have some insanely loud Ironwolf drives and you would never guess they’re from the same manufacturer as my practically silent Exos X18s.

What hurts most is watching them hurt themselves while pretending to come from the moral high ground. I’m not sure if it’s a CIA pysop or what, but something just happens in someone’s brain and it seems like they stop caring about reality as long as you give them somewhere to channel their hate. You did the right thing though. If we all stopped playing their bullshit game and refused to work with the people sabotaging the rest of us we’d have everything fixed in just a few years.

Looking at the network activity of a pixel device vs an iPhone at rest broke my soul.

They already do this. https://www.vice.com/en/article/why-nasa-is-renting-the-international-space-station-for-dirt-cheap/

This is why we say fuck you to norms and demand our rights chiseled in stone. Your whole world can 180 on you in the blink of an eye for something harmless that you’ve always been.

I think of it as a lab because it’s my sandbox for me to do crazy server stuff at home that I’d never do on my production network at work, and I think that’s why the name stuck, because back when systems were expensive as heck it was pretty much just us sysadmin guys hauling home old gear to mess with.

I think that’s a European/Australian consumer protection thing, I can’t think of a manufacturer that allows it in the US.

It’s subtle, but it’s absolutely designed to induce feelings of negative emotions to evoke a click. If you’d like to look into this field of study, search up “shadow patterns” or " dark patterns" as that’s the modern design language meant for working with data on mass scale in order to drive engagement. (To the down voter, the fact you can’t see it is both sad and the point of the design. Unfortunate because it’s true. I’ve sat in these design meetings with software teams and marketing.)

I’m sad to see trade relations between our countries dissolve, I grew up with nafta being a brimming and proud achievement of cooperation. I really hope that we in America codify and cement future protections for our trading partners, ya’ll deserve better than working with our diaper Don.

It’s not, but then the headline wouldn’t subconsciously bias you towards rage clicking.

The mountain of tech debt, cultural debt, and real debt this country has built up over the past few decades in service of the billionaire has allowed for a lot of insanity. Kind of feels almost intentional.

Pain gets her hot. I think she’s gonna be fine.

Why would they do the thing they do on the box, the website, in a little packet, and over the phone?..

Chestnut needs liquid refreshment man.

My bad. I misread your previous post, specifically around “I agree with the other guy”. That being said, anyone with a functional device that can compute any amount of monero hashes is a proven target, granted, not specifically.

People like you in this industry are legitimately the reason botnets and significant compromise still exists. “You don’t need to be a genius to do all this additional config to make this thing I’m referring to as secure, secure.” Do you even read your own writings before you hit post? Also your final argument is so slathered in whataboutism I can’t even. Yes, any internet connectivity is going to be less secure than an air gap, but when you’re advising implementations you should keep security posture and best practices in mind. What you’re speaking on is more complex than any one person’s understanding of it due to significant layers of abstraction. Exhibit a? Ssh is not a codebase. It’s a network protocol. The codebase is literally different depending on implementation yet you continue to talk about it as if it’s a single piece of software that has been reviewed and like all ssh shares the same vulns but the software is entirely different depending on who implemented it so you have no real clue what you’re talking about and it’s actually sad people will be misled by your nonsense and false bravado. (https://en.wikipedia.org/wiki/Secure_Shell)

I’ve always disliked IT discussions for reasons like this. Everyone who comments seems to think that the mitigations, security considerations, and security compromises (IE, not caring if your images are leaked online) they’ve made are common knowledge… But, this is a forum advising people on how to configure their home severs for hobbiest use. Best practices should be the mantra, “just raw dog ssh on the internet with your 443/80 port mapping and you’re g2g” [sic] shouldn’t be an acceptable answer to you. If they’d stated that there are security considerations, but they like to implement them and expose ssh to the net for management purposes I’d have nothing to say, but to just advise people who lack that extra experience, without helping them understand why you’re okay doing what you’re doing and what you’ve done to solve for specific issues that the default configuration does not seems unhelpful at best.

Agreed, but best practices are meant to deal with the very rare. They didn’t put the vulnerabilities in the software due to negligence or malice, it’s just an ever evolving arms race with cracks that show up due to layer upon layer of abstraction. Again I’m not saying to never expose ssh to the net, quite the opposite, but as a best practice you should never do it unless you fully understand the risk and are prepared to deal with any potential consequences. That’s just a core tenant of understanding security posture.

🤔🤔🤔🤔🤔

https://arstechnica.com/information-technology/2022/02/after-lying-low-ssh-botnet-mushrooms-and-is-harder-than-ever-to-take-down/

Are we living in the same universe? In mine software doesn’t get patched all the time, in fact it’s usually a lack of patches that lead to any significant system compromise… Which happens time and time again. Also you’re on a thread that is advising hobbiests on how to configure and maintain their personal server, not the engineering meeting for a fortune 500. Yes, you can make ssh very secure. Yes, it’s very secure even by default. In the same regard, new vulnerabilities/exploits will be found, and it remains best practice not to expose ssh to raw internet unless absolutely necessary and with the considerations required to mitigate risk. Ssh isn’t even implemented identically on every device, so you literally cannot talk about it like you are. Idk why you’re arguing against the industry standard for best practices decided by people who have far more experience and engineering time than you or I.