So? Pubkey login only and fail2ban to take care of resource abuse.
troed
HW/FW security researcher & Demoscene elder.
I started having arguments online back on Fidonet and Usenet. I’m too tired to care now.
- 0 Posts
- 38 Comments
Joined 2 years ago
Cake day: June 12th, 2023
You are not logged in. If you use a Fediverse account that is able to follow users, you can follow this user.
3·19 days agoI think you misunderstand how the EU enforces law compared to the US.
The use of AI by non-developers to produce code will greatly increase the hourly rate I can charge.
The number of security holes produced is absolutely fabolous.
This is the decentralized Internet. It will never function exactly as the centralized one.
I’m old enough to have run a Fidonet node. When I moved house, the points under my node had to switch upstream.
We do however need to work on tools to minimize friction when servers change so that users won’t need to more than a click or two.
9·2 months agoI went from Seafile to Nextcloud with family file sharing as the primary usage. I’m using the AIO docker installation without issues.
This might not help, but I never experienced the issues you had.
(I moved away from Seafile due to - in my opinion - it dying a slow death with less and less support)
Still no. Here’s the reasoning: A well known SSHd is the most secure codebase you’ll find out there. With key-based login only, it’s not possible to brute force entry. Thus, changing port or running fail2ban doesn’t add anything to the security of your system, it just gets rid of bot login log entries and some - very minimal - resource usage.
If there’s a public SSHd exploit out, attackers will portscan and and find your SSHd anyway. If there’s a 0-day out it’s the same.
(your points 4 and 5 are outside the scope of the SSH discussion)
Feel free to argue with facts. Hardening systems is my job.
This is not “the correct answer”. There’s absolutely nothing wrong with “exposing” SSH.
A few replies here give the correct advice. Others are just way off.
To those of you who wrote anything else than “disable passwords, use key based login only and you’re good” - please spend more time learning the subject before offering up advice to others.
(fail2ban is nice to run in addition, I do so myself, but it’s more for to stop wasting resources than having to do with security since no one is bruteforcing keys)
8·3 months agoI don’t remember this race just a few hours after having watched it
Breakfast is coffee and toast.
/Swede
I have for years thought Verstappen was a very good driver but also very much helped by having the best car.
I’m now starting to think he might be the best F1 driver ever.
Clearly hemorrhoids
I don’t get it. They’re 17. They’re not kids. Wikipedia tells me the age of consent in the US varies from 13 to 17 (depending on age difference and if it’s a person in authority) which is actually partly lower than in Sweden (15).
You seem to willingly uphold something you actually don’t believe in, even when just asked for your opinion. Why?
Why is it up to you whether they have sex or not? Aren’t they their own individuals? What’s the age of consent where you reside?
(I’m Swedish and your views sound completely unhinged coming from my cultural background)
Don’t know about “art”, but I use it sometimes to generate contextual imagery for blog posts and videos. I would’ve never hired an artist so the only real difference is that it looks a lot better than when I used to try to draw something myself.
I went from Emby to Jellyfin as they started their enshittification journey. I don’t really notice it being less polished.
Brought to you by (us) security researchers who will happily come in and sort out your security issues later. For a very hefty hourly fee.