Cyber

joined 2 years ago
[–] Cyber@feddit.uk 0 points 1 day ago (1 children)

Why wouldn't this apply?

One day in the future the later version of sudo would become available...?

[–] Cyber@feddit.uk 10 points 1 day ago (3 children)

As far as mitigation is concerned, the only thing you need to do is to confirm that your system's sudo version is at least version 1.9.17p1 or later, which can be done with the command sudo -V. If your version is older than 1.9.17p1, update immediately.

[–] Cyber@feddit.uk 3 points 1 day ago

I guess this is mainly targeted at Universities and organisations that mirror repos?

They're the kinda place (I presume) that would be able to support this...

[–] Cyber@feddit.uk 4 points 2 days ago

Is that the same i as the squareroot of -1?

[–] Cyber@feddit.uk 6 points 4 days ago

If you're able to, use GeoIP ranges to only allow access from the countries you want.

That immediately limits a lot of everything

Then - again if you're able to - use a block list that covers known scrapers in case they're in your country.

I use pfBlockerNG on my pfSense firewall for exactly this.

[–] Cyber@feddit.uk 10 points 5 days ago (3 children)

I think they meant they're not a fan of Windows and having to update those programs individually...

[–] Cyber@feddit.uk 2 points 1 week ago

Not brush, but flexible gromit strips will do the edge protection bit.

Then, dunno, postbox / door draught excluder brushes?

[–] Cyber@feddit.uk 2 points 1 week ago (1 children)

Ah, Ok, yeah Arch on ARM is struggling at the moment

I have / had some Ras Pis on it, but they wrapped up .. Pi0? a while back, so had to look at Raspbian (or whatever it's called now)... I'd not considered Gentoo for them... hmmm

Maybe I'll check that out

Thanks

[–] Cyber@feddit.uk 2 points 1 week ago (4 children)

Interested in why you went back to Gentoo after Arch.

I use Arch (btw) and tried Gentoo back in the day, but it's always in the back of my mind that compiling source could be "better"...?

[–] Cyber@feddit.uk 3 points 1 week ago (2 children)

I believe some manufacturers allow end users to claim the license cost back.

[–] Cyber@feddit.uk 2 points 1 week ago (1 children)

Do check the manufacturer's T's & C's - you might need Windows if returning for hardware issues.

I take a full disk image of a new computer before powering it up, so that I can restore it exactly as it was when purchased.

 

A colleague was discussing an option to use different vendors either side of a DMZ and suggested StormShield... I'd not heard of them before.

Looks interesting, albeit an old Gartner "magic quadrant" showed their firewalls as being in the bottom left corner... so I thought I'd ask here for real-life opinions on them... if any?

[–] Cyber@feddit.uk 1 points 1 week ago

Take a backup and go for it.

Personally, I ditched OMV for standard Arch Linux and just added the packages I wanted...

 

Interesting article where ~35k devices from 45 manufacturers have vulnerabilities

Advice is probably not as easy to implement as this in real life:

Forescout recommends that you immediately stop the direct connection of devices to the Internet, to use VPNs or segmented networks, and to ensure prompt firmware updates. Otherwise, tens of thousands of systems around the world will remain a potential entry point for attackers.

 

I have a few VMs and PMs around the house that I'd setup over time and I'd now like to rebuild some, not to mention just simplify the whole lot.

How the hell do I get from a working system to an equivalent ansible playbook without many (MANY) iterations of trial & error - and potentially destroying the running system??

Ducking around didn't really show much so I'm either missing a concept / keyword, or, no-one does this.

Pointers?

TIA

6
submitted 1 month ago* (last edited 1 month ago) by Cyber@feddit.uk to c/logseq@lemmy.ml
 

I'm 99% happy with Logseq.

The one thing that I struggle with is keepng an eye on ToDos.

Is there a better way of looking at them without looking at a ToDo page or an advanced query slowing down my journal template?

Is there another application that can parse the logseq .md files so that I'm not getting behind on my work?

 

I saw a similar post here recently, but this is slightly different.

I'm running MythTV on Arch which is working fine (of course), but when MythTv came out of the main packages and went to the AUR, it was just a little harder to maintain and had some compolation issues due to ffmpeg, etc - to the point: my last update was probably 3 years ago.

The (minor) issues I currently have are:

  • terminator won't start 1st time, but starts fine 2nd time
  • shutdown's take a few minutes due to a systemd issue
  • everything's woefully out of date

So... considering all the changes with audio and video over the last few years do I just pacman -Syuv and crack on... or... start again from scratch?

(Yep, full backup 1st)

 

First holiday rental BBQ of the year.

These are always an adventure, broken legs, crumbling gas pipes, spiders and snails in all the crevices...

In this case, it's not too bad, just lit the fire so we'll see if it explodes / melts...

And... just burgers, sausages and halloumi for this one, nothing too adventurous

 

It's already 25DegC in my home office.

The best cooling automation I have so far is to turn the fan on when it's 25 for >5mins.

Is there a nice zigbee / ESP32 evaporation cooler that I can enjoying setting up with HA?

 

Just found my Vivaldi update contained a little more than just bugfixes... it now has Proton VPN built in.

It's actually part of the browser, not an extension, so I'm in two minds whether I like that... or not.

You need either a Vivaldi account or a Proton account, so it's not completely anonymous, but it's a start.

The free-tier of Proton VPN also appears to be bandwidth limited and your exit point is randomised, so... yeah, it's ok...

 

"On 11th November BBC iPlayer will no longer be available directly on this device."

OK, so, I didn't purchase this particular (Blaupunkt) TV, but as it's my mother's then, well, I'm the one that has to "fix" this.

Personally, I use TVs as a simple screen and watch everything through other devices (Roku, or a Linux PC running MythTV).

I see the BBC website has some links to review sites, but I thought this might be another place to ask for - preferably open source - devices that could be used.

Comments?

45
submitted 1 year ago* (last edited 1 year ago) by Cyber@feddit.uk to c/selfhosted@lemmy.world
 

As a long-term MythTV user, I read all the discussion about Plex vs Jellyfin, but I'm still here... recording Live TV, watching films, listening to "me choonz" all on free, open-source software. What am I missing? Any other MythTV users out there?

39
NAS vulnerabilities (www.theregister.com)
submitted 1 year ago* (last edited 1 year ago) by Cyber@feddit.uk to c/selfhosted@lemmy.world
 

Just stumbled across this (overly dramatic?) article and thought I'd just post it here...

It's more to act as a reminder that if you've got a NAS that is serving content to the interwebs, then make sure it's behind a proxy of some kind to prevent weaknesses (ie in the management Web UI) being exposed.

Obvz, this article is pointing to Zyxel, but it could be your DIY home-built NAS with Cockpit: CVE-2024-2947 - just an example, not bashing that project at all.

I've used Squid and HAProxy over the years (mostly on my pfSense box) - but I'd be interested to know if there's other options that I've not heard of

 

Before I dive headlong into debugging and throwing bug tickets around, I just needed a sanity check from someone else..

I have an old Lenovo laptop as my daily driver / experimentation box (ie it gets a lot of paclages installed and removed)

Recently I've been using Vivaldi's built-in calendar to use as a CalDAV client for my radicale installation.

It's the only open tab and Vivaldi's using ~20% CPU (according to htop)... actually, I just closed that tab... even with 1 blank tab the CPU's the same.

Is this just my battle weary laptop needing a good clean, or can someone else confirm?

TIA

view more: next ›