I recently setup Guacamole (Web based VNC/RDP/SSH) with totp and was able to close external SSH access. Now everything I run can sit behind a single reverse proxy, no extra ports.
I found WatchYourLan hosed my PiHole logs. Somehow the WYL instance got its hostname associated with ~10 mac addresses on my lan so more than half of my traffic comes from “watchyourlan.local”. FML
I keep each service separate as far as DBs, if something breaks or get a major upgrade I don’t have to worry about other containers.
I think it’s the other way round, only dumbasses want the job. The same thing happens with middle management and politicians, anyone smart enough to do the job well is smart enough not to take it.
So I should just start committing crimes too complicated for cops to understand!
Our car got stolen last year, the Hamilton police said “call your insurance company.”
It took the guy 5 min from opening the door to driving away and as far as I know the only technical part is that they use some hardware to relay the key fob signals. They relay the keyless/proximity unlock signal to get in, then they pair a new fob to the car using the manufactures method. Normally that requires all other paired fobs to be present at the same time BUT they are relaying those signals so the “security” there is bypassed.
The icing on the cake is that the cops didn’t even bother to cruise by the next night as the neighbour’s car got stolen as well.
A follow up post retracts the statement and instead suggests the following.
Park vehicles in garage, if possible
Ensure your driveway is well lit and keep exterior lights on all night
Security cameras are an asset
If possible, install a home security system – activate alarm on STAY when home and AWAY when out
Consider having a motion detection alarm connected to your cell phone
Put security film on glass windows and doors
Have multipoint door locks on your doors
Keep backyard gates locked and ground windows secured
Do not post on social media when you will be away on holiday
Report suspicious vehicles/persons in the neighbourhood to police
Defund the police, over and over they are telling us, directly, that this OUR problem not theirs. Put the money into healthcare and public transit.
That’s pretty fucked up, sorry, I was on my phone.
fixed the link
I ran my ssh behind 53 for a while because it’s rarely blocked. A few bots even got it right and figured out it was ssh.
Like NFTs!
Corruption. All levels of government are ok with the effective monopoly that owns telecoms in Canada.
Without being able to set a static ip and forward ports you cant host services and point to them with a domain, like driveway-home.com or something.
But I think cloudflare has a service that lets you connect remotely without needing static ip’s (some one else will know the name). If you were to use that then you can use your laptop to host pretty much anything on the Awesome Selfhosted List.
Device agnosticism. Life is easier when it doesn’t take ONE laptop or phone failure to destroy all your data.
I use LXC for all the reasons most people use Docker, it’s easy to spin up a new service, there are no leftovers when I remove a service, and everything stays separate. What I really like about LXC though is that you can treat containers like VMs, you start it up, attach and install all your software as if it were a real machine. No extra tech to learn.
It’s kinda shitty of them to block the ports that makes up +30 years of what the internet IS. Bell/Rogers want your internet connection to be unidirectional, when you host your own content you don’t consume theirs.
Afaik it’s at the ISP’s digression. Up until I switched, Bell would block ports 21, 22, 53, 80 and 443.
IPv6.
Not even offered in my area 🤡
Good to know, thanks!
Chaotic good, right there.