One could argue the vests are like seat belts in a car. You don’t need them 99.9% of the time.
Global namespace extremist. Defragment your communities!
One could argue the vests are like seat belts in a car. You don’t need them 99.9% of the time.
That’s not a slow laptop. I’ve been daily driving worse for years.
To protect the data from random thief just browsing through the files I still use ecryptfs. It only encrypts the home directory, and the keys are derived from my accounts password, so no extra hassle.
The encryption is weak by the current standards, and wouldn’t stop a determined attacker, but it’s 100% better than nothing, and I’ve never noticed any performance problems.
Gmail offers imap amd smtp access. You have to enable 2FA, and then it will allow you to create account for so called “less secure apps”.
In your place, I’d either continue using gmail directly, or finish the configuration of the self hosted mail server and just use that with any smtp/imap client. I suggest getting a separate domain for testing first, before moving your primary inbox there.
The usefulnes of a system is often measured by the amount of illegal shit it can handle. Nobody would really use a stick or a fire if it required a law enforcement officer standing behind you the whole time.
On the other hand, Telegram was always intentionally not secure, nor private. So it’s not that thay can’t comply. They just decided not to (as far as we know).
- - tinfoil hat on - -
This is not really about moderation. The europeans just want to evasdrop on the russians.
- - tinfoil hat off - -
if you don’t need to resize it once it’s created
xfs_growfs is a thing. I know nothing about xfs. Is this something I should avoid for some reason?
You, and 62 other people did not read the article.
stupidity is a once-off
🎶 …this iiiiis my one an only wiiiiiiish! 🎶
Sounds like fun, but I wish we had a real multiplatform GUI framework that does not look like ass and does not perform like ass, so we can put the whole shameful electron era behind us.
Pffft, the young generation, not hardened by the 6 different download buttons on a torrent search engine… /s
uname -a
Updates depend on the specific distro. Some, like debian, keep the major version the same throughout the entire lifetime, just backporting the security fixes, others, like arch, follows the official major releases more closely.
TIL: Some people actually like their laptop to wake up after openning the lid!
I’ve used Elitebooks with elementary for years and found the wakup after pressing a button logical.
What pissed me off about probooks/elitebooks was that they woke up to inform me about the low battery, then went back to sleep due to low battery, then wake up, sleep, wake up, sleep, wake up… and the agony went on until the sweet death. I’ve never felt so sorry for a non living object before or after.
Oh, and also elementary can’t go to sleep from the lockscreen, on any hardware. One of those those bugs that I’m always sure will be taken care of in the next release, but it never is.
you still need good security configuration of the exposed service.
In a sense that security comes in layers, yes. But in practice, this setup will prevent 100% of bots scanning the internet for exposed services, and absolute majority of possible targeted attacks as well. It’s like using any other 3rd party VPN, except there’s not a central point for the traffic to flow through.
From the attackers point of view, nothing is listening there.
I’ve used a similar setup in the past to access a device behind a NAT (possibly multiple NATs) and a dynamic IPv4. Looking back, that ISP was a pure nightmare.
This is not a guide to hide from the government or ISP. Just a way to tunnel to your home server without publishing the sshd for random strangers. Personally, I’d just publish the ssh and be done with it.
I would rather live without the correlation attacks
The more people using Tor, the less useful targeted disconnects become.
Which is still just as open, but also a massive calling card for anyone trolling around the TOR network
Luckily, it is no longer possible to easily sniff the new v3 addresses by deploying a malicious relay. Any attack to even reveal the existence of a hidden service would require a very specialized setup. And we’re just talking discovery, not the ability to connect and attack the actual service running there.
just connecting to Tor is very much a huge exposure imho
Exposure of what, to whom?
this usually errors out on some missing dependencies.
apt-get -f install
should get them and continue with the installation.
However, as other have said, get an app like gdebi or eddy, and install the .deb throug that.
That’s because the modern UX designers have spent the last decade trying to unteach everyone the directory structure, so they can sell you their weird, inferior, confusing, bullshit file sorting ideas. I myself sometimes just give up before finding the file.
Can’t wait for them to abandon it. I still have a GearVR headset.
Of course security comes with layers, and if you’re not comfortable hosting services publically, use a VPN.
However, 3 simple rules go a long way:
Treat any machine or service on a local network as if they were publically accesible. That will prevent you from accidentally leaving the auth off, or leaving the weak/default passwords in place.
Install services in a way that they are easy to patch. For example, prefer phpmyadmin from debian repo instead of just copy pasting the latest official release in the www folder. If you absolutely need the latest release, try a container maintained by a reasonable adult. (No offense to the handful of kids I’ve known providing a solid code, knowledge and bugreports for the general public!)
Use unattended-upgrades, or an alternative auto update mechanism on rhel based distros, if you don’t want to become a fulltime sysadmin. The increased security is absolutely worth the very occasional breakage.
You and your hardware are your worst enemies. There are tons of giudes on what a proper backup should look like, but don’t let that discourage you. Some backup is always better than NO backup. Even if it’s just a copy of critical files on an external usb drive. You can always go crazy later, and use snapshotting abilities of your filesystem (btrfs, zfs), build a separate backupserver, move it to a different physical location… sky really is the limit here.
Disappointment? Only if you mean the person that came up with FoomaticRIP.
For those who did not read the entire thing, it’s a so called “filter” that converts the document before it’s sent to certain nasty types of printers. Except it’s not executed on the print server. The unauthenticated print server can just ask a client to run it on their side. And it’s designed to be able to execute ANY command.