• 0 Posts
  • 72 Comments
Joined 1 year ago
cake
Cake day: June 11th, 2023

help-circle

  • Melmi@lemmy.blahaj.zonetoSelfhosted@lemmy.worldZeroTrust Your Home
    link
    fedilink
    English
    arrow-up
    6
    arrow-down
    2
    ·
    2 months ago

    When done correctly, the banner is actually a consent banner. It’s a legal thing, not necessarily trying to discourage criminals. It’s informing users that all use will be monitored and it implies their consent to the technology policies of the organization. It’s more for regular users than criminals.

    When it’s just “unauthorized access is prohibited”, though, especially on a single-user server? Not really any point. But since this article was based on compliance guidelines that aren’t all relevant to the homelab, I can see how it got warped into the empty “you no hack” banner.


  • Yes, but only if your firewall is set to reject instead of drop. The documentation you linked mentions this; that’s why open ports are listed as open|filtered because any port that’s “open” might actually be being filtered (dropped).

    On a modern firewall, an nmap scan will show every port as open|filtered, regardless of whether it’s open or not.

    Edit: Here’s the relevant bit from the documentation:

    The most curious element of this table may be the open|filtered state. It is a symptom of the biggest challenges with UDP scanning: open ports rarely respond to empty probes. Those ports for which Nmap has a protocol-specific payload are more likely to get a response and be marked open, but for the rest, the target TCP/IP stack simply passes the empty packet up to a listening application, which usually discards it immediately as invalid. If ports in all other states would respond, then open ports could all be deduced by elimination. Unfortunately, firewalls and filtering devices are also known to drop packets without responding. So when Nmap receives no response after several attempts, it cannot determine whether the port is open or filtered. When Nmap was released, filtering devices were rare enough that Nmap could (and did) simply assume that the port was open. The Internet is better guarded now, so Nmap changed in 2004 (version 3.70) to report non-responsive UDP ports as open|filtered instead.



  • Melmi@lemmy.blahaj.zonetoSelfhosted@lemmy.worldReverse proxy
    link
    fedilink
    English
    arrow-up
    5
    ·
    6 months ago

    It definitely encrypts the traffic, the problem is that it encrypts the traffic in a recognizable way that DPI can recognize. It’s easy for someone snooping on your traffic to tell that you’re using Wireguard, but because it’s encrypted they can’t tell the content of the message.




  • A tiefling divine soul sorcerer with the Criminal background. He was born to two pious tiefling clerics of Lathander who saw their fiendish blood as a curse, and prayed to cleanse their unborn child of devilish influence. When he was born a Divine Soul, his parents tried to raise him as their perfect priestess. He had to be a model tiefling, a representative of his entire race as well as Lathander himself. He chafed under the obligation and ran away from home, living on the streets and stealing to get by, all while trying to hide his divine soul powers out of a combination of rejecting them and just trying not to draw attention.

    Slinking around in the shadows eventually led to him wandering into the Mists of Ravenloft, and he found himself in Barovia. He found his way into a party and essentially just acted like the party rogue for a bit until combat came and he got backed into a corner and he suddenly started throwing around guiding bolts.

    I was really looking forward to doing a whole arc with him reclaiming his powers and figuring out what it meant to be himself, but OOC stuff led to me leaving that group before he had a chance to leave his edgy rogue phase :c





  • Most things should be behind Authelia. It’s hard to know how to help without knowing what exactly you’re doing with it but generally speaking Authelia means you can have SSO+2FA for every app, even apps that don’t provide it by default.

    It also means that if you have users, you don’t need them to store a bunch of passwords.

    One big thing to keep in mind is that anything with its own login system may be more involved to get working behind Authelia, like Nextcloud.






  • I can understand the concern with the ethics of AI art and plagiarism, but you’re painting with a broad brush when you say that computer engineering can’t be art.

    Without considering AI, you can certainly make art through code. Math can be beautiful. Shaders in particular are a ripe avenue for programmatically generating art.

    There are a lot of artists out there creating art through code, and there have been for significantly longer than the AI fad has been around. The act of creating the art is simply in writing the code, rather than in picking up a paintbrush. I doubt you accuse people who paint in Photoshop of “letting the computer paint for them”, even if they use filters or something like the bucket fill tool. That’s code creating art right there. But someone still had to input creativity, and writing code to create art that looks good requires creativity and effort and is absolutely art.

    AI art has different problems with it, but “programming isn’t art” isn’t one of those reasons.


  • Why would a random browser extension take it upon itself to snoop on your traffic to ensure that the websites you’re using can’t be used for illegal things, and then intentionally break it if it detects something it thinks it’s illegitimate? That’s a huge breach of privacy. It’s just malware at that point. It’s not like a court of law would hold your browser extensions responsible for your piracy. That’s like blaming a cup holder because the car was used in a robbery.

    No, I think this is just a bug. Especially since people have reported that the extension breaks other websites too.



  • Melmi@lemmy.blahaj.zonetoRisa@startrek.websiteBait
    link
    fedilink
    English
    arrow-up
    1
    ·
    edit-2
    9 months ago

    My instance has downvotes disabled, so if those comments are downvoted to hell I wouldn’t know. As a result they show as reasonably highly upvoted on my end. Even if those opinions are controversial, the number of upvotes they get (plus the fact that there’s several such comments, even here) show that there’s lots of people who share the opinion. We just happen to be in a community that tends to be biased towards Discovery, so those opinions are in a minority here. Go to other communities, and suddenly people will be complaining about “woke Trek” left and right and getting majority support.

    People came at you because you responded to a meme about bigots complaining about wokeness, which even you seem to concede exist, to make a complaint about how legitimate criticism gets construed as bigotry—which the meme in the post is not an example of. It comes across a little like a self report. It’s like if you make a post saying “Nazism is bad” and some conservative randomly responds “this is hate speech against conservatives”. You were talking about Nazis, not conservatives, but their response comes across as them admitting they’re a Nazi.

    That said, people came at you really aggro. It’s easy to get caught up in labeling people as bigots and then get carried away in the dunking. I don’t want to handwave away that fact.