|
I've been trying out NextDNS recently, and it seems pretty good. It's a bit like a hosted pihole with various managed blacklists for ads, tracking, etc
|
# ? Nov 1, 2022 17:23 |
|
|
# ? May 12, 2024 08:25 |
|
Is 1Password still the thread favourite for online, cross device password managers? Been meaning to get off using Dashlane for a long time now but kept procrastinating and want to transition to a new one. Particularly interested in password managers that have good family plans so I can setup my partner too. Willing to hear out learning to setup any self-hosting options unless the risk for mistakes from a non-professional outweigh it. Oysters Autobio fucked around with this message at 17:31 on Nov 5, 2022 |
# ? Nov 5, 2022 17:29 |
|
There’s also things like 1.1.1.2 for DNS-level malware filtering although I don’t know that it’s likely to block an attack.
|
# ? Nov 5, 2022 17:31 |
|
Oysters Autobio posted:Is 1Password still the thread favourite for online, cross device password managers? 1Password is great and its shared vaults are perfect and it has a family plan. Password manager is kinda not something you wanna gently caress with yourself IMHO under the same principles as roll your own, though I hear KeepAss is OK.
|
# ? Nov 5, 2022 17:42 |
|
Bitwarden(secured by yubikey) for personal stuff since I want that internet accessible, KeepAss for work passwords that should never leave my workstation Note: all my passwords are actually the same, but I am told I should keep them in a vault for some reason
|
# ? Nov 5, 2022 17:53 |
|
Duplicate passwords let the store compress better, so you’re really just being environmentally friendly.
|
# ? Nov 5, 2022 18:07 |
|
Subjunctive posted:Duplicate passwords let the store compress better, so you’re really just being environmentally friendly. Good idea. Also I've heard short lowercase passwords save even more space.
|
# ? Nov 5, 2022 21:12 |
|
Magnetic North posted:Good idea. Also I've heard short lowercase passwords save even more space. just stick with all numbers. if adding one to a password makes it stronger, making them all numbers must be the strongest
|
# ? Nov 5, 2022 21:34 |
|
Magnetic North posted:Good idea. Also I've heard short lowercase passwords save even more space. Absolutely, those are lower unicode numbers so the bit map of your passwords will be smaller
|
# ? Nov 5, 2022 21:42 |
|
Cup Runneth Over posted:Absolutely, those are lower unicode numbers so the bit map of your passwords will be smaller Make your password the same as your username and you save even more space.
|
# ? Nov 5, 2022 22:02 |
|
Oysters Autobio posted:Is 1Password still the thread favourite for online, cross device password managers? No, since they no longer support standalone vaults or licensing.
|
# ? Nov 5, 2022 22:21 |
|
astral posted:No, since they no longer support standalone vaults or licensing. OP explicitly asked about online multi-device
|
# ? Nov 5, 2022 22:29 |
|
Rufus Ping posted:OP explicitly asked about online multi-device When it comes to password managers, one of the biggest questions is trust. If you no longer have the option to keep a hold of your own data because the company in question waffled on their own stated commitments to let you do just that before ending support for it it forever this time for real, it's hard to maintain trust that they'll take good care of your passwords or not suddenly drop support for some other useful or important feature.
|
# ? Nov 5, 2022 22:41 |
|
Yeah, we use 1Password at work so I could have a family license for free (or have the company pay for it, I forget) but I’m sticking with (paid!) Bitwarden. I don’t know if I’ll ever host my own storage, but the fact that it’s possible makes me feel better about the odds that someone could offer a compatible service if the wheels fell off. Wish it worked better offline, though.
|
# ? Nov 5, 2022 23:07 |
|
Subjunctive posted:Yeah, we use 1Password at work so I could have a family license for free (or have the company pay for it, I forget) but I’m sticking with (paid!) Bitwarden. I don’t know if I’ll ever host my own storage, but the fact that it’s possible makes me feel better about the odds that someone could offer a compatible service if the wheels fell off. Wish it worked better offline, though. When i figured out that I can incorporate bitwarden into my ansible playbooks, service accounts became my favorite thing
|
# ? Nov 6, 2022 18:18 |
|
Ooooh, that’s interesting!
|
# ? Nov 6, 2022 18:58 |
|
https://docs.ansible.com/ansible/latest/collections/community/general/bitwarden_lookup.html It owns.
|
# ? Nov 6, 2022 19:07 |
|
Rufus Ping posted:OP explicitly asked about online multi-device So Bitwarden wouldn't work in terms of accessing the same set of passwords on my phone and my PC? Is there any way to have personal vaults but still be able to access them across devices?
|
# ? Nov 6, 2022 19:41 |
|
Oysters Autobio posted:So Bitwarden wouldn't work in terms of accessing the same set of passwords on my phone and my PC? Is there any way to have personal vaults but still be able to access them across devices? Bitwarden indeed can do that, just like any popular password manager. I may not understand exactly what you mean by "personal vaults", though.
|
# ? Nov 6, 2022 19:44 |
|
The bitwarden mobile apps support connecting to your self-hosted instance, if thats what you're asking.
|
# ? Nov 6, 2022 19:52 |
|
also, last I checked bitwarden self hosting is free, you don't need to be a paid user. the things you pay for are the ability to store files and do org type poo poo in conjunction with the above bw + ansible, I have certs and ssh keys stored in bitwarden that can be pulled down and autoinstalled. my home lab is hilariously overengineered
|
# ? Nov 6, 2022 20:17 |
|
RFC2324 posted:my home lab is hilariously overengineered I love it.
|
# ? Nov 6, 2022 21:41 |
|
Subjunctive posted:I love it. legit how the hell are you supposed to figure this stuff out without a home lab? one of the newbies at my job has realized that he just can't keep up with this industry by treating it as a 9-5 type thing, and is planning on re-enlisting lmao
|
# ? Nov 6, 2022 21:47 |
|
RFC2324 posted:my home lab is hilariously overengineered To your later post: I think one of the single best thing companies can do for their engineers is just give them a budget of a grand a year and say, "Go build random things and break them. Just not on our network tia."
|
# ? Nov 6, 2022 21:58 |
|
Ynglaur posted:Take that back. There's no such thing! I have yubikey auth in front of a glorified torrent search engine. its a *wee* bit much sometimes lol
|
# ? Nov 6, 2022 21:59 |
|
My #1 requirement for early next year is an AWS budget just for my infrastructure team's lab, so they can have a place to go mess about and break poo poo. Home lab is great if you're into it, but I firmly believe that $employer should provide the resources you need for professional development, and that includes lab space.
|
# ? Nov 6, 2022 22:00 |
|
Zorak of Michigan posted:My #1 requirement for early next year is an AWS budget just for my infrastructure team's lab, so they can have a place to go mess about and break poo poo. Home lab is great if you're into it, but I firmly believe that $employer should provide the resources you need for professional development, and that includes lab space. agreed, but in over a decade of being a sysadmin something like this has existed for exactly 3 months, only because I fought tooth and tail for it for the rest of the team, and the moment I stopped fighting it got cannibalized into something else. I still have a repo with the crude bash scripts I wrote to make something in libvirtd for it
|
# ? Nov 6, 2022 22:04 |
|
Is Sophos still a recommended malware scanner? My parent's ISP called them and said they received complaints about malicious traffic coming from their IP. A scan of my mom's PC did hit something, but the software didn't specify what it was before forcing a reboot. I also noticed what appears to be SSH fishing from my dad's Surface to our NAS (repeated attempts with common default usernames etc) so I'm looking for something I can run on all the Windows machines to help clean them out.
|
# ? Dec 25, 2022 02:18 |
|
Takes No Damage posted:Is Sophos still a recommended malware scanner? My parent's ISP called them and said they received complaints about malicious traffic coming from their IP. A scan of my mom's PC did hit something, but the software didn't specify what it was before forcing a reboot. I also noticed what appears to be SSH fishing from my dad's Surface to our NAS (repeated attempts with common default usernames etc) so I'm looking for something I can run on all the Windows machines to help clean them out. Assuming the call from the ISP was legitimate, with that degree of poo poo going on you should format both parents' machines.
|
# ? Dec 25, 2022 10:41 |
|
Yeah, flatten and reinstall.
|
# ? Dec 25, 2022 13:53 |
|
Its the only way to be sure
|
# ? Dec 25, 2022 16:54 |
|
Yeah I figured as much I've never had an ISP have an actual human pick up the phone and call so that's pretty worrying. Hopefully mom just clicked on the wrong Facebook link and was part of a botnet for a bit VS something more actively malicious. No evidence of that yet at least.
|
# ? Dec 25, 2022 18:46 |
|
Also make them limited users so they can't turn off Defender.
|
# ? Dec 26, 2022 04:16 |
|
Well this is embarrassing After continuing to try and chase down what particular PC was causing the issue, I got around to looking up their public IP on abuseipdb.com and saw that it had been reported over 800 times since Dec 8th, always for SSH brute force attacks. The reports were coming in pretty consistently, at least one an hour, so we started taking PCs offline and watching for the reports to slow down. Turns out the one that seemed to make a difference was my own Linux desktop Now that we had things narrowed down to SSH spam I threw Wireshark on there and ran a capture filtered for SSH and I got thousands of packets instantly. Exactly 1/3 of my total network activity was SSH. This PC did have a port open so I could SSH in to it, as I have been doing for a good decade now. I always saw IPs scanning in the auth logs it but I figured using a non-standard port and running fail2ban would keep me safe. Which it did. Until it didn't. Currently taking some notes on the way I have stuff like hosts and fstab configured, then I'll swap in a spare SSD for the current main drive and do a fresh Xubuntu install. Sorry for victim blaming you parents and/or Windows
|
# ? Jan 1, 2023 23:53 |
|
I don't know what most of that means but it made me chuckle anyway. Like I'm laughing at a mystery fart or something. Glad you're getting sorted anyway 🙂
|
# ? Jan 3, 2023 01:30 |
|
Please tell me you at least installed updates at some point during those 10 years.
|
# ? Jan 3, 2023 08:32 |
|
DoctorTristan posted:Please tell me you at least installed updates at some point during those 10 years. Lol at the thought… Obi Wan: He’s more malware now than man; twisted and evil.
|
# ? Jan 3, 2023 08:54 |
|
Lol Lmao One of my tasks at work is remediations because no one else gives a gently caress about security, and every time I see a new name on my list I know I am gonna be patching for hours
|
# ? Jan 3, 2023 18:13 |
|
Is this the right forum to ask about recommendations of home music servers, network file system, and backup software? (All tied together, as one issue.) If not, where? I have a large set of FLAC files on an ancient network drive, and I need to modernize.
|
# ? Jan 29, 2023 23:22 |
|
|
# ? May 12, 2024 08:25 |
Arsenic Lupin posted:Is this the right forum to ask about recommendations of home music servers, network file system, and backup software? (All tied together, as one issue.) If not, where? I have a large set of FLAC files on an ancient network drive, and I need to modernize. The NAS thread is here https://forums.somethingawful.com/showthread.php?threadid=2801557&perpage=40&noseen=1&pagenumber=759 The selfhosting thread might also give you some cool ideas about other stuff you might want to do once you get into this stuff https://forums.somethingawful.com/showthread.php?threadid=3985071&perpage=40&pagenumber=1&noseen=1 tuyop fucked around with this message at 05:16 on Jan 30, 2023 |
|
# ? Jan 30, 2023 05:13 |