I just expanded the existing fail2ban config on the commonly used default ports such as 22, 21 Etc, any requests on those ports get sent into purgatory, so the ip gets blacklisted any connections from it hangs until it times out. It’s a super basic setup iptables logs whenever a request is not in the current firewall (last rule in the chain) and then fail2ban reads the log and handles the block. I don’t count it as part of the normal setup because they’re isolated Because the actual ports the service is on still have the normal rule set but the default port numbers are just an instant if there’s activity on it you’re gone

My security is fairly simplistic but I’m happy with it

• software protection

  • fail2ban with low warning hold
  • cert based login for ssh (no password Auth)
  • Honeypot on all common port numbers, which if pinged leads to a permanent IP ban
  • drop all firewall
  • PSAD for intrusion/scanning protection (so many Russian scanners… lol)
  • wireguard for VPN to access local virtual machines and resources
  • external VPN with nordVPN for secure containers (yes I know nord is questionable I plan to swap when my sub runs out)

• physical protection

  • luksCrypt on the sensitive Data/program Drive ( I know there’s some security concerns with luksCrypt bite me)
  • grub and bios locked with password
  • UPS set to auto notify on power outage
  • router with keep alive warning system that pings my phone if the lab goes offline and provides fallback dns

• things I’ve thought about:

  • a mock recovery partition entry that will nuke the Luks headers on entry (to prevent potential exploit getting through grub)
  • removing super user access completely outside of local user access

What’s more insane is that some of those passwords in the lists are I still live intrusions that companies haven’t acted on, like for example my Dropbox password is there and that’s a new password that I just gave them a few months ago before I deleted my account

I know a lot of people who are sailing the Seas until the streaming Market crashes. There’s way too many businesses trying to do the same exact thing which has limited the media selection available without paying multiple $12 a month subscriptions. Eventually they will either fold or merge together again

They are going about it the wrong way with reddit. All they gotta do is show the $$$$ and spez will bend right over with that information. After all that’s all he seems to see.

I might not be understanding the post- correctly. From my perspective using connect I can go to alien.top and then select a post that’s on that instance and then the instance will change from alien.top to the self-hosted one, which is confusing to me as a user. This happens even when I tap on the alien top instance as a whole.

Is this just because the second instance is the only instance that federates with alien top? If that’s the case I think it might be a good idea to merge the two for less confusion and allow better moderation for users client side

Honestly, the sales rep probably couldn’t even see why I was rejected, they probably only put the customers data in and then get a rejection notice. they likely just automatically put non payment as a blacklist and call it a day, then the sales tech just does a simple form that says yes or no to the sale