Cyber

joined 2 years ago
sorted by: new top controversial old
Wero reaches 1 million activations among Sparkasse customers in c/buyeuropean@feddit.uk
[–] Cyber@feddit.uk 1 points 3 days ago (1 children)

Just translate it in your browser 🤷🏻

CISA flags PaperCut RCE bug as exploited in attacks, patch now in c/cybersecurity@sh.itjust.works
[–] Cyber@feddit.uk 2 points 4 days ago

The security flaw (tracked as CVE-2023-2533 and patched in June 2023)

Regular patching...

What's the best advice you ever got? in c/askuk@feddit.uk
[–] Cyber@feddit.uk 8 points 4 days ago

Measure twice, cut once...

What Are The European Options For Home Routers? in c/buyeuropean@feddit.uk
[–] Cyber@feddit.uk 2 points 6 days ago

My ISP actually supplies Fritzbox routers by default.

I turned mine into a passthrough modem for my pfsense firewall to use, but it's a solid piece of kit.

Recommendation for home security camera? in c/buyeuropean@feddit.uk
[–] Cyber@feddit.uk 1 points 6 days ago

Sounds like you'll get pro advice anyway, but make sure you datestamp the video / images if you want to use this as evidence

I've used MotionEye for a while and it's good on low-end equipment, but not sure it's good enough for what you want / need.

As others have said, if you block the equipment from reaching the internet then you're halfway there. If you literally do not physically connect the camera network to anything else then you're ven better off.

Don't use wifi cameras.

AI-Generated Malware in Panda Image Hides Persistent Linux Threat in c/cybersecurity
[–] Cyber@feddit.uk 1 points 1 week ago* (last edited 1 week ago)

"Impersonation and psychological warfare will be a big thing in the coming years," warns Rem Dudas from Palo Alto Networks, noting how AI enables malware to mimic other threat actors' techniques

Might be <%your country%>?

AquaSec identified Serbia-based IP addresses used in the attacks, Serbian phrases in the scripts, and Slovak language in the GitHub repository hosting the miners, but it could make no confident attribution.

The Future is NOT Self-Hosted in c/selfhosted@lemmy.world
[–] Cyber@feddit.uk 2 points 1 week ago

I've not looked into it properly yet, but - considering this is still free software - I don't believe that level of granularity exists.

So, if I wanted to share my holiday photos from last week with 1 friend, and the photos from someone's party to different friends... nope.

What doyaaaa miss from the old the internet. When it was real. in c/askuk@feddit.uk
[–] Cyber@feddit.uk 3 points 1 week ago (1 children)

Does that site contain all the old 2000's malware too?

I'm sure Flash was the original internet malware delivery mechanism of choice.

The Future is NOT Self-Hosted in c/selfhosted@lemmy.world
[–] Cyber@feddit.uk 17 points 1 week ago (4 children)

That's an interesting point...

I'd like to share some (holiday) photos with my friends & family, so I can put those onto Pixelfed / Friendica / etc... I don't necesarily want to share all the photos...

And that's using the cloud.

Job Done. The self-hosting + federated cloud future is here!

Rejoice.

Companion app for Android: It’s been a while in c/homeassistant@lemmy.world
[–] Cyber@feddit.uk 3 points 1 week ago

Agreed. It's driver support that's really the problem.

Fairphone's support is basically limited to how long they can negotiate with component suppliers to maintain their parts. They had an issue a few years ago due to the camera chip supplier withdrawing support.

What game from your childhood is most nostalgic for you? in c/askuk@feddit.uk
[–] Cyber@feddit.uk 2 points 1 week ago

Uridium ... Jetpac... Time Tunnel...

Chiller / Thriller - the one that had to change it's name & music to avoid legal action from Michael Jackson: https://www.gamesthatwerent.com/gtw64/chiller-v1/

Er... the Last V8...

Man.. there were loads and I don't really recall their names, but can recall the games

Vic-20 was the lower cost option of the C64, so yeah, loads around. Of course you always wanted the C64... then the C128 and then the Amiga...

Companion app for Android: It’s been a while in c/homeassistant@lemmy.world
[–] Cyber@feddit.uk 14 points 1 week ago (2 children)

Glad to see focused development

I didn't know that the App could be a launcher, will have to check that out...

And I understand the treadmill of technology, but I suspect some of my tablets will now have to go to recycling if Android 6 is minimum spec... they still have good batteries 😥

1
Stumbled on to StormShield - opinions? (www.stormshield.com)
 

A colleague was discussing an option to use different vendors either side of a DMZ and suggested StormShield... I'd not heard of them before.

Looks interesting, albeit an old Gartner "magic quadrant" showed their firewalls as being in the bottom left corner... so I thought I'd ask here for real-life opinions on them... if any?

18
Solar PV vulnerabilities (www.redhotcyber.com)
 

Interesting article where ~35k devices from 45 manufacturers have vulnerabilities

Advice is probably not as easy to implement as this in real life:

Forescout recommends that you immediately stop the direct connection of devices to the Internet, to use VPNs or segmented networks, and to ensure prompt firmware updates. Otherwise, tens of thousands of systems around the world will remain a potential entry point for attackers.

55
Ansible Playbook - How do I reverse engineer a running system? (feddit.uk)
 

I have a few VMs and PMs around the house that I'd setup over time and I'd now like to rebuild some, not to mention just simplify the whole lot.

How the hell do I get from a working system to an equivalent ansible playbook without many (MANY) iterations of trial & error - and potentially destroying the running system??

Ducking around didn't really show much so I'm either missing a concept / keyword, or, no-one does this.

Pointers?

TIA

30
Holiday BBQs (infosec.pub)
 

First holiday rental BBQ of the year.

These are always an adventure, broken legs, crumbling gas pipes, spiders and snails in all the crevices...

In this case, it's not too bad, just lit the fire so we'll see if it explodes / melts...

And... just burgers, sausages and halloumi for this one, nothing too adventurous

27
Automated Cooling (feddit.uk)
 

It's already 25DegC in my home office.

The best cooling automation I have so far is to turn the fan on when it's 25 for >5mins.

Is there a nice zigbee / ESP32 evaporation cooler that I can enjoying setting up with HA?

82
Vivaldi, now with added VPN (vivaldi.com)
 

Just found my Vivaldi update contained a little more than just bugfixes... it now has Proton VPN built in.

It's actually part of the browser, not an extension, so I'm in two minds whether I like that... or not.

You need either a Vivaldi account or a Proton account, so it's not completely anonymous, but it's a start.

The free-tier of Proton VPN also appears to be bandwidth limited and your exit point is randomised, so... yeah, it's ok...

24
Options for "iPlayer will stop working on this device" (feddit.uk)
 

"On 11th November BBC iPlayer will no longer be available directly on this device."

OK, so, I didn't purchase this particular (Blaupunkt) TV, but as it's my mother's then, well, I'm the one that has to "fix" this.

Personally, I use TVs as a simple screen and watch everything through other devices (Roku, or a Linux PC running MythTV).

I see the BBC website has some links to review sites, but I thought this might be another place to ask for - preferably open source - devices that could be used.

Comments?

45
Any MythTV Users Here? (feddit.uk)
submitted 1 year ago* (last edited 1 year ago) by Cyber@feddit.uk to c/selfhosted@lemmy.world
46 comments fedilink
 

As a long-term MythTV user, I read all the discussion about Plex vs Jellyfin, but I'm still here... recording Live TV, watching films, listening to "me choonz" all on free, open-source software. What am I missing? Any other MythTV users out there?

39
NAS vulnerabilities (www.theregister.com)
submitted 1 year ago* (last edited 1 year ago) by Cyber@feddit.uk to c/selfhosted@lemmy.world
11 comments fedilink
 

Just stumbled across this (overly dramatic?) article and thought I'd just post it here...

It's more to act as a reminder that if you've got a NAS that is serving content to the interwebs, then make sure it's behind a proxy of some kind to prevent weaknesses (ie in the management Web UI) being exposed.

Obvz, this article is pointing to Zyxel, but it could be your DIY home-built NAS with Cockpit: CVE-2024-2947 - just an example, not bashing that project at all.

I've used Squid and HAProxy over the years (mostly on my pfSense box) - but I'd be interested to know if there's other options that I've not heard of

10
Sanity check: Vivaldi high CPU usage (feddit.uk)
 

Before I dive headlong into debugging and throwing bug tickets around, I just needed a sanity check from someone else..

I have an old Lenovo laptop as my daily driver / experimentation box (ie it gets a lot of paclages installed and removed)

Recently I've been using Vivaldi's built-in calendar to use as a CalDAV client for my radicale installation.

It's the only open tab and Vivaldi's using ~20% CPU (according to htop)... actually, I just closed that tab... even with 1 blank tab the CPU's the same.

Is this just my battle weary laptop needing a good clean, or can someone else confirm?

TIA

17
pfSense DHCP (& DNS) Performance (feddit.uk)
 

pfSense... Anyone have much experience with the new Kea DHCP server?

I'm using 2.7.2 (Community Edition) on a fairly good Celeron based system that's not heavily loaded, but I have 7 network segments (VLANs and physical interfaces), so I have 7 DHCP pools / configs.

Just adding 1 more static reservation can cause a significant delay when reloading the service and because I register static reservations in DNS, the network loses DNS so I "break the internet" for a short while.

Would Kea fix this?

7
pfSense DHCP / DNS performance (feddit.uk)
 

pfSense... Anyone have much experience with the new Kea DHCP server?

I'm using 2.7.2 (Community Edition) on a fairly good Celeron based system that's not heavily loaded, but I have 7 network segments (VLANs and physical interfaces), so I have 7 DHCP pools / configs and just adding 1 more static reservation can cause a significant delay when reloading the service and because I register static reservations in DNS, I can lose comms.

Would Kea fix this?

view more: next ›