And there's plenty of NATO aircraft on the sky over Poland (& rest of the Europe) all the time. Should NATO declare that it's full scale war right now the Finnish fighters would be over Moscow faster than you can get a cup of coffee going. In reality that of course wouldn't make much sense, but in theory they could quite easily do just that.
And remember, currently QuentinCallaghan is paying this fun from his own pocket. Check FAQ for Patreon link. Sopuli seems to provide services ~160 users/day, if 30% of us throws in 1€/month into the hat he'll get the server paid and couple of beers for the trouble of keeping the instance running.
Mil.gov.ua doesn't allow hotlinking to their content:
The total combat losses of the enemy from 24.02.22 to 03.07.23 were approximately:
- personnel ‒ about 230260 (+600) persons were liquidated,
- tanks ‒ 4057 (+5),
- APV ‒ 7899 (+11),
- artillery systems – 4220 (+32),
- MLRS – 641 (+4),
- Anti-aircraft warfare systems ‒ 391 (+1),
- aircraft – 315 (+0),
- helicopters – 309 (+1),
- UAV operational-tactical level – 3573 (+16),
- cruise missiles ‒ 1264 (+3),
- warships / boats ‒ 18 (+0),
- vehicles and fuel tanks – 6834 (+18),
- special equipment ‒ 590 (+7). Data are being updated. Strike the occupier! Let's win together! Our strength is in the truth!
Ja tämäkään saapumiserä ei kotiudu koskaan.
" Risks: Users of these cameras run several risks. A possible hacker can: watch with the camera, change the password, adding the camera to a botnet, crash the camera, find out the location of the camera; access other devices in the home network.
The advice doesn't mention Dahua spesifically and the rest applies to every device you might connect to your network with poor security. It might be a camera or a tv, fridge, dishwasher, thermostat or a light bulb to mention a few. Most of those are just a small (often linux-based) computers which can do a lot of things, as computers in general do. Their security is just garbage and if a malicious actor gains access they can do whatever a compromized computer could do on the network.
On CCTV spesifically the worst ones are the devices which work only with some cloud-based messenger app. It's like connecting your home security to whatsapp (altough whatsapp itself is somewhat secure on that matter), but way worse.
Dahua, Axis and loads of other camers don't broadcast to internet by default and your NVR needs to connect to them (often, but not always) via RTSP. If your network is properly firewalled (NVR included) there's very little risk of attacker gaining access to that camera and using it as a general purpose computer to spy on you and hacking your devices trough it.
The 'predictable UID' and 'license plate on the internet' is mostly praising FUD and while it is true for certain type of cameras (the kind you'll connect over the internet directly either via a cloud service or a messaging platform) it's not a blanket statemet which would be valid for each and every camera manufactured at China.
It's certainly possible to run those devices securely and with Dahua you can run them entirely off the internet if you decide to do so (with some tradeoffs of course). The major problem is the people, who just buy cheapest things around and plug them into the network without any worries about any kind of security.
Of course there's at least some influence from the governments around the world to promote the 'we can spy you trough this but it's really convinient to setup' kind of devices, but if you either pay attention by yourself or get yourself a companion who'll set your hardware in a secure manner the problem doesn't exist anymore.
And that applies to everything with internet connectivity. Philips HUE lightbulbs have had vulnerabilities as a load of other 'smart' appliances, Ring and Nest included. And leaving anything connected straight to public internet has risks, some more manageable than others.
I don't know about state wide spying of these devices, which is of course an possibility, but as a rule of thumb they shouldn't be connected on the public internet at all. Regardless of manufacturer or even if you're using cameras or other IOT devices. It's pretty generally known that their security is questionable at best and practically nonexistent at worst.
Dahua cameras are quite decent for their price, but I wouldn't trust mine to be accessed from anywhere in the world, so they're firewalled on their own network and since they can't communicate to outside nor anyone can't get in (without connecting to my own VPN) I'm quite happy with them.
I've seen my share of CCTV and other equipment floating around and all you need is to login as admin/admin. At that point the manufacturer isn't really the one to blame.
No hups.
TL;DR: Twitterin webbisivu toimii siten, että nyt kun twiittejä ei pääse kirjautumatta lukemaan niin se lataa sivua uudelleen ja uudelleen ja uudelleen ja uudelleen kertaa kaikki miljoonat ja miljoonat uutisupotukset, käyttäjät, linkitykset ja kaikki muut.
Eli (karkeasti) jokainen, joka yrittää lukea twitteristä yhtään mitään tekee oman pienen palvelunestohyökkäyksen kun näitä kokeilijoita on "muutamia" niin palvelimet kaatuu.
Doesn’t LUKS lock out any attempts for 60 seconds after 3 attempts anyway? That’s a huge blocker in the way for brute forcing. That’s 180 attempts in an hour, 4320 a day, etc. It’ll take a long time.
The prompt running on (many) distributions boot has a time limit, but if you pull the drive and plug it into another host (or boot from USB) the limitation doesn't exist.
If you’re truly looking to wipe, I think you’d need to execute something at the OS level once unlocked/booted to detect incorrect attempts (if attempt >3; then dd if=/dev/zero of=/dev/YourDevice bs=2M or similar).
You could bake that into init scripts since the kernel is already running. On the same spot where the time delay triggers you could just wipe the drive instead of prompting to wait until receiving new password. But that still leaves the option to pull the drive physically into another host and do whatever you like with it since the wiping code on the drive wouldn't/couldn't execute.
Tämähän se ois. Saranan ruuveja voi myös vähän löysätä ja sitten ovi 90 asteen kulmaan auki, oven alle jotain kiilaamaan sitä ei-saranapuolen alanurkkaa ylöspäin ja kiristys. Kiilan voi korvata kaverilla joka nostaa ovea kahvasta samalla kun kiristelet ruuvit.
However, if it's enough to erase the data if wrong key is entered AND the original operating system is running it should be possible. But I agree, that limitation doesn't really make sense in a security point of view.
Besides that, I believe that luks encryption with sufficiently complex password (and updates) is practically the same than empty drive for the attacker. More interesting setup would be to give out different data depending on which key is given, there was some windows-based software which could do that back in the day, I'm not sure if it's still around and don't remember the name for it right now.
It would at least add a layer of obfuscation if someone extorts a key from the owner.
No yllättävähän tuo ei ole, mutta ei sillä meidän alelaarinatsilla ole kyllä asian kanssa mitään tekoa. Täällä voisi olla vaikka Lenin presidenttinä ja Stalin pääministerinä niin kannanotto tuskin paljon muuttuisi.
Näkyyhän noita matkailualan yrityksiä olevan myynnissä vähän pitkin valtakuntaa, netistä hakemalla löytää jos vaikka minkälaista yrityspörssiä ja kauppapaikkaa. Jos taas on hakusalla ihan pelkkä työpaikka (kahdelle) tuommoiseen yritykseen niin aika lujassa voi olla, jos ei sitten jostain S-ketjulta satu löytymään.