jerry

joined 2 years ago
MODERATOR OF
securitynews
infosecpub
testing
sorted by: new top controversial old
Mentorship Monday - Discussions for career and learning! in c/cybersecurity
[–] jerry 3 points 9 months ago (2 children)

I’m thinking about getting back in the game. What does everyone thing a CISO should know? What makes a good CISO?

We have to solve the money problem! in c/fediverse@lemmy.world
[–] jerry 49 points 9 months ago (8 children)

Hi all. It’s Jerry from the interview talking about infosec.exchange. I think it’s important to understand some apparently missing context in the discussions below. I was talking about a hypothetical future where we saw tens/hundreds of millions of active accounts on the fediverse. I don’t believe the current funding model can support that, and I also don’t think the “spin up your own host” model will work for the masses, either.

I host close to two dozen different fediverse services, from lemmy to mastodon to mbin to peertube and lots more, and all that takes some significant hardware to run at larger scales. My objective has been to provide a fast and reliable fediverse experience, and so I’ve focused more on that than on making my servers scream, and so I’ve landed on hosting the fleet on a series of Hetzner Dell servers with 10GB interfaces, and that is not cheap.

We have to solve the money problem! in c/fediverse@lemmy.world
[–] jerry 3 points 9 months ago

I am not sure if the “he” reference is me, but I did ask and people did step up to support the costs of running the instance.

We have to solve the money problem! in c/fediverse@lemmy.world
[–] jerry 6 points 9 months ago (1 children)

Hey all, Jerry here (from the interview). Happy to answer any questions.

Tesseract and Voyager interfaces now available in c/infosecpub
[–] jerry 2 points 9 months ago

Good to hear. I rather like it, too

Tesseract and Voyager interfaces now available in c/infosecpub
[–] jerry 3 points 9 months ago

Thanks. I’ve updated the post as well

Fair warning about vote manipulation in c/infosecpub
[–] jerry 4 points 11 months ago

Yes, that’s correct

Fair warning about vote manipulation in c/infosecpub
[–] jerry 16 points 11 months ago

I have messaged them directly. At least the ones I am aware of. This is a warning to others that I may not be aware of or people who decide to try it in the future.

One of your users is committing voter fraud in c/infosecpub
[–] jerry 2 points 11 months ago

Thanks for bringing this up.

Future of Infosec.pub in c/infosecpub
[–] jerry 4 points 11 months ago

Thanks for asking. I just added the donation links to the site’s sidebar, but here they are too: Paypal: jerry@infosec.exchange Ko-Fi: https://ko-fi.com/infosecexchange Patreon: https://www.patreon.com/infosecexchange

Introducing old.infosec.pub in c/infosecpub
[–] jerry 2 points 11 months ago (1 children)

Apologies. It should be fixed and stay fixed now. Docker gets about 37 updates per week and for some reason that particular container won’t restart on its own, so I’ve created a script to restart it automatically.

One in three security teams trust AI to act autonomously in c/pulse_of_truth
[–] jerry 2 points 11 months ago

I’ve worked in all levels of management, including C-level at a Fortune 500 company, and I can tell you that from the perspective of the C level, the tools are a given. If the employees have complaints about the tools, the perception is that either the mid to lower level management or the employees are not competent and need to be replaced with ones that are able to deliver on the promise of the tools.

(I say this without judgement - most of the time it’s BS, some of the time it’s true)

114
Please don’t enable 2FA (self.infosecpub)
submitted 2 years ago by jerry to c/infosecpub
18 comments fedilink
 

2FA in lemmy doesn’t work reliably yet. Please don’t enable it or you will almost certainly get locked out.

Note: it makes me sad to post this.

37
Blocking sh.itjust.works (self.infosecpub)
submitted 2 years ago by jerry to c/infosecpub
9 comments fedilink
 

Hi all. I am going to implement a block for sh.itjust.works. I am going to need years of therapy from all the nasty crap coming from that instance.

69
Federation and new community creaton is disabled (self.infosecpub)
submitted 2 years ago by jerry to c/infosecpub
7 comments fedilink
 

Hi all. I’ve disabled new community creation and federation until there is a fix for the latest vulnerability

65
Vulnerability fixed (self.infosecpub)
submitted 2 years ago by jerry to c/infosecpub
7 comments fedilink
 

As some have pointed out, there was a serious xss vulnerability in lemmy disclosed yesterday. The Lemmy team released a fix a bit ago and I've since patched infosec.pub.

137
Apologies for the problems (self.infosecpub)
submitted 2 years ago by jerry to c/infosecpub
31 comments fedilink
 

Lemmy and kbin have been... exciting to set up and debug.

There is a new version of lemmy in RC right now that should fix most of the issues we've been seeing, or at least give error messages that indicate what is going on.

10
Promising Jobs at the U.S. Postal Service, ‘US Job Services’ Leaks Customer Data – Krebs on Security (krebsonsecurity.com)
submitted 2 years ago by jerry to c/securitynews
1 comments fedilink
view more: ‹ prev next ›