ipfwadm ftw

I have to admit it widens the attack surface. Not immensely, but every bit counts.

host key veryfication, right, good point! non-root attacker won’t have your servers key. but thats just on top. so even if you ack the new host key, what could they gain? give you a shell with their permission and wait for you to sudo-tell them their password maybe. until then trying to mimic the system they might not know too much about (whats in /root?)

Chess. (lichess)

I run a small it company. Each month I have to sort all tax relevant documents and hand them to my tax office.

So I download the tx CSV from my accounts. Those get parsed and the relevant invoices get searched in paperless, so I see if something is missing etc with a few minutes of manual work.

I have an paperless account and shared it with my user, but you can also just integrate 2 accounts in one email client.

Guess I should create a sieve filter to look for relevant mails and auto-copy

so everyone can open them… so what? attacker who already gained local access can crash your original sshd and spin up his own one? admittedly a thinkable scenario… but can this even be abused in a pubkey auth scenario?

Old school

Introducing pay-per-slice in 2026, to assure customer satisfaction!

Whenever I come across a post like OP describes, and I check the instance, it’s ml (with a bit of hex in the mix). It seems fair to me to ask this question.

But then I guess the discrepancy is: “90% of a specific kind of users are on this instance”, which is absolutely not the same as “90% of this instances users are of this kind”

I learned from a friend how to dial in with some terminal to create an account like that manually. There were some magic numbers/strings involved, but I can’t remember details. I just remember the com port had to be set to 7n1, not 8n1 like for all other stuff I did

Very interesting read and deep insights into sabotage operations!

git init /

people are still on windows?

If the client was open source, it could be verified by inspecting this source alone. To my understanding, the clients do real end to end encryption. This is the good part. They also have some functionality to re-encrypt the data or export the secret key to let new peers take part, or so i guess. This is how your web browser can also read them after you peer it up. Now there might or might not be a function in the client, where meta can request the private key or re-encryption. This is really hard to figure out without having the source code.

good point, makes the comparison even worse %-)

You’re mixing two population averages, so you need a weighted calculation.

Let’s approximate first: France has about 67 million people out of roughly 447 million in the European Union, so ≈15% French and 85% non-French.

We set up:

Overall EU rate = weighted average 1.7=0.15⋅8+0.85⋅x

Solve:

1.7=1.2+0.85x 0.5=0.85x x≈0.59

So, among non-French Europeans, the rate is roughly 0.6 per 100,000.

That’s substantially lower than both the French rate (8) and the EU average (1.7), which makes sense given how high the French figure is relative to the rest. Also this is pretty much what I read for Vietnam in this chart.

thanks France, for ruining our numbers!

Edit: somewhere in this thread someone from France gives a perfectly good reason and connects the high starvation rate to assisted suicide. Which shines it’s light on another problem but very well explains and justifies the “starvation rate” - making this graph/comparison even more absurd.

Once the dump was complete, we transferred it to the new server using rsync over SSH. With 248 GB of compressed chunks, this was significantly faster than any other transfer method:

rsync -avz --progress /root/mydumper_backup/ root@NEW_SERVER:/root/mydumper_backup/

that’s a bit weird. rsync -z is compression, but they did compress in the mydumper export already, so this is a slow down (or neutral at best). also in my experience rsync is as fast as scp is as fast as piping anything to the tcp port on the destination etc. rsync does not win for speed but for enabling resume so to say…

besides this: nice read!

Also leaving Russia does not equate to disagreeing with Russia. Just disagreeing with personally dying for Russia.

Nah, it works out fine. If you lose 1 in 144, that clearly calculates to 1 in 14. Maybe even 1 in 1. Anybody seen Russia lately?