[-] Mikelius@beehaw.org 4 points 1 year ago

What I did was just buy the tv I wanted for the hardware and block it from internet access by Mac address, then plugged it into the network with eth. I then put dns blocks on every request it made (I log things before blocking them, and did this on the scenario a kill switch gets messed up or something) and installed the media software from there. Smart tv made private.

[-] Mikelius@beehaw.org 6 points 1 year ago

I for one hate Microsoft Windows a great amount, yet am in love with C#... Just because a company has one terrible product, doesn't mean everything they make is terrible.

Also... What everyone else here already said. No reason for me to rinse and repeat what's been said lol.

[-] Mikelius@beehaw.org 3 points 1 year ago

96% but it's not accurate. Verified on my DNS logs that the two it claimed weren't blocked, actually resolved to 0.0.0.0 correctly, so I'm actually at 100%

[-] Mikelius@beehaw.org 4 points 1 year ago

Title probably needs to be reworded. Terms clearly mention they won't use it without user consent, not that they MUST use it. Doesn't mean it'll stay that way, but just don't consent for it when asked and you're probably okay (I'm mentioning this for those who have no choice but to use it, for things like work)

[-] Mikelius@beehaw.org 7 points 1 year ago

Probably already said here, but it's going to just come down to your end goal to know what distro fits what you're looking for.

I am personally a huge fan of Gentoo, another distro that's all about "from the ground up" approach. It's actually where I started with Linux and is how I became as proficient in it as I am today. In fact my internal server that does everything is running Gentoo as it's OS... Has never had any problems in the last decade that would require a reinstall or anything crazy like that.

But even as much love as I have for Gentoo, I have Linux Mint installed on my laptop. Why? Because it's just more convenient when I need my full focus on the 10 other personal projects I'm working on... Also amazing on the gaming front. Doesn't have nearly as much bloat as some other Ubuntu-based distros on first install, has a huge community support, and is just great all around to have.

[-] Mikelius@beehaw.org 3 points 1 year ago

Why not just self host? What happens when/if their service goes down without any warning? You lose everything?

Got my things all on a server with RAID for redundancy and backup weekly to an external (encrypted) device, monthly to another that doesn't stay at home. Also means I don't have to rely on the Internet to use all my services if the ISP goes down, the firewall explodes, etc. Self hosting is the way to go!

[-] Mikelius@beehaw.org 2 points 1 year ago

Man I'd love to know how you could buy land so anonymously that even the government is saying wtf. lol

[-] Mikelius@beehaw.org 12 points 1 year ago

I don't, but that's because of how I have things setup around the network. While most people here say it's because they don't need it, I am in a position that I need SOMETHING simply because others in the household could bring in malware and rather than trust them to make smart decisions, I proactively monitor all network activity for anything unusual. That being said, I have clamAv installed and run a weekly scan, but my real "antivirus solutions" are as follows: A syslog server that's connected to grafana/MySQL and alerts me based on very specific criteria. Along this, I've got my network firewall configured to block all "untrustworthy countries" in and out 100%, as well as use an IDS/IPS (also connected to syslog for alerts). Lastly, an internal DNS which grabs from like 20 sources that include some reliable lists with malware domains and such, and a custom list of my own that I add to as useful security news feeds hit my RSS feed with urls in their blog posts.

Actually got a list of other things going on in the network to make it even more secure, but just wanted to list the main things that'll give you a step up in the anti-malware front.

None of this is buletproof without proper care for how you use the Internet, though.

  • Check for router/modem/firewall updates weekly if they can't be auto updated
  • never click any links in an email even if you feel you know you trust it (exception to this would be something you KNOW is coming into your inbox, such as an account registration verification)
  • avoid tiny urls or suspicious looking urls when possible
  • don't open ports unless you really really really know what you're doing. If you absolutely need to open a port, then for the love of god define the source IP address/CIDR. Opening ports to the world includes opening them to cyber criminals
  • turn off upnp, I don't care what that game or service you use says, it doesn't need it

You get the idea. My message got way too long and turned into a rant lol.

[-] Mikelius@beehaw.org 3 points 1 year ago

Have you tried a normal "grub-update" command to make sure it gets the right kernel to boot up for you? Not 100% familiar with Ubuntu, but perhaps that's all you'd need to run to get it booting to the right version.

[-] Mikelius@beehaw.org 5 points 1 year ago

You have comments in your legacy codebases?? Luckyyyyy

[-] Mikelius@beehaw.org 29 points 1 year ago* (last edited 1 year ago)

Dunno if anyone mentioned it, but if I had to guess, you have a DNS leak. Basically your DNS requests are going through your ISP instead of the VPN, resulting in them knowing where you're going online anyway. Be sure to check for those DNS leaks and setup a custom one if your VPN doesn't offer one. Don't forget, DNS traffic over port 53 is also unencrypted, so unless you force those through the VPN, they could still know where you're going.

[-] Mikelius@beehaw.org 9 points 1 year ago

If in the US, check out privacy.com. It's a bank so expect the signup process to be as invasive as any other bank, but they allow you to create masked cards and you can fill in any name and address you want into the billing info to keep your real info away from websites. Paid version also hides transactions you make from your actual bank.

view more: next ›

Mikelius

joined 1 year ago