HackerTrans
TopNewTrendsCommentsPastAskShowJobs

erros

no profile record

comments

erros
·2 years ago·discuss
Ladies and gentlemen, this person solves problems. Let it be known.
erros
·2 years ago·discuss
You may want to update this post to disable password authentication, and thus you'll no longer need to install fail2ban. An important goal is to tighten your attack surface, not expand it. At this point you will still have an exposed SSHd server, so I'd recommend throwing the server under tailscale. You can setup the SSHd listener to use your tailscale IP or setup tailscale for SSH via ACLs (https://tailscale.com/tailscale-ssh).

Additionally you can further tighten controls of incoming logins with the use of AllowGroups to tighten your controls on which groups can log into the system. This would mitigate a scenario where an adversary is able to escalate enough privileges to write an .authorized_keys file to a non-privileged user which may have a shell still configured.

Finally, unless you're treating this server as a bastion host of sorts, you probably should disable forwarding for agents or X11 etc. We've seen a lot of adversaries move laterally due to this agent forwarding.
erros
·2 years ago·discuss
I'm sure we all could appreciate Mega for what it was, and we could also debate the charges and go back and forth on extradition laws. The reality is that according to the DoJ, US citizens were victimized by a service that used US assets (servers) within its territory. That opens the doors for litigation. This happens literally in every country that can enforce it.

Like Reddit, HN has a crowd of anti-US folks with terrible sentiment until, you know, when they need the US or need a job in the U.S. The hypocrisy is astounding.
erros
·2 years ago·discuss
It is my opinion. What else? I mean, what was the point of your response? You didn't even offer an opinion on the topic. You offered an observation and lazily concluded whatever-it-was with a rhetorical question?

Is that normal for people like you?
erros
·2 years ago·discuss
[flagged]