It’s good to be paranoid when it comes to IT security (and software development). 👍
It’s good to be paranoid when it comes to IT security (and software development). 👍
Listen.
Don’t expose any port to any service if you don’t need it.
If you do, make sure it’s as secure as you can reasonably make it.
I’m not disagreeing.
I guess upstarts are expected to cut corners.
Sure, don’t open ports you don’t need. I said in a different here that I reject all expect IP ranges I’m in for home, mobile and work. That works for me. That blocks the vast majority of the world.
I agree with the other guy that I’m not a target for these vulnerabilities. They are rare and hard to exploit, and valuable. But the basic advice you give is good, obviously.
Don’t expose what you don’t need to expose. Still I have Immich and all of my photos on there. Good luck scamming me with threats of sending them to my family and work. 😀
Exactly. We’re not taking about hobby projects anymore.
Ah, now I remember. It took a quick configuration change to mitigate this. Still, I’d call this very rare.
I’m going side with @drkt@scribe.disroot.org on this one.
Does GitHub offer some sort of contract or agreement for those companies? Not an expert on these things, things like NDA’s, uptime guarantees, etc.
My code is hosted on our selfhosted GitLab instance. How many companies host their code on GitHub? I’m seriously asking…
Well, those won’t typically have ssh exposed on them. But we could argue what is more risky to have exposed, ssh or http. Any publicly available server could be vulnerable, it’s just very unlikely these days (with up to date software).
I remember that one. Those are pretty rare and usually involve a specific configuration that is often not the default, though, right? When such a vulnerability is found, is it rightly so major news.
I have the firewall of my VPS reject any IP range except the ones I’m on frequently, that is mobile, home and work. Sucks when you travel, but otherwise works alright.
Still exposes ports to some people on the same mobile or home internet service networks…
I’d go for Dune 2 over Warcraft, but Warcraft was influential in its own way.
Yes, exactly. I wonder how many new, non-technical users tried Proton for the first time with the setting off and decided it was crap because nothing worked. I’m glad Valve decided to do this now.
Yeah, I just enabled it after reading this!
As for Money Island, I think the console release of Escape had better controls and may be the preferable versions to play.
Both games are good, in my opinion, though. It’s just that Curse of Monkey Island was better. Many people hated the controls, but you get used to them.
Not saved as Markdown files, but in a database. I prefer editing my own files when I need to. I prefer Silverbullet.
This is not necessarily true. Many models have been trained on assembly code, and you can ask them to produce it. Some mad lad created some scripts a while ago to let AI “compile” to assembly and create an executable. It sometimes worked for simple “Hello, world” type stuff, which is hilarious.
But I guess it is easier for a large language model to produce working code for a higher level programming language, where concepts and functions are more defined in the body that it used to get trained.
It’s got room service!