Cybersecurity professional with an interest/background in networking. Beginning to delve into binary exploitation and reverse engineering.

  • 0 Posts
  • 120 Comments
Joined 1 year ago
cake
Cake day: March 27th, 2024

help-circle
rss
  • I understand the inherit issues/limitations with PGP, but this would be a non-issue if services just stored messages encrypted on disk internal to prevent leaks in case of a breach, but were otherwise unencrypted, and everyone just sent messages like: -----BEGIN PGP MESSAGE-----\nVersion: GnuPG v2.2.0\nhQEMA+gAAKCRBKxZ12345678EBAAIAAAQABAoAB+P/234567890-=+QWErT\n... (a long string of seemingly random characters) ...\n=sdfsdf\n-----END PGP MESSAGE-----

    A lot of the issues with PGP would go away if applications had first party support for encryption and decryption with personally managed keys. You’d still have the issues that come along with personally managed keys though, but if the alternative is every government can compel central services to hand over managed keys, I’m fine with yelling “skill issue” at people who permanently lose access to all their messages.






  • I don’t have FDE (BitLocker) enabled on my Windows 11 gaming PC. It sits in my house and has nothing on it but video games and video game related shit. I don’t even have my password manager installed for logging in to Steam, GoG or whatever other launcher. I manually type passwords in from the vault on my phone if the app doesn’t support QR code login like discord. Also I paid for this ridiculous m.2 nvme drive, I’m not going to just give up iops bc i want my game install files encrypted.

    I don’t use FDE on my NAS. Again it doesn’t leave my house. I probably should I guess, bc there is some stuff on there that would cause me to have industry certs revoked if they leaked, but idk I don’t. Everything irreplaceable is backed up off site, but the down time it would take to rebuild my pirated media libraries from scratch vs just swapping disks and rebuilding has me leery.

    I have FDE enabled on both my MacBooks. They leave the house with me, it seems to make sense.

    I don’t use FDE on Linux VMs I create on the MacBooks, the disk is already encrypted.

    My iphone doesn’t have the option to not use FDE I don’t think.

    I use encrypted rsync backups to store NAS stuff in the cloud. I use a PGP key on my yubikey to further encrypt specific files on my MacBooks as required beyond the general FDE.





  • If you have files with a bunch of different formats and codecs you don’t want to use anything Roku, your direct play options are extremely limited. This becomes almost a hard requirement when dealing with hevc 4K hdr/dv stuff unless you’ve got a server with quicksync or some oomph.

    I’m probably going to get a lot of derision for this because it’s Lemmy, but for wide direct play coverage you either want an Nvidia Shield or an Apple TV 4K. I like the Apple TV solution, and everyone in my household is familiar with the UI. The Shield is the only one of the two to support Atmos audio if you have ceiling or upward firing speakers. It’s also not apple if you’re ideologically opposed to owning Apple products.

    I’m not surprised you fell back to a Roku box from the built in TV apps, but if you’re going to go for a dedicated streaming box Roku, Firesticks/Firecubes, and Chromecasts should be the last resort due to ads in the experience and codec support.






  • Exactly. Internet delivered to the home by some form of wired connection will always be better than internet delivered via cellular, regardless of whether it’s an old-school hotspot or a newer 5g router with the cellular modem built in.

    As far as ISPs go, Fios is pretty good. I have them, they’re relatively cheap for 1Gbps symmetrical, I regularly speed test at like 980Mbps, I get a regular public IP (no cgnat), the pub ip my router pulls only rotates when the router power cycles, the ONT box is just Ethernet so I can use my MikroTik and not have to dick around with making an ISP supplied modem/router pass through, idk I’m happy.

    Not sure if they support ipv6 in my market, I just have all that disabled on my router. I know I know, I should stand it up, but I really don’t feel like it.




  • Hannu’s Boatyard

    This site has probably the best disclaimer I’ve ever seen at the bottom of the page.

    And even more You must understand, that using a boat may be dangerous:
    -The boat may fall over.
    -You may fall out of the boat.
    -The boat may hit a rock.
    -Your shoes may get wet.
    -The boat may get filled with water.
    -The boat may sink.
    -Another boat may hit Your boat.
    -The boat may drift a long distance away.
    -You may get lost with the boat.
    -When rowing, You may get blisters in Your hands and butt.
    -If You get into water, You may drown or get hypothermia.
    -Killer sharks may attack You.
    -Anything else may happen
    

    👌



  • Yeah, this is interesting to me. Google and Cloudflare are for-profit companies that have presence in the EU at minimum, and probably France directly as well although I don’t know that for sure. If they refused to comply, France can fine their local EU subsidiary and block their ability to receive payments from eu entities.

    Quad9 is a not-for-profit located in Switzerland. I wouldn’t expect them to need local subsidiaries, as they aren’t doing business in the EU or anywhere else. The France could fine them, but they’d have no way of collecting if Quad9 refused to pay right? It’s a free service, so there’s nothing to block on the payment processor side that would prevent French users from accessing it. You’d have to blackhole all traffic to the quad9 IPs on a national level right?