A late #Caturday entry. Can you see her?
[#]CatsofMastodon
=> More informations about this toot | View the thread
The current state of the US government is doing one thing very well: getting me, an American citizen, to go out of my way to spend my money and time on foreign software instead of domestic wherever possible
=> More informations about this toot | View the thread
A couple moon pics I took from my apartment last night. These were taken on my #iphone 16 pro’s 5x lens looking through a 7x binocular. No editing and looking pretty good I think :)
[#]astrophotography #moon #photography #space #iphoneography #astrodon
=> View attached media | View attached media
=> More informations about this toot | View the thread
UPS: Your package is out for delivery!
Me: Maybe furiously refreshing the tracking page will make them deliver it faster 🤔
=> More informations about this toot | View the thread
Like, my interest in this on a scale of 1-10 is in the negative
=> More informations about this toot | View the thread
Almost every time I see a post in my feed that feels a bit too capitalistic and click baity, I quickly realize that it’s from Threads and lose interest even further. Might be time to consider moving to an instance that fully blocks Meta’s cesspool of a platform 🤔
=> More informations about this toot | View the thread
Finally got around to mounting an extra monitor on my server rack! I hooked up my #RaspberryPi since I wasn’t using it for anything else, although I should probably just connect it to my compute server instead.
My end goal is a custom #grafana dashboard, but that’s an entire project in and of itself. For now, I’ll just tile my #adguardhome and #plex dashboards among others.
P.S. please ignore the mess. Yes, it is like that most of the time 😅
[#]homelab #selfhosted
=> More informations about this toot | View the thread
[#]3GoodThings
=> More informations about this toot | View the thread
One of the project managers made this for my office door 😂 I love it
[#]it #Infosec #technology #funny
=> More informations about this toot | View the thread
Someone told me to have a gentle new year and holiday season today. It doesn’t have to be good, or amazing, or even particularly happy. Just gentle.
So all of you folks out there, have a gentle new year ❤️
[#]happynewyear #newyears #selfcare #mentalhealth
=> More informations about this toot | View the thread
Dyed a couple discs last night! The mako is a Christmas gift for my dad, while the pilot was an experiment. I didn’t turn out how I wanted, but I think it’s still pretty damn cool!
[#]discgolf #tiedye #art
=> View attached media | View attached media
=> More informations about this toot | View the thread
So I ended up getting the Cloud Gateway Ultra. I love it so far! Everything seems to Just Work™️.
My Flex Mini switch just arrived too, and adoption + firmware update was a single button press and took < 5 min to complete. I think I'm in love 😍 Next up is a U6-Pro to replace my 12+ year old OpenWRT AP!
[#]unifi #networking #homelab
https://infosec.exchange/@pb4000/113518019528912480
=> More informations about this toot | View the thread
Long toot, but TL;DR I’m looking for advice from fellow IT and network managers/maintainers.
Planning a network overhaul for my ~20 person employer for a few months from now. Likely going Unifi for as much as possible for the tight integration and simple management for this poor solo IT guy. I’m not looking for input on that decision at this time, unless you have a really good reason.
Unfortunately, everyone is used to a BYOD system when it comes to WFH. They download the NetExtender VPN on their personal machine and RDP into their workstation in the office. I am trying to figure out how best to lock this down without pissing everyone off (yet).
Obvious measures already in effect include MFA for VPN access and geo-based IP blocking. I’d love to lock it down further though, and for that I am looking into an RDP gateway in combination with VPN.
For off-site company-owned devices, those would use the Unifi VPN authenticated via AD and MFA. Connections would be based on an allowlist of known safe workstations and they would be allowed normal network access.
For personal devices, I’m considering an RDP gateway (with MFA?) to monitor and limit connections from personal devices to employee workstations only (I.e. no server access). I could expose that publicly and ensure it’s locked down with MFA and give the host server minimal permissions and access. However, I’m wondering if it would make sense to place that behind the VPN as well.
Untrusted VPN connections could go to their own VLAN, only allowed access to the RDP gateway and nothing else. Both would authenticate with the same LDAP credentials, so not much benefit there. My main consideration is 0 days and other vulns. A 2 layered approach would ensure that a vulnerability in one system is still mitigated by the other.
I could see this creating unnecessary overhead for employees to connect though, and may not be worth the perceived extra security.
Anyone have any input? I’d love some advice here!
[#]it #networking #networksecurity #cybersecurity #security #infrastructure #ITAdvice #tech
=> More informations about this toot | View the thread
Installed OpenWRT on my router. Having some fun renaming my WiFi networks.
=> More informations about this toot | View the thread
[#]Christmas present number 1 secured ✅
Found out about Immich Frame, and it is SO COOL! Ordered a hackable Android photo frame to sideload the app for my girlfriend.
[#]Immich #selfhosting #selfhosted #giftideas #diy #hacking #foss #opensource
https://github.com/immichFrame/ImmichFrame
=> More informations about this toot | View the thread
Been brainstorming how best to redo my #plex and broader #homelab setup recently. I've decided that I want to switch to #proxmox and that it would be nice to set up a cluster to avoid unnecessary downtime. My main goals would be:
Anyone have a similar setup? Any downsides I should know about, or ideas that could help me?
[#]selfhosting #selfhosted
=> More informations about this toot | View the thread
Anyone have advice for how to mentally fathom this?
[#]uspol #election2024 #election
=> More informations about this toot | View the thread
I am happier by the day with @kagihq ❤️
Seriously, check them out if you’re fed up with Google’s BS!
From: @Klaxun
https://mastodon.social/@Klaxun/113395186130254982
=> More informations about this toot | View the thread
It’s not often that I post on Reddit. When I do though, it’s usually in a tech-oriented subreddit and I end up with a lot of know it all comments in response.
I work in tech for a living for crying out loud! I know my initial post was reasonable and open. I guess that’s just the culture of Reddit to a degree 🤦
=> More informations about this toot | View the thread
So we’re moving offices in a few months, which means moving our network infra. Seems like a great time to start mapping the network so I can plan ahead! Any tips for a green solo IT admin would be much appreciated.
[#]it #sysadmin #networking
=> More informations about this toot | View the thread
=> This profile with reblog | Go to pb4000@infosec.exchange account This content has been proxied by September (ba2dc).Proxy Information
text/gemini
