I’ve recently seen login attempts using keys, found it curious…
- 0 Posts
- 9 Comments
Joined 11 months ago
Cake day: June 12th, 2024
You are not logged in. If you use a Fediverse account that is able to follow users, you can follow this user.
Permitting inbound SSH attempts, but disallowing actual logins, is an effective strategy to identify compromised hosts in real-time.
The origin address of any login attempt is betraying it shouldn’t be trusted, and be fed into tarpits and block lists.
Go directly to the root.
Not Linux, but VMS is specifically designed to run on VAX systems.
He truly is an idiot’s concept of a genius.
No one who anctually understands Unix or IP networking would ever craft that as an explanation for this concept.
That said, it’s an excellent explanation of how a lobotomy helped him embrace his true self.
It could be a real address, but not within a /24, nor publicly routable.
Configuring multiple v4 addresses on an interface is a kludge, typically only used on hosts which apply inter-network routing logic. It’s an explicit, primary function of the standard v6 specifications.
With v4, you would use either RFC1918 and NAT, or plumb a public address to the host.
With v6 you should use a ULA and an address with a public prefix, and selectively open ports/services to on appropriate address.
An example is the file sharing and administration daemons on my NAS are only bound to its ULA. I don’t need to worry whether it will accidentally be exposed publicly through fat fingering my firewall config, because it will never route beyond my gateway.
I use ULA prefixes to ensure the management interfaces of my devices don’t leak via public routes.
It’s one of the unique parts of the standard IPv6 stack not back ported to IPv4, that an interface on any host can be configured with multiple addresses. It permits functional isolation with the default routing logic.
IPv6 is far from perfect, but the majority of the arguments I’ve seen against deploying it are a mixture of laziness, wilful ignorance, and terminal incuriosity.
Either she knows something novel, where processing data using voice coils is somehow beneficial, or is someone who calls their computer a ‘hard drive’, which summarily negates any legitimacy of technical competence.