Because DFU exists. We shouldn’t need an idle Bluetooth radio and proprietary arbitrary code execution to update the firmware on a device.
There are so many unnecessary attack vectors involved in this process, it should raise some red flags.
you will need to update the firmware on the LD2450. You do this with a mobile app called HLKRadarTool
Does this seem sketchy to anyone?
Let’s Encrypt is good practice, but IMO if you’re just serving the same static webpage to all users, it doesn’t really matter.
Given that it’s a tiny raspi, I’d recommend reducing the overhead that WordPress brings and just statically serve a directory with your site. Whether that means using wp static site options, or moving away from wp entirely is up to you.
The worst case scenario would be someone finding a vulnerability in the services that are publicly exposed (Apache), getting persistence on the device, and using that to pivot to other devices on your network. If possible, you may consider putting it in a routing DMZ. Make sure that the pi can only see the internet and whatever device you plan to maintain it with. That way even if someone somehow owns it completely, they won’t be able to find any other devices to hack.
Btw it looks like you accidentally quoted the same sentence twice.
*Besides the ones your instance has defederated from
Agreed with using keepass. If you’re one person accessing your passwords, there’s no reason you need a service running all the time to access your password db. It’s just an encrypted file that needs to be synced across devices.
However, if you make frequent use of secure password sharing features of lastpass/bitwarden/etc, then that’s another story. Trying to orchestrate that using separate files would be a headache. Use a service (even if self-hosted).
Goodwill asside, their games just aren’t even fun. They’re all the same game loop:
Ooo I just found out element added support for drop-in/drop-out voice and video rooms. That’s the real killer feature they’ve been lacking I think. Will have to try it out.
Yeah, I saw that element is using jitsi under the hood for its screensharing. If that makes for a seamless user experience, that’s great. It’s been like 10 years since I last tried Jitsi, but it was not smooth.
TBH both disc and slack have their downsides, disc more so, so I’m fine if they just take the best of all worlds.
But yeah, screensharing is the deciding factor for me. As much as all my friends hate discord, we use screensharing all the time (it’s just a bit jankier getting it working on Linux).
This one is clearly made to look like slack, which is great I need to try this out. Just wish someone would make one that looks like disc. And then matrix needs screensharing support.
Does it work now? I tried it around a year ago and couldn’t get voice to work at all. It even had a message saying they were in the process of rewriting their voice streaming backend, and the legacy path may just be broken.
Discord compatible bots run on whatever server you run them on, they’re not owned or run by Discord.
It says the client is compatible with both space-bar and discord.com, so yeah, if you use it with discord, expect all the downsides of discord.
I have to assume they’re trying it out, but we may never see x86 to ARM emulation run at playable framerates while maintaining the power efficiency for many of the 3D workloads the steamdeck can currently run (not to mention dx12->vk translation). For simpler games, sure, but probably not cp2077.
Maybe it’s technically physically possible, but I don’t think we’re close to doing it. I think it would be easier for them to fund ARM+VK ports of new/popular titles, or see a battery density breakthrough.
Thanks, good to know!
I think their question is, what do you mean by “secure”? Because as the saying goes for internet services: usually, if you’re not paying, you’re not the customer, you’re the product.
Yes, absolutely it’s possible. You can take the leg of a lion and attach it directly to the neck of a lizard. You can take the lung of a poodle and put it in a fish. It’s called electrical taping.
Agreed. Anyone who thinks it’s ok to just expose ssh on 22 to the internet has never looked at their logs. The port will be found in minutes, and be hammered by thousands of login attempts by multiple bots 24/7. Sure you can block repeat failed logins, but that list will just always be growing.
Normal for who? I wouldn’t expose SSH on 22 to the internet unless you have someone whose full time job is monitoring it for security and keeping it up to date. There are a whole lotta downsides and virtually no upsides given that more secure alternatives have almost zero overhead.
I’m convinced 90% of them have never run either and just like to complain about stuff.