9g3890fj2's comments

9g3890fj2 | 2 years ago | on: NSA publishes ten most common misconfigurations in networks

Pentester/red teamer here, this point from the article is the key:

"Properly trained, staffed, and funded network security teams can implement the known mitigations for these weaknesses."

You need someone who actually understands networking tech at a deep level to accomplish anything beyond what expensive tooling/devices will offer you. Otherwise, you're always going to be limited by whatever vendor you're using and the capabilities they build in, assuming you're using the solutions to their full capability.

9g3890fj2 | 2 years ago | on: Internet-connected cars fail privacy and security tests conducted by Mozilla

Just regular Bluetooth, Android Auto and CarPlay are no-gos for me. I want less connectivity, not more.

9g3890fj2 | 2 years ago | on: Internet-connected cars fail privacy and security tests conducted by Mozilla

Interesting. I've never connected my car to my wireless network and I've never used the Nissan app. I think I used a burner email when setting things up, but that was years ago so I don't remember the details. I'll see what happens if I try an OTA update later today and report back.

9g3890fj2 | 2 years ago | on: Internet-connected cars fail privacy and security tests conducted by Mozilla

I connect my phone to my 2015 Nissan's bluetooth, but just for music. GrapheneOS lets me prevent its access to my contacts, call history, active calls, text messages - anything but music audio. To me (but not the less tech literate, I know), if you're connecting your car to your phone, it's obvious that it is able to gather things about you.

That said, because I don't know much about cars, I don't know if the car is even capable of phoning home or by what means. Is it a 4G signal? Just a radio transponder? How do I even investigate without tearing my dash apart?

9g3890fj2 | 2 years ago | on: Upcoming .com and .xyz domain price increase

It's not the receiving that's the problem, but the sending. Even with all necessary records in place and using a reputable email provider isn't enough in a lot of cases. You'll just end up in spam.

9g3890fj2 | 2 years ago | on: Upcoming .com and .xyz domain price increase

.XYZ domains were already too difficult to use for anything other than a regular site since they have such a bad reputation (however warranted it may be) as being used for spam. Not sure what the point is in paying even more for a TLD that's discriminated against by default.

9g3890fj2 | 2 years ago | on: Microsoft will let you uninstall more built-in Win 11 apps soon for less bloat

And even so, what are the odds that other apps will just end up back on the OS after some period of time? It's part of the Windows experience, uninstalling the garbage only to see it come back in an update a couple months later.

9g3890fj2 | 2 years ago | on: Oregon decriminalized hard drugs – early results aren’t encouraging

https://archive.today/rznQr

9g3890fj2 | 2 years ago | on: Proton Pass: Open-Source and Encrypted Password Manager App

Any idea if the new one removed all the dependency on systemd? I know it's the most common among distributions, but plenty of popular ones are using OpenRC, for example, and can't use their client at all because of it.

9g3890fj2 | 2 years ago | on: Why the Remote-Work Debate Stays So Heated

https://archive.is/CpcAf

9g3890fj2 | 2 years ago | on: The Perfect Laptop

Created an account just to comment - what is awful about 16:9, or "low res" about 1920x1080, for a laptop?