Public-facing: Password generator, stored in a password manager.
Internal LAN: Everything gets the same re-used, low-effort password.
Nobody is going to hack my CUPS server.
Public-facing: Password generator, stored in a password manager.
Internal LAN: Everything gets the same re-used, low-effort password.
Nobody is going to hack my CUPS server.
Printers are always horrible to administer. Brother are typically the best on Linux. I wrote a massive instructional blog a few weeks ago because it took so much work to get my HL-3150CDN working over USB. I had to repackage a Frankenstein’s monster of a driver because my printer never got 64-bit CUPS filters.
Filco Majestouch mechanical keyboard.
I code all day every day. I would burn through a cheap OEM keyboard in a year, and the keys would get stiff and cause massive hand strain.
$200 on one good keyboard. You’re set for life.
OK, here’s how it happened.
I was hungry, and I wanted to see the menu for my local pizza joint. I couldn’t find it anywhere.
I discovered that all their socials linked to a website that wouldn’t load. When I checked, the domain had lapsed.
Out of frustration, I purchased the domain and pulled the last snapshot of their website off archive.org. It had their full menu as a PDF.
6 months later and it’s still getting visitors from their facebook page, who are viewing the menu. They haven’t even realised.
Host all the things!
Wordpress, SMTP/IMAP, tor, bittorrent, Nextcloud, Plex, NTP, photo galleries, DoT…
I even started hosting the website for my local Italian restaurant and they haven’t even realised it yet.
IPv6 should not be disabled under any circumstances.
In fact, many devices in my house have IPv4 disabled. Disabling IPv4 on my public-facing SSH reduced the attack traffic to zero.
IPv4 is shit.