argv_minus_one

argv_minus_one , 10 months ago to Politics in A right-wing sheriffs group that challenges federal law is gaining acceptance around the country

If you don’t want fascist law enforcement, don’t vote for fascist law enforcement. These guys are on the ballot, at least where I live.

argv_minus_one , 10 months ago to Politics in Congressional Dems pile on Alito after he says SCOTUS ethics can’t be regulated

Senate Republicans: loud evil laugh, mustache pinching, etc

argv_minus_one , 10 months ago to Star Trek in How Many Star Trek Episodes Pass the Bechdel Test? (TOS to ENT) | The Mary Sue

No surprise with Voyager. On the ship of the valkyries, there are plenty of opportunities for women to talk to each other about starship stuff.

argv_minus_one , 10 months ago to U.S. News in Sanders suggests course on Black history spreads ‘hate’ against U.S.

If your idea of the greatest country is one in which you can and probably will be imprisoned through no fault if your own, forced to perform manual labor until it kills you, and if you somehow survive long enough to be released, systematically impoverished in order to force you to steal to survive and thus ensure that you end up back in prison, then I have to wonder what you think goes on in the rest of the world.

Make no mistake, this country is extremely cruel. Living here is terrifying, and I’m not even black.

argv_minus_one , 10 months ago to U.S. News in Proud Boy Christopher Worrell, on house arrest in Jan. 6 case, disappears ahead of sentencing

I wonder if that’s intentional. Conspicuously mistreat him in jail so he’s moved to house arrest, where he can escape before he’s sentenced.

argv_minus_one , 10 months ago to U.S. News in Sanders suggests course on Black history spreads ‘hate’ against U.S.

And it is entirely justified. What the US did and continues to do to black people is appalling.

argv_minus_one , 10 months ago to U.S. News in 3-year-old migrant girl dies aboard bus headed from Texas to Chicago

Modern-day Trail of Tears shit right here.

argv_minus_one , 10 months ago to U.S. News in Voters in Ohio reject change to state’s constitution

None of this would even matter if this country wasn’t infested with rabid misogynists. This is a victory, but only a small one.

argv_minus_one , 11 months ago to U.S. News in Teen faces felony after emergency dash to hospital interrupted by Arkansas State Police PIT Maneuver

The party of death claims another victim. When are people going to stop voting for them?

argv_minus_one , 11 months ago to U.S. News in Teen faces felony after emergency dash to hospital interrupted by Arkansas State Police PIT Maneuver

You can vote, but both of the major parties are pro-police.

Um, this happened in a red state. This shit almost always happens in a red state.

argv_minus_one , 11 months ago to selfhosted in Cost friendly data backup

My go-to backup strategy is USB hard drives. They’re cheap, they’re fast, and nobody’s going to even try to decrypt them. Buy several, put them in a safety deposit box at your bank, rotate them weekly, and nothing short of a nuclear weapon will destroy every copy of your data at the same time.

argv_minus_one , 11 months ago to Politics in [News] Trump rally interviewer backpedals after man calls to "kill them all"

I mean, yeah, that’s exactly what they intend to do: kill us all. Genocide of everyone not in their cult. And then of everyone who is in their cult.

argv_minus_one , 11 months ago to homelab in The Reluctant Sysadmin's Guide to Securing a Linux Server

Are you going to elaborate, or…?

argv_minus_one , 11 months ago to homelab in The Reluctant Sysadmin's Guide to Securing a Linux Server

Here’s my advice:

Disable password authentication and allow only key/certificate/token/etc wherever feasible. Don’t even ask for a password if some other authentication mechanism can be used instead. Human-memorized passwords are weak and generated passwords are a poor substitute for proper cryptographic key exchange.

su, sudo, and Polkit are privilege escalations waiting to happen. Remove them if possible; deprivilege them (remove the setuid bit) if not. Do not allow any means for an unprivileged user to get a root shell, regardless of authentication, because unprivileged accounts may be backdoored and letting them elevate will grant root privileges to the attacker as well.

On your local machine, always log in as root on a separate virtual console using a separate password. On remote machines, always log in as root using an ssh key only accessible to the root account on your local machine.

I’m iffy about hiding SSH behind a VPN. Doing this creates a serious risk of being locked out of your own server, and if your SSH server is configured correctly (as described above), then the security benefits aren’t that big. If you do find the risks acceptable, feel free to do this, but you shouldn’t feel obligated.

Docker is unnecessary complexity and overhead. Use systemd to isolate things; it can do things like filtering system calls and hiding portions of the file system. SELinux might be good too, if you can figure out how to use it (I never could).

Fail2ban is unnecessary if nothing accepts passwords for authentication. There are no fails to ban.

argv_minus_one , 11 months ago to U.S. News in HISD to eliminate librarians, turn libraries into discipline centers at 28 campuses

So basically, the school-to-prison pipeline without extra steps.