• 2 Posts
  • 57 Comments
Joined 1 year ago
cake
Cake day: June 7th, 2023

help-circle













  • It’s hard to give tips without knowing your situation better, but here are a few general ones that probably already set you apart from the vast majority of other small companies:

    • Keep your stuff updated, especially when there are security fixes available
    • don’t take convenience shortcuts that compromise on security (e.g. relying on “security through obscurity”)
    • block incoming traffic by default (you only need some people from your country to access the network? Maybe even block ip ranges from the other side of the world)
    • log access to your network and also analyse the logs often (probably with the help of some software)

    I’m just some Software Engineer with a few years of experience, not some security expert though😅


  • Mostly the same. I tried ChatGPT a few times to get it to generate some code, but mostly it produced code that didn’t even compile and when I asked it to fix it, it created code that didn’t compile in a different way. I enjoy writing code on my own a lot more than having to review some pre-generated code.

    Though I use it as a glorified Google sometimes and that is not even so bad.






  • I guess the idea is (make of that what you want):

    • Usenet is not illegal by itself (but well, same goes for torrenting)
    • As long as law enforcement doesn’t get its hands on the server it can’t tell what you download, as long as you use TLS (no VPN required, but doesn’t hurt either)
    • But even if: Usenet providers (hopefully) don’t keep logs of what you downloaded, so for all we know you just paid the provider to download actual news/Linux ISOs?
    • But even if they do: You are not uploading anything -> you are probably less interesting to law enforcement and they might just ignore you (especially if you use some payment method that might require going through some extra steps to link it to you as a person)