Album on lemmy.ca, beehaw.org, shit.itjust.works & lemmy.world
She ended up having to re-clarify what is already said in the post, that the post is about her own insecurities with achieving traditional markers of success. She doesn’t understand what drives her to not be able to stop and considers it her problem.
Reading is hard.
Must be nice to say from your private Hawaiian island
Ayyyyy!
Love systemd thanks for the writeup 👍🏽
thats some pretty wet water you have there
Depends on what in “finance” and where. Assuming not sales or trading the salaries come down quite a bit depending on job level.
It’s a cheap battery, plastic, a single piece of wire twisted into a coil, water and flavouring.
And then on top of that they cut corners by not testing it or ensuring to use safe materials.
It’s amazing it costs as much as it does. They’re raking it in.
Kinda like ACA/Obamacare.
I’m of the opinion Americans want help and want to help others, but get lost in political rhetoric and a culture war designed to ensure no one gets anything.
Mauna Loa is a national treasure. It’s one of the greatest things about America.
This is the Brookfield Place in Toronto. Specifically it’s the Allen Lambert Galleria located at Brookfield place.
That’s what you get for using your isp’s DNS
Jokes on you. How do you know not every bread has been fucked before you ate it? Checkmate, atheists.
Wrt lan deny all for the fam, it’s mostly hard on gamers cuz games tend to use wide port ranges and outbound IPs are potentially home isp networks not the game servers. But yeah it takes some time and research to really lock it down.
Most stuff is running through web protocols though. So right off the bat you create allow rules for any LAN device to hit ports: 80, 8080, 443, 8443 which are your common http and https ports. That’s gonna get most ppl what they need.
I do ASN based allows for certain applications like Google, Facebook, etc.
For consoles they’re pretty locked down so just give them full allow to the Internet. I don’t do that actually but it’s probably the better way.
IOT devices get only the ports they need to the IPs they need.
when you said you are using unbound instead of using DoT forwarding, you mean instead of allowing clients to DoT forward, right?
No I mean my unbound resolves DNS for something like microsoft.com all by itself. It calls up the root name servers, finds the com nameservers, then asks the com nameservers for Microsoft. And for any subdomains it asks the MS name servers. This is instead of relying on external forwarding services like 8.8.8.8 or 1.1.1.1 or quad 9 or whatever. At least the former two are sure to be aggregating this data.
Additionally I do not allow devices on my network to reach out to external port 53, or 853 to circumvent lookups on my unbound by reaching out directly, which would then bypass the DNSBL. Anything for port 53 gets NAT’d to the unbound server. You can’t redirect TLS attempts so those get hard blocked.
Curious to your IDS solution
Securicata is what opnsense uses. Pretty easy to set up.
I have an n100 box that I put opnsense on for routing, firewall, DHCP, DNS and IDS. It uses unbound for DNS and so I’m leveraging the blocklist functionality in unbound. And then I use unbound to resolve instead of using DoT forwarding.
Dnsbl is only a small component of effective network security. Arguably the firewall is most important and so I have a default deny all for any device on my LAN trying to reach the Internet.
All applications need specific allows. Thus internally no device can use dns over tls because 853 is blocked by default. Then I use a DNSBL to catch known DoH by domain since the cert is provided by domain name.
It’ll also be wrong in every application you run in your browser. Even local sites.
It’s as simple as not getting OTPs via SMS or email.
Use a 2fa app where you manage the pre shared key and provide it once and then there’s is no transmission of keys from the provider. A hard key is effectively the same.
I get this every week on a SharePoint connection. Just powerbi things.
Look at Umberto Eco’s properties of fascism.
https://en.m.wikipedia.org/wiki/Ur-Fascism
There’s 14 properties. The fight against trans people falls into 8-10 different properties.
Trans people are a strawman for modern fascism. Just like immigrants.
People don’t really care about the truth they just want to be outraged when their own bias is confirmed.
Doesn’t help that articles are lying outright. But you know that’s how these shitrags get their ad clicks… Through rage bait.
I don’t see how the lawsuit is connected to blackrock. The medium article made that up if you check their source it says nothing about that.
The lawsuit is a class action with a guy who held 10 shares since 2021. Some investors expected the stock to decline in response to the CEO death as the company would make changes and those investors would have maybe even held a short position because of it. But United health intentionally didn’t inform investors of it’s plans to pay out more for several months. They released official documents knowingly telling investors one plan when internally executives were pivoting. The lawsuit asserts this is a violation of the securities act of 1933 section 10b. This is about United misleading investors.
I’m really looking for the link to blackrock but I don’t see it.
Expecting the general masses to read on the internet is where the mistake lies. People want to react and to feel outrage. That’s it. No one even cares if the thing is real.