Neo4j might with

Pass uses GPG and git under the hood.

You create keys to encrypt your data, and keep the encrypted data in git locally which can be cloned to github, gitlab and the like.

It’s just files on your computer, so you can back them up that way, or use a thumb drive as a remote git repo and push to it.

Day to day Type pass and tab complete to find the entry. Enter the command and be prompted to unlock it. It will then print the credentials to the terminal.

To create a new password, you type and add command followed by a name and a text editor opens up for you to type credentials in, or it can generate them for you.

To keep your backup up to date you just git push to the remote of your choice. I use github

It very well could be these days. It could also be default settings that are better on Linux for certain activities. The network stack is highly tunable.

The majority of the Internet’s routing and switching architecture is BSD based. Historically it had the most stable and performant network stack of all the OSs.

I used it extensively at one job in a previous life when I was a network appliance developer. It was rock solid and lightning fast. Tried it as a desktop at home and had a terrible experience.

The little differences in the Unix commands used to drive me nuts as well…

You can try putting it on pretty 443 or another tls port. It’s not a perfect solution but it could help for your specific setup.

Wireguard is e2e encrypted, no middleman can inspect the packets without the private keys.

https://discord.com/servers/8311-886329492438671420

Get rid of their junk equipment and put something decent in. Discord link is a group dedicated to doing just that. You may find info for your specific ISP.

If you do it right, you won’t even need their gear inline at all.

-sS80 -sA80 was my goto for CTF boxes.

We have a team of 6 and rotate on call regularly. I’m in the US and receive no benefit for on call specifically, but other regions do. My salary more than covers the inconvenience though.

I would spend my time the same way. Honing my specialization to increase benefit to society. I love software development!

I use Ranger day to day and just access external volumes from their automatic mount points in /media, or I mount them manually to /mnt.

It works for me!

Because this isn’t a FOSS discussion community.

You could always add them to the allow list so they don’t get blocked.

Not all militaries function in this way. I’m sorry yours does.

As an example, Israel has the concept of Rosh Gadol which empowers members of it’s service to be better than the system itself.

There are many very left leaving countries with mandatory military training now and in the past.

You may be significant referring to the US military, and in that instance I completely agree with you.

All software ads exploits. Antivirus software mitigates already exploited systems.

And yes, some antivirus programs are infamous for being difficult to work with, but also remember that any vector that allows a user to easily override antivirus features can also be done by malicious software.

Moving the port doesn’t reduce attack surface. It’s the same amount of surface.

Tailscale is a bit controversial because it requires a 3rd party to validate connections, a 3rd party that is a large target for threat actors, and is reliant on profitability to stay online.

I would recommend a client VPN like wireguard, or SSH being validated using signed keys against a certificate authority your control, with fail2ban.

This is not true and bad security practice.

There are exploits that can be installed without a mistake made on the users part, the user can make a mistake, and almost every user downloads and open files regularly.

Windows is less secure than the other options, but the other options are not impenetrable. The biggest botnets are made of Linux IoT devices, and nobody opened the wrong email on they’re thermostat…

What a virus scanner will do is check your filesystem and possibly program memory for known footprints. A tool like this can save you from becoming a node on a botnet or being crypto locked. More importantly, if you work from home it can save your company from this issue as well!

I think mandatory military service is likely a good thing for a population (maybe not the individual). With a highly trained population, volunteering would likely increase and reduce the need for conscription during times of war.

The benefits of military service for young adults are numerous. Discipline, exercise, comeradity, professional exposure, etc. Could reduce some of the mental issues we see due to isolation through technology. Of course I’m taking in peace time.

Sounds like you were out of resources. That is the goal of a DoS attack, but you’d need connection logs to detect if that was the case.

DDoS attacks are very tricky to defend. (Source: I work in DDoS defence). There’s two sections to defense, detection and mitigation.

Detection is very easy, just look at packets. A very common DDoS attack uses UDP services to amplify your request to a bigger response, but then spoof your src ip to the target. So large amounts of traffic is likely an attack, out of band udp traffic is likely an attack. And large amount of inband traffic could be an attack.

Mitigation is trickier. You need something that can handle a massive amount of packet inspection and black holing. That’s done serious hardware. A script kiddie can buy a 20Gbe/1mpps attack with their moms credit card very easily.

Your defence options are a little limited. If your cloud provider has WAF, use it. You may be able to get rules that block common botnets. Cloudflare is another decent option, they’ll man in the middle your services, and run detection and mitigation on all traffic. They also have a decent WAF.

Best of luck!