32·
1 year agoDon’t expose anything from your local network to the internet (unless you want multiple new sysadmins in your house). Try tailscale instead.
- 1 Post
- 10 Comments
Joined 1 year ago
Cake day: June 22nd, 2023
You are not logged in. If you use a Fediverse account that is able to follow users, you can follow this user.
6·1 year agoDo anyone knows if it support local-only without joining the p2p network?
You think that being convicted for lifetime is a solution anyway?
Honestly curious, why? I live in a country that doesn’t have it but I don’t see downsides if the crimes committed are way too bad. For example, why keeping alive (with contributors money) a serial killer?
I was thinking about that just today, I have something like 30+ services running on a single compose file and maintenance is slowly becoming hard. Probably moving to multiple compose file.
9·1 year agoSoon, people will join the strange and buggy world of YouTube alternative frontends
1·1 year agoBecause I wanted to try if others URI schemas were supported instead of http / https. file:// was a valid one. Don’t worry, the day an attempt of data exfil will happen, you will not see it though your console logs.
Is this, by any chance, originated from the sub called
ignore me? In that case is probably my bad because is set as the image of the channel. I was playing with lemmy in the previous version and forgot about it, sorry.It will not work since your browser can’t access local file that easily without breaking the sandbox :) also the that alert appears because your browser is trying to load an image with that path, nothing dangerous or remotely exploitable, don’t worry.
Edit: I removed it so you shouldn’t see the alert anymore.
P.S. not, it’s not trying to steal anything, it’s your browser trying to load that file as an image but instead of being let’s say this url:
https://beehaw.org/pictrs/image/c0e83ceb-b7e5-41b4-9b76-bfd152dd8d00.png(this sub icon) , it’s this onefile:///etc/passwdso you browser is doing the request to your own file. Don’t worry, nothing got compromised./cc @shellsharks@infosec.pub> BE
The difference is that you need way more interaction. Expose a webserver on the internet and check how many requests you get from just bots.
You can control what you navigate and how to interact with the outside world, but you can’t control how the outside world will interact with your services.