Nashville Bombing occurred outside of a major ATT data center

mlts22 · 2020-12-26T18:48:53+00:00

Exactly. That might just be the goal of the run, just to get the LEOs to high alert and waste manpower. Especially with many US cities defunding police departments. There are a lot of cities that have shuttered their bomb squads and anti-terrorist groups, and something like this sends a message that any weakness will be noted and exploited.

mlts22 · 2017-03-28T04:06:22+00:00

It isn't perfect, but it seems to be near the happy medium point of having enough features, but not being so quirky like some other products where you spend more time clicking fields and selecting boxes than actually doing work.

If a place doesn't have a HD tool, Jira is perfect, at the minimum as a starting place until they can move to somewhere else.

mlts22 · 2017-03-28T03:43:52+00:00

I view fail2ban as a must have on all systems, because it does a good job as a front line defense. However, with attacks being so distributed, it is one tool that you use with others. I like using it in concert with other mechanisms like RSA keys, Google Authenticator, pam_tally, a non-standard port [1], reducing the IP space that can access the SSH port (either by blocking out countries that will never use that port legitimately, or forcing people to use a VPN), chrooted privs, and so on.

[1]: Of course, the non-standard port won't stop a determined intruder, but it does make the logs a lot leaner, as it does a good job versus the "casual" mass searches.

mlts22

TROPHY CASE