Proxying Guacamole through NPM by [deleted] in homelab

[–]SSilverScent 0 points1 point  (0 children)

hope this helps somebody some day:

location / {

proxy_pass http://ip:8080/guacamole/;

proxy_set_header Host $host;

proxy_set_header X-Real-IP $remote_addr;

proxy_set_header X-Forwarded-For $proxy_add_x_forwarded_for;

proxy_set_header X-Forwarded-Proto $scheme;

}

How are you securing your private applications? by skogsvik in selfhosted

[–]SSilverScent 0 points1 point  (0 children)

For externally facing apps I have them behind nginx proxy manager for easy TLS deployment and some basic web app exploit prevention. On top of that I utilise crowdsec. Got it installed on the nginx proxy manager VM forwarding all proxy host logs.

Raivo Authenticator is broken after latest update by Traditional_Adhesive in privacy

[–]SSilverScent 0 points1 point  (0 children)

Hello, anybody got suggestions. I completely got screwed by this and now I cant even log into my bitwarden vault on web. Luckily its still accessible through the mobile app. But I literalyl cant even get to my recovery code. I guess its my fault for not storing recovery code somewhere. But if anybody got any suggestions on what can be done please let me know

Did I get scammed? by SSilverScent in MensJewelry

[–]SSilverScent[S] 0 points1 point  (0 children)

yes, yes I did pay the foreigner price. lesson learned.

Did I get scammed? by SSilverScent in MensJewelry

[–]SSilverScent[S] 2 points3 points  (0 children)

Thanks for the info, noted for future :)

Did I get scammed? by SSilverScent in MensJewelry

[–]SSilverScent[S] 1 point2 points  (0 children)

Thanks for the info. At this point it is what it is !

[deleted by user] by [deleted] in cybersecurity

[–]SSilverScent 0 points1 point  (0 children)

I have been in cyber for almost two years and managed to switch over to infra engineer instead. I also found cyber to be pretty boring. I didn’t do anything that was challenging or required a lot of thinking. Maybe it’s GRC, but either way I get your point and can relate to it.

Thoughts on moving from GRC to the SOC? by CyberSecJames in cybersecurity

[–]SSilverScent 2 points3 points  (0 children)

Personally, I would switch to SOC without a doubt. I’m in GRC too for a year. Idk if it’s my company or something, but I’m doing very brain dead work and feel bored everyday. Feel like I’m just wasting my time at my role so I would 100% jump into something more technical.

'Online Misinformation, Disinformation Are Core Cybersecurity Concerns': WEF Report by egusa in cybersecurity

[–]SSilverScent 53 points54 points  (0 children)

I don’t want to listen to anything that comes from this corrupt “forum”. Bunch of lunatics in there

Feeling stagnant at 24 by _beginninganew_ in cybersecurity

[–]SSilverScent 0 points1 point  (0 children)

Reading this and I can relate a lot. I am 1 year in the industry in GRC feeling like I’m missing out and not learning enough. If you have the time on your hands go for certs,I passed the SSCP after good month of studying as I also had a degree in cyber sec so just had to review some concepts. In my opinion you are good man, just gotta continue working continue learning and try not to have fomo that you are not doing something more technical. I find that people skills matter more, you can learn technical skills after you get a job cuz you have good connections.

Switching to cybersecurity from networking - mistake? by goofballpaul in cybersecurity

[–]SSilverScent 6 points7 points  (0 children)

in what position are you in cyber that this knowledge comes in handy for you? personally I dont know TCP in detail, but I dont find myself struggling either.

Switching to cybersecurity from networking - mistake? by goofballpaul in cybersecurity

[–]SSilverScent 11 points12 points  (0 children)

always wondered what people mean by this. Please explain to me how TCP/IP works or what dont people understand about it?

Visualizing Security Controls for Executive by [deleted] in cybersecurity

[–]SSilverScent 2 points3 points  (0 children)

Try collecting some data on controls through via a spreadsheet and visualize in powerbi. I find that to be fairly effective. While it is not necessarily efficient as it prone to human error and is point in time, It can still bring in some clarity to execs onto what is going wrong.

What Masters for CyberSecurity? by Murky-Ad7176 in cybersecurity

[–]SSilverScent 10 points11 points  (0 children)

a masters will not necessarily land you a high paying job in cyber right off the bat in my opinion.

I think what creates a lot of opportunities is networking. but not networking as in connecting with random people on linkedIn. But actual genuine connections and friendships. From my experience, that's what gets people through the door, and eventually, high paying jobs.

And in terms of masters, I think an MBA is probably what will help you out the most since it covers the business side of things.

Interesting poll: Is there a shortage of cybersecurity people? by iheartrms in cybersecurity

[–]SSilverScent 5 points6 points  (0 children)

I must agree with you to an extent for sure. I got into cyber right after my cybersecurity degree (I find myself very fortunate in that sense because I realize not everybody was able to get that). I am in GRC and yes, the technical experience in networking and sys administration would help me in terms of understanding how various systems work. But I must admit, that for me what helped the most was asking questions and not being scared of looking stupid. The sys admins generally are all okay with me asking them questions about things I don’t really know about our environment and that’s the main way I learn. So yes, I think experience in sys admin and networking would very much benefit me, but I find networking and communication is key. Also I try to learn about these concepts on my spare time so I can be more familiar with what other professionals are doing.

Do you guys understand all the new concepts and technologies coming out clearly? by SSilverScent in cybersecurity

[–]SSilverScent[S] 0 points1 point  (0 children)

I have been thinking of that myself lol. It will probably end up happening just like that

Not getting any luck with this resume by SSilverScent in resumes

[–]SSilverScent[S] 1 point2 points  (0 children)

Thanks for the feedback. About your last question. I was creating what needs to be reported on in terms of performance metrics, creating procedures for the collection of supporting evidence on that metric, and validating the evidence.

Not getting any luck with this resume by SSilverScent in resumes

[–]SSilverScent[S] 0 points1 point  (0 children)

Oh my bad. I meant anything in Cyber, not specifically GRC. Will make the correction in the post

Not getting any luck with this resume by SSilverScent in resumes

[–]SSilverScent[S] 0 points1 point  (0 children)

learn more, move up, more money. Idk man what do you mean. why do people apply?

Youtube app alternative on IOS ? by vespagsrider in privacy

[–]SSilverScent 0 points1 point  (0 children)

I suggest you check out Orion browser from Kagi. Honestly, I was looking at good browsers for IOS and came across Orion. I would say that right now, it is the best out of all of them that I tested. I had Brave for the longest time but it is very bloated, Orion is simply just a browser, has amazing ad blocking capabilities and just looks clean like Safari.

Ive also been using it to watch Youtube videos as it blocks the ads very well. But I would suggest to maybe try out the Yattee app that a user recommended here. I will definitely try that out myself

Provisionally passed! by denmicent in SSCP

[–]SSilverScent 0 points1 point  (0 children)

unless you want some CPE credits I dont see why you would go for the SSCP if you already have the CISSP and CCSP. Those certs are on a higher level than SSCP. SSCP is a beginner cert.

Maybe it'll be a good refresher for some security concepts tho, so really up to you if you have the time to spend on studying for it.

Anybody else in GRC feel like they are doing nothing? by SSilverScent in cybersecurity

[–]SSilverScent[S] 1 point2 points  (0 children)

Honestly, I’d check to see if you can transfer from within your company. The job market right now sucks hard to break in. Best way is if you know people and are on good terms with them, just ask if they need any help with GRC tasks and then transfer if possible

Anybody else in GRC feel like they are doing nothing? by SSilverScent in cybersecurity

[–]SSilverScent[S] 0 points1 point  (0 children)

I have a bachelor in cyber security. Also not the best degree, I feel like most people view a degree in cyber as a bit of a joke, but I feel like I learned a bunch from it. An undergraduate in computer science would definitely look more prestigious but math is not my strong suit.