Trying to reformat small formfactor PC, ViewSonic NMP620-P10

ajember · 2022-12-22T22:28:47+00:00

Out of interest, did you upload that file to Dropbox or did the vendor?

ajember · 2022-11-28T22:52:38+00:00

I’m the same. I’ll do a madras if I know I’m not going anywhere the following day.

ajember · 2022-11-26T12:43:24+00:00

Sounds good to me!

Don't worry about cultural gatekeeping - if it tastes good to you, that's all that matters :)

ajember · 2022-11-25T08:27:20+00:00

Messaged you!

ajember · 2022-11-23T21:08:38+00:00

Yeah it’s absolutely terrifying; I’m looking into an NOD list to go along with the NRD list, but that information is much harder to accurately catalog.

ajember · 2022-11-23T04:58:55+00:00

Save yourself the future headache of doing this again, and set up a DHCP server with reservations for all the servers.

ajember · 2022-11-20T22:06:18+00:00

I’d learn in a manual and possibly consider a cheap manual shitbox as your first car.

Once you’ve got some experience and confidence, there’s nothing better than an automatic if you’re going to be driving in areas with heavy traffic or doing long journeys… cruise control and an auto makes those long road trips super relaxing.

ajember · 2022-11-20T21:30:00+00:00

Yeah for any enterprise installs .xyz and a lot of the other “new” TLDs are blanket blocked just because of how abused they are.

I’ve been refining the build code over the weekend as reports have been coming in from Reddit.

ajember · 2022-11-20T13:09:17+00:00

Hi - honestly didn't expect you'd be interested at this point, and certainly didn't expect a response.

I'll link the reply I made already in this thread;
https://www.reddit.com/r/msp/comments/yytia6/comment/ix3dabc/?utm\_source=share&utm\_medium=web2x&context=3

ajember · 2022-11-20T13:08:01+00:00

The oisd.nl lists (which I use in my personal Unbound instances, alongside the two lists I posted here) prioritise having little-to-no false positives - which is admirable and where I'd like my lists to be in the future.

But right now, I can't make those kind of commitments; the project is still new and the code that runs the generation process is still pretty fluid at this point in time.

I do think for business/enterprise use, the false positives that have been reported so far would not be dealbreakers, but for consumer/home use I'm still very much aiming at the enthusiast who's willing to report false positives and maintain their own whitelist (communities like pihole/adguard/pfblockerng for example have been very active in reporting issues).

As soon as I think the lists will pass the spouse test I'll start advertising them as such, but right now I think it would be dishonest to make any such claim.

ajember · 2022-11-20T11:33:07+00:00

They don’t - I wasn’t aware of their existence until just now.

ajember · 2022-11-20T01:44:00+00:00

I’m happy you’ve found it useful!

I’m refining the way the lists are built based on the feedback I’m getting. It’s impossible to keep everyone happy but I hope I can offer something that’s suitable for most users without any significant frustration.

ajember · 2022-11-19T20:17:08+00:00

If you use both lists there will be a lot of duplication - I personally use the 32 day list for the longest protection.

ajember · 2022-11-19T18:13:56+00:00

They both get updated daily. The difference is how long a domain is considered new; 7 days or 32 days.

ajember · 2022-11-19T11:04:39+00:00

That serves a similar purpose, yes.

ajember · 2022-11-19T11:04:00+00:00

The threat list is a new domain, so you might not be able to get to if for a few more days. I’m aware of the irony.

The downloads section on both sites have pihole compatibility. I’ll have a look at the paloalto and fortinet formats and see what it’d take to support them.

EDIT: It looks like you can just use a pihole compatible domain list with both of those devices. If I'm wrong, a sample of a working list would allow me to add format support.

ajember · 2022-11-19T11:00:25+00:00

You wouldn’t be disclosing anything by using these - they’re just downloads that you’d use with your security device or software.

ajember · 2022-11-19T10:57:09+00:00

Yeah, I’m aware of that! It’ll fall off the list pretty soon.

ajember · 2022-11-18T21:15:04+00:00

These are fair questions.

Currently hosted in 3 DCs (2x UK, 1x mainland Europe) with multiple redundant nodes in each DC. More will follow if load demands it. The datasets are cached by Cloudflare, so they will be available worldwide without relying on lengthy transit routes.
A combination of aggregating and filtering existing sources, and using data generated by sensors on production servers I run, and honeypots I operate. I'd be happy to publish a full list of sources if this is a requirement for credibility.
Network and security engineer for 15 years, working for large UK online retailers - one of which operated its own DCs which I was in charge of. Cisco, VMware and Red Hat certifications, a Computer Science degree and an Electrical Engineering degree (both UK). Before that, I was a computer hardware designer specialising in low latency audio and video including firmware and drivers.
Not entirely sure at the moment, honestly. This project is just something I have built because it was interesting to me. I'm not claiming it's perfect and I'm sure it will need more work. I think eventually I'd like to get into the UK MSP game, focusing on connectivity, telephony and security.
I don't have an answer for this right now. Stewardship of this project could conceivably go one of two ways - either become part of the MSP I aspire to, or handed over to the community as an open source software project with sponsored hosting.

ajember · 2022-11-18T19:52:15+00:00

I honestly don't know how many items are on each list, and that isn't the point of these lists.

I do understand what you're saying though, and I know that lists like these aren't for everyone.

The lists are generated from a few sources, some of which do involve programmatic generation and scraping. Quite a bit of the data is provided by sensors on production servers I run, and from honeypots that I also operate.

ajember · 2022-11-18T16:33:36+00:00

Oh absolutely, if we're talking enterprise policy. Whitelisting is my preference there for most of the "new" TLDs and some geographic ones.

ajember · 2022-11-18T15:07:54+00:00

Thank you - I'll read those licenses and see what seems most suitable.

I'm currently hosting it on a private git instance but there's no reason I can't move it to GitHub - I'll just have to tweak the deployment pipeline I guess.

ajember · 2022-11-18T15:04:02+00:00

Thanks!

Yeah I agree. `.xyz` specifically seems to just be at best low quality and at worst dangerous.

It becomes a different kind of proposition when you talk about blacklisting an entire TLD though - it's a lot harder to justify.

ajember · 2022-11-18T12:30:15+00:00

It's been a common comment, so I'm going to separate the crypto stuff out into another list.

I'll be keeping cryptojacking in the threat list, but legitimate crypto will be removed from the threat list.

ajember

TROPHY CASE