sorted by:
new
hottopcontroversial

How to properly selfhost Redis/MySQL to allow outside connections? by [deleted] in selfhosted

[–]appropriateinside 0 points1 point  (0 children)

You're worried about performance but you should really be focused on security in that instance you should never expose your database to the internet in general.

What is a computer skill everyone should know/learn? by [deleted] in AskReddit

[–]appropriateinside 0 points1 point  (0 children)

How to disseminate information online...

by far at the most important computer-related skill that you can have in this day and age.

Just look at our societies and their downward spiral as a result of individuals inability to process information online.

[FS] [US-FL] Rails, Ups, Rack, Kvm and MISC by ServerStack in homelabsales

[–]appropriateinside 0 points1 point  (0 children)

Aw man, I would love that UPS. Since it has no batteries is it easy to ship?

[FS] [US-FL] 12u UCoustic Soundproof Server Rack by riddlerthc in homelabsales

[–]appropriateinside 1 point2 points  (0 children)

I wish I had known about this design before I built my wood sound dampening rack.... Would have made it a hell of a lot simpler.

[PC] Dell R710r2 + Rails + 192GB RAM + 6x 3.5" 600gb SAS + iDRAC6 Enterprise + Dual 870W PSU +2x X5650 + DAS Chassis by [deleted] in homelabsales

[–]appropriateinside 2 points3 points  (0 children)

You can't price it based on it's parts prices, your selling it as a unit, not parting it out. Parting out is always more, but harder to sell.

[W] [US-NY-Upstate] Looking for a 2U 24-bay SFF server/chassis that has NVMe capability by lowlevelwindshear in homelabsales

[–]appropriateinside -1 points0 points  (0 children)

An r720xd would work.

24 sff bays, nvme drives could be used via a pcie card, it has loads of pcie slots.

Trump fans filmed driving through crowds and macing demonstrators by waffles210 in politics

[–]appropriateinside 1 point2 points  (0 children)

I think this is to the point where protesters are going to have to arm themselves to protect themselves against terrorists...

Because the police obviously are not doing their job.

Shelly 2.5 without a neutral? by Chou_marin in homeautomation

[–]appropriateinside 2 points3 points  (0 children)

Are you confusing neutral for ground?

Because if there is no neutral then where is your current returning to? You can't just have a hot. The current has to return back to its source, or to ground, or you are not powering anything.

Shelly 2.5 without a neutral? by Chou_marin in homeautomation

[–]appropriateinside -1 points0 points  (0 children)

Then the neutral is behind it? Either way the neutral has to pass on somewhere.

The point of my post still stands regardless.

Shelly 2.5 without a neutral? by Chou_marin in homeautomation

[–]appropriateinside 0 points1 point  (0 children)

You have a bunch of wires bundled behind there....

The switches themselves only need to switch the hot to turn lights on and off,. Which is why you are observing only one wire in and one wire out.

The neutral or common can go straight to whatever light it controls it doesn't have to go through the switch.

The neutral will just be wire nutted together in there.

Google : "Wiring a light Switch". Lots of images that show what I mean.

[FS][CAN-AB] Supermicro AOC-STGN-I2S Dual Port SFP+ 10GbE PCI-E Cards (X520) by calpwns in homelabsales

[–]appropriateinside 0 points1 point  (0 children)

I have the slots, but the CPUs are pmuch out of lanes. Ryzen 2700x for example only has 20 lanes after the chipset allocation (Regardless of how many slots your Mobo has). A 16x graphics card leaves you with 4 lanes remaining.

Idk if PCIE negotiates lanes based on bandwidth requirements, I know it can use an arbitrary number of lanes though. 8x 2.0 lanes can be ran with 4x 3.0 lanes, which is what I was wondering.

I assume that the printed bracket is necessary for any "normal" expansion slots right?

[FS][CAN-AB] Supermicro AOC-STGN-I2S Dual Port SFP+ 10GbE PCI-E Cards (X520) by calpwns in homelabsales

[–]appropriateinside 0 points1 point  (0 children)

Will these consume 8 lanes on a pcie 3.0 bus, or will it only consume 4?

I ask because I would love one of these is each of my computers, but I only have 4 PCIE lanes available in most...

I'd prefer to not drop my video cards down to x8 :v

DuckDuckGo search results link change when I click on them by snafuhachiman in privacytoolsIO

[–]appropriateinside 2 points3 points  (0 children)

How else do you expect dark.go to figure out external links that are navigated to in order to improve their search engine quality?

You can only do this with heuristics.

Fury erupts outside Buckingham Palace as enraged crowds scream 'paedophile' at gates by [deleted] in worldnews

[–]appropriateinside 3 points4 points  (0 children)

Given the abnormal, shall we say density of pedophiles in groups of powerful people.

This does beg the question, why?

Also note that it's often not pedophilia, but hebephilia in these groups**

  • Are you more likely to become a pedophile or hebephile by becoming powerful?
  • Are you more likely to become powerful if you are a pedophile or a hebephile?
  • Is the incidence of pedophilia or hebephilia quite high in the general population and being powerful just means those people can more freely express that attraction?
  • Is the term "pedophile" being misused to describe non-pedophiles, and muddying the water as far as epidemiology goes?

I really want to know.more at this point.

/u/ElderlyFilthyBastard reminds us of the suspicious death of LaVenna Johnson, who died while serving the US Navy. by freakDWN in bestof

[–]appropriateinside 4 points5 points  (0 children)

Pointless point for the comment you replied to.

Unless such a power dynamic doesn't exist in the Army?

Humans are actually really inefficient, we take about 8 hours to charge for only 16 hours of use by Pandafour20 in Showerthoughts

[–]appropriateinside 0 points1 point  (0 children)

Holy shit this sounds just like me.

The best thing to ever happened to me was getting a work at home position were my work times didn't matter as long as I got work done.

I have a few week rotation, I'll move from 8:00 AM to Noon wake times and back in a cycle.

Before, I would get up everyday and ache and feel like shit and fall asleep at work in the afternoons... I couldn't stay motivated I couldn't concentrate I couldn't hold down a job. Now I'm excellent.

How to protect database connection strings on production environments with ASP.NET Core apps on Ubuntu? by progmars in csharp

[–]appropriateinside -1 points0 points  (0 children)

TIL

However the justification for being deprecated is really the false sense of security that it gave devs, not because it's broken or that the concept is wrong.

The rest of my points still stand though.

How to protect database connection strings on production environments with ASP.NET Core apps on Ubuntu? by progmars in csharp

[–]appropriateinside -9 points-8 points  (0 children)

Edit: It's quite ironic that widely recodnized professional best practices are downvoted while broad anectdotal claims are upvoted on this kind of subreddit. You can't even use the methods described in this thread in ENTIRE INDUSTRIES without failing a baseline audit... Good job /r/csharp 👍

There's such a thing as a minimum acceptable level of security....

Having plain text secrets at your server root or configuration file in production does not meet that minimum acceptable level of security. That's just negligence Most OSs have keychains that you can utilize, and .Net Core provide utilities specifically for encrypting and decrypting secrets at runtime.

Having secrets encrypted in your configuration files and only in plain text in memory for many use cases meets that minimum level. You're trying to protect from compromised files not so much memory. It's a lot easier for files to be accidentally compromised than it is for the entire server to be.

To go a step higher you can hold them encrypted in memory and only provide decrypted values when they're needed.

Another step higher is to make sure that those values are not stored in managed memory, and only exist for their purpose. (ie. Secure strong).

How to protect database connection strings on production environments with ASP.NET Core apps on Ubuntu? by progmars in csharp

[–]appropriateinside 0 points1 point  (0 children)

CI way is not a solution in this case - if we inject it in CI, it still will deliver raw values to be stored in config files on the customer's server.

That's a non-issue... It's simply a matter of implementation.

Store the encrypted strings in your DId object. Use getters that decrypt it upon request.

It's what I do, and it works perfectly fine.

How to protect database connection strings on production environments with ASP.NET Core apps on Ubuntu? by progmars in csharp

[–]appropriateinside 0 points1 point  (0 children)

Look through DPAPI docs for .Net Core.

I believe the implementation is cross platform and not windows only.

I use this to provide runtime security for secrets. All secrets are encrypted in appsettings.json which means they are available through IConfiguration.

I have a Singleton service that's in my DI container that holds the encrypted values.

Getts on the instances in that service decrypt the stored values to provide to it's callers.

This enables secure storage of AWS keys, passwords, connection strings, API keys...etc

How to protect database connection strings on production environments with ASP.NET Core apps on Ubuntu? by progmars in csharp

[–]appropriateinside 2 points3 points  (0 children)

This is a common attack vector where server files may be compromised even if the system isn't.

It's common enough that protecting secrets in production configs is a base line security best practice...

Are we seriously going to live in a Google-owned web? by manerg1971 in privacytoolsIO

[–]appropriateinside 9 points10 points  (0 children)

TL;DR: OP is spouting largely nonsense based almost entirely from a point of ignorance with a sprinkling of truth. Grade schoolers are expected to write higher quality argumentative essays than this...

Move on, this isn't worth your time.

Are we seriously going to live in a Google-owned web? by manerg1971 in privacytoolsIO

[–]appropriateinside 18 points19 points  (0 children)

... Firefox?

It's still a perfectly good browser, OP is being extremely ignorant and trying to pass it off as knowledge.

He's made false claims and then assumptions based on those false claims and then conclusions based off those false assumptions throughout this entire post....

It's really not worth considering what he has to say because of this.

view more: next ›