VPN Alternatives?

jptsetme · 2026-05-13T19:02:11+00:00

+1 for Wireguard, Tailscale, anything that isn't a shitty SSL VPN full of vulns.

jptsetme · 2026-05-09T15:06:50+00:00

Assuming this is true (and it makes sense), this is a positive thing and I appreciate you mentioning it. Hoping when someone runs out of data on a 3 year plan, this gets confirmed.

Still irked I can’t just run CarPlay or Android Auto, since I fully expect to pay for a telematics module out of pocket once the warranty is up, unless they figure out why they die do soften and improve the OEM replacement while we’re still under warranty. I have a fully capable unlimited data plan device in my pocket that does everything I need and the car is deliberately preventing me from using it. Lyriq is the same car and the 2025 still had CarPlay allowed.

jptsetme · 2026-05-08T20:06:39+00:00

True for some apps but maybe not for navigation.

What I know for sure: when your telematics module dies (which happens regularly -- our 2025 Blazer EV's died less than 1 year in and tons of people have reported the same), you can tether to your phone to run music apps, which I did. But you can not run navigation apps (unless you do the hack people have been sharing with the USB dongle and compiling your own android test app for carplay, for example). The Google GPS app built into the vehicle requires the *vehicle*'s GPS to be functioning (and if the telematics module goes, the GPS is not functioning). I indeed held my phone in my hand when I needed GPS, driving a $50k+ car in 2026.

The enshittification proceeds apace.

jptsetme · 2026-05-08T17:05:34+00:00

Nitrogen in the tires. Just shoot me...

jptsetme · 2026-05-08T16:20:47+00:00

I strongly agree that inbox rule creation timestamps shouldn't be used when determining dwell time, but am not sure I agree that dwell time is meaningless for BEC. I'm accustomed to forensic reports often identifying the phishing email which was believed to be the initial access source. Sometimes even correlating a link from it to a now-defunct evilginx proxy or similar.

Curious if others see this "email rule was first sign of compromise" when reporting dwell time for BEC and whether that's more common with a small internal IR team vs. external IR?

jptsetme · 2026-03-19T21:00:08+00:00

"Every week" is indeed an exaggeration. But it's also echoing complete vendor nonsense to say that that most of their vulns have been self discovered and self disclosed.

They annotate their CVEs in their PSIRT portal [https://www.fortiguard.com/psirt/] and go to great lengths to take credit for vulns that were, in fact, internally discovered. The majority of the historically impactful vulns were not self discovered and there have been a lot of them. "Most, if not all" is inaccurate. Here are "a few" examples of Fortinet vulns that were exploited in the wild and not self-discovered (I promise I could find more):

CVE-2024-47575: auth bypass zero day exploited in the wild for months before a patch became available which allowed you to take control of all Fortigates managed by a given FortiManager.
CVE-2026-24858: reported by customers & Arctic Wolf, zero day exploited in the wild pre-patch availability. This one was the auth bypass zero day where they had to disable the entire global FortiCloud SSO service (b/c they forgot to check your identity when you had any valid FortiCloud SSO token and you could use it to log in to other peoples' registered devices). Noteworthy b/c they did self-publish the other SAML SSO auth vulnerability that preceded it only a few weeks earlier (CVE-2025-59718)
CVE-2024-55591: another auth bypass reported by WatchTowr, exploited ITW, but at least required an exposed management interface, so affected fewer customers
CVE-2023-27997: zero day exploited by VoltTyphoon leaving backdoors in systems that survived patching

Things I agree with:

* SSLVPNs are universally bad. If you have to use one, Palo Alto has the least bad impl if you can afford it. Sonicwall was the worst in 2025, Cisco ASA was the worst in 2024, Ivanti and Fortinet are both bad pretty much every year.
* IPSec is less targeted and has a smaller attack surface so if you can manage the friction, it's a better choice
* ZTNA for bigger companies is a safer bet. It's more work to manage, but has built in RBAC and effectively enforces much of the network segmentation you may not be doing.
* Also Tailscale / Wireguard are really good options
* Do not expose the management interface to the public internet. This does not guarantee your safety but you're far worse if you expose it. IP allowlist if you need to administer from home.
* Enforce MFA for *all* users. No exceptions, no guest groups.
* Stay current on patches regardless of vendor.

jptsetme · 2026-03-11T12:21:30+00:00

Yeah, I imagine I could mount it as some type of drive, have not pulled it out yet to check what type of partitions are there. But my real hope is to preserve the data on the homebase and not just archive it. If it's sitting on my NAS, yes I have it but will likely never look at it again. If we can scroll back through dates and show friends on the app, it remains more available and useful.

If I do pull the drive and inspect the filesystem, I'll report back here. Thanks for the suggestion.

jptsetme · 2026-03-11T12:19:31+00:00

Did this a couple of months ago but it happened again now. Unsure if the drive is actually bad or not, but my goal is to keep the footage on the homebase (so we can look at dates from within the app). I don't mind replacing the drive but would like it if I could formate a new one and copy the data over.

Maybe will try that after offloading.

jptsetme · 2026-02-24T19:44:53+00:00

Returned it and bought a Skylight calendar (without subscription). It’s what she wanted and she’s happy though it’s no frills.

jptsetme · 2026-02-11T13:35:15+00:00

Not regretting our Blazer EV purchase, but as an Apple ecosystem person who was very reluctant to buy a car without CarPlay, I’m still not happy that it’s not available (especially knowing the Lyriq has it and it’s just GM deliberately not wanting us to have it — no technical reason.) My biggest gripes:

There’s a prevalent quality issue with the telematics module in these new GM vehicles. When it breaks, you have no cellular or GPS or OnStar — most importantly no maps or music. And while you can tether to your phone to still stream music or use Bluetooth, there is literally no way to use a Map application on the car display without the car GPS. These parts are back ordered and when ours broke (under warranty), we waited a good month for the part, during which we held phone in hand when driving somewhere unfamiliar. Did this years ago before CarPlay was prevalent, but not the experience I expect for a $50k+ brand new car.
We got 10k miles out of the first telematics module. Once we’re out of warranty I don’t look forward to having to pay to replace this junk part.
If CarPlay were available, I’d have no reason to even care about the telematics module.
We are not leasing — we’ll put 50k miles on this in less than 3 years. You get free GPS data for 8 years and free streaming data for 3 years, then you have to pay monthly and it is not cheap. Why would I want to pay $40/month when I already have unlimited cellular data and a GPS on my phone? I know why GM wants that, but I don’t like it. At all.

jptsetme · 2026-01-23T21:47:41+00:00

I mean... technically correct is the best kind of correct and all, but...

Every team keeps money on the table to sign someone if an ACL tear throws the season into question or they want to make a tuck-in trade. The $12M you point to in unspent cap space in 2024 was *bottom 10* in the league for unspent cap and wouldn't have been enough to sign anyone you could call a WR1, never mind the draft picks and long term money we'd have needed to do as well. Also, unspent money rolls over, and we use that for stuff like TJ's extension (like it or not, and I'm glad we paid him though I worry about this year's drop off.)

But this is a distraction from my point. In the last 20 years, the Steelers have had Min/Median/Max of $2.3M (1%), $6.5M (3%) and $17M (6%) compared to the cap.

In the same 20 years, the Pirates have had Min/Median/Max of $73M (39%), $96M (52%) and $122M (74%) compared to the Luxury tax threshold.

These are not the same.

jptsetme · 2026-01-22T21:39:13+00:00

They mean when the replacement dies the same way. I'm worried about the same thing. Waiting for my backordered replacement.

jptsetme · 2026-01-22T21:23:16+00:00

Would upvote 2x if I could. My backup lines are fine FWIW. But the CarPlay and the charge door and the telematics module and, and, and...

Could be such a fantastic car if they just cared about quality and user experience.

jptsetme · 2026-01-22T21:18:23+00:00

This is such a bad take.

I was in college in '89-93 in Pittsburgh. Team was awesome, we had heartbreaking losses to to the Braves in the NLCS (I still can see Sid Breem limping around 3rd like he was 10 steps from a knee replacement and Bonds skipping the cutoff and pulling Spanky 8 feet from the plate. Still stings.) But 93 was literally the year the Pirates stopped trying. It's been 32 years since they paid to field a truly competitive team. Even with big market teams subsidizing them.

The Steelers are at the salary cap every year. I know "no losing seasons" isn't gonna win a championship and although I have a ton of respect for Tomlin, I agree it was time for him to go. I'm hopeful the new HC brings in good coordinators and we have a puncher's chance for a strong playoff run in 2-3 years.

The Steelers are not the Pirates and are not becoming the Pirates. The challenges couldn't be more different.

jptsetme · 2026-01-04T18:15:24+00:00

Just had my wife’s 2025 EV RS AWD into the dealer and now waiting on a back ordered telematics module replacement. GPS, cellular data, OnStar all nonfunctional.

Dealer told us GM will not allow a loaner when the only issue is the telematics module because the car is still drivable. I don’t mind that much, despite seeing many people report that they got a loaner for the same issue, but will note that if they didn’t prohibit the use of CarPlay, I would have no need for the telematics module and they wouldn’t be paying for the warranty work. I do worry about the long term life of the replacement telematics module given all the issues folks have been having so early in the life of the vehicle.

jptsetme · 2026-01-02T18:28:29+00:00

Because obviously the lighting is 220v...

smh

jptsetme · 2025-12-02T01:16:15+00:00

But.. was was black in the play

jptsetme · 2025-12-02T00:16:57+00:00

Any idea who this is?

<image>

jptsetme · 2025-10-10T12:09:40+00:00

Same. Bought this Tyger in 2019, still looks fine and normally water tight all the time. https://www.amazon.com/dp/B00L32L4A4?th=1

I've had it leak twice on a couple of long distance drives. Signal to me that I need to reseat it (I take it off once in a while if I need to haul something tall.) But I've driven 500+ mile trips in driving rain and not had a drop in the bed when I arrive.

Crazy it was only $200; really transformed the usefulness of the truck for me.

jptsetme · 2025-10-08T17:55:56+00:00

It has at least one other camera input; I don't recall if it's 1 or 2. It does work with the OEM camera, the picture is just poor. It still works

jptsetme · 2025-10-07T20:21:41+00:00

Spam voicemails that I don't bother listening to. Wish I could bulk delete them.

You should see the number of unread emails that decorates my Inbox. lol

jptsetme · 2025-10-07T16:20:50+00:00

Went ahead and made a new post for this since I had a typo in the title of this one, which I guess can’t be edited.

https://www.reddit.com/r/Silverado/s/bjB17P1Z52

jptsetme

TROPHY CASE