Im surprise they installed them in the first place. First thing I did when somebody gave me TPlink Kasa smart plugs and switches was run the github code to swap the remote server lookup to 127.0.0.1
Sorry I was thinking of when you have yubikey setup with PIN code for access. But yeah, I guess the attack vector is clandestine theft and replace.
What kind of diagram are you going to make?
Potting Grrrr. My fancy track lighting has been potted. It sucks because absolutely no place (even China) sells the 48v LED driver with the odd body shape to bypass the internal mounting screws, and the potting means I can’t access the board to desolder a resostor or something
Totally a non issue unless a government arrested somebody with the intent to gain their key because : "The attacks require about $11,000 worth of equipment and a sophisticated understanding of electrical and cryptographic engineering. "
Use of a VPN can be detected by ISP inspection, they then probably had other survellance on why he was VPNing out, or the Influencer had another follower that was a plant and collected a list of thr followers
That one smart home brand that went bust and nobody could turn on/off lights etc. LOL. Thankful some selfhoster types came to the rescue amd setup an alternate server. It is why I “flashed” my switches to be local hosted and never go to web, and just use homeassistant as the server
Right, but i was commenting about educating your kids about the pitfalls of social media, like you said. My adult children are teachers and they see social media is destroying kids even with education about it…their brains can’t stop even if they know the consequences, especially because it is psychologically tailored to engage them more and more
I know some amazing parents that have super open communication and excellent teaching moments with their kids, they still fell into the social media morass…because friends (and teenage brain) are a heavy influence even with a safe supportive home
I have seen both. Typically you expect somebody self hosting to be about privacy and freedom, and thus choosing Linux, but there are WinFans too
Apparently crafted webpage could be a vector. Router has to block fragmented packages also. The issue is non savvy people get shipped a router with Ipv6 firewall turned off (as a shit default setting) and don’t know to check it. And as it is a worm type it can come in with otger binaries
Of course, but for a person with all machines on network having same user name and password it could become a larger problem
There was an article that many Routers were shipped with Ipv6 firewall off, and less savvy users would never know to check
I was referring to the latest CVE for ipv6 where an attacker just sends a flood of IPv6 packets which puts things like WindowsOS into a mode for remote code execution, even via webpage. Windows remedy right now is turnoff all ipv6 capability, as they don’t have a fix yet
I was referring to the latest CVE for ipv6 where an attacker just sends a flood of IPv6 packets which puts things like WindowsOS into a mode for remote code execution, even via webpage. Windows remedy right now is turnoff all ipv6 capability, as they don’t have a fix yet
But if they do, they have every password for all your stuff. hopefutlly you have Ipv6 disabled
Yeah here dollar store purchases are final sale, no returns, and aliexpress really depends on the seller. Some good stuff there, some just scammy junk. And many manufacturers will skimp on purpose, and say they are certified without actually getting a certification or testing.
Dollar store and Aliexpress make it a bit difficult to return LOL.
When I installed it it suggested turning that service off onvthe host. If you search online there are many suggestions on shutting off that stuff so 53 is left for pihole