1·
1 month agoThanks for the suggestion
- 0 Posts
- 41 Comments
Joined 6 months ago
Cake day: September 25th, 2024
You are not logged in. If you use a Fediverse account that is able to follow users, you can follow this user.
What would you suggest instead?
Install fresh tomato to this and you’ll get a much better AP with very good firewall and QOS and traffic inspection. Also good SNMP for monitoring
Simplest way would be to mount the nfs share natively on the proxmox host and then backup to that file location in storage.
Here’s a good thread on it
https://forum.proxmox.com/threads/how-to-setup-nfs-for-proxmox-backups.20525/
If you’re thinking of encryption you need to think about how that could impact data recovery.
Cloudflare tunnels are cheap(free if it’s just a couple), simple, and really great.
You’re using something in front of caddy right?
Atleast refuse basic headers and close connections
add_header X-Robots-Tag "noindex, nofollow, nosnippet, noarchive"; server { listen 80 default_server; listen [::]:80 default_server; listen 443 default_server; listen [::]:443 default_server; ssl_certificate certs/server.cert; ssl_certificate_key certs/server.key; server_name _; return 444; #CONNECTION CLOSED WITHOUT RESPONSE }
Ports, any NAT, internal IPs. The first part of an organized attack is getting environment enumeration down. If a bad actor can map your network they can more efficiently direct their attack.
It’s a custom nginx proxy to the kube api. Too long to get into it. I was hired to move this giant cluster that started as a lab and make it production ready.
Thanks for the feedback
Coredns and an nginx reverse proxy are handling DNS, failover, and some other redirect. However it’s not ideal as it’s a custom implementation a previous engineer setup.
We’re thinking of moving to it from a custom coredns and flannel inplementation in a k3s 33 node cluster.
Tangentially what’s your opinion on Traefik?
I literally just got bigger drives for my array last week. So happy I put it off.
Well yes and no. The rate at which you get your data back is where the gotcha lies anything up to 8TB is free if you send them $280 and they’ll refund the money once they get the drive back. Anything over 8TB is where it gets pricey.
Bsckblaze doesn’t care, they know they’ll get their money when @Unforeseen@sh.itjust.works tries to get data back from backup.
3·2 months agoDon’t ever match wits with a rutabaga
You can configure sudo, used to elevate the privileges of a command, to insult users when they type in an incorrect password.
To do so, edit the sudoers file with a tool called visudo, which edits and validates modifications to the sudo configuration file.
sudo visudo
Near the top, add a line that reads:
Defaults insults
Save and close the file.
Thanks for this. I was worried it was IBM finally dropping the other shoe.
Why did the previous Project Leader leave?
Good to know. Thanks for the reply. However you and I agree that BIOS updates are important.
Yes. You can always build from source; If need be