Kid_Thunder

I see some comments recommending wordpress but wordpress is a security problem, especially if you’re using 3rd party plugins. It is such a bad problem that their are ‘wordpress security’ applications but even then wordpress sites get hacked all the time. If you are going to use it, it is best to let some other host handle it for you if you don’t know a whole lot about what you’re doing.

There are many, many other content management systems out there. Some are lighter than wordpress and some heavier. They are all about posting and managing content. Most of them have some sort of user and authoring system. Once you’re webserver is set up, many are written in a mixture of php and python so setting them up is generally drag and drop with either minor configuration file edits or wizards. Many of them have sections that you can set up using a labeling/tagging system. Most of them allow you to have the ‘stories’ as private or draft where you have to actually click publish before people can view them. Some have user roles systems where you can limit viewing and even editing between different roles for sections.

Generally, once their setup is done, they are point and click to do everything.

Here’s a nice list of FOSS CMS’ (which includes Wordpress of course).

Just to be clear, if you’re in the US, you 100% have copyright protection as soon as you put pen to paper.

Google Cloud definitely backs up data. Specifically I said

after an account is deleted.

The surprise here being that those backups are gone (or unrecoverable) immediately after the account is deleted.

Actually, it highlights the importance of a proper distributed backup strategy and disaster recovery plan.

Uh, yeah, that’s why I said

it is good practice and frankly refreshing to hear that a company actually backed up away from their primary cloud infrastructure

The same can probably happen on AWS, Azure, any data center really

Sure, if you colocate in another datacenter and it isn’t your own, they aren’t backing your data up without some sort of other agreement and configuration. I’m not sure about AWS but Azure actually has offline geographically separate backup options.

And the crazy part is that it sounds like Google didn’t have backups of this data after the account was deleted. The only reason they were able to restore the data was because UniSuper had a backup on another provider.

This should make anyone really think hard about the situation before using Google’s cloud. Sure, it is good practice and frankly refreshing to hear that a company actually backed up away from their primary cloud infrastructure but I’m surprised Google themselves do not keep backups for awhile after an account is deleted.

Even though costs of AAA games have gone up for some games (certainly not all) because of the size of teams/labor hours, so have the volume of sales. Publishers have made more and more profit while the average price of AAA games had stayed about the same for a long time.

Games selling in the hundreds of thousands was considered really good decades ago but now those are in the tens of millions.

Publishers aren’t having problems with profitability, so much so that they’ve been buying up large swaths of development houses and IPs and then dismantling them when they have a single flop.

EA’s gross profit in 2010 was $1.6B, in 2014 was $3.03B and in the past 12 months have been $5.8B right now according to macrotrends.

But the current trends are unsustainable

The current trend in profitability is increasing, not decreasing. It isn’t a minor trend or minor increases either.

Major publisher profitability has vastly increased in spite of stagnant game prices. They don’t have to increase prices to increase growth. It is simply that the market allows the increase of the price with more profitability and so they do.

deleted by creator

I was trying to find the old Level 3 blog post but didn’t because I believe they basically said that Comcast needed to upgrade its infrastructure and never did. Netflix was the cashcow they saw to essentially make them pay for it. As a Comcast customer, I see it as charging the customer twice – first for the Internet service for the content and again because Netflix is going to pass that extra cost onto you (and everyone else who isn’t a Comcast customer).

You’re right on about CDNs and edge / egress/ingress PoPs. It also keeps it cheaper for the likes of Netflix/Amazon/etc. in the long run with the benefits of adding more availability.

I found this wikipedia article about backbones and peering but it really isn’t that great but in the results it also came up with this pretty good presentation from Carnegi Mellon. I was only going to browser a few of the slides but the information isn’t really all that much and the illustrations are good. I think Prof. Nace did an excellent job here. Much better than I would have.

The problem historically isn’t that streaming services are paying for fast lanes but that they have to pay not to be throttled below normal traffic. In other words, they have to pay more to be treated like other traffic.

Even crazier is remember that there are actual peering agreements between folks like cogentco, Level 3, comcast, Hurricane Electric, AT&T, etc. What comcast did that caused the spotlight was to bypass their peering agreement with Level 3 and went direct to their end customer (netflix) and told them they’d specifically throttle them if they didn’t pay a premium which also undermined Level3’s peering agreement with Comcast.

Peering agreements are basically like “I’ll route your traffic, if you route my traffic” and that’s how the Internet works.

This list is so bad, it has to be a troll.

I accidentally overwrote /etc/passwd once and I allowed /boot to run out of space during a kernal update and I created a local user with the same user that was also on the realm/domain that I had joined and various bash script issues.
Some stuff I’ve had to fix that someone else did:

• named a file rm -rf
• rm -rf /bin instead of ./bin – Also the fact that they had sudo was crazy and also I guess this was the second time
• chmod -R 777 /
• Various software bugs running swap out of space or hitting the inode limit by creating files over and over again with a timestamp in the filename and having to remove all of them because there was no backup to the OS
• Someone disabled SELinux because something wasn’t working but didn’t tell anyone – ugh
• Compiled java because they googled some issue and followed some old tutorial without understanding anything instead of using alternatives and symlinked the old java from /bin to /home/theiruser/java – had sudo because he was a Windows domain admin.
• Cybersecurity guy didn’t know what some VMs did so he turned them off and figured he’d find out if/when someone complained. Caused a massive core services outage.
• Same Cybersecurity guy deleted a bunch of data because he wanted to see how the sysadmins would respond and witness backup restorations. He did not inform anyone.
• Cybersecurity guy above still has Domain Admin and sudo everywhere. I would have personally removed his privileged access regardless of what ‘CyberSecurity’ management thought but I was leaving for a new job by then anyway so I figured I’d just let them eventually lie in the bed they made.

There’s more but I don’t want to keep going because it is Sunday and I don’t want to ruin it.

You can use Gnome Boxes to give you a front-end for KVM/qemu like VB. With the spice-webdavd package, you can share files similarly to the guest or send files directly to it.

As far as Samba goes, it is just a FOSS implementation of Microsoft’s SMB. Just like with Windows, you’ll have to open Explorer to the IP/Hostname of your Samba server or I guess have both join the same workgroup with the same name on the same subnet.

I apologize. I didn’t know I had replies when I deleted my post. Yeah I know you can set that behavior in some editors. And other than what I just replied with on another comment, I like tabs because I also don’t have to worry about styling guides that some set down as ‘2 spaces’ or ‘3 spaces’ or ‘5 spaces’ or whatever. It is basically just universally a horizontal tab.

Sorry I didn’t realize I had replied with I deleted my comment. I understand some editors allow you to set tab and you can set actual spaces, like in vi. However, personally I feel like hitting tab gives me the whitespace I want for readability already.

For programmatic parsing it is simple because it’s just looking for an HT.

deleted by creator

A 30% cut for steam games sold on steam and a 0% cut for steam keys sold by the publisher wherever they want with the caveat that they must give steam users the same sales at around the same time. They get their games hosted on Steam’s industry best CDN, a page with support for images and videos, an API with features users like, workshop API for mod hosting and delivery, and other SteamWorks API stuff for stuff like multiplayer, patch management without charging a fee for it, forum hosting to hit the highlights. Pretty much all of that drives engagement and is mostly turn-key though you do have to programmatically interact with their API when it makes sense.

Steam provides a lot of benefit for a 30% cut of what is sold on their store front and a lot more benefit for getting all of the above for a 0% cut if they sell steam keys outside of steam.

Sounds like you have nothing listening on port 80 that resolves for your domain for Let’sEncrypt to verify that you own the domain. You need a webserver listening on port 80 and that Certbot can access if you’re using the http method.

Basically you’re forwarding traffic to port 80 but there’s nothing on port 80.

Depends on if there’s an IPv6NAT and how your ISP converts between IPv4 and IPv6 or actually supports IPv6 straight through. It also depends on your router.

Currently, there’s still some debate since IPv6NAT (NAT66/NPT6/NATv6) isn’t really needed for WAN boundaries for the reasons NAT exists. However, without it you are right on that this will be a problem for the consumer because PCs, IoT devices, printers, circuts or whatever my wife has, etc. could all be exploitable and even worse, you may never know you’re contributing to the botnet.

As an example, I have a global IPv6 on a few on my devices. They can connect to IPv6 if it originates from me but if it originates from them or is UDP it doesn’t route to my IPv6. My router doesn’t care. It’ll route it just fine either way. It would appear that my ISP has me behind one of the IPv6 NATs.

I’d imagine that’s true for most people at home.

NAT provides some measure of security as pure coincidence to how it works. It is not designed or intended to provide security. It does not inspect packet payloads in order to filter them for security. It looks at the header and attempts to route it to an internal IP address (your devices on your LAN) and if it cannot, it will drop the packet because the header will only have the external IP address – the packet has no idea which device it is supposed to go to. Forwarding a port is telling the NAT to assume that when a packet hits a certain port, if it doesn’t know the destination internal IP, forward it to some internal IP anyway.

The reason you can connect to websites, ssh outside, FTP, whatever, is because your connection comes from your internal IP first to some other IP and therefore, NAT knows which internal IP to route those packets to.

Take for example this scenario:

You download some software. It has malware that provides command and control (C2) to someone else outside of your network. A firewall and/or antivirus may be able to stop this and hopefully notify you. NAT will not help here. Furthermore, if you have uPNP enabled (usually it is by default on your router) the malware can forward any ports through your NAT to the compromised device opening it up to bot attacks and the like.

Another scenario:

You want to play a video game with you and your friends and you’re going to host it. So either you manually forward those ports or perhaps uPNP just does it for you. That game has an exploit known by attackers, or perhaps it can just be DDoS’d. Your NAT isn’t going to stop that. Hopefully a firewall will help you here. It definitely will if you set up explicit rules so that if they aren’t your friend’s IPs it will drop them. Though it is possible the game is exploitable and your friend’s are compromised.

Take for example malware has been known to spread via Minecraft.