I hear you, I host lots of stuff. But none I can think of would be RCE vulnerable directly from a CPU vulnerability. You could use a CPU vulnerability to privesc later, but once someone has RCE, your already pwn’d, and privesc is mostly a given anyway either way. So CPU vulnerabilities falls way down the list of things to worry about.
As long as you keep your router OS patched and up to date, CPU vulns really arent a concern.
I can’t think of any typical services that you’d run on a router/home server that allow arbitrary code execution. The main risk was mostly web browsers with JavaScript, or VPS providers.
Either way, definitely unlikely for a home router.
Exploiting those vulnerabilities via pure network traffic is borderline impossible. Most CPU exploits (meltdown et al.) require execution on the device, you can’t do it via crafted network packets.
Next month they are sending a guide dog up. It’ll be neat :/
Cool, but not at all what is happening here. She spent 30 minute in a suborbital hop. Nothing here is groundbreaking or new, its just a photo-op.
Not news, marketing.
https://cameroncros.github.io/wifi-condom.html
This is my travel router setup, might be useful for you to start from.
Probably, but raspi only has one interface, and USB network cards can be flakey. You’ll also not get outstandingly fast speeds, so ifnyour on a fast fibre connection you’ll struggle to hit the full speed.
Its a bad idea from a power consumption POV, your old PC will be very inefficient, and running it 24/7 as a router will rapidly add up.
Security wise, you’ll be running a fairly up to date Linux or BSD based OS, so its perfectly safe.
Or a Colorectal Surgeon.
To address the edit, I think part of the US’s problem is that you are already on the slope, and have been for a while. Violence has been normalised and accepted (and legalised as you’ve pointed out). I’d like to beleive you can reverse course, but it certainly doesnt seem likely.
I dont have any answers for you or op, but if it were me, I would focus on the defence and protection of my family/community first, rather than searching for retribution. I know that sounds hollow and empty though.
I can definitely place people above the line so to speak, but I dont think I could draw an objective one-size-fits-all line.
Humanity is a continuous spectrum from people living in extreme poverty up to the one percent, and its very hard to find any clean delinineation that I would be comfortable drawing the line through.
And the other problem is that the definition of that line would vary wildly from person to person.
If I’m honest with myself, I live in a well off first world country, that in of itself means that I am indirectly responsible for a non-zero amount human suffering in other parts of the world. It doesnt necessarily make me black and white evil, but to someone in one of those parts of the world, they definitely might see it that way.
I’m happy with death as a penalty for certain acts of evil, but I would want it to be the exception, not the rule. Everytime someone is death-row’d, we should all be unanimously sure that its the right thing to do.
Yes. Separate out each part out. You are currently publishing the equivalent of of a compiled binary. Split it up, and use a script to “compile” it back into the mega shell script.
It means that changes to each file can tracked (and audited) individually, you can conditionally compile bits in or out, and most usefully, you can write tests for the individual components.
Sorry, but a photo of a directory structure is not a source tree.
Your git repo consists of 4 files, a readme, a licence, and two packed shell scripts.
If you have an actual published source repo, link people to it.
I dont understand why people do this
Charitably: AI turbocharged dunning-kruger
Less charitable: Malware delivery.
There is no good reason why they couldn’t have a normal source tree, that they pack into a single shell script in CI.
You used so many subjective terms in that description. You can draw the line at a number, that is objective (but see tax evasion for how that works in practice), but “heavy worker exploitation” is entirely subjective.
In my mind, most failing hospitality businesses fall into “heavy worker exploitation”, but many of them are owner by people who arent billionaires.
Volume encryption would either mean typing a password at boot, or needing to use the TPM, which would get stolen with the NAS, so either very inconvenient, or useless.
And I dont think anyone breaking in to steal a NAS is going to do it to read the data, they’ll sell the hardware for cash. Anyone who would break in for the data is likely a far more sophisticated threat, which is a bit paranoid.
Lol, that is definitely not true. You may have a list, it almost certainly doesn’t match everyone else’s list.
And let’s say we complete your list. What then? If things dont improve, do we lower the bar and try again?
Wikipedia has google translate (2006) pre-dating android (2008) by 2 years. Iphone was 2007. It has improved significantly since, but it was pretty good even then. Adequate enough to communicate with foreign language speakers. I used to use it to email a japanese penpal, and while it may not have been perfect, it was understandable even then.