Ace! _SL/S

Ace! _SL/S@ani.social · edit-2 20 days ago

Like others said, disable password auth and setup auth keys instead.

Bonus points for moving the ssh port, using fail2ban and also setting up a tarpit with something like endlessh.

If you wanna go extreme use Wireguard to connect to your server and only allow ssh over wireguard in your firewall.

Ace! _SL/S@ani.social · edit-2 21 days ago

RDP clients on Linux are ass.

Remmina is better than windows native remote desktop shit imo

Ace! _SL/S@ani.social · 1 month ago

Just get uBlock Origin and block third party cookies & cookie banners :)

Ace! _SL/S@ani.social · 1 month ago

Many games do this intentionally btw. Make you lose some rounds and then give you an easy one to keep you hooked

Ace! _SL/S@ani.social · edit-2 1 month ago

I use Fossify Contacts, Messages, Calendar, Gallery and Voice Recorder.

Alternatively take a look around F-Droid, there’s plenty more :)

Ace! _SL/S@ani.social · 1 month ago

Please do not the fish

Ace! _SL/S@ani.social · 2 months ago

Sorry if this answer isn’t to your liking, but Steam isn’t always very explicit in what you get for your money. And on SteamDB it’s instantly very clear, so maybe someone else might find it useful 🤷‍♂️

Ace! _SL/S@ani.social · edit-2 2 months ago

SteamDB can tell you pretty much anything you’d ever like to know:

Anno 1800, Gold Edition, Annoversary, Franchise Packages, Franchise Apps

Ace! _SL/S@ani.social · edit-2 2 months ago

No, AllowedIPs should be set to your internal Wireguards IP range to only allow access to your Wireguard peers. You could also add more like your Servers LAN for example (which will need packet forwarding, as I mentioned before)

Here’s an example of one of my client configs:

[Interface]
Address = 10.8.0.2/32
PrivateKey = 

[Peer]
PublicKey = 
PresharedKey = 
Endpoint = 192.168.0.3:51820
AllowedIPs = 10.8.0.0/16

Just be careful to not mess up your subnet masks. For example my [Interface] Address ends with /32 because that only leaves 10.8.0.2 In the [Peer] Section i set it to /16 which will allow the client to connect to 10.8.x.x iirc

Best is to just try it yourself and see if it works, I’m by no means good at networking stuff

Ace! _SL/S@ani.social · edit-2 2 months ago

Iirc setting AllowedIPs in your clients config should do exactly that. Their respective [Peer] entry in your servers config should also have the same AllowedIPs, otherwise they could easily circumvent this

Further finetuning should be really easy by using any firewall on your Wireguard server

If you want your clients to be able to access other devices in your servers LAN you need to setup additional packet forwarding rules though. Optionally setup NAT aswell

Ace! _SL/S@ani.social · 3 months ago

Good, hope they get banned in the EU so people will switch to competitors

Ace! _SL/S@ani.social · 3 months ago

Not for me