• 0 Posts
  • 12 Comments
Joined 1 year ago
cake
Cake day: June 30th, 2023

help-circle

  • So that setup effectively gives you an all-ports available connection (except 22) from your mobile device and anything that connects through it, like a laptop? The exit node would be the VPS.

    Could I skip the home router and EoIP+VPN directly between mobile and VPS, for instance?

    I am in a situation (restrictive firewall on ethernet/wifi, prefer personal mobile connection but it’s cgnat or something equally crap) this could be very useful for me.


  • humanreader@infosec.pubtoLemmy@lemmy.mlWill this also affect lemmy.ml?
    link
    fedilink
    English
    arrow-up
    45
    arrow-down
    2
    ·
    1 year ago

    FYI, two letter TLDs are country/region/jurisdiction specific. There’s an ISO standard for that.

    • .tv Tuvalu
    • .me Montenegro
    • .fm (Federation of) Micronesia

    Some countries append additional modifiers to classify their uses:

    • .uk United Kingdom
    • .co.uk Company

    Three or more are generic (traditional or new)

    • .com, .net, .org, …

    In some cases, Uncle Sam said “first!” and it stuck.

    • .edu Education (MURICA)
    • .mil Military (MURRICA)
    • .gov Government (MURRRICA)

    Just like what happens with Mali, what some silicon valley hipsters decide as a ‘fun’ acronym is just that, a fun thought. If the corresponding government decides to take away a specific domain, they probably can.


  • I see. I will have to document my progress and remind myself the company isn’t actually financing this. I should start by creating a blog.

    Haven’t personally talked to the IT dep yet - I am in a small dev team for internal webapps and the last time we contacted them was because of printer problems, hah. Will try contacting them once I feel ready.

    Thank you for the insights. Sorry I took too long to respond.


  • Sorry for the late answer.

    I haven’t thought of it that way - if I can convince my boss to test my skills on the legacy systems the company is running, it could be beneficial for both… assuming I get permission and enough actual skills to assess vulnerabilities.

    Thank you for the perspective. I agree that intro posts are repeated ad nauseam, I will find my own way.


  • Hi Mike, I recently started working as programming intern for a company doing webapps. I’ve worked part-time gigs in a completely different field before, that means I got no certs, no job experience in IT to speak of, I’m not the young guy fresh out of school anymore. However, my interests have always been to break into cybersecurity and have slowly added some relevant knowledge as bare minimum… linux bash scripting, selfhosting, networking and etc. I’ve been checking out the certs usually recommended plus all the specializations out there and gotta say this is no easy commitment, but I do want to learn.

    The thing is, what I’m currently seeing as intern is very different from what people in this field usually speak of online: For example, I was expecting the latest tools and whistles, but the company I’m at uses very old (10 years) frameworks for maintenance and support for corporate clients, windows only, proprietary stuff with very little documentation online. It gets… demotivating? It’s still a job and I have bills to pay, but I’m wondering how many years of experience do I need as a regular web developer (if my contract is renewed, even) to even attempt branching into infosec?

    I know this gets asked a lot. Sorry for the long text. TL;DR: just started as intern programmer, company works with ancient dinosaurs instead of latest stuff, years of experience needed to become hackerman (or jumping from first one to others shown here)?







  • People in 90s and 2000s used to get informed before going online, as it used to be a big spending and commitment. Between all the tech-utopia hype you also got to hear about what to avoid and how to behave.

    Nowadays you only need a cheap smartphone and start scrolling through algorithm-fed content indefinitely. No need for technical knowledge because the company takes care of that. No need for an intro class, because who even bothers anymore?