Notices by ⚡Lord of Misrule⚡ (toiletpaper@shitposter.world), page 2
-
Embed this notice
⚡Lord of Misrule⚡ (toiletpaper@shitposter.world)'s status on Saturday, 19-Apr-2025 02:05:18 JST 
⚡Lord of Misrule⚡
@p
Fwiw, the main difference is I use a chain of several RBL's and I shut off addresses which are routinely targeted using postfix recipient_access and sender_access lists. Whereas gapps/gmail allows to filter inbound email into the spam folder, my setup refuses to even accept it in the first place (ie. responds with "550 Mailbox does not exist."). I also have spamassassin, but it basically never gets triggered because there's no spam received. But literally, they're the same exact domains and accounts which were formerly hosted by gmail/gapps, and switching to self-hosting eliminated effectively 100% of the spam and 100% of false positives basically overnight.
Another neat trick which I've been using long before I switched *to* gapps/gmail, is that when I have to register on any website or give out my email address to an untrusted party, I give them theirdomain.tld@mydomain.tld so when I do inevitably get spam, I can easily identify the source of the leak and shut it off. Works like a charm. Also a good source of laughs to see who got hacked or had their db sold to spammers. -
Embed this notice
⚡Lord of Misrule⚡ (toiletpaper@shitposter.world)'s status on Saturday, 19-Apr-2025 01:15:12 JST
⚡Lord of Misrule⚡
@p
You can eliminate most of the spam on the internet by not using gmail in the first place. I manage my own SMTPd and compared to when I hosted the same domains using gapps/gmail where I was getting sometimes upwards of 2,000 spam messages per day with copious false positives, on my self-hosted email server I'm lucky if I get a few spam messages per year in total (with several domains routed into a catch-all inbox), and so far zero false positives. Either google's staff are utterly incompetent, or they allow it to be that way on purpose. -
Embed this notice
⚡Lord of Misrule⚡ (toiletpaper@shitposter.world)'s status on Monday, 14-Apr-2025 20:21:47 JST
⚡Lord of Misrule⚡
@Suiseiseki @captain_arepa
https://www.yourdictionary.com/water-is-wet -
Embed this notice
⚡Lord of Misrule⚡ (toiletpaper@shitposter.world)'s status on Monday, 14-Apr-2025 20:13:38 JST
⚡Lord of Misrule⚡
Also water is wet.
https://brownstone.org/articles/ethical-collapse-in-the-peer-review-of-a-leading-vaccine-journal/ -
Embed this notice
⚡Lord of Misrule⚡ (toiletpaper@shitposter.world)'s status on Monday, 14-Apr-2025 15:10:06 JST
⚡Lord of Misrule⚡
@waltercool @CSB
> the real world you can use VPN
A VPN is nice if you need to punch through a firewall by disguising traffic as HTTPS. Though with an httpd setup for reverse proxy tunnelling, you can do that with SSH too.
Either way you're exposing a port on your server and requiring (presumably) a cryptographic key based authentication scheme. Other than the ubiquity of attacks, the actual attack surface and logistics of exploitation are functionally almost identical. Besides which, SSH tunnelling can also be used as a VPN alternative in it's own right, as well as port forwarding, and a whole bunch of other goodness. The only other difference really is if you must use UDP instead of TCP for some reason (which defeats the point of using 443).
> I get too many attempts of SSH attacks
So install fail2ban and/or change the SSH port to something other than 22. If you're super paranoid, look into port knocking. fail2ban's default settings are fine (literally just `apt install fail2ban` and forget it), but if you want to weed out the majority of attacks quickly it's easy to just tweak the maxretry and bantime values in jail.conf. Otherwise if you configure your SSH server and client properly (such as per the hardening guide) you won't have an issue.
Presumably if you're suggesting a VPN tunnel in, you'll still need to access SSHd over the VPN anyway. If you think doing that is going to prevent the need for hardening the service, you're frankly fooling yourself. You'll only eliminate the threat of random low-skill script-kiddies, but not anyone who's genuinely serious about cracking your boxen. All you're really doing by adding a VPN is increasing the admin overhead involved in maintaining your systems. -
Embed this notice
⚡Lord of Misrule⚡ (toiletpaper@shitposter.world)'s status on Monday, 14-Apr-2025 15:09:41 JST
⚡Lord of Misrule⚡
@waltercool @CSB
That reminds me of a poster the network tech at my first job had, "Ethernet security with scissors." It's about as useful as advising to avoid STI's by chopping off your benis. Meanwhile in the real world... -
Embed this notice
⚡Lord of Misrule⚡ (toiletpaper@shitposter.world)'s status on Monday, 14-Apr-2025 13:57:45 JST
⚡Lord of Misrule⚡
@CSB @waltercool
I think the likelihood of untargetted QC attacks on ssh keys is still very far off in the future. Even if the US (or other) government is secretly a decade more advanced than the state of the art in the private sector (which is doubtful), it's still almost certainly gonna be a very niche usage only viable for highly specific high value targets.
That said, if you want to mitigate the risks which realistically exist in the present day, I've found this to be a good help.
https://www.ssh-audit.com/hardening_guides.html -
Embed this notice
⚡Lord of Misrule⚡ (toiletpaper@shitposter.world)'s status on Saturday, 12-Apr-2025 07:19:02 JST
⚡Lord of Misrule⚡
@lain
> these kinds of clothes should be illegal
they should be mandatory. but only for women who rank 7 and above -
Embed this notice
⚡Lord of Misrule⚡ (toiletpaper@shitposter.world)'s status on Friday, 11-Apr-2025 06:55:55 JST
⚡Lord of Misrule⚡
@sun
He forgot to cast a Native American as the red ranger? -
Embed this notice
⚡Lord of Misrule⚡ (toiletpaper@shitposter.world)'s status on Wednesday, 09-Apr-2025 07:20:41 JST
⚡Lord of Misrule⚡
@lucy @sun @mischievoustomato
> fetish is a sexual fixation
Originally from the Portuguese term for an object used as a focal point for religious veneration and as the material representation of a deity or spirit, usually in the context of indigenous forms of spirituality. -
Embed this notice
⚡Lord of Misrule⚡ (toiletpaper@shitposter.world)'s status on Wednesday, 09-Apr-2025 05:56:01 JST
⚡Lord of Misrule⚡
@Electronwarrior @WalterDietz57
Looks like it got taken down. It's weird to me how everyone picks on Kabbalists, when most of them are avowed anti-Zionists. Kabbalah is a bit derpy, basically trying to use bastardised Hellenic numerology (Isopsephy) to backwards rationalise the BuyBull, but of all the Jews to get bent out of shape about, they're honestly among the least objectionable. Probably it's a Zionist psyop, because they know that Kabbalah is almost entirely associated with anti-Zionist Jews. -
Embed this notice
⚡Lord of Misrule⚡ (toiletpaper@shitposter.world)'s status on Sunday, 06-Apr-2025 15:24:13 JST
⚡Lord of Misrule⚡
@MissGayle @ashwin @ai6yr
That newsweek article only mentions one company "Dominion" (based on Toronto Canada, aka: Diebold, Sequoia, Premier, ES&S, etc) whose machines are absolutely notorious for being as secure as a wet paper bag. The government usually tries to deflect by saying they're not connected to internet, or they're protected by physical security, but that's well known to be complete BS. The bureaucrats don't understand the tech and don't know what they're talking about, just whatever their PR people tell them to read off the teleprompter.
DEF Con has an annual voting machine hacking exhibit where random people including children as young as 6 years old successfully hack these machines, often in mere seconds, with and without physical access. The bureaucrats also don't account for how these machines are secured between elections where controls over physical and networked access (eg. to update firmware) are much more lax. You can also buy them used off ebay etc often for less than $100 each if you want to develop malware for them. Where I live in Canada the local government paid well above 6 figures for security consultants to audit a list of vendors before buying, and then proceeded to ignore their verdict and bought the absolute most vulnerable machines (made by Dominion) simply because they were produced locally. They were deployed right across the country and a large proportion of the machines malfunctioned (as expected) during subsequent elections, including by reporting bogus vote tabulations. Yet the government continues to do fuck all about it.
Hackers have been warning about this shit from day one, but bureaucrats dgaf.
https://media.defcon.org/DEF%20CON%2027/voting-village-report-defcon27.pdf
https://www.theguardian.com/technology/2018/aug/22/us-elections-hacking-voting-machines-def-con
https://odysee.com/@Qwinten:b/Kill-Chain--The-Cyber-War-on-America's-Elections-(2020):9
That said, why go to the trouble of hacking the machines when you can just hack the opinions of gullible citizens using big data, AI and access to people's social media. That's why google and facebook etc were created with CIA VC (eg. In-Q-Tel) explicitly to do in the first place. Cambridge Analytica is a good case study, but it was just a sacrificial scapegoat, one of a dime a dozen still operating in full swing.
https://archive.org/details/the.great.hack.2019.nf.webdl.dd5.1.x264ntgreducido
https://www.youtube.com/watch?v=mIO893PtyxU
Anyway, I'd like to see your evidence that "They mercilessly went after states that had certain types of more secure voting machines", because frankly as far as I'm aware there's no such thing as a "more secure voting machine". They're all garbage, and this sounds like a massive cope to try and point the finger at orange Hitler because your party lost, when quite frankly it was entirely likely (based on the available evidence) they themselves hacked the vote in prior elections. -
Embed this notice
⚡Lord of Misrule⚡ (toiletpaper@shitposter.world)'s status on Sunday, 06-Apr-2025 10:08:00 JST
⚡Lord of Misrule⚡
@arcana @lucy @genmaicha
Is English really a Germanic language? | RobWords
https://youtu.be/PCE4C9GvqI0 -
Embed this notice
⚡Lord of Misrule⚡ (toiletpaper@shitposter.world)'s status on Saturday, 05-Apr-2025 08:13:51 JST
⚡Lord of Misrule⚡
@vitalis
Huh. I never would have guessed. Must be some AI mashup. I also have no clue who Ariana Grande is nor why I should care. I really don't give a shit about celebrity thots. -
Embed this notice
⚡Lord of Misrule⚡ (toiletpaper@shitposter.world)'s status on Saturday, 05-Apr-2025 08:11:06 JST
⚡Lord of Misrule⚡
@vitalis
Except for the Celt, all those women look like they're at least half Asian. Not that I'm complaining though, as a yellow fever enjoyer. 😅 -
Embed this notice
⚡Lord of Misrule⚡ (toiletpaper@shitposter.world)'s status on Saturday, 05-Apr-2025 07:05:16 JST
⚡Lord of Misrule⚡
Achievement unlocked!
I just got blocked by a southern baptist wignat who likes to fap to cartoons. 🤣 Pretty sure I've never interacted with this person in my life, so they were just #triggered by seeing me on their timeline. 🤣😂🤣 -
Embed this notice
⚡Lord of Misrule⚡ (toiletpaper@shitposter.world)'s status on Saturday, 05-Apr-2025 05:05:54 JST
⚡Lord of Misrule⚡
@sun @georgia
I think the earliest mention of her in text is from the story of Inanna and the Huluppu (ie. willow) tree. It prefigures some of the imagery of the garden of Eden, similar to the story of Enki and Ninhursag.
https://inannadumuzi.wordpress.com/inanna-and-the-huluppu-tree/ -
Embed this notice
⚡Lord of Misrule⚡ (toiletpaper@shitposter.world)'s status on Saturday, 05-Apr-2025 05:02:09 JST
⚡Lord of Misrule⚡
@sun @georgia
That's a legit etymology connection. Lilith is mainly a feature of Lurianic Kabbalah (Zohar), but was adopted much like Lucifer by Jewish feminists in the modern era.
https://jwa.org/encyclopedia/article/lilith
Dr. Justin Sledge also has a bunch of episodes on Lilith worth watching.
https://youtube.com/channel/UCoydhtfFSk1fZXNRnkGnneQ -
Embed this notice
⚡Lord of Misrule⚡ (toiletpaper@shitposter.world)'s status on Saturday, 05-Apr-2025 04:57:05 JST
⚡Lord of Misrule⚡
@sun
Would you say that Artificial Indians are better bang for the buck than actual Indians? -
Embed this notice
⚡Lord of Misrule⚡ (toiletpaper@shitposter.world)'s status on Saturday, 05-Apr-2025 04:45:10 JST
⚡Lord of Misrule⚡
@sun @CrazyTalk
No idea. But a primary source is probably the best we can get at this point, unless there're witnesses still alive to tell.
All GNU social JP content and data are available under the