this post was submitted on 01 Feb 2024
17 points (94.7% liked)

No Stupid Questions (Developer Edition)

896 readers
1 users here now

This is a place where you can ask any programming / topic related to the instance questions you want!

For a more general version of this concept check out [email protected]

Icon base by Lorc under CC BY 3.0 with modifications to add a gradient

founded 1 year ago
MODERATORS
[email protected]
17
How do you secure your home network/pc? (programming.dev)
submitted 9 months ago by [email protected] to c/[email protected]
3 comments fedilink hide all child comments
 

So I'm a baby dev, still in Uni and they don't allow internships in 4th year due to some issues with it so not even that exp wise.

I don't know enough, and I'm trying to learn but there's so much! My Uni degree doesn't cover security at all. Which is shit, bc I think I want to work in that? Mostly I'm just spooked and want to understand everything I can 'cause I love the internet and want to feel safer wandering about it.

I'm scared of clicking on links. Even ones here, like there was a post about a book list earlier and I was just there like "Cmoon.... someone please have posted the lissssst."

Would anyone be willing to share what they do for their own security? Especially if it's ridiculously over the top. Included reasonings and details would be adored!

Also, if anyone has any books or references that might be good for learning sec from a programmatic view rather than a IT view I'd really love that! Anything at all.

Regardless, hope anyone reading this has an absolutely wonderful day and best of luck with everything you're up to!

you are viewing a single comment's thread
view the rest of the comments
[–] [email protected] 1 points 9 months ago* (last edited 9 months ago)

I purchased a mini PC from Amazon and installed OPNsense on it. Enabled a massive geo-ip block firewall rule (fuck Russia, China, DPRK, and all ITAR restricted countries), downloaded several hosts blocks that Unbound can use as a DNS sinkhole and force every device i own to use that mini PC as the DNS as well as the IPS/IDS of my entire network by sitting between my wifi router and modm to intercept all network activity. I have also installed SecurityOnion on another PC that acts as a log aggregate for every device on my network and use it as a SIEM to track malware and possible malicious pivoting based on MITRE att&ck framework and finally I have Wazuh agents installed on any host that allows it to track any malware that wants to enable command & control of any of my devices.