jack

joined 2 months ago
 

Dodo's Price Hike and Speed Cap Change - Worth Switching Plans?

Dodo’s plan used to be perfect for me. I’d always hit the 2GB cap, but the unlimited calls, texts, and 1Mbps unlimited data worked just fine. Now, they've raised the price from $10 to $15 and reduced the speed cap to 256Kbps, which has made it much less usable.

I'm thinking of switching to Amaysim’s $5 unlimited call/text-only SIM ($60 yearly) and using the extra savings to find a $5-$10 data-only SIM as second SIM card. But I'm struggling to find unlimited (capped) data at all now within that price point.

Has anyone made a similar switch, or do you have better suggestions for a budget-friendly setup?

I’m not big on SIM-slutting since I don’t want to risk losing my number, but I’m open to moving around from time to time.

Tags for federation: @frugal

[–] [email protected] 2 points 2 months ago* (last edited 2 months ago) (1 children)

@slazer2au Oh, interesting. I didn't know that about Vodafone/TPG's continued use of Huawei equipment. Thanks for sharing your experience.

For context, here's the source I was originally referring to regarding Australia's Huawei ban for 5G:

https://amp.abc.net.au/article/10155438

This article from 2018 outlines the Australian government's decision to ban Huawei from the 5G rollout. It would be interesting to know how things have evolved since then, especially given what you've mentioned about existing infrastructure.

PS: Not sure how you responded to my deleted post haha, apologies in the mods in advance for the double post, not sure how I can delete it as I am on another fediverse

4
submitted 2 months ago* (last edited 2 months ago) by [email protected] to c/[email protected]
 

5G in Australia or Malaysia - who did it better?

During my trip to Malaysia, I noticed a Huawei store—something that’s become rare in Australia. While Huawei phones aren’t banned, they’re hard to find due to the lack of Google services and Australia’s reliance on those seevices.

But it got me thinking: Australia has excluded Huawei from its 5G infrastructure, whereas Malaysia has taken a different approach by considering Huawei’s involvement in its 5G rollout. How do you view these differing tech strategies?

Tags for federation:

@cybersecurity
@austech

#infosec

 

Malaysia vs Australia’s 5G strategy: what makes more sense?

During my trip to Malaysia, I noticed a Huawei store—something that’s become rare in Australia. While Huawei phones aren’t banned, they’re hard to find due to the lack of Google services and Australia’s reliance on Google them.

But it got me thinking: Australia has excluded Huawei from its 5G infrastructure, whereas Malaysia has taken a different approach by considering Huawei’s involvement in its 5G rollout. How do you view these differing tech strategies?

Fediration X-Posts:
@privacy @austech @Malaysia
@cybersecurity

#infosec

[–] [email protected] 2 points 2 months ago* (last edited 2 months ago)

Proxmox Setup:
- Specs:
- 128GB RAM DDR5 6000mhz (non-ECC, planning to upgrade soon)
- AMD 7950X3D
- RTX 4090 & RTX 4060ti

- Current VMs:
- Windows 11 LTSC (RTX 4090 passthrough): For Assetto Corsa in VR.
- Windows 11 LTSC: Barebones VM for my partner to RDP into from an old MBP, saving her the cost of a new laptop.
- Debian (RTX 4060ti passthrough): My daily driver.
- Windows 11 LTSC: Work VM (imo work is not the place to be tinkering, the office is on Windows so I'd better just join in).
- Windows 11 LTSC: For League of Legends, though I'm struggling with Vanguard... perhaps a blessing in disguise.
- Arch (RTX 4060ti passthrough): For those rare moments when I crave the bleeding edge (less frequent as I get older).

RPi
- YunoHost:
- GlitchSoc (modded Mastodon)
- GitLab: For my Git repositories.
- LinkStack: Repository of all my public-facing projects.
- BookStack: For publishing study guides and my PhD work.
- Docker:
- Jellyfin Stack: Including all the 'arr' services (too many to list/remember).

Network Infrastructure:
- Network: Isolated VLANs, some tunneling through public VPNs (think ExpressVPN) and others through a private VPS. Not going to go into too much detail here (security through obscurity and all that)

All this is running on a 25/10 Internet connection on DynamicIP, reverse proxies, DDNS and a QoS router was a lifesaver.

 

Has anyone else been called crazy for home-labbing front facing stuff?

I've always had this mindset of asking, "What am I really getting out of this?" But when it came to the internet and what I posted, I held onto a bit of innocence. Over the past two years, though, that innocence has been chipped away, but I think I’ve managed to reclaim it.

I don’t fault for-profit companies like Reddit for monetizing content; honestly, it was my own oversight for not reading the terms of service carefully. But since then, I’ve realized just how much I’ve unknowingly contributed to other projects for free.

There’s nothing inherently wrong with that, but does anyone else ever feel a bit... exploited?

It’s like when a recruiter asks for a .docx version of your resume instead of the .pdf I provide. Maybe it’s just to block your contact details, or maybe there’s something more dubious at play. I’ve experienced both, and each time, I’ve ended up feeling a bit... used.

Now, when a recruiter asks for a .docx , I ask them why. If it’s to hide contact details, I send an anonymized version. If they want to trim it down to two pages, I direct them to the summary section on my professional website. And if they want to add their bits to it, I guide them to my website, where they can explore my detailed posts.

For me, it’s about reclaiming control over what I’ve shared.

I was talking to someone about this recently, and they mentioned that they like to post everything on GitLab to showcase what they’ve been working on. But honestly, it’s just not the same as self-hosting your own Gitea or GitLab instance. But this guy thought I was crazy for hosting a single instance GitLab.

Okay so take X, for example. There, could have a super locked-down account like I do here, only contributing to communities when I want to by directly tagging them, but otherwise just using it as a personal journal like my Mastodon, but it’s just not the same. When X started monetizing posts, the platform's objective changed.

I don’t mind 'for-profit,' but when it’s driven by short-term gains like a monetized post, eventually all engagement is funneled towards that. It ends up feeling like you’re writing in someone else’s diary. That you tailor for engagement.

It’s also about the love of tinkering.. breaking things, fixing them, and getting everything back up to spec. It’s about embracing the original idea of the internet: a decentralized space where anyone can contribute, without your work being exploited.

It’s your own little corner where you can post whatever you want, for whomever you want. A Jellyfin server for my partner, a portfolio for the hiring manager, a GitLab for my playground. Enjoying the freedom to experiment without an ops exec pulling their hair out.

It's kinda magical.

Footnote: This is my first post to this community, if this post isn't a good fit, please let me know and I'll gladly adjust or remove it.

Tags for Federation: @homelab

#homelab #macroblog

[–] [email protected] 3 points 2 months ago* (last edited 2 months ago) (1 children)

@pipes Yeah it's biggest pro is also its con and where the reputation of Debian's stability comes from.

I was using Plasma 6 Wayland 3 months ago in Arch and half my desktop apps were busted. Discord was so bad that I had to use X11.

I was newer to Linux desktop then so I spent so long thinking the problem was with me and trying to figure it out. Wayland Nvdia stability has seemed to settle down a lot though.

I'll miss Wayland 6 as it's really nice on high refresh displays but I think it's a reasonable trade off for stability, and it'll eventually be back.

 

Been daily driving Arch for 6 months now, but considering moving back to Debian. Not really taking full advantage of the Arch pros

While a bleeding-edge kernel is great, I don't particularly need it. pacman is nice, but apt gets the job done too. Has anyone else switched from Arch to @debian? If so, did you miss anything from Arch that Debian couldn't replicate?

23
submitted 2 months ago* (last edited 2 months ago) by [email protected] to c/jobs
 

Knowing When To Walk Away — The Four Hour Interview

A while ago, I received a lead from a startup for a potential contract.

They reached out to me after undergoing a cybersecurity review by a third-party company and had done very poorly.

For example, they lacked even the most basic security measures like multifactor authentication which I'd consider a bare minimum in today's climate.

Despite this, I was interested as it's kind of my job to help with something like this. Here is how the interview process went:

The first hour
The interview process began smoothly. The initial interview was online with the person I'd be reporting to. It lasted an hour, and I felt it went well.

The second hour
The next interview was in person with another executive in a related role. Once again, no red flags.

The third hour
By the third interview, I was getting a bit tired. This time, it was with a HR executive. I respected the process, but I'll admit that after three hours, the thought of charging for my time had crossed my mind.

The fourth hour
After the third interview, they still seemed interested but wanted me to meet with the company that handles their outsourced cybersecurity services, known as a Managed Security Service Provider (MSSP). I was hesitant but agreed. In hindsight, this was a mistake for several reasons:

  1. Misaligned Priorities: The MSSP doesn't represent the company, and the interview felt off. Most of the questions revolved around how I'd be funneling work to the MSSP and implied that my role would hold little value in the bigger picture.
  2. Low Cyber Maturity: Given the organisation's low cyber maturity, involving an existing solution at this stage seemed counterproductive.

After a very strange 15-minute interview with the MSSP, they informed me that they had decided not to proceed with the role. Looking back, there are a few things I could have done differently:

  1. Set Boundaries: I should have budgeted no more than four hours of free time for the interview process.
  2. Decline External Stakeholder Meetings: I should have refused to meet with external stakeholders who are not directly involved in the decision-making process.

I think it's okay to say no, especially when dealing with startups that are still finding their footing.

What would you do in this situation?

@jobs

#macroblog #infosec

[–] [email protected] 4 points 2 months ago* (last edited 2 months ago)

Yeah I originally trying to daily Linux for like the past 10 years but kept falling back to Windows, mainly due to the app compatibility.

A lot of people suggested dual booting but I found that it messed up my workflow, and Level 2 hypervisors don't have great HW acceleration

So what finally made Linux stick for me was Proxmox.. it let daily Linux and still have the option to quickly spin up a Windows VM with a GPU if I needed something urgently, without the hassle of rebooting.

So now, six months later, I’m dailying Arch and also self-hosting a bunch of stuff on Debian, and I haven’t looked back.

I think it's about convenience.

Tags for federation: @acceptable_humor #infosec

[–] [email protected] 1 points 8 months ago (1 children)

@catculation This has happened before and is a really big issue, but wouldn't some sort of network segmentation have helped prevent this especially as it's happened before?

I gave away my wife's Wyze camera and moved to Ubiquiti. It cost me a small fortune.

Not self-hosting at the moment but still, nothing can be as bad as Wyze, right?

[–] [email protected] 2 points 9 months ago

@Squizzy @yamanii This extension does exactly that (at least on desktop) and stops doom scrolling without removing them entirely: https://github.com/doma-itachi/Youtube-shorts-block

[–] [email protected] 16 points 9 months ago* (last edited 9 months ago)

@Usernameblankface Some sort of attack that manages to take down Cloudflare, AWS, Azure, and Google Services at the same time. Would break a lot more than just the internet though.

[–] [email protected] 8 points 9 months ago* (last edited 9 months ago)

@HipHoboHarold @flintheart_glomgold

Yes, I have noticed a trend of homelab hobbyists going back to something like this:

  1. Soulseek -> Nicotine+ for plentiful, lossless content
  2. Jellyfin for self-hosting
  3. Infuse for streaming the content remotely to save storage on your phone.

I don't endorse piracy for ethical reasons, but I get why this is trending up:
-Increasingly aggressive pricing models
-Service quality and content accessibility going down

Really makes it hard for consumers...