Once I had Postgresql db with default password on a new vps, and forgetting to disable password based login, on a server with no domain. And it got hacked in a day, and was being used as bot server. And that was 10 years ago.
Recently deployed server, and was getting ssh login attempts within an hour, and it didn't had a domain. Fortunately, I've learned my lesson, and turned of password based login as soon as the server was up and running.
And similar attempts bogged down my desktop to halt.
Having an machine open to the world is now very scary. Thanks God for service like tailscale exists.
Yes, after changing the ssh port, and fail2ban on the server completely stopped those pesky ssh log in attempts.
But, on home computer, I do not want to be bothered with all the security efforts, and want to keep it simple. But I have plans to put up an isolated server setup someday. But too broke right now, and looking for a job. heh.
I have seen people, who is using simple password based authentication, with really simple password. I always go and fix that first, so, it's too common, which is why It's scary.
Also, strong, random-looking passwords for droplets or apps saved in a text file. Use the Digital Ocean guide on setting up a Linux box securely and the UFW firewall. Then, lighttpd, BunnyCDN (esp for SSL), and periodic updates.
Works so well that it's easy to forget they're running.
Well, after changing the ssh port to something really big, OOM and heavy CPU usage stopped, as I was still using that public IP, so concluded it was not an inside job .
There were like thousands of requests in an hour, and that went on continuously, before I changed the port.
Yeah that sounds quite annoying, but has nothing to do with ssh log noise. Maybe investigate what's causing the OOM. I have multiple 1GB vps with ssh open to the world and they never OOM, and they're obviously not just running ssh. It sounds like you've been compromised.
The number of attempts were staggering though, i think there were requests every seconds non-stop.
Once I changed the ssh port to a large number, the OOM and heavy CPU usage stopped, and never came back. So, I think I'm safe, though I keep an eye on the logs, and for any unknown processes, but never seen anything out of ordinary.
The 64gb machine is my dev machine, as my IDE(intellij) runs on high memory config and I run some heavy process, it could've been combined with the ssh spam it went OOM. I still run all the things, without any issues now.
SQLite is fine, but I have ran Postgresql on a $20 server without any issues, and I would suggest if you have to deal with concurrent users and tasks, Postgresql is the way to go. SQLite WAL works, but sometimes it caused some issues, when you have a lot of concurrent tasks running continuously.
And, not sure I'm correct, but I felt Postgresql has more optimized storage if you have large text data than SQLite, at least for me I had storage full with SQLite, but same application on Postgresql never had this issue
Sorry if I'm reiterating known point, when the storage is full, API will stop working, so you won't be able to download files at all.
So you are completely stuck if you have too many files. Like I had. I used to keep pictures on onedrive, and used 6 user license. When the license expired, they locked me out completely. I couldn't download my own files! And the web UI is a crap.
So had to pay again for a year, this time I backed up all files locally.
Good thing about iced is, you get a compact executable, runs on any OS, looks exactly the same everywhere, perform much better than web based UI, no need to manage any permission to access local files, and you can customize the look as you need, but comes with tolerable default.
Price to pay is building the UI is bit complex as it doesn't hold your hand, unforgiving, and not native.
Iced is the clear number one for me, too. The only thing I'd love to see officially supported in iced in the future is mobile apps. But it looks like that ain't gonna happen anytime soon (with the most recent PRs getting rejected once again).
I can focus just fine. I want to detect if a text_input is focused, when I am checking key-presses.
But going through every discussion and all, there was a PR that might have allowed to do this, and it's been merged, but it's not working the way I want.
My use case is, If the text_input is not focused, I can press characters to perform some operations. If text_input is selected, it should be ignored.
For now I am back using modifiers, will get back to this later.
Hm, I believe my wording is bit unclear. The trait system can really get complex as your widget layout gets more complex, and you want to write reusable components, But there's no clear way to understand what's the type it's expecting from the errors. You need to really understand the traits to implement any reusable components. Which is why I felt it's kind of unforgiving, if you're not fully knowledgeable of the primitives.
But I'm still learning it, so, probably missing some details.
To me it felt like it will break if I look at the code from down to up instead of up to down. And then I have to recompile flutter, the bridge and nuke the whole rust package folder to make sure it's clear and in workable state, then find other projects are now broke.
I joke, but probably rustdesk is so glued together, it created that bad impression on me.
And I love my multi monitor setup, because each monitor has its own set of app, and I can remove window switching by a lot.
I put my browser on 2k monitor so no need to fight with resolution and other things
but IDE is always on 4k monitor, no scaling, slightly larger font size, so I can see more code. And all the log, and note app are on 3rd 1080p monitor.
And Wayland gnome was pretty solid for me, until recently gnome-shell eating over 2/3gb on long run. Switched to niri for the time being, which is working pretty solid.
Yep, I just turn on the Leechblocker's lockdown mode which blocks all the distracting sites on my browser, I can focus on my work, without giving up any of my monitors, and all the advantages they provide me
Why would I pay Google after this? I have gotten rid of Xiaomi a long time ago.
For now, I am rolling with my OnePlus 7 with LineageOS, till I find a phone that's not completely locked down. Yes, it's old, but it gets my job done. Once I am off all of Google's services, I'll probably get rid of Google in most part of my life.
As, someone who is a user from invite only Gmail, it's difficult, but necessary.
So like a Motorola, Sony, Fairphone, Shiftphone, Jolla... none of these are 'completely locked down' (though besides Jolla, they're all a little: they don't come as "yours" by default because of the contract with Google to be allowed to ship Play/Maps/etc.)
Once I had Postgresql db with default password on a new vps, and forgetting to disable password based login, on a server with no domain. And it got hacked in a day, and was being used as bot server. And that was 10 years ago.
Recently deployed server, and was getting ssh login attempts within an hour, and it didn't had a domain. Fortunately, I've learned my lesson, and turned of password based login as soon as the server was up and running.
And similar attempts bogged down my desktop to halt.
Having an machine open to the world is now very scary. Thanks God for service like tailscale exists.
reply