• 0 Posts
  • 75 Comments
Joined 1 year ago
cake
Cake day: September 14th, 2023

help-circle
  • Actually, there are some apps and even phone level things that do try to call to custom DNS, ignoring all the phone settings, including those defined in the global settings. Termux nslookup is one I can think of at the top of my head that ignores the phone’s settings and instead tries to call to Google DNS. I’ve got DNS default blocked in a custom script for AFWall on my phone, excluding calling my custom DNS, and see the block frequently hit. Just now checking, I see 54 blocks on 8.8.8.8:53, 2 blocks on 1.1.1.1:53, and 16 on “other” port 53 (catch all block).

    Think the best solution is either a router firewall setup if always on the wifi, or a phone firewall app that can act as a VPN and just default block everything, or something like that. If rooted, AFWall does wonders.



  • Hmm that’s actually something I hadn’t thought about, but yeah it probably wouldn’t work for an offline mode… If the app is already open, maybe it would work, but I’m not 100% sure. In general, it does require internet to connect to your home assistant (my phone is setup with wireguard to VPN into mind so it’s not internet facing). So yeah unless it can be used during those random connection drops, maybe not a perfect option :(


  • My family uses a custom Todo list on home assistant. I’ve got a separate dashboard of items we can just click to add to the grocery list, and then when shopping, checking them will move them out of the way. Very convenient, quick, and shared. So if you use HA, it might be good option, especially since you’re wanting something simpler (I was in the same boat)


  • Interesting, I didn’t have this experience a couple of years ago. I wonder if they’ve just upped it to try and “automate” things more with the crazy amount of tourism they’re suddenly getting. Also I’d be curious on which airport you went to, Haneda or Narita?

    If the scans and such were in the states, I’ve requested opting out and no one really cared, they just said okay. Funny enough, it actually made me go through quicker than it was taking everyone who did the face scans, contradicting the sign claiming it’s quicker.


  • I left like a decade ago when they asked me in a chat to verify my identity by answering a question asking what my first car purchase was. I’ve never given then my SSN or that kind of financial details, so the fact they had these questions and details about me terrified me at the time and I immediately requested to delete and close everything with them. Haven’t used PayPal again since then.




  • Mikelius@lemmy.mltoSelfhosted@lemmy.worldZeroTrust Your Home
    link
    fedilink
    English
    arrow-up
    6
    ·
    2 months ago

    I’d say anyone wanting to go this deep into a home monitoring setup will likely go with what works best for them instead of reading and following the entirety of this guide… I’m one of those people…

    Wrote my own log parsing software to put into a database, display and alert through grafana, which is alerting through a homemade webhook that sends a notification to ntfy based on severity… And I also use uptime Kuma like mentioned, but my notifications channel is ntfy. No cloudflare for my internal services, only wireguard to connect home and use everything. And definitely no telegram.

    Plenty of other stuff setup, but my security alerts and monitoring rely heavily on the syslog/grafana server which helps me monitor everything.


  • I converted my gaming machine into a server as well. I actually took the graphics card out as I couldn’t find a major use for it, but kept the 12 core Ryzen and upped it to 128gb memory. It now self host way too many things, including a few game servers my friends and I play… But even with all this, CPU carries along nicely and not even at half memory consumption (yet).

    But as others have asked, what’s your goal? Don’t overkill it if you’re only hosting one service or something. If you’re doing a lot like I do, then up the RAM. And seriously consider whether the GPU is even useful or needed if you’re not using a desktop environment.



  • Glad I looked at this thread. The fact they’re cheap and have what sound like reliable PoE hats… Tempted to replace a few old Pis lol. Maybe. But can at least say no future devices will be Pis at this point.

    Note: only using them for simple things. Wireguard VPN (no I don’t have a fast internet so I don’t need more than the 1gb connection speed), pi hole, and a touch panel I installed that connects to home assistant on the wall.



  • Friends and I are in the upper 30s and 40s range so not young not old I guess lol. For the family side, I tend to look for all my closer relatives which range in all ages. While there were many many lines that matched our last names, the entries that were a match didn’t have the right phone numbers or addresses (so couldn’t really validate if they were us or others with the same name). Or it could always be that they were addresses so old that I don’t have a record of them to compare to… Considering a large chunk of the data is apparently old, it’s possible that could be a reason I didn’t see everyone, too? I’ll probably go back and dig a little deeper on the family side since I haven’t deleted the data yet.


  • Fair enough, I should have left with the mention of mileage may vary. I checked for some more friends per request since my posting, and out of the 20-30 families I’ve now checked, only 1 was compromised… But they were also in a couple of previous ones too. But of course, this doesn’t mean it’s the same case for everyone else.



  • The news is kind blowing this up bigger than it really is. But I find this as a good thing because I’ve noticed a few people FINALLY taking the advice I’ve been giving for years now, and that’s to freeze your credit at the big bureaus and some, if not all, of the smaller ones.

    That being said, I checked this data dump for my own data as well as a bunch of friends and family. Not a single person I checked was in it… Which is why I’m not finding this breach to be that frightening personally. The ATT breach was way worse. Also Krebs posted on this today… A good read for anyone interested. Main thing I took from it was a large number of these entries belong to people who have passed away already.




  • The security part is the reason I use NoScript to do this. We’ve all typo squatted sites we visit, I’m sure. But if I typo squat a site I frequently visit and see the JavaScript disabled, it forces me to recheck I’m on the right site. Granted it’s only happened once where I didn’t realize I typo’d until seeing it was disabled, but it only takes 1 time to lose everything…

    Not sure the fingerprint concerns are too major for me either. Hopefully most scenarios, I’m flagged as a bot or crawler and out of some data that would otherwise have been collected. Who knows. I imagine that JavaScript makes up for way more fingerprinting though.