pantherina

joined 3 months ago
MODERATOR OF
kaufempfehlungen
sorted by: new top controversial old
Here's What I Would Do If I Could Start Over In Cybersecurity... in c/cybersecurity@sh.itjust.works
[–] pantherina@feddit.org 2 points 3 weeks ago (1 children)

I can imagine that, never did any of those certificates.

Selfhosting vs. writing code is different. But yes for sure if there is some kind of separation that may be fine.

For me personally, being on a computer after a workday on a computer can be nice, but can also be too much and cause stress over time, without me noticing it.

-15
Best and worst Linux distros in a tier list - Freebooters (www.youtube.com)
 

I love those guys, their way too long podcast-type videos are always fun to watch

3
Here's What I Would Do If I Could Start Over In Cybersecurity... (www.youtube.com)
submitted 3 weeks ago* (last edited 3 weeks ago) by pantherina@feddit.org to c/cybersecurity@sh.itjust.works
3 comments fedilink
 

(His videos are often very lengthy and beating around the bush, so here is a short summary)

  1. Learn basics of IT, Hardware, Software, OS, Networking

Like CompTIA A+, Networking+, Security+ Certificates (they have educational material, no need to do the test)

  1. Learn how big security is, security domains

How they work together

  1. Try Overcome Imposter Syndrome

Focus on what you want to do and what you can

  1. Hobby vs. Career

Separate identities to prevent burnout. You shouldnt work your hobby all the time, I guess

  1. Work with tools to increase productivity (and use ads lol)

  2. Join the InfoSec community

Learn from another, projects, conferences

  1. Take one step at a time
Best directory encryption that passed an audit? in c/linux@programming.dev
[–] pantherina@feddit.org 1 points 1 month ago

I am not sure I understood. I have a Nextcloud client and sync to a server I dont trust. Or that I dont want to encrypt with LUKS.

And I want to open decrypted tiles, use them and save them encrypted to a directory that I sync with Nextcloud.

Best directory encryption that passed an audit? in c/linux@programming.dev
[–] pantherina@feddit.org 2 points 1 month ago

Wooow that looks awesome!

I read about dyne, pretty cool group.

Best directory encryption that passed an audit? in c/linux@programming.dev
[–] pantherina@feddit.org 1 points 1 month ago

I use Nextcloud and may use other solutions too.

All the rest is with syncthing between trusted devices

Best directory encryption that passed an audit? in c/linux@programming.dev
[–] pantherina@feddit.org 1 points 1 month ago (2 children)

Does that work with Nextcloud too? So send the encrypted stuff to Nextcloud or copy to another dir at least?

Best directory encryption that passed an audit? in c/linux@programming.dev
[–] pantherina@feddit.org 1 points 1 month ago

Cool! That sounds like a great option.

Best directory encryption that passed an audit? in c/linux@programming.dev
[–] pantherina@feddit.org 3 points 1 month ago (1 children)

This would only work on single files or archives, but yes probably a good idea. I think cryptomator slices up files into equal pieces and then encrypts both, protecting against analysis of file types, but being sync-friendly.

Best directory encryption that passed an audit? in c/linux@programming.dev
[–] pantherina@feddit.org 1 points 1 month ago

It needs to be repeatable easily and easy to use for sync. This method would always encrypt everything new.

14
Best directory encryption that passed an audit? (feddit.org)
 

I know of CryFS and encFS which both failed an Audit.

I know LUKS and veracrypt which work but are both tedious and not useful for my use case.

I want to encrypt folders on Linux and then sync them with a cloud or just store them locally.

There is goCryptFS which is in Go, i.e. memorysafe which is good. It also failed the audit when it comes to cloud sync.

The issue: if an attacker has access to the encrypted files over time, if you always upload changes, they can crack you.

This would not be relevant for local file stores, but for synced ones it is.

There I used Cryptomator, which has many downsides though

  • the app is GUI only, the CLI variant is last released 2021, which I dont consider maintained when it comes to security? Or is it?
  • the GUI App is in electron, no Wayland support
  • the app devs dont care about flatpak rules and store secrets outside the app container, meaning the app is unconfined by default, you need to manually add an override and it is still pretty insecure in the case that all untrusted apps are flatpaks

KDE KVaults only supports insecure algorithms, goCryptFS would be the most secure for local only stuff, but that was abandoned as a Fedora package and is only available from COPR, currently. (I should learn RPM packaging once again).

Cryptomator seems to be the only one 1. Suitable for cloud sync (not encrypting everything always again) 2. That passed an audit.

The CLI may be fine if it just interacts with the GUI app? I wonder how that would work with the Flatpak.

Do you know any alternatives?

17
Fedora Asahi: How they did it and how it is going (www.youtube.com)
submitted 1 month ago* (last edited 1 month ago) by pantherina@feddit.org to c/linux@programming.dev
1 comments fedilink
 

What hacks they needed, where they get MacOS binaries, how the boot works etc.

Very interesting talk.

Btw they have a regular Function touchbar ;)

1
Mods gesucht! (feddit.org)
submitted 3 months ago* (last edited 3 months ago) by pantherina@feddit.org to c/kaufempfehlungen@feddit.org
0 comments fedilink
 

Wer hier kommentiert mit einer guten Begründung kann Moderator werden :)