My mom (82) and my wife’s mom (79) have both recently been fished, leading to many bank accounts being closed, and causing me to frantically change all their passwords and get them on a password manager and making every single account different and complex as far as passwords go. I really thought I had them covered, I told them both, so many times, if you get an email saying, let’s say, there’s an issue with Comcast, I made them tell me, they would delete the email without reading it, then, if they were really worried, call Comcast and check things out. And don’t use the phone number in the damned email lol. But, that wasn’t good enough, they couldn’t help themselves, the subject or the first few words of the emails reeled them in… I hate scammers.
many useful things from this video, most of all (at least for me) is wazuh, so thank you extremely for the info and link for that one, I have been wanting something like this without realizing it for a while, so many, many thanks for the info and link to that given the open source free nature of it. I want something like this, but I have not the funding for something like this, so free OSS software is an absolute godsend for things like this. thank you!
I'm with you on MS Defender...I tell my own clients that Defender is good enough for a typical desktop that's used for video watching, word editing, email checking, etc. Overall good basics for homelab security covered in this video, any more and you're getting into small web business, start-up, enterprise type security stuff. 👍
"LastPass users warned their master passwords are compromised" by BleepingComputer on December 28, 2021 This was just one of many LastPass security issues during their decade-long incidents.🤕
@Tom Lawrence: do you have a video where you discuss setting up and configuring your own self-hosted honey pot using an open source software? I know in this video you mentioned canary, but I'm not familiar
@@LAWRENCESYSTEMS thank you, I'll read more into it. I'm looking to find an open source honeypot software that I can self-hosted on my network. I look forward to hopefully meeting you at the Ohio Linux Fest 2022
Is tunneling a good alternative to not opening ports? Specifically using cloud flare tunnel to kemp load balancer that has a wildcard cert and deciphers the url to send to correct internal IP.
I understand keeping ports closed is by far the best solution, but something not mentioned, what's wrong with a reverse proxy? It's a similar concept, only open ports 80/443 and the reverse proxy is in front of everything (+cloudflare if you use that), to me the bigger problem for some homelab people, is if they put anything on the internet, they like to go ahead and just make everything public even if the only thing you need is nextcloud.
Backups? What backups? xD No seriously, I don't have the cash to get enough storage for a an actual backup. Configs and documentation to rebuild stuff from scratch and some carefully selected core data are sadly the best I can afford.
My mom (82) and my wife’s mom (79) have both recently been fished, leading to many bank accounts being closed, and causing me to frantically change all their passwords and get them on a password manager and making every single account different and complex as far as passwords go. I really thought I had them covered, I told them both, so many times, if you get an email saying, let’s say, there’s an issue with Comcast, I made them tell me, they would delete the email without reading it, then, if they were really worried, call Comcast and check things out. And don’t use the phone number in the damned email lol. But, that wasn’t good enough, they couldn’t help themselves, the subject or the first few words of the emails reeled them in… I hate scammers.
many useful things from this video, most of all (at least for me) is wazuh, so thank you extremely for the info and link for that one, I have been wanting something like this without realizing it for a while, so many, many thanks for the info and link to that given the open source free nature of it. I want something like this, but I have not the funding for something like this, so free OSS software is an absolute godsend for things like this. thank you!
I'm with you on MS Defender...I tell my own clients that Defender is good enough for a typical desktop that's used for video watching, word editing, email checking, etc. Overall good basics for homelab security covered in this video, any more and you're getting into small web business, start-up, enterprise type security stuff. 👍
"LastPass users warned their master passwords are compromised" by BleepingComputer on December 28, 2021
This was just one of many LastPass security issues during their decade-long incidents.🤕
@Tom Lawrence: do you have a video where you discuss setting up and configuring your own self-hosted honey pot using an open source software? I know in this video you mentioned canary, but I'm not familiar
This is the project I had mentioned but I don't have a video on the topic github.com/thinkst/opencanary
@@LAWRENCESYSTEMS thank you, I'll read more into it.
I'm looking to find an open source honeypot software that I can self-hosted on my network.
I look forward to hopefully meeting you at the Ohio Linux Fest 2022
Thanks!
Thank you!
Is tunneling a good alternative to not opening ports? Specifically using cloud flare tunnel to kemp load balancer that has a wildcard cert and deciphers the url to send to correct internal IP.
Yes
I understand keeping ports closed is by far the best solution, but something not mentioned, what's wrong with a reverse proxy? It's a similar concept, only open ports 80/443 and the reverse proxy is in front of everything (+cloudflare if you use that), to me the bigger problem for some homelab people, is if they put anything on the internet, they like to go ahead and just make everything public even if the only thing you need is nextcloud.
Reverse proxy is still an open port.
Would love to see some tutorial how to do propertly "cameras on separate vlan". (for networkig noobie)
ua-cam.com/video/bjr0rm93uVA/v-deo.html
Backups? What backups? xD
No seriously, I don't have the cash to get enough storage for a an actual backup. Configs and documentation to rebuild stuff from scratch and some carefully selected core data are sadly the best I can afford.
I'd switch from Google Chrome to Brave if you're interested in a chromium-based engine browser. It has frequent updates
So dont block things? Come on bro a network wide ad/tracker blocker is a good idea for everyone. Of course its a cat an mouse game