• 0 Posts
  • 168 Comments
Joined 2 years ago
cake
Cake day: July 3rd, 2023

help-circle












  • hi, i’m june (aka strawberry🍓🦴 or girlbossceo). i am 19 and a neurodivergent trans puppygirl!!! my pronouns are it/its, pup/pups, she/her, and they/them!! :> 🏳️‍⚧️

    work at Aristocrat as a Security Operations Analyst. opinions are my own and not my employer’s, nor am i speaking on behalf of my employers.

    i formerly worked as an Incident Response Automation Analyst at ReliaQuest in Tampa, Florida (pupbrained automation irl) for almost a year. prior i was a Security Analyst Intern for a little over a year.

    i used to be an android engineer for a 3rd-party security and privacy focused-OS with terrible leadership (they still suck). now rust is cool.

    i do some security research, but not much anymore. i’m a blue teamer and know nothing about red teaming. exploit mitigation and vulnerability research is cool.

    i did a lot of linux sysadmin work in the past, and still sadly do.

    This is found at the root of the domain of the shared post and wow, there’s a lot to unpack there.

    Is this a real person or some kind of character behind this site and post? “Neurodivergent trans puppygirl” sounds like a conservative Fox News dad’s made-up boogeyman.

    And that list of prior experience combined with an alleged age of 19 cannot be real. Thats a described 5-10 years of experience in a number of jobs and fields that you wouldn’t even be hired in until 18 at least.

    Either this post was made by some kind of performative character or otherwise a very deeply troubled individual. If it’s the latter I genuinely hope for the best for them as nobody should be bullied like that but it’s so hard to deduce what’s even true or not here.





  • https://www.crowdsec.net/

    Take the concept of Fail2Ban and add in a community blocklist of thousands of IPs so that you’re blocking not only IPs that have attacked you, but others as well.

    It’s neat because they have a number of collections you can download from the community that include readymade parsers for other kinds of logs, and other attack scenarios you can guard against. For example, if you run Nginx or Caddy as webservers on that machine, you can download associated collections for each that can parse your web access log files and ban IPs based on IPs probing your web server for unprotected admin panels, or abusive AI crawlers.

    You can even write your own scenarios. I wrote one that immediately blocks you after just one attempt to log in using an account like root, admin,adm,administrator, etc.