To add to this, self-hosting is also best when you minimize everything - limited service, with limited functionality, on dedicated hardware that doesn’t share access to your internal network or storage. Folks who use point-and-click apps to install a half dozen unauthenticated docker containers, all open to the internet, running on the same PC they store the only copy of their family photos and music/movie collection on… make me crazy.

Not strictly teh ciberrz, but upgrading to OpenBSD 7.5. Might rebuild a mail server this weekend.

If a website you’re using uses SMS for 2FA, then you seriously need to switch companies.

The country currently conducting a genocide, having been created after their religious siblings were genocided… And you’re asking how they get away with… software…

Talk about asking the wrong questions.

Given that I’ve never heard of it (and I routinely work with security-related things like OpenSSH and TLS, certs, etc.) I’ll assume the impact of this finding is relatively low.

I got one of these a few weeks ago and reported it to everyone involved. (Netblock owners where the spam originated, domain registrars, alerted YouPorn…) It’s written to sound halfway legitimate, and I’m sure for anyone who’s ever let themselves be videotaped while banging, this might cause enough anxiety to be spurred into action.

As always, tell your friends and family about this sort of nonsense, and to just ignore it.