anime graf mays 🛰️🪐 on Nostr: this whole situation makes us look bad. an entire instance and its users are ...
this whole situation makes us look bad. an entire instance and its users are displaced with likely (probably) hundreds of password crossovers with real world emails because trust or maybe oversight on one persons part
we as instance owners owe it to our users to do better than this. poast takes pretty extreme measures in terms of security but realistically its as simple as having keys instead of passwords and not storing that on your pc. change your ports, restrict logins to specific users or better yet enable an ssh knock port so the server will only respond if you knock on the port before trying to connect.
there's all kinds of simple steps to take to prevent something like this from metastasizing outside the original 'hacked' computer
the number 1 method of hacking is social engineering, RAT can fall under this since she likely willingly installed whatever was sent to her
dont click shit from people on the internet i guess is the takeaway from this if you are an end user. dont open links, just dont
we as instance owners owe it to our users to do better than this. poast takes pretty extreme measures in terms of security but realistically its as simple as having keys instead of passwords and not storing that on your pc. change your ports, restrict logins to specific users or better yet enable an ssh knock port so the server will only respond if you knock on the port before trying to connect.
there's all kinds of simple steps to take to prevent something like this from metastasizing outside the original 'hacked' computer
the number 1 method of hacking is social engineering, RAT can fall under this since she likely willingly installed whatever was sent to her
dont click shit from people on the internet i guess is the takeaway from this if you are an end user. dont open links, just dont