• 1 Post
  • 137 Comments
Joined 3 years ago
Cake day: July 12th, 2023
  • LiveLM@lemmy.ziptoLinux@lemmy.mlAbsolute disaster, RAT backdoored through WINE. Assistance with DockerEnglish
    132·
    12 days ago

    Hey man, sorry you’re going through this.

    Realistically I don’t think there’s much more you can do than what you’re already doing.
    You wiped your machines, wiped the router, wiped the “smart home” devices, that’s it.
    Now what you gotta do is:

    • Change the password to your important services and ensure 2FA is on for everything (Do you have a Android phone? I recommend the Aegis app)
    • Did you have IDs or Documents on the files they got their hands on? If so, stay vigilant to ensure they won’t try to get loans or a credit line in your name.
    • Separate the “Smart home” stuff into its own VLAN (Assuming you can’t just get rid of it altogether)
    • Consider where this Malware came from. It originated via Wine, but how?
      Were you running pirated software on there? If so, the source you got it from isn’t to be trusted.

    this is meant to spread across as many machines as possible […] How many people out there […] What if they get someone who works in […] It is so bad and I cannot get any one to listen to me. They think I’m a lunatic.

    Most viruses are meant to spread as wide as possible, what’s important above all is that you must calm down.
    Saving the world is not your responsibility, if your local Cybersecurity division doesn’t want to help, oh well. Focus on Securing your stuff.
    If you truly want to help, consider sending the infected .DLL to a service like VirusTotal. If it’s a new malware they haven’t seen before, the virus’ signature gets shared.
    Also consider filling a complaint to IC3. While I don’t think they’ll reach out back to you, if this is a new Botnet or new Crime network they’re not already aware of, your report will bring it to their attention.

    In relation to isolating your apps from each other, maybe take a look into QubeOS. It’s built from the ground up for this purpose, though it might prove rather overkill for most users.

  • LiveLM@lemmy.ziptoOpen Source@lemmy.mlLLM/"AI" Policies | JellyfinEnglish
    12·
    22 days ago

    So far the best AI tool use policy I’ve read, specially this bit:

    Your PR body should be providing context to other developers about why a change was made, and if your name is on it, we want your words and explanations, not an LLM’s. If you can’t explain what the LLM did, we are not interested in the change.

  • LiveLM@lemmy.ziptoLinux@lemmy.mlHow do you manage your dotfiles?English
    4·
    2 months ago

    I use YADM which is a thin wrapper around a bare git repo but still has some creature comforts like per-machine configs and templating.
    Since you still need to interact with Git, I pair it with Lazygit. Love that software, I do everything Git with it now!
    Unfortunately it is a little jank due to the way Lazygit handles bare repos, thankfully there’s a command that sets up the needed Git variables for it to work correctly: yadm enter lazygit

    I send the repo to my own Forgejo instance. Kinda overkill but I was already self-hosting other services so I thought “Fully private Git server just for me? Why not?”

    Now, this is only for managing user level files. For managing system level configs I haven’t setup anything yet.
    YADM has a solution for this but it seems a little jank, maybe I’ll learn Ansible instead, dunno.