Yesterday, 07:49 PM
|
#916 | |
|
Wizard
  Posts: 1,943
Karma: 35129488
Join Date: Sep 2017
Device: PW3, Galaxy Tab A9+, Moto G7
|
Quote:
--- Off-track discussion of additional security measures that might be of interest to some --- I have a VLAN named "Blackhole" set up that I'll connect new, untrusted devices too. Some devices require you to access them over the network for setup and configuration. Anyway, Blackhole is blocked by the firewall from initiating any outgoing connections to the WAN, receiving any incoming connections from the WAN, and ditto for any connection attempts to my other VLANs. It's an isolated island of a VLAN. I can temporarily log my laptop onto the Blackhole VLAN to do setup/configuration of untrusted devices. But not before I boot that laptop from a thumbdrive and load the entire Linux OS into its RAM, with no data persistence allowed. Thus any nefarious stuff the untrusted device might attempt will only affect the laptops RAM image, which is ccleared when I later power it down and reboot it from its normal SSD. I can also monitor connection attempts from Blackhole out to the WAN to see if the untrusted device is actually doing something untrustworthy. Once I have convinced myself as much as possible that the untrusted device is at least somewhat trustworthy, I'll move it to my "IoT" (Internet Of Things) VLAN. That VLAN can get out to the internet, but it still can't touch any of my other VLANs that host other computers with more sensitive stuff on them. Occasionally I will have to open a very limited firewall hole for some specific home computer to initiate a connection to a device on the IoT VLAN. That is usually limited to a specific IP address and specific port(s) on both ends. I only have one firewall hole allowing the IoT VLAN to initiate a connection to my server VLAN. This is limited to a recipient single IP address and port. That's so the IoT devices can publish MQTT messages to my MQ server (these are cameras sending "motion detected" messages). The MQ server is somewhat sandboxed in a Docker container, and other devices can subscribe to the MQ topics. |
|
|
|
|
Today, 12:04 AM
|
#917 |
|
Junior Member
Posts: 7
Karma: 10
Join Date: Jan 2024
Device: Paperwhite 11, Oasis 3
|
For me I have the wifi on all the time (I use it mainly for reading challenges and goodread sync). Again my suspicion is as long as you don't toggle the airplane mode, it won't nuke your library. i.e. Where i've had my kindle connected to wifi over a year without an issue even long periods of being not connected to the internet (no known SSID). Only just the other day I inadvertently toggled the airplane mode then it nuked my library the same day.
Not a huge deal since now since i've learnt my lesson and have calibre flow setup and ready to restore my sideloaded library relatively quickly. Even more so now that Librarian sync is working on my jailbroken kindles. |
|
|
|
| Advert | |
|
|
 |
«
Previous Thread
|
Next Thread
»
|
Similar Threads
|
||||
| Thread | Thread Starter | Forum | Replies | Last Post |
| Amazon removed sort prices low to high from on-kindle store | Pjama | Amazon Kindle | 28 | 04-26-2021 01:26 PM |
| Warning - Kindle Store button removed from Amazon app | RCR | Apple Devices | 4 | 09-02-2011 04:35 PM |
| More ebooks removed from Amazon UK | mr ploppy | General Discussions | 7 | 12-09-2010 02:12 PM |
| Amazon removed S/N info from Manage My Kindle page | daffy4u | News | 68 | 08-18-2009 12:30 PM |
| Amazon Removed Gay Books from Rankings | Moejoe | News | 167 | 05-02-2009 01:24 PM |
All times are GMT -4. The time now is 01:02 AM.