I've found great success using a hardened ssh config with a limited set of supported Cyphers/MACs/KexAlgorithms. Nothing ever gets far enough to even trigger fail2ban. Then of course it's key only login from there.
yeah my product is awful but have you seen the other guy
Yeah, it's this. I worked at Epic somewhat recently, and I've since worked with former Cerner/Oracle folks too. To Epic's credit, they've never been acquired, and are better for it.
There's a lot of vocational awe across the board, people genuinely trying their best to make the product good. But healthcare is inherently complicated, because people are complicated. Each individual health system needs it customized to their specific needs, and over time this can get hairy to support. Add on to that that regulations and guidelines literally change every year, and it can become really hard to make headway on more meaningful changes when you're just trying to stay compliant.
This leads to burnout on the software support side, Epic churns through new hires like crazy - average tenure has been way down since COVID-19 (you can Google their response to that), so it's a revolving door of 21-25 year olds keeping that ship afloat.
Also, yes, insurance companies are the ones making the big money, by a mile.
Agree with others, Vaultwarden is probably your best bet. I've found the default app to be a little flaky, but ended up using Keyguard, which I've found really good.
I used to use Keypass+Syncthing, but found sync conflicts too often (due to Syncthing support for Android), hence the switch.
Completely aside from what he was doing in Russia, he gives me the same vibe as Ché Cook from The OC.
I used to drive on State Line past that lot full of Teslas daily, always saw a ton of Cybertrucks just sitting. Once Musk started getting so much (more) hate I figured it was a matter of time before someone torched it.
Also, I always find it funny how it's totally just a road that divides the states, I'd drive to work and be "in" Missouri and drive home "in" Kansas lol
Nah those squirrels love to taunt
Thanks! Camera: Nikon Z50 + NIKKOR Z 40mm f/2
Anything USB connected more likely to be flaky, but a good enterprise disk shelf and a HBA card would be rock solid (just noisy...)
Unfortunately my solution when I did a big data migration was to buy more (cheap) storage lol. Ultimately it was a cost vs. time/stress tradeoff.
Physical space is actually a huge issue
Ah then I'd recommend keep the existing machine as the server (it sounds like it's serving you well hardware wise), and get a SFF machine for regular desktop use, be that a new build or a used office machine. The trick will be in migrating the server to Linux, and without endangering your data in the process.
Examples of some of the deals I've personally gotten (ymmv, some were auctions):
- 5 x 3.84TB SAS SSDs
- $521.54 total (stunning deal, I got lucky)
- $104.31/drive
- $27.16/TB
- 5 x 960GB SAS SSDs
- $165.17 total
- $33.03/drive
- $34.41/TB
- 7 x 12TB Toshiba SAS HDDs
- $427.31 total
- $61.04/drive
- $5.09/TB
- 2 x 8TB Seagate SAS HDDs
- $49.99 total
- $25/drive
- $3.13/TB
- 2 x KTN-STL3 JBODs each including 15x3TB SAS HDDs
- $532.73 total
- $266.37/shelf
- $17.76/drive bay+drive
- $5.92/TB not including value of JBODs (~$150/each without drives)
In short, I'd recommend option B/C, where you buy used enterprise grade equipment, learn to run Linux, and build out that way. I can't overstate just how good a deal can be had on eBay, even from reputable sellers. This goes for everything, from the computer itself, to disk shelves, to HDDs and SSDs. Plus you're reducing on e-waste! Used HDDs are a great deal if you buy enough to run redundancy (RAID 6 or equivalent), because the seller will often include a warranty (up to 5 years!). I've only had a handful of drive failures and 0 issues with warranty refund/exchanges.
You're running roughly the same services as I do (though a bit more storage), so if it means anything, I've ended up using the following (all purchased used) ::: spoiler spoiler
- HP Z440 Workstation (upgraded over time)
- CPU: Intel Xeon E5-2698 V4 (20 core)
- RAM: 128GB DDR4 2133MT/s
- GPU: Intel Arc A380
- Storage: Boot SSD + HBA card for bulk storage
- 2 x Dell EMC KTN-STL3 JBOD
- 15 x 3.5" bays
- Mix of HDDs spread across the two JBODs
- 7 x 12TB
- 6 x 14TB
- 6 x 10TB
- 2 x 16TB
- 1 x 8TB
- 1 x HP QR490A JBOD
- 24 x 2.5" bays
- Mix of SSDs
- 6 x 3.84TB
- 5 x 1TB
:::
Broadly, I find the following with my setup:
- Pros
- Easily expandable storage using a HBA
- High reliability (ECC memory, server grade equipment)
- Used equipment is cheap
- Cons
- Running mostly older-gen hardware, not cutting edge performance
- Bulky, noisy cooling, less power efficient
A few things that might help narrow options down:
- What's your budget?
- Do you expect to host more stuff in the future? Do you need more RAM/CPU performance?
- How much physical space do you have? Do you have a place where could store equipment if it were noisier?
- How expensive is your electricity? Is efficiency important?
- How much of your 100TB is full?
Yeah a lot of those look moderately benign (waving away media, for example). Best case scenario it's an unfortunate habit what happens to make him look like a Nazi... At the same time, I'd expect someone to break the habit to distance themselves from it.
This isn't new, right?
Oof, my bad! Thanks for tracking that down.
Article admits it's a smear campaign
Was trying to find the latest on Tesla FSD given the BYD news, I only noticed because it showed the link for a second before loading in. Doubtful the site is in any way reputable. Sloppy publishing I guess?
Pirates eye
"Half our students are below average!" kinda vibes - KDR necessarily means that for every person with 1.5, there is someone with a 0.67, that's just how the math works. If I'm anywhere near 1.0, I'm happy.
Absolutely, it's a fabulous engineering challenge, to make it work well on a hobbyist grade 3D printer with ordinary materials. Also a lesson in using the right tool for the right job (some parts are just better off milled or bought OtS)
I used to frequent the FOSSCAD IRC ages back as a teen. This started during the post-Liberator panic, there were talks about regulating 3D printers to not allow printing guns, etc. Designed a few things, never actually printed any of it myself, but some others did. Really got me into engineering before I exited the scene, led to actually pursuing an engineering career. Was surprised to see 3D printed gun videos so openly shared, it was pretty underground for ages there.