With encryption? Just delete the key and you are done.

This is true. For now…

Is your server not run by 6 cats?

I had a coworker, about 30 years old… Who taught computer science at a college prior to us working together… Who said to me “Command line? That stuffs ancient, man.”

Just in case you were thinking about spending money on college tuition to learn computer science…

lol good point.

Listen, the only folks you put your black hat on for are folks who try to phish you. And you report your findings anonymously to CISA.

That’s how the recent USPS scams, the EZ pass scam, and the AAA scam got untangled. Be safe.

You put on your black hat at work when your boss tells you to do so on objects under your teams ownership. Don’t be stupid.

Other than that, don’t be an idiot. Stick to BBPs and VDPs, Educational labs, shit you own, etc. Nothing more than a totally unglamorous fine, or worse, awaits you.

Sincerely, a veteran of cybersecurity.

Wait why have I never which which or locate locate before?

Linus from LTT asks Linus if he’d ever heard of software developers being terminated based on how many lines of code they’d written .

Linus Torvalds responds “Anyone who thinks that’s a valid metric is too stupid to work at a tech company…”

It’s clear Torvalds doesn’t know who this is about when questioned.

Linus hints to him it’s about Musk.

“Apparently I was spot on [about Elon Musk being such and individual who is too stupid to work at a tech company].”

Glad to hear. Lesson learned: The panic you felt sucked. It was thankfully $7 to resolve. Next time it might not be.

Back up your stuff 3 times, in at least two places. 🙂

You got two options. Both suck.

1. Call support. Have fun. I’d rather rip out my eyeballs in this scenario because you’re not a paying customer. You will get the shit-tier service, will likely be hung up on, and reexplain the situation to 3+ individuals over the course of 4 hours and ultimately get nothing done.

2. Resubscribe. Finish the job. The odds of your accounts db being wiped are kinda slim. Sucks because you do what you explicitly sought to avoid: pay Microsoft.

I recently looked at my emails spam filters and my goodness. I’ve built a monstrosity over a few decades here.

Idk of any good series but techno Tim has a great video on using cloudflare and traefik to get wildcard letsencrypt ssls for your docker services.

https://youtu.be/n1vOfdz5Nm8

I think the bulk of users are running discarded junk and raspberry pis.

That was me, I built a ~$5k rig and now some of what I’m doing is just nonsense of a typical self hoster, so the point is somewhat valid, but even those like me mostly started out with discarded junk and raspberry pis.

Docker used to scare me until I tackled a project that required me to use it. Then I realized I learned it without knowing I’d learned it.

Are the two servers on the same LAN? Did you update all configs for the new servers address?

Is the docker container spinning up and running, or failing and exiting?

Run docker ps, it’ll tell you how long your containers have been running or if they exited.

If everything is running then it’s most likely network, and I’d need to know how it is you used to access it on the old server (web address? Ip?)

If it’s not running then you get to dig through error logs to get to the next step 🤓

What do you mean “doesn’t have the same way”?

My first method eliminates waiting to see if your students code runs fast enough. Unless complexity is part of the assignment, I’d still say go for the hash.

It’s also less work for the professor/grader.

I mean just for the love of God don’t spin up something on your company’s infrastructure that accepts file uploads.

Just don’t.

If you’re reading this and going “well, it’s just internal,” or “well, it doesn’t do much it just accepts this exact file type.” My god. Ask your CISA. And if they’re okay with it, cool. That’s on them.

Unless your whole business is transferring files, don’t. And even then… Don’t.

And if you’re still confused, the answer is to use another company’s infrastructure for this. Use Azure. Use AWS. Use Google cloud or even g suites. Don’t accept that liability. Let the trillionaires do it.

Why give your students a way to get RCE on your institutions servers through anything less than perfect file upload implementation.

For a .tar? I wish you the best…

Instead of that, simplify.

Use unique salts for each assignment per student.

Align hashes with those salts to check the outcome for each students assignment.

Literally have them send you a CTF style sha256 string.

Do it step by step where each step doesn’t depend on the next, grade as a percentage of flags accurately procured.

For getting your stuff available over the internet, y I recommend a secure tunnel with wire guard between your vps and servers running the services.

Make your vps an authentication portal using stuff like Authelia and Fail2ban.

If you’re really needing out, get ELK stood up for free and get agents on your containers/services to keep visibility into any potential… Anything

I finally got my home services covered with my website’s wildcard ssl. Which is great, because now I can setup ELK Stack and setup an auth portal on my vps, and get Plex and gitlab out of the house securely.