SuperFola

TLDR: perfctl is a crypto mining and proxy jacking malware that exploits about 20’000 common missconfigurations to install itself on Linux servers. Mostly using a 10/10 CVE on Apache RocketMQ.

It is very persistent and can reinstall itself even when you have deleted all the perfctl and perfcc files. It hides itself by removing logs, network packets, and stopping all activity once you login to the machine.

Monitoring cpu usage using tools (I use net data on my server) can help identify infections (100% cpu usage when « idle »).

This past few weeks, Python 3.13 and the possibility to disable the GIL has seen a lot of coverage and that pushed me to dig into my own language, to see how different our approaches are.

So if you’re curious about the rambling of a pldev, that might be for you!

I currently have a server, a Dell T310 with an SSD in it and 12Gig of ram (weird config, I know I messed up but it works fine so I can’t be bothered to change that for now), with all my dockers running in it.

It runs mostly fine, with Debian 11, a VPN so that I can block public ssh and allow it only on the VPN network, an nginx proxy to have services like a forgejo and a music library (ampache).

However it can’t run a Minecraft server with more than a single person on it without stuttering ; so I was considering changing it maybe next year, after more than 3 years of services, for something beefier but also consuming less W/h (current consumption is 80W), and since I already have a Mac for work I was wondering how suitable a Mac Mini M1/M2 would be for a homelab?

Does anyone have such a configuration and how does it work for you? Any hurdle that you should be aware of?

I’ve finally picked up an iPhone about a month ago, and have been loving the experience.

However I’m now thrown into an ad-full world again (I used to have a browser blocking many if not most ads on the android), so I’m wondering, what adblockers do you use (may it be safari extension or entirely new browser for my fellow Europeans)?

I played BotW a lot, and really loved it. I feel like the beginning of the game was relatively easy compared to TotK, I died a few times trying out things, discovering the game and possibilities ; in TotK I died a lot and still do even with good gear and armour (1*-2* armors, 30-40+ damage weapons). You could say it's skill issues and I would agree with you as I am not a pro player and play games once a week maybe, however I feel like the difficulty curve is far greater in TotK. That has affected how I view the game to the point that sometimes I think I dislike it (even though the new powers are the best thing they could have added, with the verticality of the world) ; that might also have to do with the much darker ambiance of the game, which can feel frightening (to me) to the point going underground is hard.

Is it just me? Should I just "git gud"?

New clear black shell to fit the IPS screen v3 from funny playing (no soldering needed! This is awesome, I can control the screen with just a touch on the GBA logo). I also added a rechargeable usb c battery, so far it is already lasting 2x longer thanks when I used AA (6 hours in, with a single charge, and medium brightness + sound).

Next steps would probably be:

• cleanAmp, because I noticed some kind of white noise with my headphones plugged in
• GBA accelerator to replace the stock clock (and make grinding in Pokémon Ruby faster probably)

When scrolling on Lemmy I often stumble on links from people that don't use community syntax (!c@server).

It would be appreciated for those thinks to be rewritten automatically to avoid the browser opening, and instead staying in Voyager.

Implementation could be tough though: do you need to prefetch the page, parse it and check somehow that it's a Lemmy community? Or have a list of known servers to rewrite those links? Both could prove tedious to maintain.

3 days ago I setup fail2ban. Nothing fancy, just reading the logs of my docker containers where it applied.

Then 2 days ago my server crashed out of nowhere, nothing in the f2b logs (I thought I had banned the entire internet by mistake), doing a nap just tells me port 80 and 443 were open (a few more should have been for Plex).

The same happened yesterday and I pulled the cable just in case I was being hacked (I'm paranoid but not too much), and looked in it. usually I ssh from my local network into the server, but couldn't this time, so I put a screen on it and it was quickly flooded with systemd failures and ext4 errors.

I reformated the disk a few months ago and ran a SMART, it told me the disk was fine, no error detected. It is a chonky 2TB disk and I have at most 150gigs used (movies, music, backups waiting to be transferred on daily basis to other servers/media, dockers).

Where should I look? I know how to work with Linux but when looking for a problem like this, except using systemctl status/restart I'm lost.