Replying to Avatar sommerfeld

I recently listened to a Darknet Diaries episode about the LinkedIn hack.

A russian hacker exploited a vulnerability in a public webserver for a personal website that a LinkedIn engineer self-hosted from his home. From there, the hacker was able to hop from the server, through his local network, to his work laptop. From the work laptop, he used the engineer's VPN credentials to get inside LinkedIn's internal systems and dump the databases.

That scared be into moving all my public webservers I self-host at home to a VPS.

I'm in the migration process right now, that's why my NIP-05 and lnurl are not working at the moment.
Avatar
captjack 🏴‍☠️✨💜 2y ago

seems a LinkedIn PAYED engineer lacks knowledge of DMZ

Reply to this note

Please Login to reply.

Discussion

Avatar
sommerfeld 2y ago

DMZ is just the illusion of safety, just like containers or VMs. Whoever hacked his webserver could just as easily hack the router and from there access the local network.

Also a simple macadress spoof would be enough to enter the non-dmz network.

Avatar
captjack 🏴‍☠️✨💜 2y ago

depends on skills n careless on person who setups DMZ