toad.social is one of the many independent Mastodon servers you can use to participate in the fediverse.
Mastodon server operated by David Troy, a tech pioneer and investigative journalist addressing threats to democracy. Thoughtful participation and discussion welcome.

Administered by:

Server stats:

273
active users

#disklessworkstation

0 posts0 participants0 posts today
Kevin Karhan :verified:<p><span class="h-card" translate="no"><a href="https://myside-yourside.net/@StarkRG" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>StarkRG</span></a></span> <em>nodds in agreeement</em> In a <a href="https://infosec.space/tags/classroom" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>classroom</span></a>-like <a href="https://infosec.space/tags/setup" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>setup</span></a> we'd more likely see some centralized, self-hosted <a href="https://infosec.space/tags/managment" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>managment</span></a> solution like <a href="https://infosec.space/tags/Landscape" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Landscape</span></a> or <a href="https://infosec.space/tags/RustDesk" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>RustDesk</span></a> being used.</p><ul><li>I can see why they did this: It's clearly inspired by tools like <a href="https://infosec.space/tags/AnyDesk" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>AnyDesk</span></a> and I do have to applaud them for that.</li></ul><p>And if this acts similar to <a href="https://infosec.space/tags/WebCall" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>WebCall</span></a> and merely acts as a <em>"Rendrevous-Server"</em> then traffic and thus costs should be quite low.</p><ul><li>Still I expect this to later become <a href="https://infosec.space/tags/enshittified" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>enshittified</span></a> with an ever more expensive <a href="https://infosec.space/tags/subscription" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>subscription</span></a> model like with <a href="https://infosec.space/tags/TeamViewer" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>TeamViewer</span></a>.</li></ul><p>I'd still hope they <a href="https://infosec.space/tags/OpenSource" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>OpenSource</span></a> the <a href="https://infosec.space/tags/Backend" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Backend</span></a> so that there's another competitor to <a href="https://infosec.space/tags/Dayon" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Dayon</span></a> and <a href="https://infosec.space/tags/RustDesk" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>RustDesk</span></a> available... </p><ul><li>In the meantime just setting up a <code>sudo</code> admin user with <a href="https://infosec.space/tags/Pubkey" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Pubkey</span></a>-only auth on <a href="https://infosec.space/tags/SSH" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>SSH</span></a> is likely the way to do some admin stuff.</li></ul><p>Maybe one day <span class="h-card" translate="no"><a href="https://mastodon.social/@RaspberryPi" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>RaspberryPi</span></a></span> will even add <a href="https://infosec.space/tags/PXE" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>PXE</span></a> - <a href="https://infosec.space/tags/NetBoot" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>NetBoot</span></a> capabilities to their <a href="https://infosec.space/tags/RaspberryPi" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>RaspberryPi</span></a> and thus allow for <a href="https://infosec.space/tags/DisklessWorkstation" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>DisklessWorkstation</span></a> - Setups, saving a crapton on <a href="https://infosec.space/tags/MicroSD" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>MicroSD</span></a> cards that are prone to get lost and/or stolen...</p>
Kevin Karhan :verified:<p><span class="h-card" translate="no"><a href="https://infosec.exchange/@doctator" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>doctator</span></a></span> it is possible to standardize stuff tho.</p><ul><li>And to do so at a better degree than <a href="https://infosec.space/tags/Windows" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Windows</span></a>.</li></ul><p>One of the best features my <a href="https://infosec.space/tags/university" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>university</span></a> had with their <span class="h-card" translate="no"><a href="https://ubuntu.social/@ubuntu" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>ubuntu</span></a></span> - based <a href="https://infosec.space/tags/DisklessWorkstation" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>DisklessWorkstation</span></a> setup is that one just logs in and <em>boom</em> you got your desktop and settings and files on any machine in the Campus.</p>
Kevin Karhan :verified:<p><span class="h-card" translate="no"><a href="https://social.linux.pizza/@http" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>http</span></a></span> <span class="h-card" translate="no"><a href="https://sakurajima.moe/@Rob298" class="u-url mention" rel="nofollow noopener" target="_blank">@<span>Rob298</span></a></span> <em>precisely that!</em></p><ul><li><p>Also most corp/org/edu networks only backup the <code>$HOME</code> directory and sometimes even allow syncing them across distros &amp; keep them across version updates, so all the settings, addons and stuff remaib where they are: in said <code>/home/</code> subfolders!</p></li><li><p>In fact most places with a sizeable <a href="https://infosec.space/tags/Linux" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Linux</span></a>-<a href="https://infosec.space/tags/Desktop" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>Desktop</span></a> landscape will just keep the /home/ directory on a redundant, <a href="https://infosec.space/tags/iSCSI" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>iSCSI</span></a>-SAN and <a href="https://infosec.space/tags/netboot" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>netboot</span></a> their <a href="https://infosec.space/tags/DisklessWorkstation" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>DisklessWorkstation</span></a>|s via <a href="https://infosec.space/tags/iPXE" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>iPXE</span></a>, as this way burglars stealing devices most likely end up with a locked-down machine (anything but booting the preset network targets won't work without admin password!) that is a paperweight to them and espechally <em>no data</em>, which is crucial when it comes to <a href="https://infosec.space/tags/ITsec" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ITsec</span></a>, <a href="https://infosec.space/tags/InfoSec" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>InfoSec</span></a>, <a href="https://infosec.space/tags/OpSec" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>OpSec</span></a> &amp; <a href="https://infosec.space/tags/ComSec" class="mention hashtag" rel="nofollow noopener" target="_blank">#<span>ComSec</span></a>. </p></li></ul><p>Cuz it's way easier to secure 1-5 server rooms than thousands of publicly accessible machines on multiple campuses.</p><ul><li>It's also a real godsent for technicians as they can just login / boot into a diagnostics system and quickly see what's wrong if a system has issues (if they don't already see it in their dashboard that collects logs, telling them they need to replace the CPU fan or clean a machine as it's overheating)...</li></ul>