Security

Background Last month, Cisco researchers detected over 1,000 Ollama instances within the first 10 minutes using Shodan scanning on 11434 port. Other services such as vLLM/llama.cpp/LangChain on 8000, LM Studio on 1234, GPT4All on 4891, are also identified. Later, Censys found 10.6K Ollama instances publicly available online, and 1.5K of these instances respond to prompts. That poses not only a great security risk of RCE, injection and poisoning, but also possible to expose private chat memory via unauthorized prompting. ...

It has been a while since my WiFi is getting more and more unstable, and I finally decided to retire my NETGEAR R6300v2 which has served me well since in 2017. It was in used condition when I bought it, so this is a good time to get a “new” router. Because the ISPs in my area are very bad, I still have to stick with the low speed Internet for probably quite some time. So I decided to buy a used Linksys MR7350. ...

During the prime day, my friend grabbed a GL.iNet Flint 2 (GL-MT6000) for a fair price, thanks to the slickdeals community. The specs of this model feels like a beast to me, because I don’t have enough high-end devices and Internet plan to utilize that much of performance. But what I can do is to boost its security and stability for my friend. Note: For operational security, all initial settings should be done without physical Internet/WAN connection. ...

Since I was a teenager, I have started voluntarily helping people around me with my skill of technology. This time, I’m helping someone to build up a robust, secure and cost-effective firewall/gateway/soft router at home. It ends up on a $100 worth N100 mini-pc with dual Ethernet port, which can be a great pfSense box for home or even business use. Hardware Tweaks This model (T8PLUS) secured with 4 screws at outside, after removing them the outer case can be easily pried open (just a little bit more effort than Intel NUCs), and removing 4 more screws inside to get the access of the motherboard (way more simpler design of the power button comparing to NUCs). ...

Recently, YouTube is messing with user disobedience again. For the sake of that, FreeTube has been updating with fix multiple times. Although FreeTube has fixed the API block done by YouTube, I have to deal with a new IP block from my end as its aftermath. “YouTube has blocked your IP address from watching videos. Please try switching to a different VPN or proxy.” There are many ways to get around this IP block. Because I think switching VPN server is too heavy just for this, I would like to use a proxy. ...