• 1 Post
  • 32 Comments
Joined 1 year ago
cake
Cake day: September 10th, 2023

help-circle







  • Step 3: unfuck the SIP settings, then email both HR and their supervisor to throw them under the bus. Also covers your ass for step 4.

    Step 4: Route the manager’s calls to a disconnected number. When they come knocking about their phone not working, tell them, “No, you should be able to dial out, unless someone changed the SIP trunk settings and didn’t tell me.”


  • Assuming you already have the IP phones, you need two things. A PBX server (for the VoIP stuff), and a SIP trunk with a block of external phone numbers.

    Start with the PBX server software, there’s several free/open-source implementations. Once you’re comfortable with it and have internal calling good to go, then you can spend on the SIP trunk and number blocks.


  • There’s also a limited federation mode that server admins can use. Users and posts are still searchable, but they do not show on the public federated feed.
    Useful for this exact case where a server may have beneficial accounts, but the rest should be hidden for moderation reasons.

    Still would prefer it being on a proper mastodon server, but I can live with this. Whatever server ends up hosting a President’s account now has to deal with record preservation laws for their posts. Let’s leave that bureaucratic stuff to threads.








  • Fedora Linux also comes with SELinux enabled by default. Did you check that the new home folder and all its contents have the proper SELinux tags?
    Run an ls -lZ and check that the directory has the user_home_t tag,
    The user’s home directory is also stored in the /etc/passwd file. Did you update the entry there?

    No, do not “disable SELinux”. That advice hasn’t been valid for a good 20 years. You can set it to permissive though, to see if it’s the source of the problem.



  • Easy. It’s far too expensive to implement, both in money and man-hours. Especially man-hours.

    The amount of people required to personally surveil the general populace is way too exorbitant, AND they have to monitor their own people to prevent leaks. The logistics explodes well before this becomes feasible.

    Then there’s discoverability. Once such hardware is out there, it’s only a matter of time before it falls into the hands of someone capable of dissecting it. Given that such spying methods would be ‘sold’ to federal management on the grounds of national security, there’s an interest in not having it fall into such hands. Therefore, these methods are reserved for high-profile targets. Not the average Joe citizen.

    To summarize: Too expensive (money), too expensive (logistics), and too expensive (R&D). Unless you’re on Interpol’s most wanted list or something, you don’t need to worry about this.