New on LowEndTalk? Please Register and read our Community Rules.
All new Registrations are manually reviewed and approved, so a short delay after registration may occur before your account becomes active.
All new Registrations are manually reviewed and approved, so a short delay after registration may occur before your account becomes active.
Comments
Just leave a 5 star review on TP and get one year of service for free
(please dont)
If idling why renew..
Take back your charity
leaves review
flags it
sends proofs to trustpilot that he was bribed
5d chess move
I have a use for it haven't gotten round to and it is good value for the money as is the case with idling servers.
Maybe you should check out the recent threads ans current status of the provider on the community before biting another bullet
I have seen them that is why I'm asking.
@k9banger when are the new links coming?
You data has now arrived in India and will be sold on the street to tourists, who will think it is genuine data and will not know the data has been used without permission. Hope that helps.
Is this possible on encrypted VPS systems?
After reading if you have second thoughts.....
¯\_(ツ)_/¯
Contact the experts here: https://host.charity/
Even after all this, people still ask whether they should renew?
The answer is yes in two occasions.
I don't see any other valid reason for which one should renew.
No price discount or deal is worth renewing for after CharityHost did. His unethical behavior is cleanly laid out here:
https://host.charity/index.html#FAQ
Yes 5 min enough to find your passphrase for the host
(Tested on my proxmox instances)
If you have access to your data, backup now! Making backups is always important!
You mean you mounted the VM disk and extracted the LUKS password from it?
And how strong was the password?
If the server is booted and active (i.e. unlocked past boot), data can be read from memory. This is how anyone with underlying access, or like a government, can read encrypted data from a live VM. This is why it's best to run your own physical hardware if you're big enough and worried about someone or a government accessing your data, so you're in control.
The size of the passphrase does not matter as explained by @MikeA
Not saying you should stop encrypting. Just saying that if the host really wants to read your data, he can.
)
It's illegal though in most countries of the world. The host doesn't need to know what you're hosting. He is legally protected.
However, he must cooperate with the authorities, who will be able to read your data. (Dedicated or vps does not matter much in this scenario even if it makes things more complex. You'll be busted
generally if you're doing something that warrants such high degrees of certainty you wanna run on metal, preferably your own
but you can use something like sev-es to make extracting the decryption key from memory harder if you really just wanna run VMs (like in our case where we need portability)
but ask yourself: is what im doing worth going through the trouble? if the answer is yes, you probably have the budget to hire the technical skills to do it anyway
So if the server is shutdown and encrypted how many characters will your password have to be to resist decrypting for say the rest of your life, ie using contemporary hardware, not some fancy as yet to be developed quantum technology etc?
So then follows the question. How many service providers advertise SEV-ES as part of their offering? Do Amazon, Azure, Google etc?
Do the partitioned mainframes from IBM etc provide such a feature?
https://bitwarden.com/password-strength/
brute forcing passwords isn't really what feds go for... a wrench, court order, or side-channel vuln, or opsec f-up is generally the route, and even then unless you're Osama bin Laden, they really only consider lowest hanging fruit
don't know but i use Oracle with SEV
no idea, i didn't go into banking
When you say Oracle with SEV do you mean the RDBMS or VMs/dedicated systems provided by Oracle Cloud?
their virtual machines
idk maybe they'll change the root pw on everything and pull the data since all data on their servers is theirs and not the clients
Charity Hosts servers are generally stable, but since your server is idling, it’s good to test it before renewing. Run a speed or performance check to see if it still meets your needs. If it’s fine, it’s worth keeping; if not, you might want to look at other options.
A stable server means nothing if the host itself is unstable and unethical.
https://host.charity/index.html#FAQ
I lot of Jency's comments feel weirdly disconnected, generic. One could say... generated maybe?
Jencyrated