|
As a sysadmin probably 60% of my work is in azure but there are people in different areas of my org that have the same title and do nothing with any cloud service.
|
# ? Jun 30, 2020 15:33 |
|
|
# ? May 30, 2024 14:00 |
|
sfwarlock posted:If it isn't random malware because they can't treat a work computer as, well, a work computer, it's their phone addictions. I've had assholes unplug one of our iPads used as a Zoom Room controller, in the Zoom Room, with the cable captive in the tabletop mount for the iPad, to charge their goddamned personal iPhone, and don't at least plug it back in. loving children. I usually find out when the central Zoom management send me an email when the iPad dies, but once I caught it while the jerkoffs were still in the room, and at least made them look abashed. We changed to right angle Lightning cables that can be captured a lot more closely, and that seems to have curbed the issue. Of course, it's a non-issue just at the moment...
|
# ? Jun 30, 2020 20:26 |
|
Darchangel posted:This, so much this. I wasn't security, but Desktop Support. You can't give them an inch. It's the same in security control rooms. I have had to suspend someone who disconnected a CCTV monitor so they could connect their playstation which they brought in from home. The evidence being when we turned it on, the save game had the colleagues name on which was the giveaway - if they had all said 'we dont know who brought it in' and that wasn't there, we wouldnt have been able to prove it. In a previous place, we had a number of different alarm systems that all had separate client PCs in the control room to display whatever info in the control room. Some where supported by IT, others by Facilities. I remember a time where we got told to go in there and stop all the staff watching DVDs using the CD drives of these client PCs... so we just disconnected the wires inside and screwed up the cases so they couldnt get in without tools (and tools are banned from site) We then get a complaint saying we haven't solved the problem... only to realise, sure we locked down our devices, but then they just went onto the Facilities devices which we never touched... well, until then. Where I currently work, the guy who works for me was on holiday, so I was out and about a bit more than I normally am - I find myself in the control room. As I'm cutting through, one of the operatives clearly has something hidden under the desk and doesn't want me to see... because manager... I dont really care if he has contraband, however, with it being under the desk, all the wiring for their equipment is in there so nope... and because it's funny, he didnt realise this desk has doors on both sides, so even though he has hidden his stuff away, I just opened up the other side and pulled out a bin bag full of snacks (at least i think that's what it was) I told him i didnt care, i just dont want stuff breaking but they all get embarrassed when i catch them... normally it's vaping.
|
# ? Jun 30, 2020 23:11 |
|
angry armadillo posted:It's the same in security control rooms. I have had to suspend someone who disconnected a CCTV monitor so they could connect their playstation which they brought in from home. The evidence being when we turned it on, the save game had the colleagues name on which was the giveaway - if they had all said 'we dont know who brought it in' and that wasn't there, we wouldnt have been able to prove it. So what's the problem, either you solve the mystery or when nobody fesses up somebody in IT gets a free Playstation
|
# ? Jul 1, 2020 20:08 |
|
A credit card disaster came in... Verifone had a partial gateway outage yesterday the only affected some accounts. For reasons yet unknown, at 3 of our store locations, for about an hour, the gateway told our POS that cards were approved. But then on the gateway side they all show declined, and it never actually passed them to the processor for authorization. The result of which we are out a few thousand dollars. Customers left with the merchandise, they were not charged for it, and we never got funded for it. Yay! Even better, since the transactions never made it to the processor, they can't even get the card numbers. The pads don't store the card info and the gateway doesn't either. Someone is going to pay damnit.
|
# ? Jul 1, 2020 20:19 |
|
stevewm posted:Someone is going to pay damnit. Indeed. It'll be retail worker hours getting cut and maybe raises getting denied.
|
# ? Jul 1, 2020 20:28 |
|
shortspecialbus posted:Indeed. It'll be retail worker hours getting cut and maybe raises getting denied. Nah we don't do that.. The company I work for is not your typical shitheel retailer. If anything, the COO will be having a conversation with our POS software company and either a payment or large support credit will be expected from them. After some investigation it is looking like they had not properly provisioned the pin pads at those 3 locations and a feature called "Store and Forward" was enabled. If the pad cannot contact the gateway, it holds the transaction and attempts to approve it later. But the POS software is not coded to handle this situation and it apparently sees this as a standard approval.
|
# ? Jul 1, 2020 20:53 |
|
Seems pretty clear cut at that point.
|
# ? Jul 1, 2020 21:06 |
|
shortspecialbus posted:Indeed. It'll be retail worker hours getting cut and maybe raises getting denied. Haha you think retail workers get raises. At my only retail gig I lasted more than a year, my yearly raise was a dime. I laughed in my bosses face.
|
# ? Jul 2, 2020 02:09 |
|
Renegret posted:Haha you think retail workers get raises. My point was that 99% of the time when this sort of thing happens, it's the retail workers that get hosed. And I didn't say they'd be good raises, the "dime" would qualify (and matches a grocery store raise I got back in 1997, ironically)
|
# ? Jul 2, 2020 12:43 |
SlowBloke posted:Azure/AWS engineering is not a common sight for small to midsize business, the most cloud you are going to see there is office365/google cloud service management, aws/azure are expensive so you are likely to see it mass deployed in bigger firms(or fat stacks startups). I mostly get involved in midsized SMB so it's usually VMware hosts running vms for weird software while general purpose services (email/intranet/etc.) are outsourced to microsoft/google. It honestly depends on how you want to end up, i honestly prefer smaller firms, less cash but you feel less of a unnamed cog. Being an unnamed cog with lots of cash and a fairly lovely boss, I'm hoping for a transfer in Sep/Oct once the hiring freeze is supposedly over. At that point I'd be doing Azure operations as an unnamed cog with hopefully the same cash but a boss that isn't lovely. My fallback was to hopefully be doing some chunk of Azure (because ~*~the cloud~*~) with normal on-prem engineering or sysadmin. Doing nothing but engineering here is a mix of: 1) basically waiting for my boss to tell me what we're supposed to be working on, I write documentation for it, and we never actually do anything to set it up 1a) my boss asking me what we should be doing in Azure and me asking what the business is trying to accomplish, and him not knowing so we just defer to our Microsoft technician assigned to us 2) me trying and failing to do IaC based on fairly complex internally developed Powershell deployment scripts that rely on variables from script to template and vice versa 2a) the Azure architect who built said scripts having to walk me through the process of doing this so it's all code from start to finish - nice guy but I'm sure he has better things to do 3) sitting in meetings with our information security people about fixing stuff on our logging platform, which I have no control over and the logging platform people blame Azure on, wherein I point out how Azure is working properly and I gave them X or Y info to look into on the logging platform 4) periods of blessed inactivity At least as a sysadmin there's slightly more Stuff to Do. Things break, gotta fix 'em. I'm not sure if the big place I work for just has an odd definition of Azure engineering or if I'm drastically underqualified, but either way it's put a bad taste in my mouth. I wanna go back to being reactive and fixing poo poo more than proactive and writing about poo poo to be built, even if it means a lower title, but man this salary is good.
|
|
# ? Jul 2, 2020 14:42 |
|
That sounds depressingly like a lot of jobs I've come to realise are best described as a "more senior role". Lots of drawing manager porn, very little touching computers.
|
# ? Jul 2, 2020 14:56 |
|
When I worked retail we only got pittances for raises and got increasingly ridiculous shifts as the idea seemed to be to churn through unskilled, low paid labor. Only managers and shift leads seemed to be valuable for retention.
|
# ? Jul 2, 2020 15:23 |
Arquinsiel posted:That sounds depressingly like a lot of jobs I've come to realise are best described as a "more senior role". Lots of drawing manager porn, very little touching computers. The lovely part here is that "touching computers" is "write code". It makes sense that they want to do IaC, it's just not easy for me to grasp all the complex inter-relationships of passing variables and complex loops. I'm trying to motivate myself to do a Coursera course on the basics of programming in order to get familiar with how to do all the logic of coding, but it's tough to stay motivated. I can do basic Powershell and sorta cobble together intermediate Powershell, but it's really starting to feel like the line between computer toucher and coder gets sharper as the environment gets larger in size. It makes sense, it just sucks and I'm starting to confront the possibility that I may have peaked in my last job, which was a hybrid of Azure and conventional sysadmin. The "engineering" was basically building stuff in Azure to fix or support the code in production. It's tough to reconcile "this is my skill set, it's what I'm good at, and I can probably continue to develop it" with the conventional IT attitude of "everything you knew last week is obsolete now, if you don't do this new technology you will be taken out back and shot".
|
|
# ? Jul 2, 2020 15:50 |
|
Even DBAs and devs I've gotten to know seem to end up having most of their work be writing essays on kanban boards and having meetings about timetables as they go up in seniority. If you're not doing work you enjoy then that's a good argument to stop getting more senior in that direction anyway, so definitely investigate a move.
|
# ? Jul 2, 2020 16:11 |
|
MJP posted:The lovely part here is that "touching computers" is "write code". It makes sense that they want to do IaC, it's just not easy for me to grasp all the complex inter-relationships of passing variables and complex loops. I'm trying to motivate myself to do a Coursera course on the basics of programming in order to get familiar with how to do all the logic of coding, but it's tough to stay motivated. I can do basic Powershell and sorta cobble together intermediate Powershell, but it's really starting to feel like the line between computer toucher and coder gets sharper as the environment gets larger in size. Yeah, get more familiar with programming structures, source control, automation, IaC, configuration management, CI/CD and a whole host of other things that many people here can write about in great detail if you have more questions or are struggling with any specific concepts. “Traditional” sysadmin work is slowly devolving and all the interesting and high paying work is going to involve more and more code. For better or worse. Pivot to devops, the waters fine.
|
# ? Jul 2, 2020 16:16 |
The Fool posted:Yeah, get more familiar with programming structures, source control, automation, IaC, configuration management, CI/CD and a whole host of other things that many people here can write about in great detail if you have more questions or are struggling with any specific concepts. The worst part is that separately, I understand these at a jack-of-all-trades level. I've worked with them all at least for enough to kinda get what they are. We just have so much of it mashed together at this job, and all of it assumes that we know all other aspects well enough to write some complex poo poo. I can read through the complex poo poo and get it, it's just that I can't create it without great difficulty. It's kinda like how I can probably speak a tiny bit of Spanish in broken phrases, and the tenses/gender of the nouns will probably be wrong, but I can get my point across to someone. Getting it fluent? Another story.
|
|
# ? Jul 2, 2020 16:39 |
|
So a Facebook message came in: The company I worked for that was the source of all my posts here a few years ago. They just got eaten by a generalized service provider.
|
# ? Jul 2, 2020 20:44 |
|
My employer does very little automation, but I've been consuming a lot of training on the subject on Pluralsight since it's regarded as the way of the future. I am extremely dissatisfied with the focus areas of the stuff I'm watching. I have some programming background, but not a ton, although I have far more than any of my coworkers, who are mostly of the "have problem, follow this process" type. I am reasonably competent at basic coding logic, but I have basically no experience working in this way. Most of the training on Pluralsight is by the same guy, and he seems to come at it from the perspective of a programmer who needs to learn network stuff, instead of a network guy who needs to learn programming stuff. Can anyone recommend better resources for this? I understand the basic concepts of having structured data in a file that can be read and parsed for the particulars, but if I had to create that file from scratch and then write code to apply it, I'd be struggling.
guppy fucked around with this message at 11:29 on Jul 3, 2020 |
# ? Jul 3, 2020 11:26 |
|
It really depends on which toolset you want to learn. I'm a big fan of Ansible, so I'll suggest you look at Red Hat's free training, which is pretty good and built for sysadmins to learn. Linux Academy also has some good training on Ansible, but it's still kinda DevOps focused. I think they've got all the big Automation toolsets as well, Puppet, Chef, Salt, etc.
|
# ? Jul 3, 2020 14:20 |
|
The UKs largest mobile carrier has finally stopped using IP addresses from the 19.0.0.0/8 allocation for their CGNAT implementation
|
# ? Jul 3, 2020 22:55 |
|
Thanks Ants posted:The UKs largest mobile carrier has finally stopped using IP addresses from the 19.0.0.0/8 allocation for their CGNAT implementation why would people from the UK care about ford?
|
# ? Jul 4, 2020 00:52 |
|
Ford used to have factories all over. I was amused to learn that a bunch of custom armoured cars were made for the Irish army down by my dad's hometown in the 50's and 60's.
|
# ? Jul 4, 2020 01:24 |
|
An IT Saga, in three acts plus a coda. Act I: All, During the stepdown of the LAX datacenter, an unauthorized USB Mass Storage Device ("thumbdrive") was found plugged into a server. This is a critical security violation and can have consequences up to and including termination. All of you know better. The offending device has been destroyed. - Mitch Act II: Update! The following 47 servers have passed the scream test and will be removed from LAX-DC-01 by 2020-05-31, with secure wipe and e-waste/recycling to follow by 2020-06-30: Act III: Hi (warlock) Hate to bug you on the holiday weekend, but my (mumble) software is giving a strange error, see screenshot. ("Licensing server not found on network, 28 day grace period expired.") Coda: > Hi Mitch > About this unauthorized thumbdrive that was found in LAX DC, did it possibly look like this? (Attached image of multi-thousand dollar USB license dongle) (warlock), As you know, attaching unauthorized USB Mass Storage Devices ("thumbdrives") to a (Company) computer is a critical security violation and grounds for possible termination. Expect further communication on this matter through your supervisor and/or HR. Your device has been destroyed and will not be returned.
|
# ? Jul 6, 2020 17:07 |
|
lol what made him think the USB was "unauthorized" in the first place? Just the fact that there was a usb drive plugged into a server and therefore "it must be hackers"?
|
# ? Jul 6, 2020 17:14 |
|
So Mitch is doubling down on the USB device that was unplugged and destroyed not realizing it was a licensing dongle and likely business critical?
|
# ? Jul 6, 2020 17:16 |
|
kensei posted:So Mitch is doubling down on the USB device that was unplugged and destroyed not realizing it was a licensing dongle and likely business critical? and it sounds like is going to be trying to get someone fired over it!
|
# ? Jul 6, 2020 17:18 |
|
Oh god, this is hilarious. Please, please, please update us with Act IV Pleeeease. E: I love the 'your device' in the coda. Moo the cow fucked around with this message at 17:28 on Jul 6, 2020 |
# ? Jul 6, 2020 17:25 |
It uh, sounds like sfwarlock is the one who's going to end up eating poo poo for this? That Act IV might really suck
|
|
# ? Jul 6, 2020 17:37 |
|
Data Graham posted:It uh, sounds like sfwarlock is the one who's going to end up eating poo poo for this? That Act IV might really suck All the scary-sounding emails are coming from Mitch, the guy who acted unilaterally in destroying critical equipment. A manager's going to take one look at the situation and realize the "unauthorized" USB stick wasn't unauthorized at all, and that this idiot hosed up. Badly. I wouldn't worry too hard about sfwarlock.
|
# ? Jul 6, 2020 17:50 |
|
capitalcomma posted:All the scary-sounding emails are coming from Mitch, the guy who acted unilaterally in destroying critical equipment. A manager's going to take one look at the situation and realize the "unauthorized" USB stick wasn't unauthorized at all, and that this idiot hosed up. Badly. yeah, the USB stick that was destroy cost *thousands*. it wasn't a 10 dollar jump drive. it probably wouldn't be a thing if Mitch weren't trying to make it a thing, tho, which is why I think its so funny
|
# ? Jul 6, 2020 17:58 |
|
Act IV FWD: Security Breach in LAX-DC-01 To: (bunches of people, including CIO, Director of IT, and my boss) > During the stepdown of the LAX datacenter, an unauthorized USB Mass Storage Device ("thumbdrive") was found plugged into a server. He actually emailed in to ask if we'd seen it! > ---------- Forwarded message --------- > From: (warlock) > About this unauthorized thumbdrive that was found in LAX DC, did it possibly look like this? WE GOT HIM. - Mitch
|
# ? Jul 6, 2020 18:04 |
|
So Mitch won’t realize his mistake until Act VII ?
|
# ? Jul 6, 2020 18:12 |
|
Gonna be a lovely set of meetings with a smug Mitch who destroyed the authorized not-a-thumbdrive.
|
# ? Jul 6, 2020 18:15 |
|
Wait what, they copied you in on their gloating email? Or have you got someone on the security team laughing along with you?
|
# ? Jul 6, 2020 18:22 |
|
^^^^^ It sounds like Mitch gleefully emailed a shitload of higher-ups to crow about how sfwarlock was so stupid he emailed in to ask about his "unauthorized jumpdrive" - haha what an idiot, breaking security and outing himself at the same time! But one of the people was warlock's boss, who presumably showed warlock the email. Dammit why did I have to check this thread in the middle. I MUST KNOW WHAT HAPPENS NEXT.
|
# ? Jul 6, 2020 18:26 |
|
So they're decommissioning 47 servers. One of those servers had a business-critical USB licensing dongle/stick on it. Was the dongle not listed in the server inventory database? If it wasn't listed, was the dongle actually authorized? It's possible that the dongle is both business critical and unauthorized, if the proper approvals weren't given for an exception to the "no USB devices" rule before plugging in the USB licensing dongle. If the dongle was listed in the inventory database, you would assume that the database would alert that the USB licensing dongle would no longer be connected when the server it's attached to was decommissioned. But if it wasn't listed, then you get the "hey my licensed software stopped working for some strange reason" email.
Craptacular fucked around with this message at 18:29 on Jul 6, 2020 |
# ? Jul 6, 2020 18:26 |
|
|
# ? Jul 6, 2020 18:28 |
|
This is 'Dear Penthouse' for the tech world.
|
# ? Jul 6, 2020 18:30 |
|
|
# ? May 30, 2024 14:00 |
|
Please tell me this was one of the licensing dongles that also has their exact purpose printed on them + serial no, making it really hard to mistake them for flash drives if you take a second to look at them.
|
# ? Jul 6, 2020 18:41 |