|
Are you worried about someone using it to try and hack your network, or are you worried about someone coming along and hooking it up to a car battery?
|
# ? Jun 9, 2016 11:02 |
|
|
# ? Jun 6, 2024 22:46 |
|
spankmeister posted:Switch> enable heh we're currently running on a clusterfuck of unmanaged switches plugged one into the other, so that's not possible, but i'll add it on the top of the list of why we should upgrade our poo poo Jabor posted:Are you worried about someone using it to try and hack your network, or are you worried about someone coming along and hooking it up to a car battery? bit of both? there's just no reason to leave that kind of stuff accessible except trying to save
|
# ? Jun 9, 2016 11:37 |
|
another quickie for this morning, i need to install a linux to run some internal stuff (namely self-hosted jira & git) and i was wondering what the better distro choices were from an itsec point of view i know ubuntu gets knocked a lot since it's downstream from updates, but since this isn't going to be an outward facing machine, does it really change anything?
|
# ? Jun 9, 2016 12:47 |
|
surebet posted:heh we're currently running on a clusterfuck of unmanaged switches plugged one into the other, so that's not possible, but i'll add it on the top of the list of why we should upgrade our poo poo you don't happen to work for a bangladeshi bank do you?
|
# ? Jun 9, 2016 13:01 |
|
surebet posted:another quickie for this morning, i need to install a linux to run some internal stuff (namely self-hosted jira & git) and i was wondering what the better distro choices were from an itsec point of view Use CentOS 7.
|
# ? Jun 9, 2016 13:01 |
|
a cry for help
|
# ? Jun 9, 2016 13:08 |
|
surebet posted:heh we're currently running on a clusterfuck of unmanaged switches plugged one into the other, so that's not possible, but i'll add it on the top of the list of why we should upgrade our poo poo
|
# ? Jun 9, 2016 13:19 |
|
unpatch the port when you aren't using it. having something still electrically connected to the switch and terminating outside the building would make me a bit nervous. also put it in a lockable cabinet.
|
# ? Jun 9, 2016 13:51 |
|
now let's see how long they last in this underwater microwave
|
# ? Jun 9, 2016 13:57 |
|
Shaggar posted:LaGuardia is a litterall dump. like literrally litterall. theres trash everywhere and it stinks. my last laguardia experience was being trapped in a terminal with no bar with a malfunctioning fire alarm after hard partying the previous night/morning
|
# ? Jun 9, 2016 16:28 |
|
spankmeister posted:Use CentOS 7. the effort RH put into selinux configs for all rpms puts it far ahead of any other distro atm unless you really like janitoring OSes more than you have to Bhodi fucked around with this message at 16:47 on Jun 9, 2016 |
# ? Jun 9, 2016 16:45 |
|
Bhodi posted:this. most supported, comes otb with selinux enabled and supported on all base rpms, fastest to get patches, just works.
|
# ? Jun 9, 2016 17:19 |
|
centos' ancient packages are too much of a hassle. is there a reason to not just use fedora server instead?
|
# ? Jun 9, 2016 18:14 |
|
We got some Shade/Troldesh variant ransomeware here which locked up ~10% of our fileserver here. Can't wait to find out who executed it and through what venue.
|
# ? Jun 9, 2016 18:23 |
|
https://www.secureworks.com/blog/malware-lingers-with-bits Intersting use of BITS quote:The poisoned BITS tasks, which created installation and clean-up scripts after their payloads were downloaded, were self-contained in the BITS job database, with no files or registry modifications to detect on the host.
|
# ? Jun 9, 2016 18:30 |
|
apseudonym posted:Sandboxes are the long term solution, but cludging it onto to OSes that werent designed with sandboxing in mind dont go great and most sandbox products are poo poo and AV levels of lies. windows does have sorta-sandboxing with integrity levels and even better isolation with the app model but nobody uses it right so ohwell
|
# ? Jun 9, 2016 18:44 |
|
graph posted:my last laguardia experience was being trapped in a terminal with no bar with a malfunctioning fire alarm after hard partying the previous night/morning so i'm guessing you've got some great suggestions on good corners to curl up and die in in LGA?
|
# ? Jun 9, 2016 19:23 |
|
ultramiraculous posted:so i'm guessing you've got some great suggestions on good corners to curl up and die in in LGA? there was nowhere to go. i had only sunglasses and wadded up paper towel earplugs from the restroom
|
# ? Jun 9, 2016 19:28 |
|
Shinku ABOOKEN posted:centos' ancient packages are too much of a hassle. is there a reason to not just use fedora server instead? The gently caress? What packages are you needing specifically that a new version would work better than a older version + security updates?
|
# ? Jun 9, 2016 19:29 |
|
spankmeister posted:you don't happen to work for a bangladeshi bank do you?
|
# ? Jun 9, 2016 19:33 |
|
ratbert90 posted:The gently caress? What packages are you needing specifically that a new version would work better than a older version + security updates? the version of git that comes with centos is so old it that some golang dependancy downloads break because it can't handle redirects properly
|
# ? Jun 9, 2016 19:34 |
|
you should still use centos though
|
# ? Jun 9, 2016 19:34 |
|
jre posted:the version of git that comes with centos is so old it that some golang dependancy downloads break because it can't handle redirects properly
|
# ? Jun 9, 2016 19:38 |
|
Shinku ABOOKEN posted:centos' ancient packages are too much of a hassle. is there a reason to not just use fedora server instead? yeah it's supported for many years whereas with fedora you have to upgrade the os every year or two.
|
# ? Jun 9, 2016 19:40 |
|
jre posted:you should still use centos though if it prevents you from using golandg, all the better
|
# ? Jun 9, 2016 19:41 |
|
What's the best alternative to PHP7? As far as I can tell, for authentication/sql support I can't find much.
|
# ? Jun 9, 2016 19:44 |
|
On centos and redhat you can install a newer version of git and a lot of other things like newer python or apache for example with the software collections
|
# ? Jun 9, 2016 19:45 |
|
ratbert90 posted:What's the best alternative to PHP7? As far as I can tell, for authentication/sql support I can't find much. not using php at all
|
# ? Jun 9, 2016 19:56 |
|
ratbert90 posted:What's the best alternative to PHP7? As far as I can tell, for authentication/sql support I can't find much. flask?
|
# ? Jun 9, 2016 20:09 |
|
ratbert90 posted:What's the best alternative to PHP7? As far as I can tell, for authentication/sql support I can't find much. flask
|
# ? Jun 9, 2016 20:20 |
|
fritz posted:if it prevents you from using golandg, all the better hmm, this opinion is wrong. OSI bean dip posted:flask This is an example of a "correct opinion"
|
# ? Jun 9, 2016 20:23 |
|
http://www.ucalgary.ca/utoday/issue/2016-06-08/university-calgary-makes-significant-progress-address-systems-issues UC got ransomwared quote:As has been communicated over the past 10 days, the University of Calgary experienced a cyberattack that impacted its systems. This attack is part of a disturbing global trend of highly sophisticated and malicious malware attacks against organizations including NASA, law enforcement agencies and large health-care institutions. UCalgary IT teams have been working around the clock to address systems issues caused by the attack, and regular updates have been provided to the campus community. but it's ok because it also happens to NASA.
|
# ? Jun 9, 2016 20:24 |
|
fritz posted:if it prevents you from using golandg, all the better go is ok even tho the standard lib fokls are really rigid about what they put in meaning a lot of basic stuff doesn't exist because its "easy to implement yourself!"
|
# ? Jun 9, 2016 20:35 |
|
pr0zac posted:go is ok even tho the standard lib fokls are really rigid about what they put in meaning a lot of basic stuff doesn't exist because its "easy to implement yourself!" also i guess how super annoying implementing things modularly is
|
# ? Jun 9, 2016 20:37 |
|
pr0zac posted:also i guess how super annoying implementing things modularly is and the lack of generics and large amount of unnecessary boilerplate too i guess and the annoyances of dependency management ok yeah golang is bad
|
# ? Jun 9, 2016 20:38 |
|
pr0zac posted:go is ok even tho the standard lib fokls are really rigid about what they put in meaning a lot of basic stuff doesn't exist because its "easy to implement yourself!" the dependancy management
|
# ? Jun 9, 2016 20:42 |
|
nodejs comes to the rescue with handy modules like left-pad
|
# ? Jun 9, 2016 20:45 |
|
jre posted:the dependancy management this is the only legit complaint brought up, imo. everything else comes down to "modern object oriented programming has broken your brain" I started using Go to replace lovely bash scripts and to write simple services to help facilitate automation and my whole team has jumped on board because it's so easy to pick up. Since these are mostly tools for automation that are highly specific to our lab environment the dependency management doesn't really become an issue for us. e: while vendoring isn't perfect it closes some of the gap
|
# ? Jun 9, 2016 20:46 |
|
I've never used go in seriousness, what's wrong with its dependency management
|
# ? Jun 9, 2016 21:53 |
|
|
# ? Jun 6, 2024 22:46 |
|
https://twitter.com/redteamwrangler/status/741011979809132544 so that's three kickstarters i've ruined
|
# ? Jun 9, 2016 22:01 |