|
From the AMD thread,repiv posted:https://www.youtube.com/watch?v=UMzXMvOaTZk skip the video to the two minute mark unless you like cringe
|
# ? Oct 19, 2017 00:55 |
|
|
# ? May 19, 2024 12:56 |
|
Not a secfuck yet but...quote:GE and Apple announced a partnership today that will pave the way for putting utility analytics software Predix on iOS devices. The Predix software development kit will allow 77 utilities that work with GE to manage turbines, condensers, boiler feed pumps, and more from iPads and iPhones. https://arstechnica.com/information-technology/2017/10/apple-and-ge-partner-to-make-industrial-analytics-ios-accessible/
|
# ? Oct 19, 2017 02:14 |
|
nice of them to announce it before the software dicks us
|
# ? Oct 19, 2017 02:23 |
|
McGlockenshire posted:From the AMD thread, ok wait why does this guy think a hardcoded username/password is bad (true), but an "oh you've never logged in before, what do you want your password to be" is good, or better it took him digging through services.msc to figure out that apache was installed despite later acknowledging that he had to click through an "apache web server wants access to the firewall" prompt? anthonypants fucked around with this message at 03:34 on Oct 19, 2017 |
# ? Oct 19, 2017 03:26 |
|
shipping a local config tool in php is hilarious and running apache as system to make it possible is even better. amd drivers were always bad but this is just on another level
|
# ? Oct 19, 2017 09:17 |
|
its high performance art
|
# ? Oct 19, 2017 10:54 |
|
scottch posted:im security for a university and yeah, gently caress this poo poo forever and ever. new director/cio are changing some of that culture but ugh its such a poo poo show. rip me. Ours was terrible and denied all requests for changes we needed because "security". So every department had their own IT / hax so that they could get research done. The new team are more permissive, work with you to find good solutions to problems and are ripping all the old poo poo down and replacing it with managed stuff that works better and is more secure. It owns.
|
# ? Oct 19, 2017 11:20 |
|
good security teams help with the how part instead of being stuck in the infantile “no” phase of their lives. and that’s why security teams still have a hard time getting poo poo done of keeping control I’m angry at companies stuck in that mode. thanks for reading I guess
|
# ? Oct 19, 2017 11:26 |
|
Shinku ABOOKEN posted:its high performance art
|
# ? Oct 19, 2017 11:33 |
|
abigserve posted:I told the last place I worked to implement a pppoe setup for the dorms so the students could simply bring their own routers in and we wouldn't have to worry about huge wifi deployments, but it was shafted as too expensive We moved to the hospitality approach of a small low power 802.11ac AP in more or less every other dorm room. For a while since the students bought routers anyways it was arguable that letting them do that worked better than our earlier deployment we let it go. But now with large channel widths and every other student going Tim taylor and ramping the power up - the 'secfuck' is they basically ddos the spectrum in their own building. Oops.
|
# ? Oct 19, 2017 11:51 |
|
Partycat posted:We moved to the hospitality approach of a small low power 802.11ac AP in more or less every other dorm room. yeah we had that same problem as well, but to me I'm like you're all living together so either co-operate or use the wired ports on ya routers yo the small ac jobs in every room is the way to go though if you want to run it as an enterprise deployment, but she's fuckin exxy and then you gotta deal with CALL#66642069: Wireless Is Slow On Student Laptop
|
# ? Oct 19, 2017 13:26 |
|
Rumor is Kaspersky is bleeding employees ahead of expected layoffs.
|
# ? Oct 19, 2017 13:36 |
|
yoloer420 posted:Ours was terrible and denied all requests for changes we needed because "security". So every department had their own IT / hax so that they could get research done. we're in a similar position, all managed gear and we generally work with people to get they poo poo working as long as its a reasonable request. we still va the hell out of everything, it just takes a long rear end time because besides me, i've got one coworker. working on that part too but isnt easy when the salary isnt very competitive. the silo problem is real loving lovely though. we're about halfway through a multiyear project to just get everything on the same drat domain. i hate to say it, but for workstation management and monitoring, mcafee is the only tool that weve managed to get campus wide installation of and their HIPS product isnt half bad for monitoring if you get creative with it.
|
# ? Oct 19, 2017 13:55 |
|
CommieGIR posted:Rumor is Kaspersky is bleeding employees ahead of expected layoffs. if you're good at photoshopping people out of employee group photos, your job's probably safe
|
# ? Oct 19, 2017 14:12 |
|
flakeloaf posted:if you're good at photoshopping people out of employee group photos, your job's probably safe
|
# ? Oct 19, 2017 14:29 |
|
Maximum Leader posted:shipping a local config tool in php is hilarious and running apache as system to make it possible is even better. amd drivers were always bad but this is just on another level Didn't nVidia do exactly the same thing back in the nForce chipset days? IIRC it was for a claimed "hardware firewall" which was about as much actual hardware as this RAID is.
|
# ? Oct 19, 2017 14:43 |
|
flakeloaf posted:if you're good at photoshopping people out of employee group photos, your job's probably safe
|
# ? Oct 19, 2017 15:04 |
|
flakeloaf posted:if you're good at photoshopping people out of employee group photos, your job's probably safe
|
# ? Oct 19, 2017 15:22 |
|
yes that is the joke
|
# ? Oct 19, 2017 15:23 |
Just-In-Timeberlake posted:yes that is the joke now do the same, but social media and government records too
|
|
# ? Oct 19, 2017 15:35 |
|
M_Gargantua posted:now do the same, but social media and government records too wasnt this the plot of catwoman?
|
# ? Oct 19, 2017 15:42 |
|
M_Gargantua posted:now do the same, but social media and government records too And then you could get a job doing it, at the big new windowless building down in the city centre.
|
# ? Oct 19, 2017 15:43 |
|
Shinku ABOOKEN posted:wasnt this the plot of catwoman? The third Nolan Batman film.
|
# ? Oct 19, 2017 15:52 |
|
wahey https://twitter.com/letsencrypt/status/921036474811912192
|
# ? Oct 19, 2017 16:50 |
|
Wildcard certificates are bad
|
# ? Oct 19, 2017 16:52 |
spankmeister posted:Wildcard certificates are bad
|
|
# ? Oct 19, 2017 16:53 |
|
https://media.giphy.com/media/7yTqXVALy7Fwk/giphy.mp4
|
# ? Oct 19, 2017 16:56 |
|
for corporations sure, but what if i want to have ssl on my lovely personal website with some subdomains like blog or portfolio or whatever and not have to manage multiple certs
|
# ? Oct 19, 2017 16:57 |
|
Jewel posted:for corporations sure, but what if i want to have ssl on my lovely personal website with some subdomains like blog or portfolio or whatever and not have to manage multiple certs use SAN's, which let's encrypt already supports
|
# ? Oct 19, 2017 17:00 |
|
the only legitimate reason to use a wildcard is if you have dynamic subdomains and if you have those you're probably a massive content provider anyway e: or i guess if it's a private wildcard you just use for internal testing / validation or something like that i guess
|
# ? Oct 19, 2017 17:01 |
|
god i so so hope that the kaspersky bullshit doesn’t mean the fsb have infiltrated jetbrains too
|
# ? Oct 19, 2017 17:01 |
|
Jewel posted:for corporations sure, but what if i want to have ssl on my lovely personal website with some subdomains like blog or portfolio or whatever and not have to manage multiple certs You manage multiple domains in one cert
|
# ? Oct 19, 2017 17:13 |
|
fwiw i dont know anything about certs or websites i am but a simple game engine programmer but it's neat to learn about stuff like that from this thread! idk why so many replies to that tweet are so happy then unless they're as uninformed as me while also actually owning a website in which case,
|
# ? Oct 19, 2017 17:20 |
|
Jewel posted:fwiw i dont know anything about certs or websites i am but a simple game engine programmer but it's neat to learn about stuff like that from this thread! idk why so many replies to that tweet are so happy then unless they're as uninformed as me while also actually owning a website in which case, wildcard certs are super duper easy because they don't require you to do all the hard work of actually managing which subdomains are valid, or generating unique private keys for each server if they're physically separate - you can just copy the wildcard to whatever, wherever, and forget about it it's the "step 1: disable SELinux" of certs
|
# ? Oct 19, 2017 17:50 |
|
ate all the Oreos posted:the only legitimate reason to use a wildcard is if you have dynamic subdomains and if you have those you're probably a massive content provider anyway We are minimizing the risk by using separate domains for each cluster. An attacker who somehow got ahold of a given cert would only be able to spoof the same machines they've apparently already managed to breach in the first place.
|
# ? Oct 19, 2017 17:56 |
|
ate all the Oreos posted:wildcard certs are super duper easy because they don't require you to do all the hard work of actually managing which subdomains are valid, or generating unique private keys for each server if they're physically separate - you can just copy the wildcard to whatever, wherever, and forget about it If you're worried about sharing private keys between servers a wildcard cert is exactly not what you want
|
# ? Oct 19, 2017 18:07 |
|
exactly, he's being sarcastic
|
# ? Oct 19, 2017 18:16 |
|
dynamic subdomains are a cheap and easy way to make customers feel valued and wildcard certs are an important part of the sustainability of that
|
# ? Oct 19, 2017 18:23 |
|
anytime someone says "disable selinux" i immediately stop listening to whatever they're saying. "im afraid/unwilling to learn the tools" is a pretty big indicator that you're a loving moron
|
# ? Oct 19, 2017 18:30 |
|
|
# ? May 19, 2024 12:56 |
|
Cocoa Crispies posted:dynamic subdomains are a cheap and easy way to make customers feel valued and wildcard certs are an important part of the sustainability of that can't you just automate the creation of new certs via lets encrypt? or are you unwilling to allocate IPs to each subdomain?
|
# ? Oct 19, 2017 18:30 |