Fil5000 posted:I find it weird that I seem to be the only person I know who uses Shift-Delete/Ctrl-Insert/Shift-Insert for cut/copy/paste. Was there some point where those were the only way of doing cut/copy/paste or something because I can't think why I do that instead of Ctrl-X/C/V. The Delete/Insert combinations are IBM CUA conventions, while the Ctrl-X/C/V keys come from Mac. I'm not sure why Microsoft started promoting the latter as the main hotkeys for cut/copy/paste, I think the CUA ones were in use from an earlier point. It probably has something to do with the rise of MS Office.
|
|
# ? Nov 21, 2019 13:21 |
|
|
# ? May 28, 2024 01:18 |
|
GnarlyCharlie4u posted:That's an old pic, so it's not my current setup but... Those Teac units are nice looking. How many millions of $ do they cost?
|
# ? Nov 21, 2019 14:50 |
nielsm posted:The Delete/Insert combinations are IBM CUA conventions, while the Ctrl-X/C/V keys come from Mac. I'm not sure why Microsoft started promoting the latter as the main hotkeys for cut/copy/paste, I think the CUA ones were in use from an earlier point. It probably has something to do with the rise of MS Office.
|
|
# ? Nov 21, 2019 15:26 |
|
D. Ebdrup posted:It would be Cmd-X/C/V on Mac, wouldn't it? Yup, but cmd on mac and ctrl on PC are essentially the same key in most cross platform applications.
|
# ? Nov 21, 2019 16:31 |
|
We've got a new guy at work and one of his job functions is to drive the laptop that is connected to the projector at the 9am meeting, where he's supposed to fill out an xls with data each department provides at the meeting. He's never used Excel before and it's loving killing me. It's obviously also killing about 80% of the rest of the room to the point he's getting a lot of back seat driving and I feel so bad for him lol.
|
# ? Nov 22, 2019 02:13 |
|
Arquinsiel posted:I've generally found Nessus to be a little bit less specific than Qualys anyway. This would likely be a unique finding for every instance of a vulnerable .exe in Qualys. Obviously I can't say for certain without seeing the scan, but I have access to both and I know which one I use. Not inaccurate. We're dealing with a bunch of false positive and "weird positives," like Nessus flagging some DLL for existing without some KB or another, but it turns out the KB was superseded, or it'll flag something like a .NET vuln when it's an ADK that needs to be updated...it's all a mess. Users are getting nag emails, can't remediate on their own because it's confusing, so their manager gets a nastygram that their report isn't up to security standards, tempers are flaring, tickets to the help desk are taking forever to close, the usual. I've got a bunch of overarching fixes I can push out, but since the new patching team is getting told to JUST DO THE NEEDFUL, they're pushing poo poo out without testing and it's absolute murder. Our marketing team is about to head into the busiest part of their year and patching just took out pretty much all of their devs for 3-4 days. Never mind draining the entire Windows eng team and most of the infra support teams trying to unfuck everything. The thinnest of silver linings is that if this had gone out a week later, we'd have been in Thanksgiving week, and that would have been turbofuckery.
|
# ? Nov 22, 2019 03:36 |
|
Dirt Road Junglist posted:The thinnest of silver linings is that if this had gone out a week later, we'd have been in Thanksgiving week, and that would have been turbofuckery. Sorry boss, I currently have half a turkey and a quart of hot cider in me, can't come in for at least two days. In-laws are in town too, and I'm obligated to show them around town. Wish I could help, sorry.
|
# ? Nov 22, 2019 03:56 |
|
Dirt Road Junglist posted:
... haha.. HAHAHAHAHAHAHA. I got a friend learning security and I told her if she can get the technology part actually down she'll be ahead of most of her peers by far.
|
# ? Nov 22, 2019 04:56 |
|
Dirt Road Junglist posted:Use icacls to Deny all permissions to Everyone, Authenticated Users, Domain Users, and Users. That's amazing. It's beautiful. It may be the third dumbest thing I've heard this year. Honestly, I think I'd just declare those machines perma-hosed, and reimage them. You'll probably have weird failure and errors for months. So where can I submit my resume to replace at least one person that approved this?
|
# ? Nov 22, 2019 05:31 |
|
LethalGeek posted:... haha.. HAHAHAHAHAHAHA.
|
# ? Nov 22, 2019 11:38 |
|
Here's a good one I spent this week working on. Okay so a specific DHCP has been filling up with BAD_ADDRESS entries. Hundreds of them. If you delete them, they come back in an hour. The MAC address in DHCP is 8 characters. Ya'll have any idea what this could be? Here's a hint the DHCP range is for an SSID
|
# ? Nov 22, 2019 15:33 |
|
Wifi printer with built-in DHCP server?
|
# ? Nov 22, 2019 15:55 |
|
Malfunctioning IOT device. That our company makes. That has buggy as gently caress firmware. That required me to dig through the god drat ARP table to find out what the gently caress. It ended up being a half dozen of these devices. Thankfully we have an SSID just for IOT devices.
|
# ? Nov 22, 2019 15:59 |
Someone needs to invent etherjacking for wifi, so that IoT devices can be subjected to it.
|
|
# ? Nov 22, 2019 16:50 |
|
This'll do ya.
|
# ? Nov 22, 2019 16:53 |
|
D. Ebdrup posted:Someone needs to invent etherblasting for wifi, so that IoT devices can be subjected to it. ftfy
|
# ? Nov 22, 2019 16:54 |
|
Ghostnuke posted:Those Teac units are nice looking. How many millions of $ do they cost? I paid $420 for the AX-501 and $445 for the UD-501 So not an insignificant amount, but way less than MSRP. For the value of money / sound quality you can probably do just as well for a lot less but considering the aesthetics, and footprint (important for desktop use), it's really tough to beat. You could definitely do a lot worse though. Teac just released a new amp that I really want. The AP-505 but that's $1500 and isn't available in the US. You could also spend $1500 on an RME ADI-2 Pro DAC and still not even be in audiophile territory.
|
# ? Nov 22, 2019 17:16 |
|
D. Ebdrup posted:Someone needs to invent etherjacking for wifi, so that IoT devices can be subjected to it. Microwave?
|
# ? Nov 22, 2019 17:16 |
|
Arquinsiel posted:Tell her that literally everyone is winging it, and if she can google just fast enough to say what the result is before everyone else finds it they'll think she's magic. This. Being able to form a google query to get good answers to tech questions or issues quickly is a skill many people, even in IT, lack. Best course I ever took in college was Library Science. Seriously. 75% of the course was how to form exceptional search strings in Google.
|
# ? Nov 22, 2019 17:34 |
|
Someone needs to modify to be "test result: it was DNS"
|
# ? Nov 22, 2019 19:30 |
|
iospace posted:Someone needs to modify to be "test result: it was DNS" Srsly, that was the entire convo with one of my former teammates at work this morning. "This is gonna piss you off, but tl;dr, IT WAS DNS. SINCE FEBRUARY." Methylethylaldehyde posted:Sorry boss, I currently have half a turkey and a quart of hot cider in me, can't come in for at least two days. In-laws are in town too, and I'm obligated to show them around town. Wish I could help, sorry. I mean, that's the stunt one of the security teams pulled on Superbowl Sunday the year I had to unfuck a bunch of Hipchat-related vulns while on a mifi in a car being driven down I-5 between Seattle and Portland. PROTIP: If there's an incident, and you're insisting on using a video-can't-be-disabled chat client for your incident bridge when at least one of your engineers is ON A loving MIFI IN A MOVING VEHICLE...you're a goddamn monster and I'm glad you got fired. Arquinsiel posted:Tell her that literally everyone is winging it, and if she can google just fast enough to say what the result is before everyone else finds it they'll think she's magic. This. So hard. Learn how to look poo poo up turbo fast and you'll win at IT. Wizard of the Deep posted:That's amazing. It's beautiful. It may be the third dumbest thing I've heard this year. Third dumbest? Now I wanna hear numbers one and two. I did suggest reimaging, but a VP told me, "absolutely not an option." Technically, we don't have the resources what with most of the competent support folks manning the Cloud Prom in SF this week, so he's not entirely wrong. I just wish he'd stop telling me no every time I suggest reimaging for poo poo that obviously would be easier to deal with by reimaging. Dirt Road Junglist fucked around with this message at 19:39 on Nov 22, 2019 |
# ? Nov 22, 2019 19:33 |
|
Got a call that IT needs to assist in moving a few coworkers due to a sewage spill. Thank god I have an intern.
|
# ? Nov 22, 2019 20:22 |
|
Dirt Road Junglist posted:Third dumbest? Now I wanna hear numbers one and two. I did suggest reimaging, but a VP told me, "absolutely not an option." Technically, we don't have the resources what with most of the competent support folks manning the Cloud Prom in SF this week, so he's not entirely wrong. I just wish he'd stop telling me no every time I suggest reimaging for poo poo that obviously would be easier to deal with by reimaging. Do you have the sort of relationship where you could ask him, or get someone in your management chain to ask him, what they could do to increase his confidence in the imaging process?
|
# ? Nov 22, 2019 21:24 |
|
GreenNight posted:Here's a good one I spent this week working on. The DHCP client identifier does not have to be a MAC address. On ethernet networks it usually is, but it can technically be anything up to 16 octets as long as it is unique to that device within that network and does not change within the validity of the lease In my case it was a Cisco device trying to send a string that contained not just the MAC but also the hostname and interface as documented here: https://networklessons.com/cisco/ccie-routing-switching/cisco-ios-dhcp-client-identifier I had requested that a client's IT vendor give us some static reservations for some legacy equipment the client is still using and it wasn't working, we had some slightly heated back and forth about how hard it could be to enter a MAC address and an IP address before we figured out why their DHCP tables were getting filled up with apparent gibberish.
|
# ? Nov 22, 2019 22:05 |
|
Dirt Road Junglist posted:Third dumbest? Now I wanna hear numbers one and two. I did suggest reimaging, but a VP told me, "absolutely not an option." Technically, we don't have the resources what with most of the competent support folks manning the Cloud Prom in SF this week, so he's not entirely wrong. I just wish he'd stop telling me no every time I suggest reimaging for poo poo that obviously would be easier to deal with by reimaging. I didn't say they were technologically-related. I've just occasionally watched the news over the last six months. Seriously, how did this change happen? Why did someone not realize this was a terrible idea in a test environment? Why did nobody throw a flag on a change-control discussion? Why do security folks have the authority/power to make this change in the first place? The more I think about it, the more I hate literally every aspect of this trashfire.
|
# ? Nov 23, 2019 00:00 |
|
An email came in asking for my team to do more research on why people need VLC Media Player to play DVDs. I had to explain, in detail, that "video file on a DVD" doesn't mean it will play back automatically, that Windows Media Player may not support the video file type, and that Windows 10 requires you to pay $15 to purchase a Windows Store app to enable DVD playback at all.
|
# ? Nov 23, 2019 01:46 |
|
And playback through their app is absolutely not gonna be as good as VLC anyway. Least I'm assuming
|
# ? Nov 23, 2019 02:14 |
|
I actually came across a case last week where VLC had trouble handling an .mkv that Windows 10 player handled perfectly. Ditching VLC for the Windows player to watch anime felt so counterintuitive to everything teenage-me knew.
|
# ? Nov 23, 2019 02:20 |
|
A job offer came in ! I'm converting from an FTE of the MSP that supports hardware lifecycle and provides a few specialists, to an FTE of the host company. Counting only the better 401k matching and the "meets expectations"-bonus I am doubling my compensation. I am moving to a salaried exempt level that even California won't require OT for, so that's very nice. The downside ? For my sins I am now the tech lead for the 2657 miscellaneous PCs, some vendor supplied, most still on the decaying legacy domain that research uses, plus I don't know how many GxP validated systems in QC and Manufacturing. The only good news about the environment is that we've spent the last year whipping the PCs into shape, some of the Win7 Pro machines are receiving their very first MS security patches tonight ! The validated systems are fun. To validate a backup script for them takes 10 pages on actual paper, 16 initials, 3 signatures, a counter-signature, a hard copy of the script, and a screenshot showing the relevant folders on the server. The FDA might audit this paperwork. Technically, if I gently caress up the data integrity chain, the FDA can fine us, shut down production lines, or order product destroyed or recalled. The paperwork for setting up a system is longer and more likely to actually be audited. When we do have the FDA (or another country's equivalent) on-site I will be on call to answer questions. No pressure. mllaneza fucked around with this message at 04:32 on Nov 23, 2019 |
# ? Nov 23, 2019 04:30 |
|
Fil5000 posted:I find it weird that I seem to be the only person I know who uses Shift-Delete/Ctrl-Insert/Shift-Insert for cut/copy/paste. Was there some point where those were the only way of doing cut/copy/paste or something because I can't think why I do that instead of Ctrl-X/C/V. I remember those from like, MSDOS EDIT and QBASIC. Dirt Road Junglist posted:Use icacls to Deny all permissions to Everyone, Authenticated Users, Domain Users, and Users. Technically! The best kind of correct! klosterdev posted:I actually came across a case last week where VLC had trouble handling an .mkv that Windows 10 player handled perfectly. Ditching VLC for the Windows player to watch anime felt so counterintuitive to everything teenage-me knew. VLC on Android has been failing me altely on lots of stuff.
|
# ? Nov 23, 2019 04:39 |
|
Wizard of the Deep posted:Why do security folks have the authority/power to make this change in the first place? I mean, the head of the SecOps team is actually one of the most competent people I've ever met but... why does the dude who started on Monday have it already?
|
# ? Nov 23, 2019 05:24 |
|
Wizard of the Deep posted:I didn't say they were technologically-related. I've just occasionally watched the news over the last six months. Right? Far as I can tell, they classified it as a "patch," so it rolled out with the SOP-driven monthly patching cycle. Except, as I've been calling out all week to whoever has ears, THAT ISN'T A PATCH WTF. But since it was attached to an SOP, it sailed past change control because, well poo poo, what lunatic is gonna put rando code they wrote into the monthly patch baseline? Testing seems to have consisted of pushing the batch commands to a number of VMs and saying, "the script has run and there are no reported errors. YEET." Like, this post mortem is gonna be SPICY and I am pulling down my goalie mask and sitting on the front lines for it. I'm not even mad at this point. I'm kind of impressed.
|
# ? Nov 23, 2019 07:55 |
|
Dirt Road Junglist posted:Right? Far as I can tell, they classified it as a "patch," so it rolled out with the SOP-driven monthly patching cycle. Except, as I've been calling out all week to whoever has ears, THAT ISN'T A PATCH WTF. But since it was attached to an SOP, it sailed past change control because, well poo poo, what lunatic is gonna put rando code they wrote into the monthly patch baseline? What is the testing process beyond "did thing deploy with no errors"?
|
# ? Nov 23, 2019 11:09 |
|
I think you just described the entirety of it. "It compiles, good enough for me! Go with god, little program"
|
# ? Nov 23, 2019 11:28 |
|
Ugh that sounds awful, at my last job my biggest client was an enterprise (100k+ worldwide but we only worked for the American division), for predefined deployments we had a predefined testing procedure that went with it for each server in our environment. The bad part was any changes that weren't predefined the engineer/admin making the change wrote the testing procedure, often we would collaborate to brainstorm, which worked very well about 80-90% of the time; the issue was that our QA department was extremely light on actual knowledge outside pushing the buttons we told them to push and basic desktop/HD experience, so we couldn't have them write test procedures. The QA department also never seemed to learn anything while going through testing procedures, just push buttan did thing happen.
|
# ? Nov 23, 2019 12:42 |
|
MF_James posted:What is the testing process beyond "did thing deploy with no errors"? Probably this, and i absolutely believe that it deployed with no errors because in order to have errors you have to boot, and Windows historically gets extremely upset if you start loving with permissions so I doubt it did.
|
# ? Nov 23, 2019 21:35 |
|
Had a fun one before I left work on Friday. Coworker says the main webpage doesn’t load internally, but does fine externally. I hit an external dog took, get one address. Nslookup inside gives another. Well that is neat. So, our dns servers have 3 layers (I didn’t design this), external for websites and outside resolution, dmz level for any device in a dmz, and internal, which is handled by DCs and is for workstations. I am responsible for the first two, AD group for the last. Why they don’t do all of them is a mystery. Usually, dns requests get kicked up the line in a reverse order on the way out. So, I see external is good, so I mention to the person I will check on my end but needs to get them looking at it too. As I’m troubleshooting, I see the mid level servers return and be wrong address, which is odd as they should forward that to the external. I look on there, and sure enough, an A record in there for the wrong address. I correct it, but the DCs are still holding the old entry in the cache. As I get home, I have a thought, if that incorrect address has been in there for awhile, how was this working at all? I’ve tested through that server recently and it worked, so now I wonder if the hosting company had left the old address working until now. Or someone is making changes in there? Goddamn DNS.
|
# ? Nov 24, 2019 03:29 |
|
GnarlyCharlie4u posted:I paid $420 for the AX-501 and $445 for the UD-501 Oh man... hi-fi pr0n always gets me jonesing, get BACK IN YOUR BOTTLE EVIL GENIE! Just lost 3 hours on What Hi-Fi? damnit
|
# ? Nov 24, 2019 07:41 |
|
BastardAus posted:Oh man... hi-fi pr0n always gets me jonesing, get BACK IN YOUR BOTTLE EVIL GENIE! Just lost 3 hours on What Hi-Fi? damnit A Focusrite Scarlett and QSC SPA2-60 will do 90% of the job of my TEAC setup plus give you mic inputs. I'm about to install this amp under my desk at work and the Focusrite will be the only thing on my actual desk except my Surface dock (and monitor arms mounted to the back), plus keyboard and mouse. I have a cheap Samson large diaphragm mic and put it on a boom stand, "for conference calls." I actually had one person grunt, "oooooh" and tell me how good my voice sounded. It also comes in real handy when I need to do voicemail recordings/announcements for IVRs.
|
# ? Nov 24, 2019 07:58 |
|
|
# ? May 28, 2024 01:18 |
CitizenKain posted:Goddamn DNS.
|
|
# ? Nov 24, 2019 13:12 |