|
Hotel Kpro posted:That sucks man. We were up against the wall trying to get a good image going. For some reason the one we were using broke outlook, so we upgraded another one and poo poo was down to the wire more than once. Except it broke active client so that was fun to fix too Chromium edge is coming down the pipe soon too, to be forced on us by the deprecation of classic edge or whatever they're calling it. I can't wait for it to break half of everything because everything in the government is built on loving pick up sticks.
|
# ? Mar 12, 2021 07:10 |
|
|
# ? May 25, 2024 18:04 |
|
Btw if you have on prem exchange servers loving bend over champ, cause its time https://www.lawfareblog.com/microsoft-exchange-hack-and-great-email-robbery quote:As I write this, the world is probably days away from the “Great Email Robbery,” where a large number of threat actors around the globe are going to pillage and ransom the email servers of tens of thousands of businesses and local governments. Or at least pillage those that the purported Chinese actors haven’t already pillaged. If you have on-prem exchange and are the admin of it, get ready to rebuild your exchange servers. This poo poo is going to keep happening, and it's going to get bigger and bigger and bigger. orange juche fucked around with this message at 07:22 on Mar 12, 2021 |
# ? Mar 12, 2021 07:16 |
|
Ah, so that's why my organisation made Outlook available from their network/vpn only and is moving things to the cloud this week.
|
# ? Mar 12, 2021 12:21 |
|
Entropic posted:Anyone have any experience with Cisco support? I was assigned to try to troubleshoot an issue with a client where the web interface on their router just spins when they try to login, and I went and created a Cisco support account and made a ticket, but I've been ghosted by the support rep since their first reply on Tuesday despite multiple followup attempts. Does the device have support, as in is it current and someone pays for support for the device? Otherwise I think Cisco just does hardware support and nothing else. In any event how this goes down is you email TAC, they respond asking for a bunch of information you probably already included in your first email, they'll assign the ticket to someone, they'll ask you for all the same information again, you give it to them, then they ask for the output of a show tech, then they just tell you to do a code upgrade. At least thats been the case for me 90% of the time.
|
# ? Mar 12, 2021 14:45 |
|
orange juche posted:Btw if you have on prem exchange servers loving bend over champ, cause its time If you have on prem exchange you really should be assuming domain admin compromise at this point.
|
# ? Mar 12, 2021 15:02 |
|
Soylent Pudding posted:If you have on prem exchange you really should be assuming domain admin compromise at this point. Yep, exchange service accounts are domain admins, throw the whole loving thing out.
|
# ? Mar 12, 2021 19:02 |
|
orange juche posted:Btw if you have on prem exchange servers loving bend over champ, cause its time It makes for a very entertaining article, each time something like this happens doom and gloom are promised and it turns into .
|
# ? Mar 12, 2021 19:23 |
|
Y2k was nothing but a wet fart
|
# ? Mar 12, 2021 19:43 |
|
RFC2324 posted:Y2k was nothing but a wet fart bc people did a lot of work to make the impact minimal, though e: or offset the two digit display year by 20 so we started to get the bugs again recently in a few cases Jewel fucked around with this message at 20:19 on Mar 12, 2021 |
# ? Mar 12, 2021 20:16 |
|
Sickening posted:It makes for a very entertaining article, each time something like this happens doom and gloom are promised and it turns into . Well i mean its going to continue to be until , and when that happens i hope i'm not working in IT when it does.
|
# ? Mar 12, 2021 20:26 |
|
every time a new virus comes out, it's all doom and gloom, they told us West Nile and SARS were going to be these huge pandemics and look what happened, nothing
|
# ? Mar 12, 2021 20:55 |
|
Jewel posted:bc people did a lot of work to make the impact minimal, though thats my point. the doom and gloom scenarios assume people don't do the work to fix poo poo, which never ends up being the case. people like us work our asses off the make sure the apocalypse scenarios don't actually play out
|
# ? Mar 12, 2021 21:24 |
|
RFC2324 posted:thats my point. the doom and gloom scenarios assume people don't do the work to fix poo poo, which never ends up being the case. people like us work our asses off the make sure the apocalypse scenarios don't actually play out This. I asked our Exchange admin about this today and he explained that the moment the breach went live they closed down external facing services and audited the entire the to high holy hell for the last few weeks. It is a big deal, but we should also recognize the number of heroic efforts put in by IT teams around the world to mitigate this poo poo every time it happens.
|
# ? Mar 12, 2021 21:32 |
|
We patched our on-prem Exchange server pretty much instantly and just today got an alert from what looks like a secondary payload. So that's cool. With this having been in the wild for so long, I have a feeling the fallout from this one is going to be fairly extensive.rujasu posted:every time a new virus comes out, it's all doom and gloom, they told us West Nile and SARS were going to be these huge pandemics and look what happened, nothing This is amazing, frame it.
|
# ? Mar 12, 2021 21:43 |
|
Raerlynn posted:This. I asked our Exchange admin about this today and he explained that the moment the breach went live they closed down external facing services and audited the entire the to high holy hell for the last few weeks. I don't know, dude. I doubt that most orgs running on-prem mail of any variety have mature incident response /investigation capabilities.
|
# ? Mar 12, 2021 21:58 |
They probably don’t even know they have OWA running
|
|
# ? Mar 12, 2021 22:01 |
|
i am a moron posted:They probably don’t even know they have OWA running I once heard a story about an IT org that discovered OWA was running when a C-level called bitching it was down
|
# ? Mar 12, 2021 22:36 |
|
RFC2324 posted:I once heard a story about an IT org that discovered OWA was running when a C-level called bitching it was down You can't ever turn it off right? All you can hope for is to make it inaccessible.
|
# ? Mar 12, 2021 22:48 |
|
Sickening posted:You can't ever turn it off right? All you can hope for is to make it inaccessible. block external access to owa from your firewall and then redirect users searching for it internally in the intranet to hello.jpg
|
# ? Mar 12, 2021 22:52 |
RFC2324 posted:I once heard a story about an IT org that discovered OWA was running when a C-level called bitching it was down All it takes is an unlabeled NAT and some brain drain to the right org. I’ve seen it more than once, and I’ve seen some permutation of ‘let’s shut OWA off no one uses it’ only to get 5% of the company screaming bloody murder over it more times than I can count
|
|
# ? Mar 12, 2021 23:49 |
|
Has there been any comment on whether the five people running OWA behind Azure Application Proxy were vulnerable to this exploit?
|
# ? Mar 13, 2021 00:03 |
You’d think that Azure AD auth in front would stop it
|
|
# ? Mar 13, 2021 00:19 |
|
i am a moron posted:You’d think that Azure AD auth in front would stop it How would that stop a 0-day that makes the server think it's being contacted by itself?
|
# ? Mar 13, 2021 01:41 |
|
dragonshardz posted:How would that stop a 0-day that makes the server think it's being contacted by itself? If it's in the context of Azure App Proxy, you have to auth to Azure AD before any outside signal gets to the server. No AAD auth, no packets to the server at all.
|
# ? Mar 13, 2021 02:13 |
|
https://twitter.com/emollick/status/1370547742313955329?s=20
|
# ? Mar 13, 2021 04:01 |
|
Maybe I'm old, but I remember having to fight to get OWA running. It was BES only for a long time and I literally had to cherry pick a champion and do some serious finagaling to get it into even a small pilot.
|
# ? Mar 13, 2021 04:10 |
|
Haha people and technology suck rear end (no offence)
|
# ? Mar 13, 2021 07:04 |
|
Internet Explorer posted:Maybe I'm old, but I remember having to fight to get OWA running. It was BES only for a long time and I literally had to cherry pick a champion and do some serious finagaling to get it into even a small pilot. I briefly worked at a company where the only way to access email outside the office in 2011 was via OWA or a PPTP VPN, on Exchange 2003. Bounced out fairly rapidly because you can't fix the underlying philosophy that leads to that being the policy. The IT director was one of those who would give everybody 200MB mailbox quotas and disable PSTs via GPO, and then flat out not listen to any problems that this caused.
|
# ? Mar 13, 2021 12:22 |
|
Exactly why I started our new physical inventory numbering scheme at 1000000 and not 0000000(Excel in general, not this specific incident). Not that I personally use Excel for this, but can’t anticipate what others do.
|
# ? Mar 13, 2021 18:26 |
|
I like when excel outputs a csv where your numeric identifiers have been turned into scientific notation.
|
# ? Mar 13, 2021 21:27 |
Guy Axlerod posted:I like when excel outputs a csv where your numeric identifiers have been turned into scientific notation. And you don't discover this until 5 or 6 transformations down the interdepartmental chain e: yes we have a brand safety violation on campaign id 5.13E+10
|
|
# ? Mar 13, 2021 21:29 |
|
I can't understand why the default behaviour of Excel when opening a CSV file isn't to ask you what the data type in each column is. Maybe it could use some intelligence by looking at the header row or whatever to suggest some sane defaults.
|
# ? Mar 13, 2021 21:44 |
|
Thanks Ants posted:I can't understand why the default behaviour of Excel when opening a CSV file isn't to ask you what the data type in each column is. Maybe it could use some intelligence by looking at the header row or whatever to suggest some sane defaults. If you open a csv when the separator is not comma, you will be have to do the conversion using the string to column tool which lets you to that
|
# ? Mar 13, 2021 21:47 |
|
ihafarm posted:Exactly why I started our new physical inventory numbering scheme at 1000000 and not 0000000(Excel in general, not this specific incident). Not that I personally use Excel for this, but can’t anticipate what others do. One of our external systems starts at 000000000000, since we start ours with L, that's a text field for us and we maintain the value. However i'm pretty sure I'm the only person who actually puts in effort to maintain that value when doing csvs, or even just normal rear end excel spreadsheets, as I constantly get emails asking me why 124650 isn't in the system.
|
# ? Mar 13, 2021 22:14 |
|
Excel loved our part numbers that had decimals in them
|
# ? Mar 13, 2021 22:50 |
|
SlowBloke posted:If you open a csv when the separator is not comma, you will be have to do the conversion using the string to column tool which lets you to that I've always used semicolons when given the option, and always wondered why excel gave me that option but didn't seem to give it to anyone else
|
# ? Mar 14, 2021 00:13 |
|
I met Excel once when I was working at Microsoft and he was a total rear end in a top hat.
|
# ? Mar 14, 2021 02:29 |
|
Super Nintendo 64 posted:I met Excel once when I was working at Microsoft and he was a total rear end in a top hat. Word
|
# ? Mar 14, 2021 02:34 |
|
Super Nintendo 64 posted:I met Excel once when I was working at Microsoft and he was a total rear end in a top hat. He had a lovely Outlook when I spoke to him
|
# ? Mar 14, 2021 02:56 |
|
|
# ? May 25, 2024 18:04 |
|
kensei posted:He had a lovely Outlook when I spoke to him Do you think he has good days too, or Visiolways that cranky?
|
# ? Mar 14, 2021 03:11 |