|
M365 Autopilot for Windows
|
#
?
Jun 23, 2021 02:17
|
|
|
|
| # ? May 31, 2024 15:35 |
|
|
Windows Azure Autopilot Fundamentals for Legacy Systems
|
|
#
?
Jun 23, 2021 02:38
|
|
|
ptier posted:And then Azure Autopilot for Windows. For Enterprises (E5)
|
|
#
?
Jun 23, 2021 02:51
|
|
|
Internet Explorer posted:Yes, it's good. Also, they do - Defender Network Protection. Well that is something new and its weird news considering I talked to my account manager today and gave him poo poo about not having this. I see its still in public preview and its kind of poo poo ATM. It is however going in the right direction. Their categories need a ton of work and I can't tell if I can even create decent reports or investigations out of its data. It also doesn't seem to stream into MCAS to take advantage of the cloud discovery app stuff. Its still better than nothing.
|
|
#
?
Jun 23, 2021 05:51
|
|
|
Legit excited for the day that I can just throw $40/month at MS and in return not have to worry about dealing with a handful of other product vendors. Right now we have Mimecast for email protection, Umbrella for content filtering and etc, Duo for 2FA, and Carbon Black for AV. Step up your game, MS.
|
|
#
?
Jun 23, 2021 11:51
|
|
|
Bonzo posted:Why is Access still in use? Is it just legacy stuff at this point? I can recall any mdb file over over 25MB had a memory leak We have an Access DB in use that can only be accessed by a specific Citrix vm, because of a wierd shared SQL DB connection for the access db. This access DB manages $25mil in contracts.
|
|
#
?
Jun 23, 2021 12:09
|
|
|
I would never work anywhere that an Access database was managing $25M of assets. I would never work anywhere that an Access database was managing $2 of assets.
|
|
#
?
Jun 23, 2021 12:14
|
|
|
AutoPilot is good, the web filtering is in preview and it's alright I suppose, depends what you want, I don't have huge amounts of experience with content filtering. Regards managing laptop inventory, if someone has owned a laptop for three years then you might as well let them keep it as long as you can prove the data has been erased and it's been kicked out of AutoPilot. What are you going to do with a laptop that's had 3 years of someone's skin flakes and lunch fall into the keyboard? Refurbish it? Replace the battery? How much is that costing you? You'd only have to pay to e-waste it anyway, might as well let it just leave with the employee.
|
|
#
?
Jun 23, 2021 12:33
|
|
|
devmd01 posted:We have an Access DB in use that can only be accessed by a specific Citrix vm, because of a wierd shared SQL DB connection for the access db. lol what? Let me guess, this is some "mission critical" legacy app that can't be upgraded because of downtime so management just leaves it in place and hopes a stiff breeze won't knock it over.
|
|
#
?
Jun 23, 2021 13:24
|
|
|
Just heard that this guy I used to work with is now a "Security Champion". The same person shared 9 accounts, had a passwords.txt that was repeatedly screen shared and asked me repeatedly if I could open up a VM so he could remote into it from home without having to connect to the office VPN first. I swear InfoSec is a MLM scam where only the top 5% knows something relevant...
|
|
#
?
Jun 23, 2021 14:54
|
|
|
LochNessMonster posted:I swear InfoSec is a MLM scam where only the top 5% knows something relevant... You arent too far off. But management and companies do this to themselves day in and day out. I work in InfoSec and have been screaming loudly for the last two months that we drastically need to improve our AWS Config and SCPs at our org and have gotten zero traction. Instead management paid $80K after some fancy security firm sold the org on an AWS pentest that seemed to be nothing more than spinning up a Kali linux instance and port scanning our EC2 hosts. Fancy dashboards and reports sell cause thats what people are buying.
|
|
#
?
Jun 23, 2021 15:03
|
|
|
It's absolutely a scam, the only input we get from them is forwarded output from Nessus. You try to have any conversation with them it's a lot of "uhhhh let me rescan, yep still there, so fix it." I don't expect them to know the inner details of every service on the network but they should at least be able to discuss which mitigations they consider appropriate.
|
|
#
?
Jun 23, 2021 15:04
|
|
|
xzzy posted:It's absolutely a scam, the only input we get from them is forwarded output from Nessus. You try to have any conversation with them it's a lot of "uhhhh let me rescan, yep still there, so fix it." This is also a huge problem. We get people out of college with some sort of InfoSec degree that have zero real world knowledge of things like enterprise route/switch, VMware, Hyper-V, whatever. They just sit behind a report and tell you to update printer firmware or to close a port with zero background on why they are telling you that. I mean usually the reports or the person arent wrong about that, and it still needs done, but they tend to just hit the low hanging obvious fruit. The plus side of this is that orgs usually pay a lot for these pentests so you can at least get the resources and manpower to fix the obvious poo poo.
|
|
#
?
Jun 23, 2021 15:11
|
|
|
Its mostly an issue of infosec having life long infosec employees. If you don't come from some other background, the chances of you being useless to me is very high. This is compounded by infosec leadership gatekeeping this side of the industry by actively looking down on those who didn't start out in infosec. Its led to more and more of our industry not being prepared for the work. Institutions like ISC/CISSP and others have built a good ol boys club for decades and its just starting to shift back to something that is more sane.
|
|
#
?
Jun 23, 2021 15:22
|
|
|
Brought into an urgent meeting today. Had nothing to do with me but they didn't want to disengage. Cleaned my house gutters while on mute. WFH rules.
|
|
#
?
Jun 23, 2021 15:42
|
|
|
Lord Dudeguy posted:Brought into an urgent meeting today. Had nothing to do with me but they didn't want to disengage. I am currently at the grocery store during one of my stand ups.
|
|
#
?
Jun 23, 2021 15:46
|
|
|
I have been having this ongoing issue with VPN users where sometimes they lose connection to shared drives. The bizarre part is that the host can still ping them, they just can't ping the host. Does anyone have any idea what could cause this? Should we just get a better firewall?
|
|
#
?
Jun 23, 2021 15:53
|
|
|
I had similar issues on a site-to-site tunnel at my last job and it was because of mismatched timeouts.
|
|
#
?
Jun 23, 2021 15:55
|
|
|
I'm thinking of loving off to Colorado to self solemnize with my fiancée while "working from home" As long as there are no meetings I should be good to go
|
|
#
?
Jun 23, 2021 15:57
|
|
|
Sickening posted:I am currently at the grocery store during one of my stand ups. Spent three hours zonked out in bed due to COVID vaccine side effects, with one ear open for Slack alerts. Can't do that in the office.
|
|
#
?
Jun 23, 2021 16:01
|
|
|
punishedkissinger posted:I have been having this ongoing issue with VPN users where sometimes they lose connection to shared drives. The bizarre part is that the host can still ping them, they just can't ping the host. Are drives mapped at startup? I can see where users have their PC restarted and mapping fails if the VPN is not active yet. Can't ping the hostname, FQDN, or IP? If one of the first two, I'd be making sure internal DNS is being used when the VPN is active. I'd also be looking at whether the shared drive IPs overlap with the user's home network subnet.
|
|
#
?
Jun 23, 2021 16:47
|
|
|
Also might depend on what VPN you're using. We had a similar issue with Windows Always On VPN because we had a user tunnel and device tunnel, the device tunnel had the file servers as a /32 route but the user tunnel just had a /24, so the more specific route would win. People would lose access as the device tunnel went up and down randomly. Had to fix it by putting a /32 in the user tunnel routes and also making the device tunnel metric higher.
|
|
#
?
Jun 23, 2021 16:55
|
|
|
Contingency posted:Are drives mapped at startup? I can see where users have their PC restarted and mapping fails if the VPN is not active yet. There's a logon script that runs to map the drives, this does not seem to be the issue as the drives have stayed mapped. they just seem to lose the ability to access them sometime during their session, often with a "device name is already in use" error. i'm pinging just using IPs and the VPN is set to use the internal DHCP/DNS server for everything. The office's subnet is intentionally a really weird one, though I have seen that issue where the LAN was just set to 192.168.1.0 in the past. I'm thinking this may just be a bug with the Sonicwall firewall all this is going through but I wish I had a better answer for the clients. edit: uhhhhahhhhohahhh posted:Also might depend on what VPN you're using. We had a similar issue with Windows Always On VPN because we had a user tunnel and device tunnel, the device tunnel had the file servers as a /32 route but the user tunnel just had a /24, so the more specific route would win. People would lose access as the device tunnel went up and down randomly. Had to fix it by putting a /32 in the user tunnel routes and also making the device tunnel metric higher. this is interesting. I'm going to check this now. thanks! punishedkissinger fucked around with this message at 16:58 on Jun 23, 2021 |
|
#
?
Jun 23, 2021 16:55
|
|
|
edit: quote is not edit
|
|
#
?
Jun 23, 2021 16:57
|
|
|
What happens when you try to tracert to the file servers? What does a packet capture show? Frankly, the real answer is that client-to-site VPNs are garbage and relying on them for access to file servers sucks. But hey, easier said than done.
|
|
#
?
Jun 23, 2021 16:58
|
|
|
I'm looking at joining the  with everyone else.I applied for a BI position some time ago. I have done BI work but currently in a EHR analyst role. During my first interview with HR, they bumped me to the Senior BI position and I had a 2nd interview with the team for the Senior BI position. Didn't hear a word for 2 weeks, figured they went elsewhere. Got a call Monday and an offer for the standard BI position with a low wage. I said nope, I want the senior title and money that I interviewed for (to be fair, I'm probably not qualified for a senior BI role). I'm waiting to hear back on what they are willing to do, if anything. I may have an edge because I have a ton of domain knowledge in a sector they are trying to break in to. After getting laid off at the start of a pandemic, and now currently having a great job, it's so much nicer being able to negotiate from a position where I can just say "no thanks".
|
|
#
?
Jun 23, 2021 17:38
|
|
|
Internet Explorer posted:What happens when you try to tracert to the file servers? What does a packet capture show? I'm a dumbass and haven't run tracert on the affected machine! I will try this immediately!
|
|
#
?
Jun 23, 2021 17:50
|
|
|
I assume there still isn't a more managed way to deploy apps to an Azure Virtual Desktop right?
|
|
#
?
Jun 23, 2021 18:08
|
|
|
Sickening posted:I assume there still isn't a more managed way to deploy apps to an Azure Virtual Desktop right? There's MSIX app attached built into the management plane now, but if you're looking for integration with MEM, it's slowly rolling out. For a persistent, single-user Win10 VM, I believe it's now in Preview. If it's persistent, mutli-user, I believe that's close if not already in Preview. If it's non-persistent of either flavor... expect to keep waiting for a bit.
|
|
#
?
Jun 23, 2021 18:10
|
|
|
Defenestrategy posted:Then every year everyone in the company ends up having to do the DoD Cyber Awareness Challenge. Finally posting itt to say my god, the number of times I've had to save the future is absurd
|
|
#
?
Jun 23, 2021 18:35
|
|
|
I got treated to a 45 minute rant from Jeff Sessions that was billed as "counterintelligence training" shortly after he got appointed to AG. He was extremely serious about stopping leaks and anyone caught leaking anything would really, really regret it. (nothing at my location is classified and exists so far down the federal totem pole that there's nothing to leak anyways)
|
|
#
?
Jun 23, 2021 18:41
|
|
|
Retrograde posted:Finally posting itt to say my god, the number of times I've had to save the future is absurd There's a time travel police force that goes back in time to stop people from killing hitler, it's the same police force that stops us from going back in time to save america from the threat of improperly destroyed sensitive documents. edit: I can't remember if it's the cyber awareness challenge or another DoD training but it had topics on "what to do if someone tosses a grenade at you" or "How to respond if a hostage rescue team goes in to rescue you after you've been taken hostage" That one was at least interesting. edit2: Does it say anything that I remember what the training said about grenades and not about how to interact with hostage rescue teams? Defenestrategy fucked around with this message at 19:14 on Jun 23, 2021 |
|
#
?
Jun 23, 2021 19:09
|
|
|
Sickening posted:I assume there still isn't a more managed way to deploy apps to an Azure Virtual Desktop right? You can Intune them now
|
|
#
?
Jun 23, 2021 19:27
|
|
|
Sickening posted:Well that is something new and its weird news considering I talked to my account manager today and gave him poo poo about not having this. I see its still in public preview and its kind of poo poo ATM. It is however going in the right direction. The catalog works only on us sites, euro sites are categorized pretty much as random. Defender portal being unable to let you know who’s was hammering youporn but only how many times the category was hit makes it sorta useless. Having to make kusto queries for every single search for web filter hits is cumbersome.
|
|
#
?
Jun 23, 2021 20:00
|
|
|
John McAfee just died. Rip to a real one, may he gently caress all the whales in heaven https://twitter.com/reuterslegal/status/1407780473862967307?s=21
|
|
#
?
Jun 23, 2021 20:40
|
|
Cat Army
|
I suppose that's one way to beat extradition. Edit: Might as well link the "Uninstalling McAfee Antivirus" video while I'm here. Sheep fucked around with this message at 21:33 on Jun 23, 2021 |
|
#
?
Jun 23, 2021 21:31
|
|
|
Thanks Ants posted:You can Intune them now Many asterisks needed on that statement.
|
|
#
?
Jun 23, 2021 21:35
|
|
|
The Iron Rose posted:John McAfee just died. Rip to a real one, may he gently caress all the whales in heaven Rest in peace John, you attempted whale loving drug brewing dick eating god of a man.
|
|
#
?
Jun 23, 2021 21:41
|
|
|
Didn’t McAfee claim he’d never kill himself and if he did he’d be Epsteined? Either way, RIP.
|
|
#
?
Jun 23, 2021 21:45
|
|
|
|
| # ? May 31, 2024 15:35 |
|
|
 lol
|
|
#
?
Jun 23, 2021 21:46
|
|