|
I want a something like that except in the form of a hammer, that I would throw at anyone talking about "the perimeter" as if it has really any meaning anymore.
|
#
?
Aug 15, 2023 17:53
|
|
|
|
| # ? May 17, 2024 05:04 |
|
|
when I worked uni lab support/helpdesk in the early 2000's, in peak slashdot cringe, we had a short handled sledgehammer labeled LART Luser Attitude Readjustment Tool for those that are not old enough
|
|
#
?
Aug 15, 2023 18:02
|
|
|
The Fool posted:LART oh poo poo it's 1999 on alt.2600 and valuhack is all the rage
|
|
#
?
Aug 15, 2023 18:13
|
|
|
You could put a gun to my head and the only thing I'd tell you about CISSP is that I think there was something about how high a fence is supposed to be oh my god don't shoot me I'm beggin' ya I thought it was fairly worthless from a practical perspective, but I didn't have to shell out for it AND it was a career payday so you won't hear me complaining.
|
|
#
?
Aug 15, 2023 18:22
|
|
|
some kinda jackal posted:You could put a gun to my head and the only thing I'd tell you about CISSP is that I think there was something about how high a fence is supposed to be oh my god don't shoot me I'm beggin' ya Same except fire extinguishers instead of fences.
|
|
#
?
Aug 15, 2023 18:26
|
|
|
Nuclearmonkee posted:Extremely this. Just like in any part of IT or any job really, there are a lot of people going through the motions and the minority of them will be those individuals you are comparing yourself to in your head. some kinda jackal posted:Every day I'm amazed I've managed to trick people into believing I have a marketable skill, going on a decade plus now. Welcome to the gang. Internet Explorer posted:Congrats! And also, you'll be fine. Deep breaths. After a few weeks you'll be wondering why everyone you work with is so bad at their job. :-D Thanks for trying to put me at ease and also for the welcomes. Ultimately, while I realize that I just have to take it slowly, one challenge at a time it's still going to be a big mountain to climb. I'll probably be posting in this thread a hell of a lot more to ask for advice lol. Sickening posted:The CISSP is an anomaly among certifications. It isn't technically challenging at all but holds more water than it should because its price and adoption. Sans stuff pricing is also extreme but seems less embarrassing from a difficulty perspective. From what I've heard, the CISSP is more of a management cert than it is for any real technical skills. I was going to try to get it a couple years ago, but the requirement for industry experience plus you need to know another CISSP to sign off on your work stopped that. CLAM DOWN posted:I'm extraordinarily proud of my SANS challenge coin, not just because I got 1st place in the CTF but because it's blade runner themed which rules  That is so loving cool.
|
|
#
?
Aug 15, 2023 18:53
|
|
|
Sickening posted:I want a something like that except in the form of a hammer, that I would throw at anyone talking about "the perimeter" as if it has really any meaning anymore. Do you mean you don't want to buy a Next-Generation Firewall with Intrusion Prevention? Let me see if I can interest you in these Gartner reports!
|
|
#
?
Aug 16, 2023 00:49
|
|
|
Thanks Ants posted:Do you mean you don't want to buy a Next-Generation Firewall with Intrusion Prevention? Let me see if I can interest you in these Gartner reports! I sat in a long meeting with sre’s today where we talked about basic network segregation. I might as well have been talking about nuances of the elvish language. I am done with human beings for then rest of the week. Sickening fucked around with this message at 01:40 on Aug 16, 2023 |
|
#
?
Aug 16, 2023 01:30
|
|
|
MustardFacial posted:From what I've heard, the CISSP is more of a management cert than it is for any real technical skills. I was going to try to get it a couple years ago, but the requirement for industry experience plus you need to know another CISSP to sign off on your work stopped that. CISSP is an A+ for career value though whereas just about every other cert out there, except maybe the operational cloud architecture track stuff, is probably a C or D so if you have the means I highly recommend.
|
|
#
?
Aug 16, 2023 01:32
|
|
|
Thanks Ants posted:Do you mean you don't want to buy a Next-Generation Firewall with Intrusion Prevention? Let me see if I can interest you in these Gartner reports! Stick it in your magic quadrant.
|
|
#
?
Aug 16, 2023 02:25
|
|
|
Go best of breed yourself
|
|
#
?
Aug 16, 2023 03:02
|
|
|
Do you guys like your jobs?
|
|
#
?
Aug 16, 2023 04:56
|
|
|
all jobs sucks but my job sucks way less than most
|
|
#
?
Aug 16, 2023 05:13
|
|
|
It could be worse, and indeed, has been.
|
|
#
?
Aug 16, 2023 05:28
|
|
|
Head Bee Guy posted:Do you guys like your jobs? Most days of the week. Not the days of the week I have to be in meetings to deal with Azure Stack HCI though. Seems pretty hollow to implement full network micro-segmentation and spending stupid amounts of money on Palo Alto firewalls, only to have IT move our SCADA VM stack from VMware to Azure Stack HCI ... that requires all VMs to talk to the loving cloud 
|
|
#
?
Aug 16, 2023 05:29
|
|
|
Head Bee Guy posted:Do you guys like your jobs? not digging grc right now. third party risk makes me want to die. e. but, the love of the field and all that it offers so far makes it feel worth it Famethrowa fucked around with this message at 06:19 on Aug 16, 2023 |
|
#
?
Aug 16, 2023 06:12
|
|
|
Wibla posted:Most days of the week. Putting your OT in Azure seems like a risky move. What if Azure goes down? Entire regions and indeed entire cloud providers have been known to go down from time to time. Does HCI keep working in such an occurrence or does it break along with everything else?
|
|
#
?
Aug 16, 2023 06:58
|
|
|
They say it keeps working, but we obviously lose all the fancy functionality.
|
|
#
?
Aug 16, 2023 07:08
|
|
spankmeister posted:Putting your OT in Azure seems like a risky move. What if Azure goes down? Entire regions and indeed entire cloud providers have been known to go down from time to time. Does HCI keep working in such an occurrence or does it break along with everything else? Stack has nothing to do with Azure regions being available afaik. I’ve been doing azure consulting for… I dunno a decade or something but I’ve never actually implemented it so I could be wrong. That would be counter to the entire premise of using it. It’s dumb for a billion other reasons though
|
|
|
#
?
Aug 16, 2023 12:47
|
|
|
MustardFacial posted:I applied for Cybersec Analyst position and got it (been a sysadmin for years and always security-first, but never actually done an infosec job). I was hyped for it from the beginning but then when my future manager called me to tell me that I got it and what to expect he mentioned that I'd be enrolled in a couple SANS courses, some SEIM training, I'd have to get my CISSP at some point, what my colleagues specialize in and mentioned that one of them has a SANS Challenge Coin. I work with hundreds if not thousands of infosec people, and none of them know poo poo about computers. If I want a 72 page Powerpoint about why having your firewall turned on is a good thing according to the latest security framework they learned about a conference they are great. If I ask them if the firewall is actually turned on, they look at me like they are a goldfish and I'm asking them to explain how an automatic transmission works.
|
|
#
?
Aug 16, 2023 13:50
|
|
|
There are a lot of jobs in security, especially if you work at a large org. Not all are computer toucher roles, although they're mainly staffed by ex-computer touchers. Governance teams create and own the security policy. Architecture teams own the design to the policy/best practices. Create lots of data flow diagrams and PowerPoints. Engineering teams own the implementation to the design.
|
|
#
?
Aug 16, 2023 14:13
|
|
|
i am a moron posted:Stack has nothing to do with Azure regions being available afaik. I’ve been doing azure consulting for… I dunno a decade or something but I’ve never actually implemented it so I could be wrong. That would be counter to the entire premise of using it. It’s dumb for a billion other reasons though Stack will run up to 30 days offline, yeah. It's still really dumb.
|
|
#
?
Aug 16, 2023 14:35
|
|
|
Diva Cupcake posted:There are a lot of jobs in security, especially if you work at a large org. Not all are computer toucher roles, although they're mainly staffed by ex-computer touchers. This is very true, at least on paper. In reality though, ownership doesn't really happen in a lot of places. Also there's the compliance department staffed by legal guys who aggressively don't understand computers, balanced approaches and shades of grey. And they will still require a yes/no answer to whether the network is segmented.
|
|
#
?
Aug 16, 2023 14:46
|
|
|
BonHair posted:This is very true, at least on paper. In reality though, ownership doesn't really happen in a lot of places. Lawyer: "Is the network segmented?" You: "Unequivocable Yes." Your thoughts: "There's an inside segment and an outside segment."
|
|
#
?
Aug 16, 2023 15:12
|
|
|
evobatman posted:they look at me like they are a goldfish and I'm asking them to explain how an automatic transmission works. My go-to phrasing of this is 'they look at me like a dog that's just been shown a card trick.'
|
|
#
?
Aug 16, 2023 15:34
|
|
|
Sorry if this is the wrong place but I'm desperate How should I go about reinstalling windows as SAFELY as possible? Pretty sure I have a nasty rootkit, check this out https://imgur.com/a/b2tQTFi I'm running Windows 11 pro with an Asus Z690-a mobo and a 13600k with the latest ME Secure boot, DEP enabled, no VT-d, no hypervisor enabled, ASUS Armory crate disabled in bios, all the windows security is enabled I even ran ShredOS on a M.2 before installing Windows Legit thinking about getting an external DVD reader for installation I had TONS of weird entries in drivers/etc https://imgur.com/a/1e4IoUD Any help would be amazing
|
|
#
?
Aug 16, 2023 16:25
|
|
|
what makes you think you have a root kit? please describe the issue(s) you're seeing in prose - do not assume it's obvious from a picture (especially one that doesn't show what command was run to produce the output)
|
|
#
?
Aug 16, 2023 16:57
|
|
|
Please start a new thread in Haus of Tech Support. Since you're already here and talking about it, you can link it here any if folks are interested they can go over and help. A good first step in that thread would be answering the question above. But please don't turn this into a troubleshooting thread. These poor infosec folks have been abused enough.
|
|
#
?
Aug 16, 2023 17:07
|
|
|
Internet Explorer posted:But please don't turn this into a troubleshooting thread. These poor infosec folks have been abused enough. Thank you  I got a mail from a consultant on the way home from work today, they want all the things opened to the internet from one of our SCADA zones because of Azure bullshit. Of course it has to happen yesterday. I want to strangle someone. A stiff drink feels very tempting at this point.
|
|
#
?
Aug 16, 2023 17:16
|
|
|
Sorry guys, it's probably paranoia combined with me messing around with my settings too much. I have remote+physical backups and bitlocker so I'm just gonna see this as an opportunity to CBT train my brain. Thanks
|
|
#
?
Aug 16, 2023 17:26
|
|
|
AEMINAL posted:I had TONS of weird entries in drivers/etc That services-file you are looking at is just a listing of standard names for different port numbers. Every Unixy computer has the same listing and it doesn't do anything.
|
|
#
?
Aug 16, 2023 17:35
|
|
|
Saukkis posted:That services-file you are looking at is just a listing of standard names for different port numbers. Every Unixy computer has the same listing and it doesn't do anything. Haha of course that's what it is lmao How do you guys stay sane? A friend of mine told me infosec is THE most stressful job out there
|
|
#
?
Aug 16, 2023 18:00
|
|
|
I have a well stocked liquor cabinet ... that I have to refill regularly.
|
|
#
?
Aug 16, 2023 18:01
|
|
|
AEMINAL posted:Haha of course that's what it is lmao Lots of alcohol and/or weed.
|
|
#
?
Aug 16, 2023 18:12
|
|
|
Apparently HR reached out to me today because another employee cursed my name so many times in the previous days that they set off teams communication policies that sent alerts to HR. They tripped the "physical violence" filters. My sin? Created azure security policies (now called initiatives) that created guardrails like "can't create a public accessible storage account in x subscriptions". I was also shocked to find that the storage account they wanted to create as public was because networking is too hard and not because it was actually required. Sucks to suck I guess. I also sat in an executive security leadership meeting where I was told the company needs to create a culture of security. Nobody could define what that meant, but everyone agreed we needed it. There was also mixed signals about wanting security training to be a happy thing while also punishing people who fail phishing simulations, so lets just say execs are still dumb sociopaths who don't understand human emotions.
|
|
#
?
Aug 16, 2023 18:23
|
|
|
Oh wow is that a feature that flags when someone is on the brink of going postal? I never knew that was a thing.
|
|
#
?
Aug 16, 2023 18:59
|
|
|
Thanks Ants posted:Oh wow is that a feature that flags when someone is on the brink of going postal? I never knew that was a thing. https://learn.microsoft.com/en-us/purview/communication-compliance And as all most interesting features in 365, it only works properly in English.
|
|
#
?
Aug 16, 2023 19:07
|
|
|
Sickening posted:Apparently HR reached out to me today because another employee cursed my name so many times in the previous days that they set off teams communication policies that sent alerts to HR. I am not sure I have ever been this jealous of a fellow IT professional.
|
|
#
?
Aug 16, 2023 19:41
|
|
|
Sickening posted:Apparently HR reached out to me today because another employee cursed my name so many times in the previous days that they set off teams communication policies that sent alerts to HR. They tripped the "physical violence" filters. My sin? Created azure security policies (now called initiatives) that created guardrails like "can't create a public accessible storage account in x subscriptions". I was also shocked to find that the storage account they wanted to create as public was because networking is too hard and not because it was actually required. Sucks to suck I guess. Oh my God, I cannot imagine how many curses are aligned to my name if this is true. It took till 3 months ago for them to actually implement the basic guardrails I asked for aligned to Google and Azures own security best practices because it "Created too many gates" even after we had multiple public facing buckets get created, and them popped.
|
|
#
?
Aug 16, 2023 20:07
|
|
|
|
| # ? May 17, 2024 05:04 |
|
|
CommieGIR posted:Oh my God, I cannot imagine how many curses are aligned to my name if this is true. I like the trade of... Can't make use infrastructure settings associates with stupid decisions -> go through exemption process vs Let people do whatever they want -> clean up mess afterwards GCP's guardrails are maybe the worst designed in all of the public clouds, but that is part for anything GCP.
|
|
#
?
Aug 16, 2023 20:23
|
|