|
Sheep posted:I liked the Goal. Everyone raves about the Phoenix Project but it did not hook me nearly as much, I think I stopped reading about halfway through. If you've already read the Goal, Phoenix Project is probably going to be boring as hell.
|
# ? Oct 27, 2017 15:52 |
|
|
# ? Jun 13, 2024 06:05 |
|
Sheep posted:Meraki's malware detection is notoriously bad so this isn't surprising at all. Wasn't there an issue last year where they started flagging dashboard.meraki.com as a malicious site as well? Doesn't get much less competent than that. I don't think I'd ever want to put switches that can be shut down remotely in the core of a network. I appreciate it's only used when the licensing expires but still, gently caress that. The functionality exists and I don't see how it's possible to be completely certain that it won't be triggered accidentally.
|
# ? Oct 27, 2017 15:59 |
|
Or on purpose because you happen to be a competitor or whatever. Certainly a backdoor you dont want in critical hardware.
|
# ? Oct 27, 2017 16:01 |
|
Thanks Ants posted:Spiceworks and Reddit triggered
|
# ? Oct 27, 2017 16:06 |
|
Thanks Ants posted:I don't think I'd ever want to put switches that can be shut down remotely in the core of a network. I appreciate it's only used when the licensing expires but still, gently caress that. The functionality exists and I don't see how it's possible to be completely certain that it won't be triggered accidentally. One of my customers went full Meraki a few years ago, then they had an internet outage and for some reason all their switches just shut down. I doubt that's expected or intended behavior, but it happened. I won't touch them anyways because the functionality of the core hardware should never depend on a subscription, but that made me even more sure of my position.
|
# ? Oct 27, 2017 16:09 |
|
Proteus Jones posted:That's exactly what it means. They were given project requirements, drafted a plan, set fake milestones, and implemented it on a small subset of representative equipment/VMs in a lab environment. Also, if you don't want people with ridiculous backgrounds applying at your company, don't post a position titled "Security Architect".
|
# ? Oct 27, 2017 16:11 |
|
Vulture Culture posted:Also, if you don't want people with ridiculous backgrounds applying at your company, don't post a position titled "Security Architect". Whatever you say.
|
# ? Oct 27, 2017 16:31 |
|
We spend a lot of time telling people to apply for jobs above their actual skillsets. This guy seems to have stretched too far, but whatever, he probably got hired somewhere else as a CIO.
|
# ? Oct 27, 2017 16:33 |
|
Security Architect must haves: - Degree in music
|
# ? Oct 27, 2017 16:35 |
|
Sepist posted:Security Architect must haves: Pleas include dissertation either supporting or refuting the theory that Alexander Dumas' later works were produced by a stable of ghost writers.
|
# ? Oct 27, 2017 16:41 |
|
Our security team does little more than yell at me about Windows patches, pass on spreadsheets from PCI audits, and forward security alert emails that they've subscribed to. I don't know if there is a group of people in the IT field that I respect less.
|
# ? Oct 27, 2017 16:41 |
|
I want that job. Just email someone else to fix poo poo.
|
# ? Oct 27, 2017 16:42 |
|
MC Fruit Stripe posted:Our security team does little more than yell at me about Windows patches, pass on spreadsheets from PCI audits, and forward security alert emails that they've subscribed to. That’s how it was when I worked at the bank. As far as I could tell they just ran nexpose reports and kicked their feet up. Most cush gig ever. It was an odd moment once when, as I was handling a major database outage, an email rolled in about their upcoming whitewater rafting trip.
|
# ? Oct 27, 2017 16:44 |
|
Internet Explorer posted:Hey, thank you for posting this. I am in a similar boat, Windows admin who would like to branch out and this helps a lot. MF_James posted:Yeah this. Perfect. The Windows admin that wants to branch out was exactly my target audience I spent all of yesterday harping about things to crowds and I sincerely hope that I was able to help at least a few people. MF_James posted:Which of the languages you recommended would be your #1? I'm thinking Python would be my choice. Python being the most active of the tags on SO is as good of a reason as any to use it. https://stackoverflow.com/tags?tab=popular Punkbob posted:Methaers(sp?) post about windows stuff was spot on. The only part I slightly disagree with is that being a Windows admin isnt going to change. Both mesos and kubernetes have active projects towards natively running schedulers on Windows, using containers. It maybe a huge bust but I could foresee a world where VMs are slowly replaced by containers. Internet Explorer posted:I've been doing non-persistent (cattle) servers for a long time. Web servers, XenApp servers, VDI. Having something that resets to a master image and essentially gets configured via script or GPO, has user data pulled out and stored somewhere else on reboot is probably as close as you can get in the Windows world unless you're supporting developers on a Microsoft stack. You're right here. I didn't consider immutable VDI when I was talking about Windows. I doubled down on that 'Windows admin like me' part too much, I didn't operate any large VDI systems. Treating end user VDI machines as cattle that are based off of a master image and configured via script is absolutely in the same vein as what I was talking about.
|
# ? Oct 27, 2017 16:46 |
|
MC Fruit Stripe posted:Our security team does little more than yell at me about Windows patches, pass on spreadsheets from PCI audits, and forward security alert emails that they've subscribed to. Yeah, the compliance group can be pretty frustrating. Especially when they just puke out audit reports without taking into account configs or context. I came in from the "Break things in interesting ways" --> "WE'RE ALL GOING TO DIE" --> "Hmm... how can we fix it so we don't actually die" side of things. Now, I'm "Hey, let me look at the design and prelim configs and hardware before you lock it down so I can keep us all from dying"
|
# ? Oct 27, 2017 16:47 |
|
Going through change management pains. I think it's a cyclical thing, the audit type people want to make everything a change, and then reality hits and then they have to back down, but it seems like moving towards that whole immutable architecture thing is the only way to really fix it. Sure, you can log into a server, but it'll notice and just delete itself within an hour, so make sure you figured out whatever it was that you were trying to find.
|
# ? Oct 27, 2017 16:58 |
|
Docjowles posted:triggered
|
# ? Oct 27, 2017 17:04 |
|
Thanks Ants posted:Spiceworks and Reddit I read /r/sysadmin from time to time. Any other good subs?
|
# ? Oct 27, 2017 17:25 |
|
My morning has started by going through a co-workers ticket queue to clean it up, and is now wrestling with a Quickbooks service exploding on a DC. Not really the most exciting Friday over here. GET ME OUT.
|
# ? Oct 27, 2017 17:30 |
|
Ranter posted:I read /r/sysadmin from time to time. Any other good subs? /r/sysadmin is objectively bad Some of the more specific subreddits have good info, but they are considerably slower. /r/sccm, /r/powershell, /r/netsec, /r/networking, etc
|
# ? Oct 27, 2017 17:37 |
|
MC Fruit Stripe posted:Same question I asked 3-4 years ago - let's see what has changed. If podcasts count, then: -Risk Business is a great security focused podcast. They have (IMO) loving awful views on privacy but a lot of people like it and I think its the only podcast I've seen endorsed by the sec threads. Weekly Books: -Docker Deep Dive - local OWASP group is doing a book club and i'm reading this for that. I just started but its interesting / good for me so far -POC || GTFO - this is *fun* cool stuff but definitely less professionally focused than the other media listed -These threads, secfuck thread, terrible programmer thread, idiot spare time project thread (its like inspiration for actually being productive at home!)
|
# ? Oct 27, 2017 17:42 |
|
Methanar posted:Currently at nait speaking! I am sad I missed this, I needed lunch plans yesterday and ended up eating a sad burrito from our crappy commissary.
|
# ? Oct 27, 2017 17:48 |
|
ChubbyThePhat posted:My morning has started by going through a co-workers ticket queue to clean it up, and is now wrestling with a Quickbooks service exploding on a DC. Not really the most exciting Friday over here. GET ME OUT. oh hey, this was my morning too, because my coworker got fired. Sad, I liked the kid, but really didn't have his eye on the ball. As evidenced by the 50 tickets in his queue going back to August.
|
# ? Oct 27, 2017 17:59 |
|
drat, that's what, 3 Edmonton goons, plus Blackswordca if he ever shows up again? Maybe we should do a monthly lunch or something.
|
# ? Oct 27, 2017 17:59 |
|
The Fool posted:/r/sysadmin is objectively bad /r/sysadmin is great for general news and outage stuff. Its loathsome for advice.
|
# ? Oct 27, 2017 18:00 |
|
Sickening posted:/r/sysadmin is great for general news and outage stuff. Ya definitely a quick go-to when one of our popular SaaS/IaaS platforms seems to be taking a poo poo.
|
# ? Oct 27, 2017 18:04 |
|
Sickening posted:/r/sysadmin is great for general news and outage stuff. hahah herp derp it's always dns!! loving microsoft!! licensing how does it work
|
# ? Oct 27, 2017 18:08 |
|
Jeoh posted:hahah herp derp it's always dns!! loving micro$oft!! licensing how does it work FTFY
|
# ? Oct 27, 2017 18:08 |
|
Avenging_Mikon posted:drat, that's what, 3 Edmonton goons, plus Blackswordca if he ever shows up again? I'm in. I'm on the south side but getting downtown is easy enough
|
# ? Oct 27, 2017 18:10 |
|
Ranter posted:I read /r/sysadmin from time to time. Any other good subs? Sorry, no idea. I was being sarcastic. ChubbyThePhat posted:Quickbooks…on a DC. Thanks Ants fucked around with this message at 18:18 on Oct 27, 2017 |
# ? Oct 27, 2017 18:14 |
|
MC Fruit Stripe posted:Our security team does little more than yell at me about Windows patches, pass on spreadsheets from PCI audits, and forward security alert emails that they've subscribed to. Our security team approached our system engineers about disabling WinRM on all production servers, in the name of security. You can probably imagine how that went.
|
# ? Oct 27, 2017 18:17 |
|
Antioch posted:I'm in. I'm on the south side but getting downtown is easy enough Chubby, you in? Any other Edmonton goons lurking who want in?
|
# ? Oct 27, 2017 18:40 |
|
Ranter posted:I read /r/sysadmin from time to time. Any other good subs?
|
# ? Oct 27, 2017 18:54 |
|
Judge Schnoopy posted:Hell no, never will be. Ill look at it, PM me
|
# ? Oct 27, 2017 18:59 |
|
Jeoh posted:hahah herp derp it's always dns!! loving microsoft!! licensing how does it work To be fair though, Microsoft licensing is loving insane sometimes and they offer MS certifications in it...
|
# ? Oct 27, 2017 19:03 |
|
Ranter posted:To be fair though, Microsoft licensing is loving insane sometimes and they offer MS certifications in it... As demonstrated by the discussion about CAL's earlier this week.
|
# ? Oct 27, 2017 19:18 |
|
Vulture Culture posted:Reddit is a horrible thing and should be avoided https://www.youtube.com/watch?v=DOqb_UzJSUQ
|
# ? Oct 27, 2017 19:37 |
|
There's still space in the market for a very functional general IT forum with a good search and good community I think that way in part because of the fact that I hate technet, although docs.microsoft.com has been pretty good in having organized info
|
# ? Oct 27, 2017 19:47 |
|
Screw this dumb world; I'm just going to read fiction!
|
# ? Oct 27, 2017 19:52 |
|
|
# ? Jun 13, 2024 06:05 |
|
Just the database manager, sorry. Didn't mean to alarm you.
|
# ? Oct 27, 2017 20:26 |