|
champagne posting posted:you'd also have to carry around a scarlet E for the rest of your career which ... actually now I'm thinking on it I think a lot of tech bros would be perfectly fine with I started my current job jan 4, and one of the first things I got to see was people having to talk someone down who thought making an offer to parler was a good idea for a fedramp company
|
# ? Oct 1, 2021 18:14 |
|
|
# ? Apr 26, 2024 02:17 |
RFC2324 posted:I started my current job jan 4, and one of the first things I got to see was people having to talk someone down who thought making an offer to parler was a good idea for a fedramp company
|
|
# ? Oct 1, 2021 18:25 |
|
BlankSystemDaemon posted:that's not a secfuck, that's just a gently caress we have a number of idiots in our pro services department. Very... not great. but, to be fair, he was dogpiled with "this is a bad idea for 100 reason, let us list them for you" by management
|
# ? Oct 1, 2021 18:31 |
|
BlankSystemDaemon posted:that's not a secfuck, that's just a gently caress jobsec gently caress
|
# ? Oct 1, 2021 20:02 |
|
RFC2324 posted:I started my current job jan 4, and one of the first things I got to see was people having to talk someone down who thought making an offer to parler was a good idea for a fedramp company What the gently caress
|
# ? Oct 1, 2021 20:42 |
|
quiet day since half the company couldn't resolve slack.com due to their dnssecfuck https://lists.dns-oarc.net/pipermail/dns-operations/2021-September/021340.html seems to be over now but lol at your day if you're typing this https://status.slack.com/2021-09/06c1e17de93e7dc2 quote:In order to resolve this faster, your ISP (Internet Service Provider) will need to flush their DNS record for slack.com. Please reach out to your networking team to provide them with this information.
|
# ? Oct 1, 2021 20:48 |
|
the good ol ipconfig /flushdns
|
# ? Oct 1, 2021 23:21 |
|
^^ post/av combo lookin good i wonder if 8.8.8.8 / 1.1.1.1 took any special action to flush their caches? it's not like google is using slack internally, so maybe not them
|
# ? Oct 2, 2021 00:13 |
|
Ulf posted:^^ post/av combo lookin good https://developers.google.com/speed/public-dns/cache Anyone can flush the cache for a record for google. Ironically though `dns.google` doesn't resolve to anything at the moment so it doesn't work. dns.google’s server IP address could not be found. ;dns.google. IN A
|
# ? Oct 2, 2021 00:46 |
|
dns: maybe the real resource records were the queries we made along the way
|
# ? Oct 2, 2021 01:02 |
|
Ulf posted:dns: maybe the real resource records were the queries we made along the way
|
# ? Oct 2, 2021 02:48 |
|
unfortunately i cannot make this the thread title
|
# ? Oct 2, 2021 02:53 |
|
what about the classic sysadmin haiku
|
# ? Oct 2, 2021 03:54 |
|
excellent
|
# ? Oct 2, 2021 04:09 |
|
Methanar posted:I just wish I didn't write so much yaml is there a yaml certification and is the certificate itself in yaml
|
# ? Oct 2, 2021 08:26 |
|
RFC2324 posted:I started my current job jan 4, and one of the first things I got to see was people having to talk someone down who thought making an offer to parler was a good idea for a fedramp company that actually sounds like a good way to catch a lot of domestic terrorism or prevent school shootings if the feds had the resources to follow up on even a tenth of it
|
# ? Oct 2, 2021 13:59 |
|
CMYK BLYAT! posted:is there a yaml certification
|
# ? Oct 2, 2021 16:42 |
|
I don’t know what the best way to handle encryption on the internet is, but I feel like the complex web of certificates we have now ain’t it.
|
# ? Oct 2, 2021 17:07 |
|
Potato Salad posted:that actually sounds like a good way to catch a lot of domestic terrorism or prevent school shootings if the feds had the resources to follow up on even a tenth of it whats your solution here, give the fbi more money?
|
# ? Oct 2, 2021 17:36 |
|
Raere posted:I don’t know what the best way to handle encryption on the internet is, but I feel like the complex web of certificates we have now ain’t it. I'm just going to come out and say that the current implementation of SSL with mandatory expiration dates, the default assumption that without authentication, encryption is useless, and the gate keeper CA's being billion dollar duopoly's that will voluntarily work with the government to undermine encryption and privacy is a bad system.
|
# ? Oct 2, 2021 19:37 |
|
tls loving sucks. every time somebody moves from our support team to the tls team i smh a little bit.
|
# ? Oct 2, 2021 19:39 |
|
ate poo poo on live tv posted:I'm just going to come out and say that the current implementation of SSL with mandatory expiration dates, the default assumption that without authentication, encryption is useless, and the gate keeper CA's being billion dollar duopoly's that will voluntarily work with the government to undermine encryption and privacy is a bad system. Probably the system should just be to obtain public keys via dns though.
|
# ? Oct 2, 2021 20:35 |
|
Jenny Agutter posted:whats your solution here, give the fbi more money? oh I recognize entirely it's not practical; this country will end before we unfuck law enforcement reform AG career advancement incentives *waves arms* somehow de-chudification of domestic terror offices *waves arms* somehow Potato Salad fucked around with this message at 20:47 on Oct 2, 2021 |
# ? Oct 2, 2021 20:35 |
|
Jonny 290 posted:tls loving sucks. every time somebody moves from our support team to the tls team i smh a little bit. oh lmao i think i know who you're taking about and rip because that guy rules
|
# ? Oct 2, 2021 20:36 |
|
Jonny 290 posted:tls loving sucks. every time somebody moves from our support team to the tls team i smh a little bit. maybe but good for them tho. the unfortunate conclusion i got from 10y of support work is that in practice there's no meaningful career growth because it's hard af to quantify "solved difficult cases well" esp across employers, and market determination of pay bands means you'll have to fight tooth and nail to even get parity with the salaries of junior devs despite having a more advanced skillset the work is honestly less interesting, but it's hard to argue with something like double the pay for half the stress
|
# ? Oct 2, 2021 21:01 |
|
mystes posted:Encryption without authentication is pretty useless, though. DANE, and all PKI-via-DNS, only make sense if your biggest issue with modern webpki is that its too easy to hold CAs accountable.
|
# ? Oct 2, 2021 21:03 |
|
I mean, you can shift the trust anchor from CA's to DNS operators with DNSSEC and DANE but ultimately there's some lovely company somewhere that has control over your certificates.
|
# ? Oct 2, 2021 22:10 |
|
spankmeister posted:I mean, you can shift the trust anchor from CA's to DNS operators with DNSSEC and DANE but ultimately there's some lovely company somewhere that has control over your certificates. If a CA misbehaves they are quickly no longer a CA, if a DANE root misbehaves what are you going to do, drop .com domains? There's a reason that DANE is mostly loved by people who have never done IRL PKI
|
# ? Oct 2, 2021 22:33 |
|
a huge trade publisher and auction provider, sandhills global, is down, and has been down for days at this point, due to getting cryptod this affects all their platforms, all their trade pubs, even their corporate website at first they apparently tried to tell people they were getting DDOSed which i was skeptical of with cloudflare they have no timeline for getting things up and running i bet this is really putting the hurt to a lot of small timers tbh since they also provide some of the big hosted auction platforms
|
# ? Oct 4, 2021 02:41 |
more like big hosed auction platform
|
|
# ? Oct 4, 2021 06:57 |
|
BlankSystemDaemon posted:more like big hosed auction platform
|
# ? Oct 4, 2021 12:09 |
|
facebook.com appears to be returning nxdomain from both cloudflare and google DNS. this is either very good or very bad
|
# ? Oct 4, 2021 17:39 |
|
infernal machines posted:facebook.com appears to be returning nxdomain from both cloudflare and google DNS. this is either very good or very bad im seeing mixed results. locally got NS for facebook.com after flush DNS cache, nothing on my SG VPS.
|
# ? Oct 4, 2021 17:44 |
|
the horizon is split. im getting servfail and a records roughly 50/50 on repeated digs. lol rip
|
# ? Oct 4, 2021 17:45 |
|
They've bgp withdrawn a bunch of ranges apparently. I hope they all get PTSD.
|
# ? Oct 4, 2021 18:00 |
|
https://twitter.com/MikaelThalen/status/1445036872846086148
|
# ? Oct 4, 2021 18:06 |
|
evil_bunnY posted:They've bgp withdrawn a bunch of ranges apparently. I hope they all get PTSD. lol I can't even open HE's looking glass right now to laugh at it myself.
|
# ? Oct 4, 2021 18:19 |
|
https://twitter.com/msjokav_/status/1445068522070155268 yeah it's a real mystery
|
# ? Oct 4, 2021 18:24 |
|
Jonny 290 posted:the horizon is split. im getting servfail and a records roughly 50/50 on repeated digs. lol rip fb, ig, and whatsapp none of which i use so i couldn't say if they unfucked themselves yet
|
# ? Oct 4, 2021 18:24 |
|
|
# ? Apr 26, 2024 02:17 |
|
My favorite comment on this so far is “they’re gonna find the KKK membership roll” followed by “it says they have the Texas GOP docs right there”
|
# ? Oct 4, 2021 18:24 |