|
bull3964 posted:Most companies MitM SSL on company owned devices. We sure do. What an awful snipe. Have some of my morning entertainment: ChubbyThePhat fucked around with this message at 17:34 on Nov 7, 2019 |
# ? Nov 7, 2019 17:31 |
|
|
# ? May 7, 2024 23:57 |
|
We block Gmail etc but we're public sector with strict PII regulations.
|
# ? Nov 7, 2019 17:50 |
|
All "third party" mail was blocked at the bank, which was real entertaining when they started the 365 testing. At current job, we're pretty good about allowing access. I did get a ticket this morning about not being able to get to a gunshow site. Normally I don't care much what people visit if they give me a good reason and it's not porn, but just having the reason as "I have the right to look at guns" is uh...factually untrue? Canada doesn't have a second amendment, BECKY.
|
# ? Nov 7, 2019 19:06 |
|
We allow it for now but header rewrite on decrypted https traffic is in my roadmap for 2020. We only want to allow sanctioned slack/google stuff.
|
# ? Nov 7, 2019 19:17 |
|
There's a guy at work who will have meetings just to waste time and look busy (I am aware this is not a unique trait). He will happily take up a couple of people's time for 45 minutes, ask for help on something that he's trying to troubleshoot, and at the end of the meeting we will all have some sort of perception of consensus on how to make progress. Then we will get an email a couple of days later requesting another meeting to discuss the problem, and stating that [troubleshooting step that we never mentioned] didn't work and how he really needs some more help, all the while pushing back on the recommendations that were made the day before and consensus was reached on. It's such bizarre behaviour. This guy also seems to love being busy regardless of whether the effort is being spent wisely, while refusing to automate anything. I guess a decent amount of this blame lies with his boss not trying to figure out why touching 45 Intune-managed PCs is a good use of their time vs. just writing, testing and deploying a script, but I can't personally get into the mindset where I'd opt to repeat boring tasks rather than learning a skill to make the boring task take care of itself.
|
# ? Nov 7, 2019 20:49 |
|
Thanks Ants posted:There's a guy at work who will have meetings just to waste time and look busy (I am aware this is not a unique trait). He will happily take up a couple of people's time for 45 minutes, ask for help on something that he's trying to troubleshoot, and at the end of the meeting we will all have some sort of perception of consensus on how to make progress. Then we will get an email a couple of days later requesting another meeting to discuss the problem, and stating that [troubleshooting step that we never mentioned] didn't work and how he really needs some more help, all the while pushing back on the recommendations that were made the day before and consensus was reached on. Had people like this in a few of my college courses. I'm not surprised they make it to the job market.
|
# ? Nov 7, 2019 20:55 |
|
Antioch posted:All "third party" mail was blocked at the bank, which was real entertaining when they started the 365 testing. You closed the first ticket? Looks like you're about to get two tickets to the gun show.
|
# ? Nov 7, 2019 22:17 |
|
Heffer posted:Our auditors just made us block Gmail. Still super salty about that. It's blocked here and it sucks so bad. Google Drive works for done reason? I'd love to be in these meetings where they randomly pick what to drop the hammer on.
|
# ? Nov 7, 2019 22:29 |
|
Bigass Moth posted:It's blocked here and it sucks so bad. Google Drive works for done reason? I'd love to be in these meetings where they randomly pick what to drop the hammer on. I'm sure it's all very professional and they bring in only the best dart players.
|
# ? Nov 7, 2019 22:35 |
|
Recently had to work with a state government agency. We needed to send them a few minutes worth of video footage. It took a couple of weeks before we where able to. Their email only accepted up to 5MB attachments. Google Drive, OneDrive, DropBox, Youtube via unlisted video, etc.. where all blocked. Tried a few other random file sharing sites, also blocked. We over-nighted them a flash drive with the footage... it wouldn't work (I guess they block unknown USB devices?). I was going to make the video into a DVD and mail it, but they said they didn't have a way to play it. After several weeks their IT decided to unblock Youtube strangely enough.
|
# ? Nov 7, 2019 22:53 |
|
stevewm posted:Recently had to work with a state government agency. I wonder if Plex would have worked.
|
# ? Nov 7, 2019 23:00 |
|
or imgur video to gif... e: wait that's dumb it's only like 15 seconds.
|
# ? Nov 7, 2019 23:05 |
|
I wonder if just uploading it to S3 or spinning up your own low-cost web host account for a month would've worked?
|
# ? Nov 7, 2019 23:29 |
|
BeastOfExmoor posted:I wonder if just uploading it to S3 or spinning up your own low-cost web host account for a month would've worked? Hell at that point just turn some poo poo desktop into an sftp host with a port forward and give them a link to ftp://10.0.0.1
|
# ? Nov 7, 2019 23:32 |
|
Antioch posted:All "third party" mail was blocked at the bank, which was real entertaining when they started the 365 testing. Companies in the US block gun stuff too, just not very thoroughly. Gander Mountain, where most of their money comes from RVs and sporting equipment? Blocked. The gun version of eBay? Not blocked. One public WiFi I used even blocked SA due to being drugs and weapons-related. Obviously I'm not looking at that stuff on my work PC though, just like I don't go on SA on work computers. I would use my phone data, but this office is a dead spot so I use company WiFi on my phone. Never gotten any heat about it.
|
# ? Nov 7, 2019 23:34 |
|
bull3964 posted:Auditors will have a finding, always. They will never go through an environment and come away with "Everything looks great! No changes needed." Which is why I hate auditors with the burning rage of a thousand suns. It's even worse when they don't know what they want but they sure do want it. Yesterday.
|
# ? Nov 8, 2019 02:23 |
|
I’m extremely lucky I’m not American so I don’t have to deal with our government clients so I can run my laptop how I want it. I don’t even vpn half the time. The fed guys are so locked down it sucks. Plus we use gmail so no way in hell would we block it.
|
# ? Nov 8, 2019 02:42 |
|
jaegerx posted:I’m extremely lucky I’m not American so I don’t have to deal with our government clients so I can run my laptop how I want it. I don’t even vpn half the time. The fed guys are so locked down it sucks. gently caress everything about gov cloud. I can't touch it but I don't get to forget it exists
|
# ? Nov 8, 2019 03:39 |
|
CLAM DOWN posted:We block Gmail etc but we're public sector with strict PII regulations. My prior job used gmail's corporate poo poo to take over for MS Exchange. I would've rather had Exchange and a banned gmail situation.
|
# ? Nov 8, 2019 03:41 |
|
stevewm posted:After several weeks their IT decided to unblock Youtube strangely enough. YouTube is the only out of those options where no executable data could actually be downloaded. Probably one of those jobs where you can cruise as long as no security breaches or you're fired.
|
# ? Nov 8, 2019 08:00 |
|
Today is my last day as the general IT bitch at a poo poo family run business.. I'm starting a role as a Security Consultant at a small place. Next week. It's a completely different environment. The new boss called me this morning to wish me good luck on my last day, give me some updates on what is going to be going on when I start (wow, communication, bit something I'm used to!), and threw out that when I finish the OSCP, which I'm partway through the labs for, they'll give me a $5k salary bump. I had to fight tooth and nail for my last raise here, and that was after getting 4 relevant certs over two years.
|
# ? Nov 8, 2019 15:11 |
|
Congrats! That all sounds really fantastic. I'm sure the change will take some getting used to, but enjoy it and I hope you learn a lot! Check out this thread if you haven't already - https://forums.somethingawful.com/showthread.php?threadid=3750534 Internet Explorer fucked around with this message at 15:34 on Nov 8, 2019 |
# ? Nov 8, 2019 15:31 |
|
Man that op is old
|
# ? Nov 8, 2019 15:51 |
|
drat that thread has existed for a hot minute.
|
# ? Nov 8, 2019 15:55 |
|
I decided to ask some Twitter IT people about more of a specialization for the things I enjoy (AD, Powershell, Server work, Administration) and a couple pointed out Identity Management. It does sound like my jam but it's so broad, I wouldn't even know where to start or even what I'd look for in an entry level engineer position. Any recommendations other than know Server, AD, Powershell, what SAML is, some general ideas about certificates?
|
# ? Nov 8, 2019 16:38 |
|
Identity management cool and good and interesting but it feels like you have to be working for an enterprise above a certain size to have it be taken seriously. Your list is a good start, but you should probably start looking at what services like okta and azuread do and why they are different. ADFS (or federation in general), Kerberos tickets, and tls are things you should probably know the basics of. Be able to talk about mfa, and maybe learn the saml auth flow and be able to talk about why it works. I’m rambling a bit here, and some of that stuff may not be relevant at your skill level. I’m on my way to the airport and my brain is a bit mushy. I’ll try to write some more coherent words after I get home.
|
# ? Nov 8, 2019 17:16 |
|
This dumb mother fucker synced his personal dropbox to our onprem Owncloud. In the process of loving up all of his company files he managed to delete about 16gb of stuff and upload almost 200gb of movies and cracked installers. Now he's giving my helpdesk guy poo poo about the restore of his data taking so long, and it's not going to the right place, and why can't we just fix it right for him this is a production issue none of us can work. Buddy, your problems are not my problems. Play stupid games, win stupid prizes. I was going to let the obviously illegal nonsense slide and just delete it from our servers but now his boss is getting an email about "Massive and Systemic Policy Violations".
|
# ? Nov 8, 2019 17:43 |
|
Antioch posted:This dumb mother fucker synced his personal dropbox to our onprem Owncloud. In the process of loving up all of his company files he managed to delete about 16gb of stuff and upload almost 200gb of movies and cracked installers. One time a salesperson got their e-mail blacklisted twice in a week because he sent an e-mail to 250+ people instead of using the mass-mailing tools he has access to. The first time I helped, the second time when his manager complained that I wasn't doing enough to get him back up and running I just said that I would gladly report the dude to ITSec if he would prefer that.
|
# ? Nov 8, 2019 17:55 |
|
Internet Explorer posted:Congrats! That all sounds really fantastic. I'm sure the change will take some getting used to, but enjoy it and I hope you learn a lot! Thanks! I still don't feel like I really deserve it. It kind of just fell into my lap from someone I've done some ctfs and security side just for fun projects with referring me. I have 0 IT consulting experience and no real world pen testing experience (tons of lab experience, though), so it's all a little terrifying, but everyone has to start somewhere I guess. I also keep getting told about how excited they are to bring me on board and they are all very aware of what I just mentioned, so I should probably just not worry about it. Imposter syndrome yadda yadda. Give me a couple of months and I'm sure I'll be fine. Or I'll flounder horrifically but I got to put some good poo poo on my resume and can probably find a gig in networking.
|
# ? Nov 8, 2019 18:06 |
|
My last day at my lovely call center job and I arrive to donuts and a bottle of expensive whiskey with everyone saying how much they'll miss me, and (unrelated) pizza for lunch. And most of what I have to do today is just cleaning up my old cases so not too many get dumped on the few people still here. And on Sunday I'm going on a date with one of my former co-workers who I've suspected had a thing for me for a few months now, but neither of us acted on that because office romances are a terrible idea. Everything's coming up Eargesplitten.
|
# ? Nov 8, 2019 18:16 |
|
The Fool posted:Identity management cool and good and interesting but it feels like you have to be working for an enterprise above a certain size to have it be taken seriously. Yeah, right now, my big problem is I'm working for a sub 300 person financial place and stuff like ADFS and SAML and MFA are things I can learn about but not use in practice in a way. I use SAML and MFA on a user level but it's not something I can easily put into practice in a lab. Right now, I'm watching videos on certificates and poking around on SAML and such but it's the real practice I need to get good. I do wonder if a good "gateway" would be finding an Azure admin position? 22 Eargesplitten posted:My last day at my lovely call center job and I arrive to donuts and a bottle of expensive whiskey with everyone saying how much they'll miss me, and (unrelated) pizza for lunch. And most of what I have to do today is just cleaning up my old cases so not too many get dumped on the few people still here. As a former call center jockey, congratulations for getting out!
|
# ? Nov 8, 2019 18:17 |
|
22 Eargesplitten posted:My last day at my lovely call center job and I arrive to donuts and a bottle of expensive whiskey with everyone saying how much they'll miss me, and (unrelated) pizza for lunch. And most of what I have to do today is just cleaning up my old cases so not too many get dumped on the few people still here. Hell yeah, that's the good stuff.
|
# ? Nov 8, 2019 18:28 |
|
Antioch posted:This dumb mother fucker synced his personal dropbox to our onprem Owncloud. In the process of loving up all of his company files he managed to delete about 16gb of stuff and upload almost 200gb of movies and cracked installers. I've never understood people who double down on a massive fuckup by giving the guy(s) who is (are) trying to fix your poo poo a hard time. Intimidation and bluster make work with you in Sales or whatever, fuckwit, but tech guys will gently caress your life up, AND remember you.
|
# ? Nov 8, 2019 18:50 |
|
22 Eargesplitten posted:My last day at my lovely call center job and I arrive to donuts and a bottle of expensive whiskey with everyone saying how much they'll miss me, and (unrelated) pizza for lunch. And most of what I have to do today is just cleaning up my old cases so not too many get dumped on the few people still here. Congratulations.
|
# ? Nov 8, 2019 19:00 |
|
22 Eargesplitten posted:My last day at my lovely call center job and I arrive to donuts and a bottle of expensive whiskey with everyone saying how much they'll miss me, and (unrelated) pizza for lunch. And most of what I have to do today is just cleaning up my old cases so not too many get dumped on the few people still here. On my last call center day, I was there for a meeting involving some big office policy changes. There were some NEW RULES that not only covered the office floor, but also apparently covered the parking lot & smoking area too. All cussing was getting outright forbidden. Everywhere. Our call center did not actually have a problem with background vulgarity getting overheard on calls, or agents slipping up while on calls and using words they shouldn't. It was all because of the lovely young-earth-creationist fundamentalist gently caress that had been hired a year ago, just constantly bitching to corporate HR (since our on-site HR representative at any given time was either fired, or had a note on their door with an email they could be reached at) at conversational language he disapproved of. As this rule was being explained out by our supervisor, of course the fundie was smugly sitting back in his chair, arms crossed and grinning, clearly having himself a good gloat, which is a very Christian thing to do while the rest of the people there groaned with irritation. There was another rule, our sup announced. The groaning abated, and fundie looked caught off guard too, a little. Along with vulgarity, all politics ~..*and religious topics*...~ were also forbidden. Fundie got pop-eyed and sat upright, and the rest of the room had their turn at sitting back and chuckling smugly. I could've cussed at the end of the meeting when I was given a 5 minute venue to say good-bye and well-wish, but I didn't. I used my 5 for what it was meant for, and asked them all to say 'I told you so' to themselves on my behalf when they lay off the whole office in a year. At that point, corporate execs were telling everyone that our particular office was indispensable to the corporate model, and would be with the company until the company itself ended. I left the office at least, walking backwards with two middle fingers hoisted. I promised that was how I was going to go, for years though. I had to keep my word. Further, my department gutted and laid off nearly entirely, within 9 months from the point I left.
|
# ? Nov 8, 2019 19:22 |
|
Darchangel posted:I've never understood people who double down on a massive fuckup by giving the guy(s) who is (are) trying to fix your poo poo a hard time. Intimidation and bluster make work with you in Sales or whatever, fuckwit, but tech guys will gently caress your life up, AND remember you. In a rare moment of cosmic justice, buddy that decided to sync all his dumb bullshit has been walked out. Praise Satan.
|
# ? Nov 8, 2019 19:35 |
|
Antioch posted:In a rare moment of cosmic justice, buddy that decided to sync all his dumb bullshit has been walked out. Praise Satan. I've been a little stressed today and this made me smile.
|
# ? Nov 8, 2019 19:46 |
|
Antioch posted:In a rare moment of cosmic justice, buddy that decided to sync all his dumb bullshit has been walked out. Praise Satan. Praise
|
# ? Nov 8, 2019 19:52 |
|
Having kinda a rough day here. I stored a bunch of videos and software on our company cloud storage so that I could have a backup, and they configured it in such a way that my upload affected other files and made them unavailable. Then the administrator got pissy because I wanted my files back, and management took his side and let me go. Ridiculous way to start the weekend.
|
# ? Nov 8, 2019 20:57 |
|
|
# ? May 7, 2024 23:57 |
|
MC Fruit Stripe posted:Having kinda a rough day here. I stored a bunch of videos and software on our company cloud storage so that I could have a backup, and they configured it in such a way that my upload affected other files and made them unavailable. Then the administrator got pissy because I wanted my files back, and management took his side and let me go. Ridiculous way to start the weekend. Makes sense it’d be a goon.
|
# ? Nov 8, 2019 21:00 |