|
Chunjee posted:
How do you troubleshoot user issues or audit actions without storing the usernames?
|
#
¿
Aug 16, 2018 01:07
|
|
: I found this username/password combo in plaintext logs
: Ok what do you want fixed?
: fascinating, can you mask these logs now?
|
|
| # ¿ Apr 27, 2024 19:43 |
|
|
Ghostlight posted:I think the issue is more with the password part. Yeah, fair point but why say "we don't allow usernames/passwords in logs" instead of just "we don't allow passwords in logs"? Sounds like a perfect opportunity for malicious compliance. "What? You want to know who accessed XYZ? Sorry, I don't have any record of who did that. Three months ago you asked me to remove usernames from the logs."
|
|
#
¿
Aug 16, 2018 01:22
|
|
|
Arquinsiel posted:While I instantly assumed that "usernames/passwords" means that there's a direct mapping in the logs I can see why that'd confuse someone who doesn't already understand the shorthand. "usernames/passwords" is shorthand for passwords? One of us doesn't understand what shorthand means. (And I'm hoping it's not me)
|
|
#
¿
Aug 16, 2018 01:51
|
|
|
Maybe I'm just missing something. Is there a benefit to saying usernames/passwords, when just referring to passwords? Or does username/password denote a specific situation?
|
|
#
¿
Aug 16, 2018 02:21
|
|
|
my cat is norris posted:A plain text document containing only usernames isn't necessarily a huge security risk. It would provide a starting point for someone with malicious intent, perhaps especially so if those usernames are email addresses, but it's a forgivable offense if no other details are present. No, I haven't. I can't imagine a situation in which it'd be acceptable to log passwords, even if there's no obvious corresponding user id. I can see user names both ways I guess, they have a lot of utility though IMO. What would be the proper way to handle user attribution without logging user name? A separate unique id? PBS fucked around with this message at 03:33 on Aug 16, 2018 |
|
#
¿
Aug 16, 2018 03:29
|
|
|
Malek posted:Served tomorrow... Ha, hopefully they don't take that too seriously.
|
|
#
¿
Aug 29, 2018 01:13
|
|
|
Our VDI infrastructure sucks, which is doubly bad because they just refreshed it. It was fine for a little while, now it takes like a minute just to load a skype meeting.
|
|
#
¿
Sep 6, 2018 00:58
|
|
|
Daylen Drazzi posted:No one better open my pod... He's starting to realize it's all a simulation, shut it down and make him more miserable in the new one!
|
|
#
¿
Sep 8, 2018 00:57
|
|
|
chin up everything sucks posted:I am so sorry that you live and work in Ohio. Especially in Dayton. His job sounds cool at least. I don't do much outside of work, a nice job alone would be fine with me.
|
|
#
¿
Sep 9, 2018 03:57
|
|
|
Antioch posted:One of the best parts of my new job is being able to fix things like this. SQL server running low on space? Prop it up with an extra 100gb, that's what the SAN is for. I thought our change process was bad but it's not even close to that. What industry?
|
|
#
¿
Nov 23, 2018 05:52
|
|
|
GnarlyCharlie4u posted:I hate phones. I hosed up and one day told like 20 users to come in to see me for help entering their new passwords on their phones so they could access their email. Not that I hadn't instructed them how to do it before; I even made a nice 30 second phone-friendly video and word doc and sent it to everyone to show them how but for whatever reason these people were too inept / lazy to do it themselves. Some have had tickets open for as long as 8-10 weeks. Ha, that sucks. You can at least make it a little better by varying the day their passwords expire on.
|
|
#
¿
Nov 23, 2018 06:29
|
|
|
suuma posted:I just wonder who's going to take all the calls I normally do, now.. Probably you.
|
|
#
¿
Nov 29, 2018 21:01
|
|
, maybe?
|
ChubbyThePhat posted:The part that is confusing me is he thought up the monstrous solution that will cost money and time and break in 3 seconds, then proceeds to mention DHCP snooping which sounds like what he wanted all along????? Trying to push them to do snooping? "You can do this monstrous thing, or we could just do the simpler thing I previously asked for"
|
|
#
¿
Nov 29, 2018 21:12
|
|
|
Arquinsiel posted:Owned my first database today. Feels good. What'd you do, drop all the tables?
|
|
#
¿
Dec 1, 2018 05:04
|
|
|
My company first took away the ability to roll over, then a few years later implemented unlimited time off.
|
|
#
¿
Dec 11, 2018 22:27
|
|
|
Karatela posted:If it helps, I am dumber, as I still don't get it. I'm probably ruining the joke or may be missing it myself, but DNS is usually port 53. So it's a mashup of route 66 and the standard dns port.
|
|
#
¿
Dec 14, 2018 05:09
|
|
|
Jaded Burnout posted:High speed train is £70 return, plus ~£5 tube, ~£8 train station parking, ~£2 fuel & maintenance, and an ~£8 central-London lunch. So that's, what, 90+? They don't have a commuter's pass?
|
|
#
¿
Dec 28, 2018 17:49
|
|
|
myron cope posted:It's from an internal CA yeah. I do have the chain installed which is even weirder to me that it complains. It says "the website sent scrambled credentials that Google Chrome cannot process". This is one of the errors where they don't let you continue anyway, I just can't get to it. For security errors that chrome won't let you bypass normally, you can type thisisunsafe and it'll bypass. Don't ask why I need to know this. Chrome changes the keyword from time to time, so if you're using it and it stops working one day you can just google for the new one.
|
|
#
¿
Mar 9, 2019 03:24
|
|
|
Thanatosian posted:I feel like HR is universally pretty terrible. Like, the place I work at now has the best HR I've ever worked with, and I would describe it as "meets expectations." Yeah ours is pretty bad too. Our internal recruiters are so bad it's depressing to work with them.
|
|
#
¿
Apr 4, 2019 05:25
|
|
|
nexxai posted:You're starting to sound suspiciously like a user... That's the great thing about working at a large company, everyone is a user to someone.
|
|
#
¿
Apr 10, 2019 03:24
|
|
|
LethalGeek posted:The only way to secure the network is to keep the users off it, they can't be trusted. This is a fairly common attitude in the industry and it doesn't help anyone.
|
|
#
¿
Apr 24, 2019 03:24
|
|
|
Gerdalti posted:I don't know why, but wrapping the GPG calls in a function fixed it. I have a few critiques on the code that may help you out. code:code:code:You're going to get an error if there's not already a .hash file with that name present, this can be handled with a simple test. code:First, there's no point in declaring $hasher and $encoding more than once. This will incur a performance penalty (though a fairly minor one), cut those and stick them above the for-loop. Second, overall $hash is fine, but it is a little hard to read and a bit slow. Third, you don't need to echo $hash to append it. You can pipe it directly. Lastly, every single run of the for-loop you're having to open your file to append the hash. This will totally cripple your script from a performance perspective. There are a few easy ways to handle that last point and the best method really depends on your environment and the files you're working with. You could add a test inside the loop to dump once an array reaches a certain size (I'd use this method if the files are larger than 10k/20k lines). If the lists are shorter you can just write it all to an array and dump it to a file at the very end. Here are some of the things I mentioned implemented, code:This task would also be a good candidate for parallelization if you're looking at significantly larger lists. PBS fucked around with this message at 17:28 on Apr 27, 2019 |
|
#
¿
Apr 27, 2019 03:40
|
|
|
Gerdalti posted:That's some great advice. I'm not very good with power shell, so I'll look at implementing those Monday morning. Made a few more edits. It'll now process 1.5m rows in ~80 seconds on my machine. Also, can be done fairly simply (and significantly more quickly) via python. Python 3.6 code:Total Time: 6.09424614906311 Seconds Lines: 1,500,000 PBS fucked around with this message at 18:19 on Apr 27, 2019 |
|
#
¿
Apr 27, 2019 17:29
|
|
|
Proteus Jones posted:Yeah, Python is pretty much tailor made for this kind of stuff. But since they’re talking Powershell, I’m guessing Windows so they may not have/not be able to install Python. Yeah, that's why I did the best I could in powershell first. If you can get python on any machine of the same OS type you can also compile a python script into an executable, making it more portable.
|
|
#
¿
Apr 27, 2019 21:08
|
|
|
Thanks Ants posted:At first I was “huh, you go to prison for domain squatting?” but then carried on reading and it was just Amazing that anyone could be that stupid. Of course they could trace it back to him, the guy that had been harassing him for the name.
|
|
#
¿
Apr 29, 2019 23:19
|
|
|
Thanks Ants posted:“Here just transfer the domain into this account in my name with all my other domains” Even if he hadn't when he eventually setup a service at that domain it'd likely have been traceable back to him too. There's a lot of layers of stupid there.
|
|
#
¿
Apr 30, 2019 01:45
|
|
|
Agrikk posted:Sounds like a pretty major change Wonder how that got though CAB.
|
|
#
¿
May 4, 2019 02:42
|
|
|
xsf421 posted:We were told by some devs last week that "logging didn't make it" into their newest prod build (that was throwing 500 errors to 20% of all traffic to their site). Doordash?
|
|
#
¿
Jun 5, 2019 03:21
|
|
|
D. Ebdrup posted:These mentions of Quick Assist has me thinking of Intels QuickAssist, the HBA and on-chip accellerators for compression, encryption, and hashing at up to 100Gbps, and I got very confused. Do you work on their sales or marketing team?
|
|
#
¿
Jun 13, 2019 18:05
|
|
|
GreenNight posted:Can you send chat messages via PowerShell too? Then I can script my responses. Probably, you can do it for Skype/Lync by loading some assemblies and creating a com object.
|
|
#
¿
Jul 9, 2019 04:59
|
|
|
The place I worked at was like that too. Eventually the queue would just fill up with the old tickets that no one wanted to touch due to the risk of a bad review because the person'd waited so long. Eventually it'd get so bad me and the only other coworker that cared would try to close out as many as possible. I found out after I left that the way I was closing tickets cause a survey to never be fired off. I'd always wondered why I got so little feedback, but it was almost always good when I did get some so I guess it worked out.
|
|
#
¿
Jul 24, 2019 01:25
|
|
|
Mustache Ride posted:We had some piece of Intel cross our desk and our threat Intel guy shoved it into ThreatConnect to strip all the IOCs out. Some douchnozzle put "cmd.exe" launched as part of an execution indicator in the report, and my lovely script pulled it down from TC and added it to the Bit9 block list automatically. We had something similar happen, included servers too.
|
|
#
¿
Jul 29, 2019 15:12
|
|
|
AlexDeGruven posted:
Our CEO said this once, but it sounded better then.
|
|
#
¿
Oct 16, 2019 04:33
|
|
|
potato of destiny posted:apparently a couple of people did changes 'without adequately communicating the impact to our end users' so guess what everyone gets to spend the next three loving weeks doing One three week long CAB meeting?
|
|
#
¿
Oct 21, 2019 03:24
|
|
|
ConfusedUs posted:Ditto. Teams is miles better than Skype for Business, which was our previous iteration. All the mac stuff for microsoft's office suite sucks. The outlook client has significantly less functionality than the windows client. SfB is janky in general, randomly locks up, and will sometimes consume all ram and swap space on my mac when I join large meetings.
|
|
#
¿
Nov 7, 2019 16:04
|
|
|
Spring Heeled Jack posted:An security alert came in letting us know of a user email sign-in from a suspicious IP (we're on the east coast, the IP was from the west coast). We've reviewing everything and check with the user and it turns out someone fibbed about a sick day and took a little extended vacation. Normally we wouldn't give a poo poo but it triggered a security event in our system so now we have to write it up and explain what happened. Why wouldn't that be a simple "confirmed it was user"?
|
|
#
¿
Nov 12, 2019 15:23
|
|
|
Spring Heeled Jack posted:Because we have an incident reporting system that subsequently gets reviewed in manager meetings by my boss' boss to make it sound important. That sounds hosed up
|
|
#
¿
Nov 12, 2019 16:08
|
|
|
D. Ebdrup posted:Someone needs to invent etherjacking for wifi, so that IoT devices can be subjected to it. Microwave?
|
|
#
¿
Nov 22, 2019 17:16
|
|
|
Shut up Meg posted:Ah GPG: simple software to perform a simple task that is impossible to explain the concept of, with controls and setup/configuration that no one can use. Symantec's PGP offering has integrated fairly well with outlook/exchange in our org, the end user doesn't even have to think about it as long as they're on windows. If they're not on windows it sucks to be them. (By them I mean me)
|
|
#
¿
Nov 26, 2019 05:08
|
|
|
|
| # ¿ Apr 27, 2024 19:43 |
|
|
kensei posted:My boss gave his notice on the 30th. They called and offered me his job on the 31st. I may be in a similar situation soon, except I don't really want his job and I'm not sure I even want to stay if he leaves.
|
|
#
¿
Jan 2, 2020 19:29
|
|