Skip Navigation

User banner

RedFox

@ redfox @infosec.pub

Posts
13
Comments
215
Joined
2 yr. ago

Husband, Father, IT Pro, military service.

Don't assume, ask. Don't assume questions are statements or accusations.

I'd rather talk about difficult and nuanced topics in personal one on one situations over espresso or beer. Such discussion is very difficult in Internet written form.

I believe everyone should be treated with dignity and respect, but that doesn't mean I agree with everything or everyone.

I have conservative and progressive views. I believe people can be both.

  • IBM sues a Zurich-based startup over 'unlawful' use of mainframe technology

    Jump

  • Yeah, damn, I always forget about that...just like they want...

  • EV tax credits might end even sooner than House bill proposed

    Jump

  • Sucks if you wanted a different EV, like Rivian, Leaf, that toy battery truck coming soon...

  • VMware cloud partners demand “firm regulatory action” on Broadcom

    Jump

  • Ha, "regulatory action"...

    Only when corporations feel pain do they ever utter the words...

    The only time corporate enshittification is fun to watch is when they're doing it to each other. Of course, normies still pay for it...

  • Is Ops a bullshit job? (from Dan Slimmon)

    Jump

  • I mind the work much less than the general corporate organization and interacting with it.

    I usually enjoy system building. I agree it's taking many technologies and pieces and putting them together. Where we differ maybe comes down to the why, for whom, and how much good it does? Maybe if you're any good at it?

    I have no interest in duck taping things. Any solutions I'm involved with need to be balls out, bullet proof, maximum effort, or not at all.

    I wonder how many of us agree with the 'dona few things really well' vs being a generalist.

  • European customers report Oracle Cloud identity outage, Big Red is silent

    Jump

  • How is their stock price still so high? Especially after their recent beach denial?

  • What are your methods to harden *nix servers?

    Jump

  • If you want to go balls out, go get DISA stigg for Redhat.

  • Sophos XG Firewall Home Use

    Jump

  • Knowledge primarily, since I'm not running a business.

    At this point, like they say in Chips, TLS inspection is standard...

    If your enterprise isn't doing TLS inspection on everything other than banks, medical, gov, they're doing it wrong.

    Some times people think the hard part is getting the CA trust setup, but I find it's far more tedious to deal with certain sites and mobile apps especially that do certificate pinning.

  • Sophos XG Firewall Home Use

    Jump

  • I like OPN also. I've always appreciated the stability of the BSDs.

    My only personal complaint with OPN/PF was the TLS inspection.

    I've read about adding the modules to *Sense, but I haven't figured out the configuration pieces.

    It just works with Sophos UTM and XG firewall, and the configuration was super easy.

    You always use what you like though.

  • Sophos XG Firewall Home Use

    Jump

  • This is true, the 6 GB RAM limit and four cores.

    I run a pretty enterprise home lab, and I haven't ever seen the devices hit the resource limit.

    I have around 3k IPS rules and TLS inspection for most categories of sites except the normal stuff like streaming, banking, etc that you'd not want or need to inspect.

    For anyone it might help, I use these as inline proxies rather than as the gateway at the moment. So they have more than just internet traffic going through them, they also have segments of my LANs getting evaluated. Performance has been great so far.

  • Selfhosted @lemmy.world
    RedFox @infosec.pub

    Sophos XG Firewall Home Use

    www.sophos.com /en-us/free-tools/sophos-xg-firewall-home-edition

  • What are You Working on Wednesday

    Jump

  • Should we be discouraged or appreciative of the shit show that is the current and near term state of information technology and security?

    On one hand, there's never been more need for doing IT well, more informal computer based warfare, and an enormous plethora of companies trying to innovation or enshitificate security solutions....

    On the other hand there's all that above.

    You'd think job security, but still not quite.

    I see security people grinding and burning out, not sure if that's fixable. Maybe if you change from caring to not caring?

    Thoughts?

  • Grok Reveals Elon Musk Has ‘Tried Tweaking My Responses’ After AI Bot Repeatedly Labels Him a ‘Top Misinformation Spreader’

    Jump

  • hates him and sabotages him at every step

    Isn't that also describing his children?

  • What are You Working on Wednesday

    Jump

  • Anyone use open source tools professionally or in your shop? Security Onion, Wazuh, etc?

  • Almost nine gigabytes in size: Windows update 24H2 creates an undeletable cache file

    Jump

  • Won't someone please think of the investors...!

  • Deleted

    5th Circuit rules ISP should have terminated Internet users accused of piracy

    Jump

  • I'm just glad they're still distracted with torrents...

  • Deleted

    5th Circuit rules ISP should have terminated Internet users accused of piracy

    Jump

  • rawdawg some torrents

    LOL! Did you spray 1's and 0's in their face when you were done?

  • Keep Tier-One Applications Out of Virtual Environments

    Jump

  • Good comments.

    Do you think there's still a lot of traditional or legacy thinking in IT departments?

    Containers aren't new, neither is the idea of infrastructure as code, but the ability to redeploy a major application stack or even significant chunks of the enterprise with automation and the restoration of data is newer.

  • Keep Tier-One Applications Out of Virtual Environments

    Jump

  • Lol, even in 2024 with free VPN/overlay solutions...they just won't stop public Internet exposure of control plane things...

  • Keep Tier-One Applications Out of Virtual Environments

    Jump

  • Blank check

    Funny how that seems to often be the case. They need to see the consequences, not just be warned. An 'I told you so' moment...

  • Keep Tier-One Applications Out of Virtual Environments

    Jump

  • Agreed.

    Dont we all use centralized management because there is cost and risk involved when we don't.

    More management complexity, missed systems, etc.

    So we're balancing risk vs operational costs.

    Makes sense to swap out virtual for container solutions or automation solutions for discussion.

  • Technology @lemmy.world
    RedFox @infosec.pub

    Keep Tier-One Applications Out of Virtual Environments

    www.darkreading.com /application-security/keep-tier-one-applications-out-of-virtual-environments
  • cybersecurity @infosec.pub
    RedFox @infosec.pub

    Firewall Schemes at Different Layers

  • cybersecurity @infosec.pub
    RedFox @infosec.pub

    Technical Controls

  • cybersecurity @infosec.pub
    RedFox @infosec.pub

    Implementing Least-Privilege Administrative Models

    learn.microsoft.com /en-us/windows-server/identity/ad-ds/plan/security-best-practices/implementing-least-privilege-administrative-models
  • cybersecurity @infosec.pub
    RedFox @infosec.pub

    Asset and Vulnerability Scanning

  • World News @lemmy.world
    RedFox @infosec.pub

    Museum behind ladies-only art exhibit sued by man who was denied entry - National | Globalnews.ca

    globalnews.ca /news/10375175/ladies-lounge-mona-kirsha-kaechele-lawsuit-gender-discrimination-australia/
  • cybersecurity @infosec.pub
    RedFox @infosec.pub

    Security Technical Implementation Guides (STIGs) – DoD Cyber Exchange

    public.cyber.mil /stigs/
  • cybersecurity @infosec.pub
    RedFox @infosec.pub

    Podcast: 7 Minute Security

    7minsec.com /projects/projects-podcast/
  • cybersecurity @infosec.pub
    RedFox @infosec.pub

    Open Source IDS - Security Onion 2.4

    securityonionsolutions.com
  • Technology @lemmy.world
    RedFox @infosec.pub

    It’s No Surprise That “Skills-Based” Hiring Has Not Worked

    www.forbes.com /sites/dereknewton/2024/02/25/its-no-surprise-that-skills-based-hiring-has-not-worked/
  • Technology @lemmy.world
    RedFox @infosec.pub

    Is there a term for being right and then your opposition getting taught a lesson proving you were right? EPA calls off cyber regulations for water sector.

    cyberscoop.com /epa-calls-off-cyber-regulations-for-water-sector/
  • Technology @lemmy.world
    RedFox @infosec.pub

    Google Pulls the Plug: The End of Third-Party Cookies and What it Means | TWiT.TV

    twit.tv /posts/tech/google-pulls-plug-end-third-party-cookies-and-what-it-means