Skip Navigation

InitialsDiceBearhttps://github.com/dicebear/dicebearhttps://creativecommons.org/publicdomain/zero/1.0/„Initials” (https://github.com/dicebear/dicebear) by „DiceBear”, licensed under „CC0 1.0” (https://creativecommons.org/publicdomain/zero/1.0/)S

sandalbucket

@ sandalbucket @lemmy.world

Posts
0
Comments
52
Joined
2 yr. ago

  • Slow recovery from IT outage begins as experts warn of future risks

    Jump

  • I want to spin up a separate thread here if that’s okay.

    Please give me an example of any EDR solution produced through “public ownership structures”. I don’t think such a thing exists, but I welcome being proven wrong.

  • Slow recovery from IT outage begins as experts warn of future risks

    Jump

  • Private ownership and investment of capital created Crowdstrike as a profit-seeking venture. It also created MS Defender, SentinelOne, trellix, carbon black, etc. Competition in the marketplace (and there was/is lots of competition) forced these products to be as good as they could, and or self-stratify into pricing tiers. Crowdstrike, being the best (and most expensive) is the most widely-used. Note that not every enterprise requires that level of security, and so while CS is widely used, it is not ubiquitous. This outage could have been significantly worse.

  • Major IT outage affecting banks, airlines, media outlets across the world

    Jump

  • Crowdstrike runs at ring 0, effectively as part of the kernel. Like a device driver. There are no safeguards at that level. Extreme testing and diligence is required, because these are the consequences for getting it wrong. This is entirely on crowdstrike.

  • Google is close to making its biggest acquisition ever | CNN Business

    Jump

  • Wiz scans clouds for “vulnerabilities”, and sometimes provides remediation advice. For example, if a vm’s kernel is outdated, it might recommend “sudo dnf remove —purge kernel”. And yeah, there sure won’t be any vulnerabilities after that.

    It also complains about anything internet facing - including intentionally internet facing services - but that’s another rant for another time.

  • My Proudest Creation

    Jump

  • The leg tapers and the rounded edges give it such a refined, polished look. This is fantastic.

  • Etsy to ban sale of most sex toys, explicit content, and more

    Jump

  • The Taos might be the play - I am very nearly in love with the Golf, and even though I love a small car, it’s just slightly too small. I want to fit at least a hiking backpack in the trunk.

  • Etsy to ban sale of most sex toys, explicit content, and more

    Jump

  • I have no context for how expensive a bmw is. I assume it’s more than 20k? - how much more? 50k?

    I’m trying to save for a house downpayment but have also been thinking about a new car, and the Tiguan looks kinda nice, assuming it’s not one of those touch screen cars

    Edit: I am a fool, the tiguan is a VW.

  • how easy is it to install arch?

    Jump

  • There is no such thing as easy or hard.

    Give it a try, fuck it up, and give it a try again. Try not to fuck it up in the same way as the first time. Repeat until it works - it will work eventually.

    It took me about 6 hours and 3 disk re-formats my first time. I was particularly bad at it. I barely knew what a disk was, nevermind a partition.

    Actually I’m still not sure what a partition is.

    You’ll do fine :)

  • Religious leader wants to display Indian scriptures in Louisiana public classrooms

    Jump

  • Gonna bring the after-school satan club to the entire state :)

  • EU charges Microsoft with 'abusive' bundling of Teams and Office, breaching antitrust rules

    Jump

  • But MS teams is very secure! It’s sandboxed in a web browser :) It’s effectively a single-tab display of an entire ram-eating chromium process :)

    The only unfortunate side effect is that it can’t read your system default audio output, so it uses a cryptographically secure random number to decide which other audio output to use. That’s right - it very securely knows about all of your audio outputs, even though they aren’t the system default :)

    Did you just try to send someone a file? Don’t worry, I’ve put the file in sharepoint for you, and have sent them a link instead. Actually, wait - you had already sent that to someone else, so I sent file (1).docx instead. Actually wait - that was taken too. Now it’s file (2).docx.

    I would like to provide a friendly reminder that you will need to manage the file sharing permissions in sharepoint should anyone else join this 1-on-1 direct message chat :)

  • domains on internal network

    Jump

  • I strongly recommend the NAT loopback route over attempting split-horizon dns.

  • Why we don't have 128-bit CPUs

    Jump

  • I think it’s a D-tier article. I wouldn’t be surprised if it was half gpt. It could have been summarized in a single paragraph, but was clearly being drawn out to make screen real-estate for the ads.

  • 5 men convicted for Jetflicks, illegal streamer with more content than Netflix, Hulu and Amazon combined

    Jump

  • Get yourself a $5 vpn service and read up on the “Mainline DHT” :)

  • Deleted

    Permanently Deleted

    Jump

  • If youtube manages to stop fast forwarding, maybe at the very least we could auto-mute, and maybe overlay photos of puppies or something

  • Rule

    Jump

  • My apologies, allow me to elaborate - grayhatwarfare.com is a cybersecurity company that crawls and indexes publicly-available blob stores, like s3 buckets, azure storage accounts, digital ocean spaces, and google cloud object stores. They offer limited search capabilities for free, no account-wall.

    They are a legitimate cybersecurity company, despite their name.

    My employer is working on a sensitive data scanning service, to alert clients in case their information surfaces in these buckets (even if they do not own the bucket), leveraging the grayhatwarfare api. In short, allowing us to detect and remediate the problem, which I hope you will agree is a white-hat activity :)

    I do not publicly condone breaking the law. I reserve the right to criticize the DMCA tho ;)

  • Rule

    Jump

  • And if google dorks aren’t interesting enough, because google does not index enough public buckets for you, then we get to learn about gray hat warfare too :)

  • if this post gets 64 upvotes, i will post again with twice as wide en passant

    Jump

  • I want to see a 600MB image upload. I want to see the upvote federation stress test lemmy’s infrastructure. I want an image so wide that my app crashes. I want to see how far we can push this before admins need a database upgrade to handle it. I want to watch the system burn in the name of a wider en passant.

  • Estonia | The Digital State

    Jump

  • I’m happy to revisit and explain, but I don’t have much time to type right now - the wikipedia page for estonia has great info; you will need a basic understanding of cryptographic hashing and merkle trees

  • neither will moving to the cloud

    Jump

  • At what point does a collection of microservices become a monolith that uses http instead of a bus 🤔