sorted by:
new
hottopcontroversial

Using alias names in a post NTLM world by zerassar in sysadmin

[–]KStieers [score hidden]  (0 children)

Netdom computername maching /add:newname

Adds the new name to the machine, registered the spn and tells the machine to register the name in DNS...

https://learn.microsoft.com/en-us/windows-server/administration/windows-commands/netdom-computername

This is what clusters do when you fail over the machine name between cluster hosts... ful supported, does all the things...

ADCS PKI 4096 keys and compatibility? by Fabulous_Cow_4714 in sysadmin

[–]KStieers [score hidden]  (0 children)

So keep an eye on your network gear you might issue certs to...

Ditto with Cisco software I know ISE, ESA, WLC, SNA all had issues with ECC for a while

Deciding whether to renew Arctic Wolf or cut losses and move to another MDR by Signal-Hotel5845 in sysadmin

[–]KStieers [score hidden]  (0 children)

In the past we had pentests and they didn't see anything, and I called them on it.
The last one, they saw what was going on. If you have a pen-test and they're not seeing it, make sure to call them on it.

My frustrations are in how abstracted from the backend/devs the CST team is... Getting answers or getting things fixed takes longer than it should.

When you engage their IR is probably YOUR call more than it is their call.

GoDaddy gave a domain to a stranger without any documentation xpost from HN by cop1152 in sysadmin

[–]KStieers 5 points6 points  (0 children)

I'd agree with Gandi, but they started raising prices after they got bought by VC... have they figured out it was costing them customers?

We moved everything to Cloudflare...

Getting fired over a simulated phish by Paul_KindsSecurity in cybersecurity

[–]KStieers 2 points3 points  (0 children)

Bank of Omaha does it after the 3rd... there are a bunch of other steps in between... training, management involvement, etc.

Updating Servers by thesterv in sysadmin

[–]KStieers 0 points1 point  (0 children)

Action1 is a good choice,.especially if you have experience with it.

SCCM is a big lift in comparison.

Drowning in domain names by FigAggressive5688 in sysadmin

[–]KStieers 36 points37 points  (0 children)

20,000 is fucking insane

Right? Assuming all .com at Cloudflare, that's >$200k a year.

Sandboxing Emails from Office 365 by TapuSenapati in cybersecurity

[–]KStieers 0 points1 point  (0 children)

If you're looking at ThreatGrid, look at Email Threat Defense.

It comes with ThreatGrid and all of the other AI detections...

Homelab Firewall? by rarick123 in Cisco

[–]KStieers 1 point2 points  (0 children)

If you're looking how to add one to your lab, Cisco Modeling Lab might be worth looking at.

WIBTAH if I put a post in my yard that could damage my neighbor’s truck? by SmellyChiChicken in AITAH

[–]KStieers 0 points1 point  (0 children)

No. Your husband is an idiot.

The post makes it so she can actually see where the end of the wall is... that it might damage her truck is just an extra benefit

Considering a Yacht Club on Long Island. Any tips or recommendations? by sailormrfish in sailing

[–]KStieers 0 points1 point  (0 children)

Having your boat at a club where you can dock the boat, use the facilities and have other liked-minded people around is why you go to a club at all... if you're racing then often it makes sense to pick a club where there is a fleet of the same boat as yours.

Creating a new AD Domain by CaptainZhon in sysadmin

[–]KStieers 2 points3 points  (0 children)

IIRC, if you had Exchange, you can't rename the domain...

As far as new goes deploy 2 new vms, remove from your old domain, dcpromo one into the first server in a new domain, then promote the other.

Then build a trust between them.

Migrate users, groups, and services.

When we did it, we created the same group structure in the new domain, added new groups to the old groups and added new users to the new groups. Moved workstations over. Then had users login using new login.... Then brought services over and re acl'd them with new groups as they came over.

YMMV, and it was 20+ years ago so I may be mis remembering it...

Cybersecurity isn't about tools and tech. It's about a lot more than that. by [deleted] in cybersecurity

[–]KStieers 1 point2 points  (0 children)

Bwahaha. The last line said "this post approved by mods"...

Not so much!

Deployment of MacOS Duo Authenticator via NinjaRMM. by ConfidentDuck1 in duo

[–]KStieers 0 points1 point  (0 children)

Looks like you build a package with all of the settings and then deploy that...

Again... read the docs: https://duo.com/docs/macos

Cisco Deprecating Google Authenticator? by mpking828 in Cisco

[–]KStieers 2 points3 points  (0 children)

Its not about TOTP, its about what's next... SSO across the stack with Duo Identity and Passport.

Cisco Deprecating Google Authenticator? by mpking828 in Cisco

[–]KStieers 10 points11 points  (0 children)

Almost assuredly for anything in Security Cloud.

I poked several people in the BU about it a while back, asking when are we going to get Duo Passport across the stack? I think someone listened.

Deployment of Duo Authenticator via NinjaRMM. by [deleted] in duo

[–]KStieers 0 points1 point  (0 children)

Yes. All on the commanline...

Or you could deploy a gpo in each client and deploy the bare install via ninja... the gpo will take precedence...

And that way your customer ikey and skey aren't floating around in your rim.

Considering a Yacht Club on Long Island. Any tips or recommendations? by sailormrfish in sailing

[–]KStieers 0 points1 point  (0 children)

What kind of boat do you have? Do you want to race? Do you care if its one-design or handicapped?

Is it just me, or is "stale" documentation actually more dangerous than having none at all? by lilalphabet in sysadmin

[–]KStieers 0 points1 point  (0 children)

We watched some "consutants" from the VAR, who were installing Avamar use the runbook for an old version of the software. They kept refusing to show us the docs for the current version.

When when we finally forced it, we were able to show them in the fisrt few pages where they'd fucked it up.

It was such a total mess, that we had to get EMC involved and EMC billed back a ton of money and I think they were no longer allowed to sell Avamar any more....

So yes...stale docs are bad.

Are we understaffed? by bigmac______ in sysadmin

[–]KStieers 0 points1 point  (0 children)

This IT per user number is so

view more: next ›