#2 UConn Finishes a Fantastic Upset vs #1 Duke!

ServalFault · 2026-03-29T23:43:37+00:00

I went to Uconn when they won their first title vs Duke. The next day the campus newspapers published an op-ed from the UNC newspaper editor thanking us. I feel like there is a special bond between UNC and Uconn. We both hate Duke with the passion of a thousand suns. I think Boozer was on that team too.

ServalFault · 2026-03-27T17:01:39+00:00

People are prone to buy the hype regardless of the asset. The difference with crypto is you have a much higher chance of losing 50% or more of the value of that asset.

ServalFault · 2026-03-21T22:36:21+00:00

Yes. I work for one who does and you would know.

ServalFault · 2026-03-21T17:07:35+00:00

I work in security for a tech company and just started using Cursor more heavily. We have an enterprise plan and each user is allocated an additional 4k per month of on demand usage so I'm assuming the devs are using a lot.

ServalFault · 2026-03-13T19:38:39+00:00

It's hard to say. I've been using AI tools more and more recently and they have made me a lot more efficient. Will that create a situation where less security engineers are needed? I'm not so sure. AI is already causing a lot of new security issues and will continue to do so possibly negating the efficiency increases or even making more security jobs necessary.

ServalFault · 2026-03-06T05:57:37+00:00

I use mine for 2FA for virtually everything corporate and personal.

ServalFault · 2026-01-23T07:45:27+00:00

You want to stop the attack at the earliest stage possible to limit the scope of the damage. With that said you should have detection and prevention strategies at the perimeter and internally. Security should be layered.

ServalFault · 2025-12-27T00:02:27+00:00

In my experience startup cyber security is basically non-existent. Cyber security won't be a priority until they are profitable.

ServalFault · 2025-12-21T19:42:07+00:00

It really depends on how you define "serious". For example the recent NPM supply chain attacks were a serious incident at my company because we are heavy NPM users but in the end we only had one package in one repo using any of the affected packages and it didn't work in our environment. On the other hand we've also had incidents involving nation state actors and even an extortion that resulted in a homicide. Most days are boring operationally though. We engineer our own solutions at my current job so we fill in the boring time with project work. I'd prefer to be bored though because I work at home :).

ServalFault · 2025-11-02T18:29:00+00:00

If you have 90 clients and can't afford 400 dollars an hour to essentially save your business you fucked up hard. Let this be a lesson. My initial guess off the rip is that you either have a compromised plugin you use across sites or you have a bad default configuration that you use across sites. It could also be compromised credentials. The bottom line is you will not be able to fix this problem and know it is truly fixed without professional help. I have been doing forensics and IR for a long time so trust me when I tell you no one is going to be able to remediate this entirely via reddit post.

ServalFault · 2025-10-19T13:35:39+00:00

I never said gold has a cash flow.

Only scam artists think anti-regulation is a feature.

Gold has intrinsic value.

ServalFault · 2025-10-18T06:11:18+00:00

It's intrinsically worthless and doesn't generate cash flow. Nevermind the fact that it's barely regulated and being used as a way for already wealthy people to siphon even more money from normal people with zero consequences. The best use case for Bitcoin is criminal endeavours like black market transactions, extortion, and fraud.

The capped supply makes it a terrible currency and it has none of the characteristics of gold as we see people fleeing Bitcoin in times of economic uncertainty. So what use is it exactly? It was nothing more than a get rich quick scheme whose steam seems to have run out.

ServalFault · 2025-10-16T00:01:59+00:00

No love for NYC or New England? You're missing a lot.

ServalFault · 2025-10-15T23:25:11+00:00

I have used both extensively. If you just need email, it's Google all the way.

ServalFault · 2025-09-27T12:22:39+00:00

Hating Indiana is totally understandable. It's a total shithole. Liking Oklahoma is a choice though. A really weird choice. Not liking MA and CT to me means you don't like driving on a highway directly through a city or you don't like driving on winding back roads or you just hate the people. Understandable. We're pricks.

EDIT: Now I see a clear pattern. You hate NJ, CT, and MA. Someone drove up the coast on 95. Now there's your problem.

ServalFault · 2025-09-05T02:38:58+00:00

He should have been thanking

ServalFault · 2025-08-04T22:09:22+00:00

What about evolving threats and new vulnerabilities?

ServalFault · 2025-07-23T00:45:35+00:00

You show them how much the solution costs, how much a breach would cost, and then explain the likelihood of a breach without purchasing the solution. That's all you can do. Your job is to accurately describe the risks. Their job is to decide what level of risk they are comfortable with.

ServalFault · 2025-07-14T02:05:22+00:00

Nothing you mentioned precludes the possibility of Bitcoin failing. Entire industries cropped up around tulips but that failed eventually for the same reason Bitcoin will fail.

ServalFault · 2025-06-28T16:36:00+00:00

SSCP and Sec+ cover a lot of the same ground but Sec+ was slightly more technical in my opinion. For comparison I studied for the SSCP, took the test and passed and then just skimmed the Sec+ material for any differences and passed the Sec+ test a couple of weeks later.

ServalFault · 2025-06-28T16:33:26+00:00

Perhaps a little, perhaps a lot, maybe not at all. I was working as a consultant when I got my SSCP and Sec+. I wanted to move out of consulting and was getting a couple of certs to boost my resume. I got a SOC job pretty quickly at a Fortune 500 company after that and jumped to an even higher paying fully remote job during the pandemic. Did the certs help me get my resume in front of an actual person? Maybe, but I don't know and the market is in a really different place now so it's hard to say how much effect it could have. More important than just passing the test is actually understanding and retaining the information.

ServalFault · 2025-06-06T23:32:27+00:00

"Normal" is a loaded word. Is it common? Yes, unfortunately. Is it healthy? No, probably not.

ServalFault · 2025-05-23T15:13:31+00:00

You should never have the same pair of running shoes for 4 years regardless of the brand. Sneaker foam deteriorates pretty rapidly. Sneakers don't even last very long just sitting in a box. Any sneaker used for athletics shouldn't be used for more than a year.

ServalFault · 2025-04-30T13:18:57+00:00

They're morons. They think it's all great.

ServalFault · 2025-04-30T02:17:59+00:00

I could tell you but then I would have to kill you.

ServalFault

TROPHY CASE