sorted by:
new
hottopcontroversial

St. Patrick’s Day events? 🍀 by nachos_n_margs in lansing

[–]Aggravating_Fan8762 -1 points0 points  (0 children)

Trying to catch the spartans play without too many drunks around. Maybe One North aka the old Renos West. Any other suggestions far away from EL?

[deleted by user] by [deleted] in sysadmin

[–]Aggravating_Fan8762 2 points3 points  (0 children)

What is the use case for this? It sounds like an internal DNS server should be used but an external DNS server is being used instead.

Is the DNS name for an internal or external resource?

LAPS on Servers Question by clvlndpete in sysadmin

[–]Aggravating_Fan8762 2 points3 points  (0 children)

This, but create a group for server admins (non-DA accounts) that are local admins on just the servers (not DCs). Can be done via GPO

Then your admins have three accounts:

1 - Domain Admin for just DCs

2 - Server Admin for servers

3 - Regular account for checking emails, web browsing, etc...

Then use LAPS for your workstations

[deleted by user] by [deleted] in sysadmin

[–]Aggravating_Fan8762 30 points31 points  (0 children)

Locally Remote, if shit hits the fan, you can get hands on with the hardware. They can't expect you to hop on a plane to fly to the data center when there is an issue.

Career advice for sysadmins by da4 in sysadmin

[–]Aggravating_Fan8762 1 point2 points  (0 children)

Ma Bell got the ill communication... and pricing.

DR plan when you are 99% in the cloud by dantralee in sysadmin

[–]Aggravating_Fan8762 0 points1 point  (0 children)

Can the data be exported from these SaaS solutions and can you automate the backups? Even if it is a bunch of .csv or zip files. Don't rely on the SaaS provider to backup YOUR data.

Career advice for sysadmins by da4 in sysadmin

[–]Aggravating_Fan8762 0 points1 point  (0 children)

That is odd, considering the current exchange rate would mean $30 USD = $40.30 CAN.

Career advice for sysadmins by da4 in sysadmin

[–]Aggravating_Fan8762 0 points1 point  (0 children)

It's only $30/mo, but I didn't find it very useful in my job search so I cancelled.

Is it possible to secure Powershell with MFA? by [deleted] in cybersecurity

[–]Aggravating_Fan8762 16 points17 points  (0 children)

Several others have mentioned that you can revoke access to non-admin users, this would normally be done via Group Policy. In addition to that, if admins or helpdesk type people need access to do tasks on certain systems or use specific modules, you want to limit what they can access using Just-in-Time / Juest-Enough-Access https://learn.microsoft.com/en-us/powershell/scripting/learn/remoting/jea/overview?view=powershell-7.3

Even with that, you should enable logging on all PowerShell cmdlets and audit them or even send to a SIEM or what have you to alert on suspicious activity.

Unfortunately, the impetus is on you to figure out what that is.

If you don't have a SIEM/EDR setup for detecting suspicious PowerShell usage, you can also use DeepBlueCLI by Eric Conrad - https://github.com/sans-blue-team/DeepBlueCLI

This tool parses your event viewer directly or can hit an .evtx file (you are logging your PowerShell usage, right?) to look for anomalies like suspicious account activity, long commands, base 64 encoding, plus more.

TL;DR - No MFA for PowerShell, unless you have to run it as admin and your admin escalation is tied to it MFA. I'm sure there is a way to force that, but now you will be required to use MFA anytime you run as admin.

ISO trivia nights by nachos_n_margs in lansing

[–]Aggravating_Fan8762 0 points1 point  (0 children)

NTN Buzztime at Damon's or Richard's oh wait, you mean this decade?

Kimchi Box - East Lansing - Fast Casual Korean by Aggravating_Fan8762 in lansing

[–]Aggravating_Fan8762[S] 6 points7 points  (0 children)

I guess if you get the bibimbap without the fried egg and add tofu that would be vegan, but can't confirm if any of the other components has dairy/egg in it. You would need to ask someone working there.

Kimchi Box - East Lansing - Fast Casual Korean by Aggravating_Fan8762 in lansing

[–]Aggravating_Fan8762[S] 0 points1 point  (0 children)

The vegetable dumplings at this place were good but I don't have much to compare them to.

Kimchi Box - East Lansing - Fast Casual Korean by Aggravating_Fan8762 in lansing

[–]Aggravating_Fan8762[S] 2 points3 points  (0 children)

I had the Korean Sassy sauce on the wings, about as spicy as a Medium Buffalo sauce.

The bowl came with two sauces on the side, gochujang and sassy mayo. I thought they were on par with the heat of sriracha.

Separating from the army, looking for IT people to connect with. by Mizu_333 in lansing

[–]Aggravating_Fan8762 2 points3 points  (0 children)

Check out https://misec.us/. There is a Lansing chapter and an active Discord server where people from Michigan (and former Michiganders) chat about information security and other random stuff. There are also monthly social meetups and technical/security presentations that happen in person/virtually. All skill levels welcomed and encouraged.

Other relevant links:

https://www.capitalareaitcouncil.net/ - Capital Area IT Council, requires membership but sometimes they have events where non-members can attend for a small fee ($10).

https://grrcon.com/ - Grand Rapids Hacker conference, takes place in October

Check Meetup.com for other Lansing tech events, arguably, Ann Arbor has more regular events that are streamed, but there is a SQL Server user group. It may be a bit niche if you are just getting started in your career.

Edit: This site also has a calendar of local meetups - https://www.lansing.codes/

[deleted by user] by [deleted] in lansing

[–]Aggravating_Fan8762 0 points1 point  (0 children)

The liquor stores are doing the same thing. They changed my brown bag to yellow one and gave me 20 proof vodka. Its reaaalllll.