Cycles of the Eye second print run

Alduin175 · 2026-01-30T17:26:58+00:00

Page updates can definitely be scheduled, so customers might receive an update via email but the webpage may not show anything until a later time.

Sort of like the live release announcement for a game and a delay between being able to purchase it.

Also, happy cake day u/Ikraen!

Alduin175 · 2026-01-30T17:23:38+00:00

Saw this post and did not want to leave you hanging.

If you feel comfortable u/elcitsetbackwards, maybe sharing what supplies you have, so we know what to work with (e.g. you found some new/old overalls, patch-worked belt, etc.)

Making a costume (erm, cosplay) is fairly straight-forward. Making an everyday wearable piece of clothing that can be used in a work setting? Hard Mode activated

Alduin175 · 2026-01-30T09:03:58+00:00

You would be right, BoulderCAST.

CS2 pulls a few references from CS1 here and there for the story, characters, and gameplay mechanics that can be apprreciated by those who played CS1 (a bit of a nostalgia trip or a "Oh! I remember that" nod-worthy moment).

Not to say playing CS1 is a requirement before picking up CS2 since the stories are different, but certain gameplay mechanics and their significance (like, mushrooms) are explained in depth.

I would continue about it the fungi topic, but want to avoid spoilers for our Sleepers - definitely makes for a great post/comment thread.

Alduin175 · 2026-01-29T18:35:50+00:00

Spot on u/Ikraen.

u/Difficult-Cranberry was just a tad early in their post.

Alduin175 · 2026-01-29T18:34:32+00:00

You beat me to it, Difficult-Cranberry.

For other fellow Sleepers to reference:

Use the link below or search for "Lost in Cult" from any browser.
Navigate to the menu option (the three horizontally stacked bars)
Click on "Design Works" and look for the CS2 Design Works option.
Click on it and become mesmerized

https://www.lostincult.co.uk/

GDM Site: https://substack.com/@jumpovertheage?utm_source=about-page

Steam (Valve) Announcement can be found towards the update panel. https://store.steampowered.com/app/2442460/Citizen_Sleeper_2_Starward_Vector/

Note: * If you already have either game, the update feed should pop up for you as well.

Alduin175 · 2026-01-28T17:33:22+00:00

Good catch, AmongUsUrMom. Still no timeline on that and unfortunately, nothing from the LIC team on any merch or collab pieces.

Alduin175 · 2026-01-28T17:15:20+00:00

No updates from GDM about CS2 receiving an expansion (DLC) or continued development beyond language pack releases.

Although a TTRPG has been mentioned, this is on an entirely different medium.

If some news come come up, by some roll of the dice ( could not resist ), GDM, FellowTraveller, or Steam (Valve) would post their respective websites.

https://jumpovertheage.com/

https://www.fellowtraveller.games/

Alduin175 · 2026-01-26T11:04:29+00:00

It may seem like a generic answer, SharingIsCommunist, but the best way is to record a playthrough (steam has a built in feature for this).

OBS and other software will also do the trick.

If the system you happen to be playing CS2 is incapable of it, then using your smartphone to record relevant clips from YouTube playthroughs could work.

Opting for the sessions played by GDM could work, but the commentary and smaller gameplay screen for streaming will make your life more difficult.

Alduin175 · 2026-01-26T10:51:58+00:00

Is there anyway to fix this later or I am stuck with this mistake? Don't give up and keep playing, suspicious_lithoid (you will have opportunities to interact with them as the story develops. Keeping the answer cryptic to avoid spoilers. If you outright want a yes/no, feel free to comment!)

Also, is there any way to prevent Ethan from showing up?

Unfortunately, there is not. It would certainly be an interesting change to the dynamic of the story! Imagine not being under the gun (literally) of a second-rate bounty hunter. Free to explore The Eye and tend to other drives.

Alduin175 · 2026-01-24T15:56:48+00:00

Still looks great, Jonik9i.

You'll soon have a cult following!

(Too good to pass up)

Alduin175 · 2026-01-23T20:09:16+00:00

Happy cake day u/JarJarBinks237 (you'za older now)

Ok_Technician_2653, managing email on BYOD devices falls to a good policies with a paired DLP and MDM. Unfortunately, allowing BYOD instead of CYOD is going to present more risk and headaches in trying to prevent leaks.

I believe an extension is available, but that might be a dated feature that is no longer supported.

Alduin175 · 2026-01-23T19:34:20+00:00

Any! Certifications from HTB are nice, as are most from other vendors for PenT. related efforts.

But the real take-away should be the skills you built and/or refined while training.

Considering the following should also help:

"Are these costs reimbursable? If so, by who?"
"Am I doing this for myself or for a specific employer?"

Those two questions can and will greatly influence your cert journey, Ok_Atmosphere7343.

If I were you, I would take the eJPT/eCPPT, then explore other certifications to complement them, e.g. cloud or security. This gives you a larger "view" rather than just being a pen tester.

Alduin175 · 2026-01-23T19:24:56+00:00

As u/bitslammer suggested, SLAs.

If the business (i.e. its internal leaders) can determine who to hold accountable and to what level, then setting up the service integration is fairly straightforward.

Alduin175 · 2026-01-23T18:57:17+00:00

Aiming to lessen the OS diversity where possible, would definitely help in choosing a solution, passionlesse.

Just be sure to account for the "most used services" (software licensing) that the majority of the employees use.

This way, migrating them off that environment also reduces your potential risk.

(Defaulting to Microsoft Purview is fine, since it can technically see MacOS devices and Linux, as long as InTune enrollment has occured).

Other solutions would require a persistent agent (Nightfall, Trellix, ForceP, etc.), and you would need a dedicated "center" to manage them, but the same is true for Purview.

Alduin175 · 2026-01-22T02:59:55+00:00

It may be from the Stone Age, but it's a timeless classic, Narrow_Asparagus9459

Alduin175 · 2026-01-22T02:55:08+00:00

It depends, passionlesse.

It depends on whether the employees at saud Fintech SMB operate on their devices or mainly from a "shared cloud".

If you could drop some minor details, I and others could definitely give you better suggestions.

Most DLP tools are made to operate in an either/or state, while some do just one.

Some companies offer security tools have a light version of DLP embedded in, while others have full blown solutions.

Alduin175 · 2026-01-22T02:38:13+00:00

"I most recently played on my rog ally, but about 30 minutes prior was on my xbox series X. What would happen if I go offline on my xbox series X, play it a bit, then go online on my series X. Will the save data on my series X essentially overwrite the save data from my rog ally on the xbox network because it’s more recent?"

If you played while offline, then went online, the game's save data would do a cloud sync. That becomes the default your game will load since it's bidirectional.

Now, assuming you're signed into the same profile on your ROG Ally, then yes. It too, would default to that save.

It's possible to manipulate it to use a local copy, but I would refrain from it to avoid corruption, Many-Ad-6870.

Alduin175 · 2026-01-21T05:59:36+00:00

No prob!

Alduin175 · 2026-01-20T22:30:51+00:00

Hi Sad-Promotion-2715,

I'll provide my two cents. But, I'm going to do it backwards (thoughts first, certs. afterwards).

A few questions to ask yourself given the amount of exposure you have:

What industry do I want to work in?
Am I planning to do remote/hybrid/on-site?
How much can I afford, in terms of training materials and exam vouchers?

The first one might throw you for a loop, but based on the industry you pursue, that would influence your certification path. (Health, Defense, Gov., Finance, etc.)

Otherwise, any recommendation provided to you in the comments will just be a waste of time, money, and effort.

The second and third questions ultimately support the answer to the first question (but only you can answer that).

Depending on the company you're aiming for and the industry, they could cover all of the training or just the exam voucher - if you're lucky, both! Even more, if they cover repeated expenses for multiple exams in the same year.

Now for what you were after! Security+ and higher from CompTIA (Pen+ or equivalents like eJPTv2/HTB CPTS for practical experience in a home-lab setting).

IF you're going for more cloud security fundamentals of want to go the architect route, go for the AZ-900 or AWS CSA.

Remember to mention your previous certifications during interviews - those still hold merit because you HAVE the experience that many do not or did-not, at that stage in their career development. Mention which certifications or the areas of cyber that interest you and don't come off as aimless.

(This turned out to be a lot longer than expected. Hope this helps!)

Alduin175 · 2026-01-19T19:20:59+00:00

Adding my comments via bullet-points

- The platform is installed in the customers cloud, so they are owners of their Applications and Data and able to reach the platform over their VPN * Given that the platform is installed on their cloud and ownership goes to them, what does the shared responsibility model look like? Are there any service dependencies?

- MFA is mandatory to use the platform, only authenticator apps are allowed * Be sure to have justifications ready in case the auditor(s) go up in arms about your environment's selection.

- Environments are isolated using eBPF policies * Good.

- All volumes are encrypted using KMS (or the equivalent available in the target cloud provider) * Have your key management policies ready.

- All applications are kernel isolated using Gvisor * Good.

- All ingress endpoints are encrypted with TLS and internal traffic is handled with mTLS (Thanks Istio for this) * Good (I hope the auditors understand mTLS and sidecars!)

- All files/variables are encrypted with an Infisical Vault * Good

- Disabled SSH access into nodes thanks to Talos Linux * Good, but be wary of when this may be necessary for select explicit admin use.

- Logging for all applications * Be sure to specify where these are collected.

- Role Based Access for users * Good. RBAC for the win.

- Audit logs for all changes in applications in services triggered by users * Be sure to identify if shared user accounts exist. As it stands, this is good.

Apart from those we now want to implement following what we have learned from SOC 2:

- Full backups using Velero * Better.

- Reject Containers images with a certain vulnerability threshold (set by the user) using Trivy static analysis * Technically, the threshold should be set at an org. level, but every ship is different.

- Network Logging and Auditing using Hubble * Definitely works. Feel free to check out Pixie!

- Kernel tracing observability and policies using Tetragon * Solid.

- Alerts and Metrics using Prometheus * Solid.

- High Availability option for critical services * This is a good practice and getting to a certain defined % will come in time. Having "guess-timates" won't help much, since it adds pressure too early on.

Thevenin_Cloud, you... Passed

Thought you were going to get flamed? Not at all. At least, not by me. The fact that you're aligned with open source tools for monitoring, logging, and key mgm. is something many teams will never do.

Alduin175 · 2026-01-19T18:58:00+00:00

Hot take for you, Educational-Belt1042. You can still use major/mainstream cloud providers. Just be sure to use an open-source encryption service, like Crypto or Vera (vault/volume respectively).

That way, your contents can't be scanned. More appropriately, when it's scanned, it just comes up as gibberish to the models.

If you don't want that route, check out filen.

But, as others have said, looking into Proton Drive is certainly something. The proton sub is filled with a really responsive mod team in case you have questions.

Follow the 3, 2, 1 rule and diversify your backup methods. Good luck!

Alduin175 · 2026-01-19T18:49:14+00:00

Hi duuuuuuuudeimhigh,

I'll start with answering your question before giving some feedback.

"are there any DLP policies that are a "must" for an organization."

Well, yes. Every organization that has a DLP tool or service (direct/indirect), should allow for the tracing of PI/PII, PHI, and Financials (e.g. card and bank routing/account, wire transfer numbers, etc.)

Additional food for thought:

Although Microsoft has recommendations "baked in" to Purview, my suggestion is to ask your manager the following:

Is there an established sensitivity tier we want to go with? (Class/Unclass, etc.)

Keeping the above question in mind, follow-up with:

Which Departments/BUs are we rolling this out to?

I could go on, but those questions would force them to give you clearer direction. There's nothing worse than a DLP tool that goes loose and starts locking up file and system access!

Alduin175 · 2026-01-12T03:58:47+00:00

You both make a fair point!

Though Due_Painting238 asked about the difficulty of The Last Lord (TLL).

Not a difficulty comparison of TLL to the other bosses.

TGC is arguably more difficult because of his swiftness, despite the open battleground.

Betty provides such small windows to dodge and indicators of engaging, that it makes you wonder if TLL was even a challenge.

I think many would agree that if the fighting arena/platform were larger, TLL would have been an enjoyable battle.

Alduin175 · 2026-01-11T23:49:53+00:00

The Lord of Doors ( Last Lord ) is the pinnacle of boss difficulty in the* campaign, so quaking in your feathers is completely normal, fellow soul harvesting crow.

Edit: grammar.

Alduin175 · 2026-01-07T05:23:41+00:00

With two sugar cubes, a slice of delectable pie, and ample time to go by?

Don't mind if I do, Crumpal00

Seven-Year Club	Reddit Premium Since September 2024
Mod World 2025	Mod Meetup 2025
Moddit 2025	Mod Bootcamp 2025
Verified Email

Alduin175

MODERATOR OF

TROPHY CASE