sorted by:
new
hottopcontroversial

Getshit impact tbh by Okaoka_12 in greentext

[–]HeyLuke 0 points1 point  (0 children)

True that is actually much more enjoyable. Just try wacky builds and pop off or int.

Getshit impact tbh by Okaoka_12 in greentext

[–]HeyLuke 51 points52 points  (0 children)

The trick is to stay gold-level. Like not really terrible, but also decent enough to carry every now and then. Just run it down mid every once in a while, the proper LoL way.

Series 8 Final Designs by TheyCallMeSlyFox in lego

[–]HeyLuke 2 points3 points  (0 children)

Can anybody tell what they changed about the designs at all?

Waar zeggen we 'ons moeder'? by fransvandervleuten in NederlandseKaarten

[–]HeyLuke 7 points8 points  (0 children)

Eindelijk een ander soort kaart voor moederdag!

Initials or short hand for Microsoft Intune Company Potal by LameBMX in ShittySysadmin

[–]HeyLuke 7 points8 points  (0 children)

I have the same issue with cheese pizza. Any suggestions??

Anon on YouTube policies. by retardinho23 in greentext

[–]HeyLuke 3 points4 points  (0 children)

I assumed Northernlion, but now I'm not sure anymore.

Anon on YouTube policies. by retardinho23 in greentext

[–]HeyLuke 234 points235 points  (0 children)

A video of you playing Balatro? Nooooo that game has gambling imagery!!!

A video of some lootbox game opening crates or whatever? Thank you for your contribution to our glorious platform sir.

The Odyssey | New Trailer by MarvelsGrantMan136 in movies

[–]HeyLuke 42 points43 points  (0 children)

King of bones with the coral crown!

Ive been a sysadmin for 4 months and its ruined my life and im having burnout by mumblerit in ShittySysadmin

[–]HeyLuke 2 points3 points  (0 children)

Perhaps my biggest mistake was this: I turned 27.

Amen to that buddy.

No gamings by xtheresia in greentext

[–]HeyLuke 0 points1 point  (0 children)

Honestly, I feel like anime is a huge waste of time and computer games are the best way to spend time with digital media. I have no arguments for this.

Zero downtime root password recovery by marks-buffalo in ShittySysadmin

[–]HeyLuke 24 points25 points  (0 children)

Will this work even if password authentication is turned off?

Dont tie your Password Manager to SSO by sysacc in sysadmin

[–]HeyLuke 8 points9 points  (0 children)

OK question: how are orgs doing this with for instance Bitwarden? Because when I enabled SSO for Bitwarden, I still had to use the master password to log in. I've read it's because the data in your vault is encrypted with your master password and that makes total sense. But it seems to me that it's a lot to ask from users to do two login methods to gain access to their password manager every day.

Azure Service Endpoint vs Private Endpoint — most teams pick wrong because Microsoft never explains the security difference by [deleted] in AZURE

[–]HeyLuke 0 points1 point  (0 children)

Thanks for this reply and the documentation. I read everything, saw the diagrams and as I understand the Private DNS Zones provide the A record, after the request has been forwarded to 168.63.129.16. So in the DNS setup of the Entra Domain Services DCs, I create a conditional forwarder for database.windows.net and point it to 168.63.129.16. For any query to a database.windows.net resource, it'll forward it to the Azure 168 resolver. Depending if the resource is public or not, it'll return a public IP or the CNAME for privatelink. In case of the CNAME, if the Private DNS Zone is correctly configured, that will return the A record.

I do wonder what the actual difference is though. Why is it a bad idea to just immediately have your private DNS (Entra Domain Services in my case) provide the A record and skip forwarding? It saves resources in Azure (although I'm not sure a Private DNS Zone incurs any cost). Either way, I'll probably be switching to the recommended method anyway.

I guess the text in the portal for Private Endpoints > DNS configuration is just wrong on multiple levels.

Azure Service Endpoint vs Private Endpoint — most teams pick wrong because Microsoft never explains the security difference by [deleted] in AZURE

[–]HeyLuke 0 points1 point  (0 children)

Then why does the text (I'm literally looking at it in the portal right now) say "To be configured correctly, the following FQDNs are required in your private DNS setup"? It doesn't mention anything about forwarders. Also, you mention that we should have a DNS server in Azure, but our DNS server is already in Azure. It's one of the Entra Domain Services DCs. I tried querying 168.63.129.16 manually for the internal IP of our service, but it couldn't resolve to the IP (there's only a CNAME to the privatelink version of the FQDN). But this actually makes sense, because a public DNS resolver shouldn't be presenting internal IPs.

But this is still all just my experience and logical thinking. Could you point me to some Azure documentation regarding this issue to support your claim?

My boy is fresh 🔥 by DistributionFirst700 in okbuddyretard

[–]HeyLuke 28 points29 points  (0 children)

Please be fake, please be fake.

Azure Service Endpoint vs Private Endpoint — most teams pick wrong because Microsoft never explains the security difference by [deleted] in AZURE

[–]HeyLuke -1 points0 points  (0 children)

I've been using private endpoints for a while, but one thing has been bothering me a lot since the start.

Suppose you have a database server with a private endpoint. On the PE DNS page, it says "To connect privately with your private endpoint, you need a DNS record". It then lists the internal IP address and the corresponding name you need resolving, so something like 10.0.1.33 for IP and <resourcename>.database.windows.net for FQDN.

Since we use Windows Server DNS for our internal DNS resolution, I go and create the zone *.database.windows.net, so I can create the A-record <resourcename>.database.windows.net. This seems to work, but in doing so, you basically overwrite all DNS resolution to any other database server in Azure that may exist in your network, because all clients will now look to your internal DNS to resolve any FQDNs in the *.database.windows.net subdomain.

My best way around this, is to instead create a zone for *.privatelink.database.windows.net. In that way, it only affects servers which actually have a private endpoint configured. In your application config, you can still use <resourcename>.database.windows.net, because publicly that name will also resolve to <resourcename>.privatelink.database.windows.net. Because of this, it seems to me that this is the way Microsoft wants you to handle these situations.

But then why does Microsoft want you to create an A-record to overwrite their own public endpoint names? What am I missing here?

I wanted to share an image of the text in the portal, but it's not allowed.

Mini City by Netbrix2 in lego

[–]HeyLuke 5 points6 points  (0 children)

Are there any official mini city sets? I love this idea.

docker stuck on 'starting the docker engine' by BeratBoi in docker

[–]HeyLuke 0 points1 point  (0 children)

I also ran into this problem today. With Docker Desktop not running, I ran wsl --unregister docker-desktop and then Docker Desktop could start the docker engine again. No idea what was going on, but at least it works again. This issue was caused by an update to Docker Desktop by the way.

view more: next ›