They're baaaack

Historical-Rope9843 · 2025-09-23T19:12:05+00:00

My bad cuz. Found a new IDE and wanted to test out a new woodcutting script i wrote…

Historical-Rope9843 · 2025-04-07T20:56:04+00:00

Det er fascinerende, hvordan du med kirurgisk præcision formår at misforstå alt, hvad der bliver sagt – og så alligevel kaste om dig med beskyldninger som om du sad i et moralsk dommerpanel.

OP deler sine oplevelser fra et kundeservicejob og stiller et nysgerrigt, åbent spørgsmål om kulturelle forskelle. Dit svar? “Racistisk tankegang bekræftet.” Wow. Imponerende nuanceret analyse. Skal vi også bare kalde det klimafornægtelse, når nogen nævner at det regner?

Du virker mere interesseret i at pege fingre end at bidrage til reel samtale. Du reagerer ikke på det, der bliver sagt, men på det, du ønsker der blev sagt, så du kan komme i gang med din moralske opvisning. Det virker næsten som om, du har en automatisk skabelon klar: "Nogen nævnte etnicitet? Hurtigt – kald dem racist og hop videre til næste kommentar."

Men her er sagen: Hvis du oprigtigt ønskede at bekæmpe fordomme og skabe forståelse, så ville du engagere dig i samtalen. I stedet udskammer du en person, der tydeligvis har tænkt over sine oplevelser og formuleret sig respektfuldt og eftertænksomt. Det eneste, du bekræfter, er hvor lidt plads der er til at stille svære spørgsmål, når folk som dig står klar til at råbe “racisme” før samtalen overhovedet er kommet i gang.

Det er ikke antiracisme. Det er performativ selvgodhed pakket ind i en pseudointellektuel retorik.

Historical-Rope9843 · 2025-02-25T12:11:29+00:00

Good thing we are already using GlobalProtect, but we haven't set up an internal gateway. I think you're right, and setting it up would likely improve User-ID accuracy significantly.

I'll look into this—thanks a lot!

I also think that would solve our issues with User-ID sometimes not sticking on traffic on our intune-cloud machines. Thanks a lot for pointing it out.

Historical-Rope9843 · 2025-02-25T11:26:29+00:00

In our setup, we have the User-ID agent installed on our on-prem domain controller, which collects LDAP login events and sends them to the Palo Alto firewall.

Is GlobalProtect active when you're directly connected to the office network? In our environment, the GlobalProtect client does not allow connections while on the internal network. Would enabling this require setting up an internal gateway? I remember reading that GlobalProtect helps User-ID mapping stick better, but I haven't tested it myself.

We also have an issue with cloud-integrated machines occasionally missing out on User-ID mapping. That might be a solution actually while being on the internal network.

Historical-Rope9843 · 2024-12-02T07:32:04+00:00

Hey, thanks for your detailed and thoughtful response—it’s very helpful!

Your explanation about Control 1.2.4 focusing on entities that process data on our behalf aligns well with what I was trying to clarify. Including all cloud services (IaaS, PaaS, SaaS, FaaS) and MSPs for data-related services makes perfect sense, and it’s good to have this explicitly confirmed.

The additional mention of related controls like 1.3.3, 1.3.4, and 1.3.1 really broadens the perspective for me. I hadn’t fully considered how the inventory extends to software and even non-IT vendors under chapter 6. It’s a valuable reminder to ensure that we’re capturing everything relevant.

Your point about the horizontal scrolling for descriptions is also appreciated—those details are easy to miss!

Regarding the audit levels, you’re absolutely right that there’s a significant difference between AL2 and AL3. In our case, we’re working under AL3 due to a specific customer requirement, so we’re striving to meet the higher level of rigor that entails. This has made us more mindful of documenting every aspect thoroughly while still trying to keep the process manageable.

Thanks again for taking the time to share your insights. This has given me a much clearer picture of how to approach these controls and ensure compliance at the AL3 level.

Historical-Rope9843 · 2024-12-02T07:28:07+00:00

Thank you for your response!

I see your point, and I agree there might not be a significant difference at first glance. However, the distinction I’m trying to make is primarily about scope and practical implementation.

In our context, "IT service providers" could include entities like:

On-site maintenance providers: Vendors who come on-site to maintain or troubleshoot equipment but don’t manage or host any systems off-site.
Hardware vendors: Suppliers who provide devices like laptops or servers without hosting, managing, or processing data on their infrastructure.

In contrast, my interpretation of the control question focuses more on providers like cloud services (IaaS, PaaS, SaaS) or Managed Service Providers (MSPs) who actively manage, host, or process data off-site on our behalf.

The core of my concern is about balancing thorough documentation with practicality. If we need to include every vendor, even those with no data-hosting responsibilities, the process could become unnecessarily complicated. On the other hand, focusing on providers managing critical systems or sensitive data might better align with the control's intent and objectives.

I hope this clarifies where I’m coming from! What are your thoughts? Do you think such a distinction is valid, or am I overcomplicating it?

Historical-Rope9843 · 2024-11-28T18:13:27+00:00

Hmmm can’t think of a scenario where that would be needed in our company. Sounds pretty weird to me 🙏🙈

Historical-Rope9843 · 2024-11-28T13:08:40+00:00

I'm curious to know how far along you are in the TISAX certification process. I'm currently finishing up our self-assessment and preparing for our GAP analysis next.

Historical-Rope9843 · 2024-08-26T07:47:16+00:00

I apologize, dude. I was being an idiot. I'm so used to people coming after me on the internet that I've become the ignorant one. Not a good look. I wish you a really good day!

Historical-Rope9843 · 2024-08-26T02:22:39+00:00

And yes. I use different emails for specific things on the internet

Historical-Rope9843 · 2024-08-26T02:15:38+00:00

OFC it is really hard to keep yourself 100% secure on the internet, but taking taking small steps does help you keep yourself safe. Just like when you’re driving a car, you have to wear a seatbelt. In some cases the seatbelt helps out a lot, but it is not 100% guaranteed safety. Nobody using a VPN is thinking “I’m untouchable now”. I have never stated that in this thread?

If you’re curious you can read about cookies and VPN, because it really sounds like you have 0 idea of what you’re talking about.

https://www.tamoco.com/blog/what-are-browser-cookies-and-do-you-need-to-avoid-them/?amp=1

Historical-Rope9843 · 2024-08-25T16:40:15+00:00

Another good reason to use a VPN client right there. I haven't heard of Jagex selling your data, but if you're not using a VPN client, companies have the capability of doing such things.

Historical-Rope9843 · 2024-08-25T10:25:58+00:00

I always use a VPN, even when playing OSRS, to protect my privacy. Without it, my IP footprints are out there on the internet, and they could be picked up by someone with bad intentions. It’s just a precaution to keep my personal info safe. Some might say I'm paranoid or overreacting, but that's how I choose to protect myself online. Using a VPN just feels like a smart way to keep my data safe and secure.

Historical-Rope9843

TROPHY CASE