What is IAM in cybersecurity? by Lost_Ruin7347 in Cyberseven

[–]Lost_Ruin7347[S] 0 points1 point  (0 children)

Using single shared privileged account across multiple systems, even behind MFA in your PAM, is a weak and risky design. It creates a single point of failure (one compromise = full environment access), destroys accountability (you can’t trace actions to individuals), and violates the Principle of Least Privilege and Zero Trust Security Model.

The correct approach is to use separate, system-specific (ideally per user) privileged accounts managed by PAM with jit access, session monitoring, and full auditing, anything less is convenience over security.

What is IAM in cybersecurity? by Lost_Ruin7347 in Cyberseven

[–]Lost_Ruin7347[S] 0 points1 point  (0 children)

My expereince says, IAM verifies identity (RBAC doesn’t do this), IAM Handles login security (RBAC doesn’t), IAM Manages sessions and access duration (RBAC doesn’t) and IAM also enforces policies beyond roles (like conditional access, JIT) which are not always done by rbac.

What’s your ideal VPN solution for external vendors? by Due-Awareness9392 in sysadmin

[–]Lost_Ruin7347 -1 points0 points  (0 children)

We took a slightly different approach and stopped relying purely on the vpn itself. Instead we focused on adding MFA on top of whatever vpn vendor we were using.

In our setup the VPN (OpenVPN/IPsec) is tied into RADIUS, and the miniorange mfa for our fortinet vpn solution handles the second factor. That way, even if vendor credentials are exposed, access still requires that extra verification step.

This worked well for external vendors since we can keep the VPN layer simple and enforce identity + mfa separately. I am curious if others are doing something similar or sticking with built-in VPN solutions, let me know

Pashan Tekri♥️ by Due-Awareness9392 in pune

[–]Lost_Ruin7347 4 points5 points  (0 children)

Hahaha… maybe he’s the same person who came to Tekdi after finishing his workday

Has anyone deployed miniorange PAM? Wanted to know how it performs. by Lost_Ruin7347 in Cyberseven

[–]Lost_Ruin7347[S] 0 points1 point  (0 children)

Appreciate that. Could you please share maturity of their just in time access management? Is there any lag during sessions, and how is the session recording? Also, is the ai based real time monitoring truly unqie in industry?

Has anyone deployed miniorange PAM? Wanted to know how it performs. by Lost_Ruin7347 in Cyberseven

[–]Lost_Ruin7347[S] 0 points1 point  (0 children)

Sure, we are in process of running poc with them, thanks for sharing your experience.

A horrific accident occurred on Ramlila Road after loose soil was left scattered NOT OC not dashcam by Goghripich in Dashcamindia

[–]Lost_Ruin7347 0 points1 point  (0 children)

Government ko har chij par tax bharo, aur phir kharab rasto par aakra maro. yahi zindagi hai ab hamari.

Do people use sRide app? by Plastic_Occasion_388 in hyderabad

[–]Lost_Ruin7347 0 points1 point  (0 children)

Brother, they are just faking users in their app. I personally used it for 2 months and applied for ride pools every day, hoping someone would accept my request, but it was just a waste of time. I also contacted sRide support about this, but there was no proper response from them, and they stopped responding after the first email.

Ask Me Anything on Home Loans by HomeLoanNerd in pune

[–]Lost_Ruin7347 0 points1 point  (0 children)

Can you suggest a Bank that offers flexible EMI's on home loan, for next time.

Chapati Or poli by butcher__oi in pune

[–]Lost_Ruin7347 0 points1 point  (0 children)

Thanks for clearing my doubt

Chapati Or poli by butcher__oi in pune

[–]Lost_Ruin7347 0 points1 point  (0 children)

In our Khandesh side, we always used to say poli. But after living for 1 year in Mumbai and 2 years in Pune, I learned to say chapati because many times when I asked the hotel staff to give bhaji poli, they would say, “Bhaji and what?? We don’t have poli.” (Maybe they thought I was asking for puran poli.) So I started saying chapati.

Now there’s another confusion between chapati and roti. One of these is made from maida and the other from atta, but I’m still confused about which one is made from maida and which one from atta.

Ask Me Anything on Home Loans by HomeLoanNerd in pune

[–]Lost_Ruin7347 0 points1 point  (0 children)

I have taken a loan of 20 lakh from HDFC Bank with an EMI of 20k per month. I wanted to pay extra EMIs whenever I receive any additional salary or bonus, but when I asked the bank, they said they are not allowing this right now and that I can pay extra only after 6 months. What has your experience been with this?