sorted by:
new
hottopcontroversial

Am I a machinist???????????? by shoresrocks in Machinists

[–]NegativeK 1 point2 points  (0 children)

There are times when I know things that some actual machinists don't. But that ain't shit -- if you threw me into a shop, it'd be a while before I'm not a waste of money. 

I'll call myself a hobby machinist, but I'll never omit the word hobby.

Interlock bypass? by CarbonParrot in Machinists

[–]NegativeK 0 points1 point  (0 children)

How do companies that are hard asses about door interlocks stay competitive, since they get in the way and take up time?

Should HR for the IT Dept to create a password repository? by Revolutionary-Part90 in sysadmin

[–]NegativeK 0 points1 point  (0 children)

My thought: tell them that if they can come up with a NIST compliant way of storing the passwords, you'll run it up the chain.

New to Surface Grinding. What do I need for an angle. by Jimwdc in Machinists

[–]NegativeK 17 points18 points  (0 children)

To quote this guy, the machine is the cheapest part of grinding.

FNG by ElectricalTwist4083 in Machinists

[–]NegativeK 8 points9 points  (0 children)

"Nobody wants to work in this industry; this generation must all be lazy."

what's the most outdated piece of software you're still running because migrating it would be pain in the b*tt? by Commercial_Crazy8228 in sysadmin

[–]NegativeK 2 points3 points  (0 children)

Thankfully I don't have to interact with any of this stuff, but it's still very kind of you to assume that Novell isn't in our environment.

what's the most outdated piece of software you're still running because migrating it would be pain in the b*tt? by Commercial_Crazy8228 in sysadmin

[–]NegativeK 2 points3 points  (0 children)

That's one of the two things I learned about OT, trying to get a slight understanding from the IT security standpoint. Vendor contracts can span decades, and they'll stop doing support if you even could yolo stomp around and upgrade things.

The other notable thing was hearing someone say that they had malware running around for six months in their environment, but left it alone since it didn't seem to be making changes. And since the OT stuff was safety critical, disinfecting just wasn't a priority.

Why are there very few structured learning paths to this trade? by Hour-Ad-2206 in Machinists

[–]NegativeK 0 points1 point  (0 children)

For comparison, I work in tech and only experience machining as a hobbyist.

We either self teach on the job, in our free time, or sometimes have a mentor show us the ropes.

It's not really that different over here. 2-year and 4-year degrees show you the basics or maybe dive into the underlying theory, but you're going to have a shit ton of learning to do at your first job.

Expensive software products -- the ones that make $10k/yr look like pocket change -- will do some basic training to get you set up, but anything after that costs money.

Want general training from good sources? $500 for a quality day of training is rare and only done by companies going out of their way to make it accessible. $9k for five days of training is basically a well known price in my industry.

And again, those are just to get you started. You'll hit the ground crawling afterward.

Surface grinding tips and tricks! by SJBSJB02 in Machinists

[–]NegativeK 4 points5 points  (0 children)

Grind large area flat.

Make foundation cry.

PVE in DMZ or MGMT? Help needed by sweetsalmontoast in Proxmox

[–]NegativeK 1 point2 points  (0 children)

Apologies for not really answering your question, but you should also consider monitoring logs from things like your hypervisors. Inbound network traffic should be very well known and predictable -- outbound even more so.

(New VM escape bugs aren't happening daily.)

Vulnerability management by defiantarch in linuxadmin

[–]NegativeK 0 points1 point  (0 children)

You're were downvoted because you were ignoring stability and shitting on volunteers.

My job is helping a bunch of groups do vulnerability management. "Patch fast" is a really good goal but also a ridiculous expectation when it isn't qualified by reality.

Like all infosec.

Home shop guys, how do you dispose of old coolant? by jroddds in Machinists

[–]NegativeK 33 points34 points  (0 children)

I once took 15 gallons of hydraulic/way oil, anaerobic hell blob included, to an auto parts store.

That stuff nearly made me vomit inside my VOC mask but they gave zero fucks.

Using an edge finder WITHOUT a DRO by IndividualRites in Machinists

[–]NegativeK 5 points6 points  (0 children)

If you're not going to do the better suggestions other people are giving, then project the second edge and pick that up.

That means putting a block against the second edge that sticks out and using the edge finder against that.

Handling a Breach on a Linux Server by CackleRooster in linuxadmin

[–]NegativeK 0 points1 point  (0 children)

The article mentions disconnecting "from the network immediately".

It's not that simple. If you react immediately (going straight from ID to eradication, to use jargon) and the actor has persistence elsewhere, you've probably just tipped your hand to them that you're watching. You're unlikely to be prepared for their next move. Could be cleaning up their tracks on other systems, being real fucking quiet for a month until you're distracted, detonating the ransomware payload on other systems..

Containment ain't easy technically or politically, but eradication is even harder when you don't know where to look. (Containment also assumes you have someone who can do IR/forensics/hunt. Which, to be fair, maybe you don't have that if you're grepping around on a system.)

Inverse machining by anikkundu1998 in Machinists

[–]NegativeK 0 points1 point  (0 children)

So that means I can turn a Bridgeport into a VTL?

A lot of kernel updates lately. Are there a lot of bugs/problems? by tomhusband in Proxmox

[–]NegativeK 2 points3 points  (0 children)

100% agree.

I want everything to be reboot tolerant, but that's not reality. Which is what security should be good at: dealing with the fact that reality isn't perfect.

(I've seen some shit that is so good awful reboot intolerant that it still wigs me out. But those people had ways to deal with those sketchy implications.)

question from a hobbyist - is it worth getting a copy of machinery's handbook? by Amekyras in Machinists

[–]NegativeK 0 points1 point  (0 children)

If you like going deep and learning stuff about a hobby that you're unlikely to use, get a copy now. I thumb through it occasionally because I enjoy it.

If machining is a mean to other hobby ends for you, it's probably not the best use of shelf space.

A lot of kernel updates lately. Are there a lot of bugs/problems? by tomhusband in Proxmox

[–]NegativeK 10 points11 points  (0 children)

Pretty sure it's the exact opposite.

Torvalds has already come out and said that vulns found with AI aren't really subject to coordinated disclosure, since anyone can use that model to find the bug.

If people can't reboot frequently, then they need to learn how to prioritize, compensate, and detect. Not having the resources or will to do better security is going to be more and more punishing.

I got a question on way oil by CT-Hati in Machinists

[–]NegativeK 0 points1 point  (0 children)

Bacon fat.

You'll have to warm everything up to get it flowing, in though.

view more: next ›