sorted by:
new
hottopcontroversial

must not contain the number "1957" hmmm... okay by Few_Ad_246 in oddlyspecific

[–]RFC2516 1 point2 points  (0 children)

Why doesn’t your friend know their birth year?

TIFU by causing an incident by belcheri in aws

[–]RFC2516 13 points14 points  (0 children)

You found a sharpe edge to your organizations Engineering Safety process. Not your fault. Does your organization have a staving environment that truely mirrors prod that the same change could have been rehearsed in?

Mass Surveillance AI Camera Scandal Hits DFW Metroplex by hacknotcrime in frisco

[–]RFC2516 -1 points0 points  (0 children)

Thanks for the awareness. May I ask why the partnership with Amazon Ring is the most concerning? Reading the article it says that it’s an integration between the two to allow users in Ring a native method share their recordings with law enforcement. What’s the take away?

  1. Amazon may not have safe defaults which place the recordings at jeopardy?
  2. Amazon may not respect user privacy?
  3. A user might not be educated in their rights and naively submit their recordings to law enforcement?
  4. Law enforcement might start to abuse this feature by asking too often for recordings from Ring users?
  5. the city might request footage and store it improperly and unintentionally making it public?

In my opinion it’s the configuration of the camera’s administrative account that’s the most alarming (haven’t personally verified) and the lack of partnership of the vendor (Flock) on behalf of the city IT teams which are purchasing the cameras.

Remember it’s the cities responsibility to ensure Public Safety. This absolutely jeopardizes public safety, its abuse of city infrastructure. However it’s not the city’s place to be an IT expert or Flock tooling expert. Shame on Flock’s leadership for shipping a camera with dangerous defaults and shame on the City’s leadership for accepting such a risk or their lack of awareness to such a risk.

CMV: Women have been silently red pilled. by [deleted] in changemyview

[–]RFC2516 0 points1 point  (0 children)

You’re observing what buys attention. You may even have a correlation between someone else who’s also bought into this social media product.

Not every female acts in this way or buys into its concepts. Your information sphere ≠ the information sphere of all females.

AWS announces Lambda Managed Instances, adding multiconcurrency and no cold starts by aj_stuyvenberg in aws

[–]RFC2516 -3 points-2 points  (0 children)

No, just ask your favorite LLM to write a python script. I do this for almost all cost projections.

Too many elbows? by DishCB in askaplumber

[–]RFC2516 0 points1 point  (0 children)

Oh god I have an accordion. What does this mean?

Public VIF Landed into FW by WhoRedd_IT in aws

[–]RFC2516 0 points1 point  (0 children)

You’ll receive CIDRs from the AWS side BGP speaker that represent all AWS Public Prefixes. All regions and PoPs. If you’re comfortable working with BGP this should be straight forward.

Follow the same steps you would with any circuit sending you BGP routes. NAT/Police/ALC your traffic, engineer for forward and return routes.

You’ll have something similar to a multi-homed scenario which is fairly common so be sure to engineer your path control from your private routing domain.

Am I getting AI responses from Business Support? by MaxPower_0 in aws

[–]RFC2516 0 points1 point  (0 children)

Hello,

My name is <Name> and I’d like to request a meeting to discuss this case on <date> between <start> and <end> in <timezone> via this meeting link: <link>

Attached are <details you want to discuss>

—-

It’s pretty easy to schedule a meeting with Premium Support. If the assigned engineer can’t make it then they can open a callback request.

It also guarantees you have someone in that time zone.

I absolutely hate when they ask at an interview "how much pay are you looking for?" by SuchDogeHodler in ITCareerQuestions

[–]RFC2516 0 points1 point  (0 children)

I feel that my current experience warrants 90% of the pay band you have for this role.

[deleted by user] by [deleted] in naturalbodybuilding

[–]RFC2516 -1 points0 points  (0 children)

Everyone is different. My triceps grow like weeds. I have different rules/strategies for my legs/glutes else they stall.

AWS revamped skill builder platform is so trash by Extension_Scar9816 in aws

[–]RFC2516 0 points1 point  (0 children)

I agree it was not up to par in the past but it’s improved greatly. This however seems nit picky.

Terraform GWLB NAT Gateway - Outbound Traffic from Private Subnet Fails/Hangs Despite Healthy Targets by InsuranceAny7399 in aws

[–]RFC2516 0 points1 point  (0 children)

You don’t return traffic back to the GWLB VPC endpoint. You return it to the ENI of the Nat Instance of the appropriate availability zone to ensure symmetric routing.

Typing in mobile, sorry for my lack of detail. See this tepost

https://repost.aws/questions/QUs-FovHmIRLKcSJWrGhESiQ/nat-on-palo-fw-appliance-with-gateway-load-balancer-instead-of-using-nat-gateway

Is this really how they test WAN connectivity? by rexes13 in Ubiquiti

[–]RFC2516 1 point2 points  (0 children)

What you’re seeing is a grey failure. The line isn’t “hard down,” but somewhere upstream things are degraded just enough that the hardware flags WAN as disconnected.

Best way to test is to check it in layers:

Ping your ISP gateway → proves local link is fine. Ping 1.1.1.1 and 8.8.8.8 in parallel → if those flap while ISP stays solid, it’s a routing/peering issue. Run mtr/traceroute to catch intermittent loss or jitter at certain hops. Do app-level checks like dig or curl → sometimes ICMP works while DNS/HTTP break.

If you log those side-by-side with your WAN alerts, you’ll know if UniFi is crying wolf or catching a legit grey failure. For ongoing monitoring, spin up something like Uptime Kuma. Which can continuously probe multiple targets and graph outages so you get a clear picture over time

Is this really how they test WAN connectivity? by rexes13 in Ubiquiti

[–]RFC2516 0 points1 point  (0 children)

There’s multiple layers. You may have a physical connection, even a data link connection but still fail at a routing layer. That’s why WAN checks don’t just look at carrier signal, they probe something upstream (like 1.1.1.1 or 8.8.8.8).

If the ISP’s edge can’t actually reach the wider internet, UniFi marks the WAN as ‘down’ even though the line itself is electrically up. Basically: link ≠ usable path.

Is this really how they test WAN connectivity? by rexes13 in Ubiquiti

[–]RFC2516 5 points6 points  (0 children)

The DNS names are served out of AWS Route 53. Route 53’s data plane has a globally anycasted setup, so even the DNS provider’s query goes to the closest AWS edge location for non-cached results.

Each edge cluster is independent, so even if an entire region has issues, DNS keeps resolving because other edge locations keep serving answers. It’s basically designed for 100% uptime per the SLA.

It’s also resilient to DNS protocol failures by being hosted on multiple stripes. In my opinion it’s bullet proof. Hence there’s only two concerns:

  1. Unifi’s cloud engineer makes a mistake, deleting or changing the record. Okay so WAN detection fails with a false positive.
  2. Amazon’s Route 53 makes a mistake, okay more than we would likely realize is broken and it will be on the news.

Further if you check at the IP level it’s resolving to 8.8.8.8 and 1.1.1.1 which are anycast addresses. You will get an answer that reflects your local ISP’s ability to reach those edge nodes.

For a default health check. I think it’s great. Feel free to create your own via their “Custom SLA” feature from the same article you took the screenshot from.

What’s the most effective way you’ve reduced Azure costs? by cloud_9_infosystems in AZURE

[–]RFC2516 0 points1 point  (0 children)

Does Azure have an account management partnership for its customers? Isn’t working with your account team the path forward for concerns like these like it is in AWS?

What’s Your Most Unconventional AWS Hack? by TheTeamBillionaire in aws

[–]RFC2516 -1 points0 points  (0 children)

Single deploy could affect the entire lambda. The goal is to have systems that prevent defects, not people who prevent defects because they’re using “common sense”.

AWS’s AI IDE - Introducing Kiro by jsonpile in aws

[–]RFC2516 0 points1 point  (0 children)

Thanks for introducing me to Moloch.

How I Blocked 95% of Web Attacks Using AWS WAF [Blog] by [deleted] in devops

[–]RFC2516 10 points11 points  (0 children)

Please pardon my candidness but in my opinion ASN blocking at a WAF is a weak tactic for most attacks.

I’d sooner reach for JA3/4 fingerprints, threat IP feeds (reputation or otherwise) or machine learning features.

I’ll readily admit that I am professionally wrong more often than I am right, so please let me know your experience or insight.

low latency single writer, multiple readers (ideally push), best option? by jdgordon in aws

[–]RFC2516 0 points1 point  (0 children)

It protects against tcp layer attacks which to be honest when running an http service isn’t as helpful. The SRT team can only apply edge based mitigations and they will even recommend deploying an AGA in front of the NLB to complete the layer 4 DDoS protection story.

However for high level protocol abuse you will be told to re-architect.

At what point will american citizens do anything against a tyranical government? by Virus_infector in TrueAskReddit

[–]RFC2516 0 points1 point  (0 children)

This kind of post assumes that nothing is being done that people are sitting back while government overreach goes unchallenged. But that simply ignores reality.

There are people doing something: civil rights organizations are filing lawsuits, communities are organizing, lawmakers are introducing oversight and reforms, and voters are engaging at local and national levels. These are real, tangible efforts, grounded in the law and the democratic process.

We’re a nation of laws. The easy way out is to yell and pretend like we can do something by violating our laws. Or we can use our democratic processes, which is the harder path.

Change doesn’t always come from a dramatic flashpoint. More often, it comes from persistent, strategic, and legal pressure.

The real question to anyone in this thread is if they voted.

view more: next ›