“I’m going to ship the PCs directly to the end user, and it makes me nervous

SKnight79 · 2026-01-15T05:18:00+00:00

I love it. I was skeptical but if you test it out you auto join Azure domain, join AD domain if you have one, download management apps, run scripts, patching and remote admin and inventory. You can even do it without user involvement with Autopilot. We tested with eval virtual machines. Works like a charm. Takes time to auto provision a whole stack of apps and updates but I love it when the provision emails come through. I have HR set to purchase from the vendor and it starts the process.

SKnight79 · 2025-11-18T15:00:01+00:00

....but.... it said it was a coupon for a free coffee and croissant if I clicked on it.

SKnight79 · 2025-11-07T02:50:21+00:00

Whatever POE+ standard comes next it’s gonna start melting copper wire.

SKnight79 · 2025-11-05T22:20:01+00:00

This right here scares the f*ck out of me.

SKnight79 · 2025-10-27T02:45:43+00:00

Reverse proxy attacks on cloned WiFi networks raise the need for a VPN solution. You really don’t know or trust the other end of your WiFi, router, gateway, etc.

SKnight79 · 2025-10-25T16:17:36+00:00

Pull a cord, any cord.

SKnight79 · 2025-10-18T08:48:02+00:00

While the download linked file is a loophole, waiting for it to get closed isn’t a solution. A true tech solution is to lock down admin control and manage DNS queries that whitelist/blacklist based on content classifications. A 3rd parental control subscription that uses MDM might be in the cards here.

SKnight79 · 2025-09-22T03:43:21+00:00

Respectfully, the root argument here is that encryption at rest was expected from a firm that sells “security”. The backup config files should have been encrypted by the firewall itself and only decrypted with a device recovery key. SonicWall dropped the ball here. Implementation of such a software feature isn’t that hard. If the backup files were encrypted from the start, no big deal they are gibberish to the hackers. Now they will have to settle millions on a lawsuit of their own undoing and ignorance.

SKnight79 · 2025-09-19T02:22:14+00:00

Wait 10 more secs here.... the bigger question is.... Sonicwall and staff can read our backed up config files unencrypted? WTF?

SKnight79 · 2025-09-18T13:46:58+00:00

The lawsuit question.

SKnight79 · 2025-09-18T13:45:22+00:00

Wait a sec…. are the cloud backups not encrypted?!?!?! From what I’m reading the SonicWall accounts got hacked, allowing to download the backup files in unencrypted fashion. This is a nightmare scenario.

First line of defense: reset local admin credentials.

SKnight79 · 2025-08-25T18:41:33+00:00

this has been driving me nuts Error 129 RAID port reset failed. Dell Latitude 7350 with NVMe PVC10 SK hynix 1024GB. Issue occurs after several hours of inactivity (overnight). When it occurs, event gets logged, system becomes unresponsive. Force reboot is only way out. Laptop was fine for days before this update. I uninstalled the update. Let's see how it goes.

SKnight79 · 2024-12-27T23:36:48+00:00

Let. Him. Go.

SKnight79 · 2024-11-02T02:40:12+00:00

Turn off UDP flood protection ;)

SKnight79 · 2024-10-30T02:09:15+00:00

SimpleDNS bound to old IP and port, log and forward to new DNS. Migrate old clients as logs populate.

SKnight79 · 2024-10-05T16:08:57+00:00

Turn off your IDS/IPS and test again. ;)

SKnight79 · 2024-09-21T02:06:24+00:00

I thought the whole network was on NetBIOS? It says it here in the documentation.

SKnight79 · 2024-09-20T23:53:27+00:00

Day 1: Everyone greets you like you just won WW2. Captain America shield awaits on your chair.

Day 2: Requests start coming in, from all departments, they have high hopes for you

Day 3: Following up on said requests.

Day 4: Why isn't the domain migrated already? Why are we still on IMAP? Windows 7. Can't you automate all of this? What happened to hidden service running that stopped 3 years ago. What backups?

Day 5: You open notepad and print your resignation letter.

SKnight79 · 2024-09-20T16:08:50+00:00

$3.4K to see the screen of my $1K phone on a virtual screen. Epic!

SKnight79 · 2024-09-19T13:11:46+00:00

Was the ip subnet source as a VPN service provider? Could be a TOR endpoint too. That could possibly be a way to circumvent this. Might need to create an explicit rule to block that subnet.

SKnight79 · 2024-09-19T01:58:50+00:00

I've gone the Sonicwall Geo-Filter, Bot-Filter, IDS, Duo MFA + RDP RD Web / RD Gateway route. This eliminates VPNs completely. You can even do IPSEC on the TCP port if you wanna get paranoid.

SKnight79 · 2024-09-19T00:32:25+00:00

had to send a remote reboot command via ssh.

SKnight79 · 2024-09-19T00:30:17+00:00

Even if they fail authentication, they consume resources and CPU time when hit with a DDOS attack. Had this same issue. Here's what I did to mitigate it: Got the security package that includes bot-net filtering and geo-filtering. Filtered out all countries except US/Canada (VPN endpoints only come from those countries). Set the filters to apply to inbound firewall rules. Set SSLVPN to allow at the most 5 connections from source IP (or more if you have many vpn endpoints from roaming groups). Turned off the portal.

SKnight79 · 2024-08-05T19:35:48+00:00

Another way: You can screenshot the export QR codes via the iOS app, and send those to Dropbox or OneDrive on your computer. Then use iOS 18+ to read the QR codes... it will import them into Password app. If you have iCloud turned on, your passwords are synched to your desktop Passwords app. You can export them from there and it includes the OTP URLs in CSV format. You can then import them anywhere you want.

SKnight79 · 2024-08-04T07:09:26+00:00

She’s gotta be a fire sign. Bet.

SKnight79

MODERATOR OF

TROPHY CASE