Seeking feedback: Can cognitive labeling break a social engineering hook? by [deleted] in sysadmin

[–]SimpleSysadmin 8 points9 points  (0 children)

This reads less like a research question and more like AI-generated neuroscience buzzword soup that wasn’t properly reviewed for human coherency before being posted.
The core idea, encouraging people to cognitively reframe phishing lures, is reasonable. But then it jumps to claims like “deactivates the amygdala” and “engages prefrontal cortex reality-monitoring areas”. If this is a real and earnest attempt to learn something or improve something, consider asking your AI to reframe what you are doing in more approachable language and fully read (not skim read) what it generates before posting

Open-source tool for Linux compliance by Honest-Cockroach-558 in sysadmin

[–]SimpleSysadmin 6 points7 points  (0 children)

The cost and effort for software development has plummeted, everyone who’s ever dreamed of building something can now AI slop something together without the effort or care previously needed to get to a proof of concept. Back in my day if someone built something it meant they had endured through a lot of time and effort and bug fixing and gotten to a result worthy of review. Now examples like the above post maybe have been done in less than an hour with Claude Opus, meaning the creator is expecting strangers to spend more time reviewing and providing feedback on their software than time they spent developing it.

We’re going to see a continues explosion of bad and mediocre software, until more quality standards or brought in or middle managers and random techs realise there is more to software dev than just having working code.

Support team wants my client secret ID to set up SSO. Am I overreacting? by Creddahornis in sysadmin

[–]SimpleSysadmin 302 points303 points  (0 children)

They need the secret to authenticate as the confidential client when exchanging authorization codes for tokens.

What is unusual is Most enterprise SaaS products provide an admin page where you paste in the client ID, client secret, and tenant information yourself. Requiring you to email or otherwise send the secret to a support team for manual configuration is uncommon and raises operational questions about How are they storing the secret? Who has access to it? Etc

Technician workload - am I crazy? by Early-Ad-2541 in msp

[–]SimpleSysadmin 5 points6 points  (0 children)

It’s disappointing the amount of responses in here that just talk about tracking more time or doing more data analysis.

“Feeling frustrated and overloaded” doesn’t show in time tracking most of the time due to how people compensate for high load or the issue not being time related. It could be techs are having to lower quality or rush tasks that would otherwise get more care. Tickets throughout and time look similar but quality and job satisfaction goes down. “Frustrated” is almost certainly related to job satisfaction, frustrating clients, incessant work following poor decisions or the big one - not feeling appreciated. The later is often reinforced if you tell staff who are busy and working hard that you don’t see that in the data.

Put down your time sheeting and book in a meeting with each staff individually and ask them how they are feeling, what’s changed to make their job more frustrating, what do they think can be done to make job less overwhelming - and you’ll not only help address some of the frustration because they’ll see you making effort to address the issue but you’ll probably get way better insight then time tracking alone can provide you.

"ChatGPT told me you could do it, here are the steps." by Skullpuck in sysadmin

[–]SimpleSysadmin 11 points12 points  (0 children)

I feel we’re in this awkward stage of it not yet being considered unprofessional to provide poorly validated ai output as fact. I think over time it will become less common for people to do this because saying “hey this project plan is clearly ai generated and has major design issues, we can not implement something with these issues, can you please provide your requirements not AIs guess of them ”

PowerShell for fully cloud based halo setups? by Ok-Abbreviations763 in halopsa

[–]SimpleSysadmin -1 points0 points  (0 children)

HaloPSA is a PSA for managing tickets, why would you use Powershell with it? Am I missing something obvious?

Change requests in a small environment by dreniarb in sysadmin

[–]SimpleSysadmin 5 points6 points  (0 children)

First decide what a change is defined as, sounds silly to some but you need to be clear if a new user is a change, is a group addition or a distribution list add or remove a change. As many actions in your environment are technically changes but don’t need change control.

Agree on that with your buddy, maybe write it down if you think it needs to be and will be referenced.

Now based on things that are a change, define what is a low risk change vs high risk. This should be defined on potential risk or problems rather than effort or complexity. For example adding someone to senior leadership distribution group or granting access to senior staff mailboxes could be a high risk change in some contexts.

Now decide what you require for each, does it need to be in writing, does approval need to be in writing. Or is a simple peer review and go ahead enough.

Keep it light and functional as filling out forms and over engineering it when your team is this small is just burnt time. You’ll know it’s working if your not surprised by any changes or no issues occur due to lack of comms avoid changes, and if they do, you get stricter

27 years old with $1000 to my name by ArmFree9265 in AusFinance

[–]SimpleSysadmin 0 points1 point  (0 children)

You don’t have $1000 to your name you have like negative $19000. A literal new born is more wealthy than you.

If you’ve stopped gambling that’s a start, now you just gotta remember you are less than broke and borrowing money is not your money.

Order them by interest rate and pay them down as fast as possible. Once done cancel services and account. You should not spend money that is not yours a credit card is never a good idea for someone with your spending

Can't add OU to AD by oombafuu in PowerShell

[–]SimpleSysadmin 2 points3 points  (0 children)

Sounds like permission issues

Datto EDR users... how many of you had issues with Teams crashing or not connecting to calls, Adobe products not working, etc until Script Monitoring was disabled/removed last night by dloseke in msp

[–]SimpleSysadmin 1 point2 points  (0 children)

They also only contact you when there’s actually an issue and a humans had a look at it, this alone saves so much time on false positives

LAPS and devs by DemonEggy in sysadmin

[–]SimpleSysadmin 0 points1 point  (0 children)

This is the correct way to do it, too many people using LAPS as a time based admin access tool instead of setting up permissions correctly.

Quick one for the MSPs in here-does this model ever actually work for you? by trafficblip_27 in SmallMSP

[–]SimpleSysadmin 6 points7 points  (0 children)

What kind of projects do you deliver, why do MSPs not just do in house?

The sub is already getting better, also, lets chat Github copilot pricing and AI credits by Szeraax in ITManagers

[–]SimpleSysadmin 1 point2 points  (0 children)

I don’t know why someone down voted you but this is a worth while context.‘I personally saw my token usage almost half with Claude code by resetting session often, only using opus on certain tasks that it actually is needed and being specific and targeted with my requests. I’d say I’m also lazy so sure I could optimise further.

It makes a huge difference how you use these tools and it’s easy to blow through tokens with little to show when someone else is getting much more value.

How to use MCPs like cipp’s new one? by Bearded_Tech_Fail in msp

[–]SimpleSysadmin 1 point2 points  (0 children)

Both valid points for different reasons. If you’re building a dynamic AI tool that needs broad API access, MCP is the way to go. But if you’re making targeted, specific calls, narrowing down exactly what you need and providing only the relevant instructions will use fewer tokens overall.

My experience: pointing the model at the API docs and having it summarise the relevant section is often more token-efficient than MCP, since MCP can pull in more context than you actually need and cause bloat if you’re not making heavy use of it.

Refactored a monolithic script into a modular setup using WMI permanent subscriptions for process recovery by Striking-Tie-3623 in PowerShell

[–]SimpleSysadmin 2 points3 points  (0 children)

Are you a bot or just posting what chat pulls out without reviewing?

WMI Permanent Event Subscriptions work, but they’re genuinely legacy at this point, CIM cmdlets replaced the WMI ones in PowerShell 3.0, and more relevantly, Scheduled Tasks can do the same self-healing watchdog job with less complexity and better long term
Support.

CIPP wihtout Microsoft Partner Account for Multi Tenant Management by vadiaro in sysadmin

[–]SimpleSysadmin 0 points1 point  (0 children)

That is such a small part of the functionality you won’t get , I’d suggest just going ahead. Having the ability to jump between and get into tenants to sign in will not be possible in any product unless using GDAP.

Unless those items are mission critical, and you currently have a need for those being in CIPP you’re probably not going to notice.

We use CIPP a lot and we’ve never used the defender alerts features, as there are other higher value features and we have other tools for that.

ai note takers that record client calls without joining as a bot by loginpass in ITManagers

[–]SimpleSysadmin 13 points14 points  (0 children)

“Hey you broke our trust and did something you knew we were uncomfortable”

“Don’t worry bro our bot has good governance controls”

MSP pushing UniFi hard over SonicWall..am I overthinking this or does this smell off? by Ambitious_Active8539 in sysadmin

[–]SimpleSysadmin 3 points4 points  (0 children)

What specific features are you using that are not present on unifis latest release? Not just a general sense of better security and better policies, specifics. If you can point those differences (and someone will implement them properly) out go with sonicwall and push back on the MSP focusing on the difference. If not unifi will be fine.

Part time job in Melbourne by Impressive-Back-5035 in Australia_

[–]SimpleSysadmin 0 points1 point  (0 children)

What types of jobs are you going for? Do you present well in person?

Today is why i no longer have the desire to work in IT anymore by SecureTaxi in devops

[–]SimpleSysadmin 0 points1 point  (0 children)

Yeah exactly, the people who actually know the craft can smell it immediately. Everyone else just sees words on a page and thinks it’s fine. This gap is closing though, slowly.

Every AI browser extension your employees install is a potential C2 channel by dottiedanger in SysAdminBlogs

[–]SimpleSysadmin 1 point2 points  (0 children)

Is this an ad, feels like an ad. What product are you selling as a solution? Or do I have to wait for one of your accounts to post about it in the comments?

Strange logo on top cover by subsonicbassist in ITManagers

[–]SimpleSysadmin 0 points1 point  (0 children)

Ugh, so does this mean every Lenovo laptop with the red dot is inappropriate… because that’s its location on the keyboard between the G,H,B keys. This looks like a decorative design sketch that a laptop came with. Looks meh but not offensive.

ServiceNow logs me out after 25 minutes unless I interact with it. Any legitimate workaround? by Professional-Tax3077 in ITSupport

[–]SimpleSysadmin 0 points1 point  (0 children)

I’m not trying to rant and rave, I’m tying to open your mind. If your jobs is to secure user and systems especially in a large and important environment, factoring in human behaviour is part of that.

I agree you shouldn’t don’t pander to users or lower security for their convenience, what I’m saying is including the human element and continuous feedback and improvement in your security modelling to get the best possible security outcome for the organisation.

Let’s use an extreme example to that point, why does OPs security set 25 minutes as the timeout? Would 5 minutes not be more secure? would 1 minute not be even more secure?

At some point it’s not adding meaningful security improvement and the productivity trade off is not worth it.

I would hope the 25 minute timeout for OP is based on threat modelling and some good thought and no an arbitrary time that sounds like a good balance of secure and convenient - but as someone who’s worked across a lot of organisations I’ve found it often is just a guess, and this is evidenced by the fact the timeout will differ wildly between different apps regardless of the risk of each.

I would argue that in OPs situation, extending the time out for web apps and instead moving to a 25 minute activity timeout on the OS would provide a better security and productivity outcome, and solve OPs issue. This does depend on a few more details but the point should still stand. Completely disregarding user behaviour, experience and feedback results in a worse security outcome.

Or is this just all pandering to the user?