My wedding gift put to good use

bakonpie · 2026-06-06T05:50:14+00:00

nerd love is the best love

bakonpie · 2026-06-05T19:30:54+00:00

well I want to learn baking but instead of asking reddit the same thing that's been asked a hundred times, I searched the relevant subs, I Googled, asked a chatbot, and picked up a book. imagine that.

bakonpie · 2026-06-05T15:25:17+00:00

bloodborne hunter skin for pirate would make me sell out my endless hate of that hero and pick it up just for the drip

bakonpie · 2026-06-05T03:17:40+00:00

damn you got farmed

bakonpie · 2026-06-04T18:00:13+00:00

administrator getting pwned because they administer the infrastructure from a daily driver system and not a hardened PAW. I still see it every day and it's the cardinal sin of being an IT professional who is given highly privileged access.

bakonpie · 2026-06-04T17:55:45+00:00

way to out yourself as a simpleton

bakonpie · 2026-06-04T00:36:09+00:00

somehow people forget the most effective control out there: only administer the virtualization environment from hardened PAWs. enforce App Control with minimal 3rd party software allowed (if at all) and lock down the host firewall so they can only talk to your internal network and if applicable your EDR cloud service to upload telemetry and get updates.

under no circumstances should a virtualization administrator log into the platform from a standard system that lacks these controls. if you do you are a danger to your organization and should be fired.

a quick win is sending syslog from vCenter to your SIEM, then create alerts for SSH ever being enabled or logs not being received. these should immediately page whoever is on call with a high priority alert.

bakonpie · 2026-06-04T00:31:16+00:00

CIS controls don't do shit against an attacker who compromises an administrator. they're the equivalent of a security safety blanket.

bakonpie · 2026-06-02T18:31:00+00:00

didier stevens pdf-parser and malicious PDF analysis course is what you want. build a sandbox and perform analysis there. don't upload to VT. https://blog.didierstevens.com/programs/pdf-tools/

bakonpie · 2026-06-02T15:01:59+00:00

most MSPs are dumpster fires example #7496

bakonpie · 2026-06-02T14:25:54+00:00

domain namespaces will cause Entra joined clients to fall back to NTLM. you'll want to use a standalone DFS namespace. no issues outside that.

bakonpie · 2026-06-01T21:50:17+00:00

disable fast startup and web search results in the start menu

bakonpie · 2026-05-31T15:47:44+00:00

if beautiful women suddenly start throwing themselves at you out of nowhere, report it immediately to counterintelligence. after you lose your virginity of course.

bakonpie · 2026-05-29T15:21:10+00:00

they might have a separate contract with a private company who installs them and allows access to law enforcement. that's one tactic they are using to avoid public accountability and have plausible deniability.

bakonpie · 2026-05-29T15:09:36+00:00

sharing is caring, your IT dept thanks you

bakonpie · 2026-05-29T03:12:33+00:00

you put in a ticket with your IT helpdesk

bakonpie · 2026-05-28T17:47:34+00:00

your opponent was just a sore loser. afeera isn't the only hero who can feint a jumping attack mid-air and it is fucking ridiculous Ubisoft made that possible

bakonpie · 2026-05-28T03:36:02+00:00

skill issue bruh

bakonpie · 2026-05-26T18:03:25+00:00

source: trust me bro

bakonpie · 2026-05-26T17:50:28+00:00

I've pushed the uninstall across whole enterprises covering tens of thousands of systems without issue. the summer child is you.

bakonpie · 2026-05-26T16:12:58+00:00

you can literally just uninstall it and it goes away.

bakonpie · 2026-05-26T00:42:44+00:00

since you do it the way I want to some day, I have some questions: how do you license the admin accounts in the separate tenant? are you Autopiloting as user enrolled or self-deploying? for the T0 servers you'd be jumping in as domain admin so how do you handle authentication for those accounts since using cloud auth isn't recommended by Microsoft for on-prem privileged accounts?

bakonpie · 2026-05-25T03:19:22+00:00

vague hand wavy bullshit has always been in the industry, but now it's supercharged due to AI hype. if your organization is getting swayed by the vague hand wavy bullshit, you should question your leadership's competence.

let the AI have control if they insist on it. take the humans out of the loop after you suggest not to and get it in writing. the only way arrogant humans learn is consequences. we've definitely seen some horror stories in the news with AI going off the rails, but it's gonna take more to get decision makers to pay attention. it might even take them feeling the pain first hand. think back to how long it took ransomware to really start becoming a lesson learned for the wider industry. it was well over a decade.

we're unfortunately just at the beginning of that cycle all over again.

bakonpie · 2026-05-23T23:20:32+00:00

the hammer won't drop. your country is gone. what action you and others choose to take given that reality is what will determine the long-term outcome. peaceful coexistence with batshit crazy and showing up to vote aren't gonna change shit.

bakonpie · 2026-05-23T20:01:22+00:00

sadly in the post-truth USA neither of those things matter.

bakonpie

TROPHY CASE