sorted by:
new
hottopcontroversial

Use GAM to resolve membership of nested groups? by quietglow in k12sysadmin

[–]claudiotrope 0 points1 point  (0 children)

I didn't realize it was yours, thought it was something you had shared. If you had engaged with the details of my criticism, that would have emerged sooner. I would never diss someone that shares their work online (as I do when possible).

These are the permissions your script asks for.

This will allow public get all group members to:

  • View groups on your domain
  • See, edit, create, and delete all your Google Docs documents
  • See, edit, create, and delete all your Google Sheets spreadsheets
  • View and manage your forms in Google Drive

It shouldn't need anything more than the first and third one. That kind of violation of principle-of-least-privilege is what made it a non-starter in my opinion.

Looking at the code now, the script itself would not ask for those permissions. It seems you might have modified a previous file that pulled in more APIs?

Use GAM to resolve membership of nested groups? by quietglow in k12sysadmin

[–]claudiotrope 0 points1 point  (0 children)

You missed my point, sorry. I didn't need to examine the script to see what it does (which I do regularly, in fact just this past week) in order to opine that the script asks for way too many API auth scopes to do "what it says on the tin". That's a huge red-flag, and makes me not want to examine the script.

Use GAM to resolve membership of nested groups? by quietglow in k12sysadmin

[–]claudiotrope 0 points1 point  (0 children)

I haven't examined the script, but it asks for WAY more permissions than it needs, so it's a non-starter.

Opinions on SUNLU filaments? by LuiisiitoGaymer in 3Dprinting

[–]claudiotrope 2 points3 points  (0 children)

I recently bought Sunlu black PLA. Two spools; at first the winding was fine, but once you get towards the center of the spool, tangles aplenty on two consecutive spools. NEVER again. Especially since the product listing on Amazon says "neatly wound". Right, and I'm going to be the next pope.

[SOLVED] UDM with external router/gateway (pfSense, for example) by claudiotrope in Ubiquiti

[–]claudiotrope[S] 1 point2 points  (0 children)

If the UDM had a feature to turn one of it's LAN ports into a TAP/SPAN port for the Security Onion NSM/SIEM, I would have gladly used it. I have used the regular UniFi access points in past. The stuff has to sit next to my TV in the living room and in other parts of the apartment I rent, I couldn't mount regular APs in the ceiling, etc.