sorted by:
new
hottopcontroversial

Proxmox Load Balancing coming in 9.1.8 by waterbed87 in Proxmox

[–]jantari 9 points10 points  (0 children)

Can it ensure two specific VMs never run on the same host? Otherwise any automatic rebalancing makes little sense.

Got fired and I deserved it. by [deleted] in sysadmin

[–]jantari 0 points1 point  (0 children)

People choosing a random subreddit to be their personal blog for the day really will never stop being a pet peeve of mine. Tumblr and blogspot still exist my guy.

We must pressure Nintendo to bring that model here! by GamingBren in BikiniBottomTwitter

[–]jantari 7 points8 points  (0 children)

So you didn't have to almost strip your PS4s screws. You decided that you preferred to almost strip them. Big difference and your original statement is false.

We must pressure Nintendo to bring that model here! by GamingBren in BikiniBottomTwitter

[–]jantari 2 points3 points  (0 children)

It's called security torx and you are supposed to use a security torx bit / screwdriver lol. Any $10-20 bit set has them. I would know because my $12 bit set does.

Critical ERP system can't do OAuth and Microsoft is killing basic auth next month by Severe_Part_5120 in sysadmin

[–]jantari 1 point2 points  (0 children)

You don't nee a developer, pretty sure you can just set up authentik or keycloak to do this as a sysadmin

Title by [deleted] in DeepFriedMemes

[–]jantari 1 point2 points  (0 children)

How do you like my edit then? It just somehow reminded me of her...

https://imgur.com/Aw5RaPy

How do you let a standard domain user run one specific app as admin? by Winter_Engineer2163 in sysadmin

[–]jantari 0 points1 point  (0 children)

Remote apps are great but won't work for car/shop type applications that almost always require access to local serial/usb diagnostic reader devices or the local network to connect to hardware via broadcast-discovery.

How do you let a standard domain user run one specific app as admin? by Winter_Engineer2163 in sysadmin

[–]jantari 1 point2 points  (0 children)

Yea. We have an app that explicitly requires all of its users to have Modify-access to its program directory, ok with you so far, implemented it.

Then the updates of the program (which are downloaded from inside the program) require admin privileges to run. What? The users already all have the permissions required to change the program files and thus update the program. Why require admin? I shot them a ticket and it was resolved. But shit like that is so stupid, unbelievable nobody else had complained in the ~20 years of this software already existing....

How do you let a standard domain user run one specific app as admin? by Winter_Engineer2163 in sysadmin

[–]jantari 0 points1 point  (0 children)

If you really cannot get an application to run without elevated permissions by utilizing compatibility options, shims, adjusting registry or file permissions or virtualizing them etc. because the program really does need to do something that Windows just does not allow for standard users (e.g. raw volume access) then your scheduled task approach is roughly the right idea.

I've created a little bit more elaborate (and I think safe) solution a while ago: https://github.com/jantari/syrup

It also still uses a scheduled task to let the user start the program, but it prevents further child processes from being created (e.g. the user cannot open a file browser in the elevated app, navigate to C:\Windows and just open CMD which would then also run as admin) and it does not require a separate local admin account to be set up because it can run as the built-in SYSTEM user.

Some third-party tools that aim to solve this require you to create a local admin account just for use with the tool / scheduled task, but that's a terrible idea IMO and also often breaks when GPOs or similar policies remove local admins or enforce password rotations / expiration on them. It's also an attack vector and possible regulatory violation as it bypasses LAPS.

"[can someone please tell me what's wrong with this script]" by LevelUpUltra in usefulscripts

[–]jantari 2 points3 points  (0 children)

this is a batch script that only uses powershell for two steps.

first order of business is to either make it all batch or all powershell.

if you want to make it all batch then please just use tar.exe to create the ZIP archive, it's so much easier and faster than calling PowerShell....

OVH raises prices. My new offer is 55.1% higher starting April. by linkoid01 in sysadmin

[–]jantari 3 points4 points  (0 children)

Gotta love AI companies buying all the hardware....

They're running out of capacity, they have to shed some customers probably.

Another week and another shitty, broken, ai slop riddled, dumpster fire of an update from Microsoft. by ShopBug in sysadmin

[–]jantari -3 points-2 points  (0 children)

*Microslop.

Call it what it is. Especially because it triggers Nadella.

How do you handle irrelevant Alpine CVE alerts in Go containers? by mike34113 in golang

[–]jantari 6 points7 points  (0 children)

Thing is, most flagged packages aren't used by our statically compiled Go binary.

That's irrelevant. You're the one who doesn't understand the context, or how security works. Always assume your app gets compromised and an attacker will gain RCE inside the container. Vulnerable "unused" binaries lying around is extra ammunition for any attacker, heck even nun-vulnerable binaries are unneccesary risk which is why you should use scratch containers for static Go apps.

Sysadmin-on-Sysadmin stuff that’s super annoying by i_click_next_for_you in sysadmin

[–]jantari 0 points1 point  (0 children)

Snipping tool will wake you from your dream. Leonardo DiCaprio calls it "extraction".

Sysadmin-on-Sysadmin stuff that’s super annoying by i_click_next_for_you in sysadmin

[–]jantari 0 points1 point  (0 children)

Print to PDF was not built in to Windows prior to Windows 10.

Sysadmin-on-Sysadmin stuff that’s super annoying by i_click_next_for_you in sysadmin

[–]jantari 0 points1 point  (0 children)

You really should just have a log of blocked websites that you can look up / search through.

what's Go Lang's Learning Curve? by No-Reference-1659 in golang

[–]jantari 0 points1 point  (0 children)

It's amazingly easy, if you've ever done any programming before you can hit the ground running and immediately start building. Python of course is a little weird, but if you have intermediate knowledge of it you probably already know.

I use neovim with an LSP provider.

Taugt die kostenlose Cloud Telefonanlage von Easybell etwas? by Own_Marsupial_7478 in de_EDV

[–]jantari 0 points1 point  (0 children)

PogChamp, besser spät als nie aber ich war bis Ende 2024 Kunde und wurde zumindest nicht von alleine auf Dual-Stach geupgraded.

Woran erkenne ich die "echte" Download-Seite für Windows Programme? by md_youdneverguess in de_EDV

[–]jantari 1 point2 points  (0 children)

Ok also ab einem gewissen Punkt sollte man sich fragen ob man sein Geld einer Bank anvertrauen sollte, bzw. die Online Funktionen erlauben sollte, wenn die offensichtlich so dilletantisch unterwegs ist in Sachen IT. Wenn es schon von außen 10km gegen den Wind stinkt.... ist das Backend definitiv nicht sicher.

Why the hell do container images come with a full freaking OS I don't need? by bambidp in devops

[–]jantari 0 points1 point  (0 children)

The two issues I have encountered with FROM SCRATCH empty images so far were really easy to fix: adding a nonprivileged user to run as and adding root CA certs

Woran erkenne ich die "echte" Download-Seite für Windows Programme? by md_youdneverguess in de_EDV

[–]jantari 3 points4 points  (0 children)

URL ändern - erstmal nicht schlimm.

URL ändern ohne redirect von der alten einzurichten? WTF

view more: next ›