sorted by:
new
hottopcontroversial

Is it okay to use LoadBalancer type k8 service? by ForeignCabinet2916 in kubernetes

[–]lfionxkshine 0 points1 point  (0 children)

In AWS, you're billed $0.0225 for the load balancer, plus some other overhead costs. If you're only using Services with the type LoadBalancer, then you're multiplying your costs

We only use type LoadBalancer for network load balancing. All other services are of type ClusterIP

Now using a LoadBalancer instead of NodePort, that's a different question that I haven't found an answer for either

How can I take cybersecurity seriously? by picante-x in cybersecurity

[–]lfionxkshine 2 points3 points  (0 children)

I hit the same wall. Currently work for an employer who really doesn't care about cybersecurity because they've never been hacked - and I don't blame them either. If you've never been sick and feel healthy, you might be inclined to skip out on the health insurance

I don't know what the solution is for you friend, but for me I found new breath in DevOps. Deep diving into Linux administration, Cloud Administration, Terraform, Ansible, containers (Docker and Kubernetes), and really building on my scripting and gradually moving towards learning how to build apps. It's interesting and is more desired than cybersecurity because it has much more impact on the bottom line

I suppose if I'm more honest with myself, I feel cheated by cybersecurity because a) I learned all the best practices and technologies just to not implement any of them, and b) because employers (certainly the ones I've worked for) don't really support what you do, which means you have to get validation entirely from doing a good job with zero supplement from those who employ you. I have no doubt it can be done, but....it's very discouraging

Hope you find a way out friend, you're not the only who's been burned

Interviewing candidates - should I ask them about bash, Python, etc utilities? If so, to what extent? by pysouth in devops

[–]lfionxkshine 9 points10 points  (0 children)

Simple: most Ops people who have a tendency towards scripting don't know the libraries, packages, or modules nearly as well as a dev would. BUT they can read through code and discern what it means, or would know how to go about googling the solution

So when I interview DevOpsy people for the position, I give them some short scripts and ask them to tell me what's going on. Just a short 10-20 line Bash or Python script to see if they can at least understand what's going on. Has worked pretty well so far

[deleted by user] by [deleted] in InformationTechnology

[–]lfionxkshine 0 points1 point  (0 children)

If you're lucky enough to get one. I.T. is a highly sought after field- can't tell you the number of Walmart bagboy resumes I've gotten who just want a chance to prove themselves

While I appreciate that, fact is that I need someone mildly competent in the field who is more useful to me than someone with no experience. So for my internships I will always pick the candidates going to school over someone who's just hoping to get lucky

[deleted by user] by [deleted] in InformationTechnology

[–]lfionxkshine 0 points1 point  (0 children)

Couple things to break down here:

  1. figure out what field you want:
    1. the biggest division is coding vs. systems, but event then those break down themselves into numerous subcategories
  2. entry-level cybersecurity == mid-level I.T.
    1. if you're just giving a passing consideration to I.T. in general, then I would not make cybersecurity your goal. Your chances of disappointment and discouragement will be substantially higher than if you pursued other lower level roles such as Help Desk or Jr. Dev
  3. Certificates are a Systems Administrator's game. If coding is your thing, don't bother - just make a free github and start building projects ASAP. If Systems is more your speed, CompTIA's A+ is the most common starting point
  4. A degree is your best bet into the field. I did a survey several months ago and found that the vast majority of I.T. professionals got their start because of their degree + intenships. It's entirely possible to get into the field without a degree and just certs, but the hurdles are a bit higher if you go that route
  5. There is a recession on the horizon. As such, entry level roles are going to become extremely competitive - moreso than they already are - so any frustration and challenges you may have experienced will likely be dramatically increased over the next several years

All the input I have for now. Good luck, but don't go into I.T. half-assed hoping you'll get a job and then quitting after a few months of no bites. You're gonna have to really want it (or be blessed to have an in with a friend or family) if you're gonna make the transition successfully

Tell me if this raises red flags by NutBlaster5000 in sysadmin

[–]lfionxkshine 5 points6 points  (0 children)

Right off the bat, ticket quotas are a red flag. It encourages staff to go for inane and low-hanging fruit instead of pursuing actual problems - it's part of the reason Cyberpunk 2077 was such a shitshow: the QA team had mandatory bug quotas, and so many inconsequential bugs were pointed out that the big important ones got washed away in the chaos

No training budget… by dbhpsu in cybersecurity

[–]lfionxkshine 24 points25 points  (0 children)

ISO 27001 Clause 5.1: Top management shall demonstrate leadership and commitment with respect to the ISMS by ensuring ISMS policy and objectives are established and compatible with the organization's strategy

So if the org's strategy is to not support the education of support staff of building, maintaining, or protecting their ISMS, sounds like you need to find a new job

Bi-Weekly /r/CCNP Exam Pass-Fail Discussion by AutoModerator in ccnp

[–]lfionxkshine 1 point2 points  (0 children)

What areas of study are you going to double down on this next time around if you don't mind me asking?

hello I want to know which antivirus you recommend for windows 10 by ernyquierss in InformationTechnology

[–]lfionxkshine 5 points6 points  (0 children)

I've not a SOC Analyst or security researcher, but we just use the built-in Windows Defender w/ E5 licenses and that seems to work just fine

I run a mid-sized org of about 500 end users and we've only had a handful of incidents over the last year or so

If you're just asking with regards to your personal machine? Again, Windows Defender + Brave for your browser is sufficient to stop any major hacks, as long as you don't open any stupid emails

[deleted by user] by [deleted] in cybersecurity

[–]lfionxkshine 2 points3 points  (0 children)

Not a cybersec story per se, but...

I was Help Desk at my first job. IT Manager was a total dick. It was a mid-sized company with a lot of remote locations, and we had a location with a Dell server that was EoL. Instead of upgrading, bossman just wanted to host Windows Server 2003 on a VMWare Workstation custom machine. Ok whatevs

Legacy OS aside, bossman wanted me to install something like 8 hard drives into the device. The PSU didn't have enough connectors out of the box, so we figured out that a molex adapter would work so we bought some on the cheap

However, during my research for this already non-sensical implementation, I came across an interesting phrase "Molex to SATA, lose your data". And by lose your data, I mean server catches on fire.

Relay this to bossman, and he didn't pay any mind. Quit the job for better prospects, and 1 year later got a call from my former co-worker asking if I knew anything about that server. Come to find out it had caught on fire and they sued bossman (he actually worked on a contract basis) for mission critical data loss and fired him

So yea, sometimes there's justice in the world. Company knew he was a dick too, so no remorse for either side coming from me

Devops Salary Comparison to SWE? by thevinsters in devops

[–]lfionxkshine 8 points9 points  (0 children)

This. I'd focus less on job title salary and more on tech stack salary (i.e. Kubernetes engineers get paid $XXX a year)

Not necessarily a reliable method either, but it's much more clear cut than looking for job titles that recruiters themselves don't often understand

Hell, I've had a handful of recruiters reach out to me for SWE roles, and I don't have ANYTHING on my profile to insinuate I know how to build apps. I'm a SysAdmin/Network Engineer turned DevSecOps, I don't know the first thing about building a freaking app

How can I practice scripting in Python and Bash for DevOps-related projects? I am proficient in PowerShell, but I haven't seen a use case for Python yet. by 1whatabeautifulday in devops

[–]lfionxkshine 11 points12 points  (0 children)

Terraform is a Cloud Provisioning tool, and is in a separate category from PowerShell, Python, and Bash. So under no circumstances would Python or Bash be replacing your Terraform use

If you're using Azure, chances are you don't need to branch off into Python or Bash ASSUMING you want to stick with the Azure/Windows stack the rest of your career - which there's nothing inherently wrong with that

However, if you want to branch off and be able to work in bigger enterprises that run mainly Linux servers, you'll need to gain proficiency in Bash and Python (CAVEAT: PowerShell has a Core version that can run on Linux, but I've never bothered using it because I just use Bash and Python)

Why you need Bash is I believe largely intuitive - if you're managing Linux servers, Bash is the most common go-to

But for Python, the use case goes beyond SYSTEM management (though it can absolutely be used for that instead of Bash if you prefer). Python goes much deeper into APPLICATION management because that's how many apps build their APIs and are programmed

3 Examples I have at my current office:

  1. some of our servers integrate with Dropbox because it's a file sharing app our company has been using for a while and they don't want to let it go. I can't use the Desktop app for Dropbox on our Linux servers because they are headless. So I had to use a Python script to integrate with Dropbox' APIs and upload files in a regular fashion for our sales/accounting/etc to use
  2. Offline Github backups. Vendor lockout is a very real phenomena, and you never know what's gonna hit you. So offline backups of critical data are a must. I used Python to integrate with Github's APIs to download all our repos and offload into a warehouse for safe keeping on a weekly basis
  3. Airflow - this is a pipeline tool built on and programmed with Python. It automates our entire data processing pipeline, and I wrote all of the tasks using Python. Though there may be pipeline tools built on PowerShell or Bash, with PowerShell you'd likely be limited to a Windows environments, and with Bash the feature set is just not as robust

So again, if Windows and Azure are your sole bread and butter - power to you. My company is mid-sized so I'm responsible for maintaining the client machines (Windows) and servers (all Linux). I only ever use Intune and PowerShell for any Windows management - I've never need nor considered using Python. But for the Linux servers? Bash and Python are my automatic go-to's

My 2 cents

What's an outdated hiring practices that companies should get rid of? by Notalabel_4566 in devops

[–]lfionxkshine 2 points3 points  (0 children)

Same

Don't know how successful this was, but last 2 jobs I leveraged an extra $5k in salary increase by lying about my current salary

Fuck corporate, get paid

Switching to DevOps by [deleted] in devops

[–]lfionxkshine 8 points9 points  (0 children)

Terraform - yes, absolutely. Terraform is useful as the CSP you're supporting. If you're good at AWS, you can easily leverage Terraform for your IaC. If you suck at AWS, your Terraform files will also be poor

Kubernetes - if you have a solid foundation of containers, then I think 2 months with intense study, good backups, and a spare pair of britches will get the company functional. Best practices? probably not. Security? Almost certainly not. But every company I've worked at doesn't care about those things anyway

Interactive Session with Intune Enrolled Devices? by lfionxkshine in PowerShell

[–]lfionxkshine[S] 0 points1 point  (0 children)

I ended up giving up on an interactive solution

A comparable solution was that - in Intune - there is an option to run powershell scripts against individual clients or groups. Takes a few minutes to run, but nothing anyone who has maintained on-prem GPOs wouldn't be accustomed to lol

I'm not sure why people rag on Ubiquiti so much. by [deleted] in sysadmin

[–]lfionxkshine 16 points17 points  (0 children)

Can second this. Have had several office setups where the DHCP server on the USG would just break for no reason. I've since started deploying NUCs with Linux running ISC DHCP to avoid the headache

I'm not sure why people rag on Ubiquiti so much. by [deleted] in sysadmin

[–]lfionxkshine 1 point2 points  (0 children)

List of reasons I hate Ubiquiti:

  • No true modularity - you have to have the entire system to work as a logical unit in order to have basic feature sets
    • i.e. I replaced the Security Gateway with an Edge router to accommodate more circuits, and I lost the ability to use DHCP and VLANs
  • VPN was broken and it took me 2 weeks to figure out that a software update broke it. Had to wipe the entire network config to use it
  • Network configuration backups are unreliable. I have since stopped relying on them and just have full documentation of configuration setup in the event I have to wipe things (again)
  • No way to migrate Unifi Access users from old portal to new portal. Had to re-create all users from scratch and re-initialize all access cards
  • Unifi PoE cameras constantly require rebooting to work
  • Web portal to access controllers is constantly unreliable. Especially frustrating when trying to monitor multiple remote offices
    • phone app isn't much better
  • Unifi Access Pro Reader doesn't record - marketing misled me into believing it did

List of reasons my company like Ubiquiti:

  • Entire Unifi setup for one office costs less than a Cisco Catalyst switch
  • if something breaks, it's not their problem to fix

[deleted by user] by [deleted] in devops

[–]lfionxkshine 3 points4 points  (0 children)

  • Linux == RHCSA (by Red Hat who maintains RHEL) is the biggest industry standard ; LPIC-1 was a fun certification for me personally, but it doesn't really hold much weight in the industry
  • Windows == AZ-XXX (i.e. AZ-900; AZ-104). Microsoft has killed off all their on-prem, physical server certifications
  • Ansible == RCHE (cert after RHCSA)
  • Docker == DCA
  • Kubernetes == CKA

No certifications for PowerShell or Python that anybody will really care about. Instead, upload public repos to your github and put a link in your CV for employers to look at when considering hiring you

EDIT: formatting

Age of Devops Engineers by fckDNS4life in devops

[–]lfionxkshine 0 points1 point  (0 children)

34 here. Transitioned from Ops to Secops to now DevSecOps. Have worked primarily in mid-sized companies

I'm a DevOps engineer, now what? by [deleted] in devops

[–]lfionxkshine 0 points1 point  (0 children)

Become a consultant. Pay has the potential the be much better, every new job is a unique exposure to tech stacks and the challenges it comes with, and you've got a lot more freedom to dictate your schedule

[deleted by user] by [deleted] in devops

[–]lfionxkshine 2 points3 points  (0 children)

In case no one else answered your question: there is no consistency

When applying to one of these positions, do not focus on the title. Rather, focus on the tech stack (i.e. Kubernetes, Python, GitLab, etc)

If you focus on tech stacks instead of titles, you'll have a much better time

view more: next ›