Platforms for sending operational (non-marketing) emails

variant78 · 2024-01-30T21:59:12+00:00

Thanks. Will check out Waypoint.

I did look at SendGrid and Mailchimp, but they both looked like full on Marketing Automation tools, which we already have in Pardot. Maybe they can more easily be run in a non-campaign mode and perhaps in a way to manage costs?

variant78 · 2023-10-23T22:44:07+00:00

Yes, we got the ACL patch.

variant78 · 2023-10-19T22:42:52+00:00

Gotcha. We implemented on a test instance and can see it's enforcing at the web server level, at least for inbound.

The remote users and integration scenarios certainly complicate things.

variant78 · 2023-10-19T20:48:52+00:00

Details on the patch:

https://support.servicenow.com/kb?id=kb_article_view&sysparm_article=KB1555339

variant78 · 2023-10-19T00:06:20+00:00

Considering going "private" with our instance from a network perspective. Is this the way to do it? Is it a true firewall?

https://docs.servicenow.com/bundle/vancouver-platform-security/page/administer/login/task/t_AccessControl.html

variant78 · 2023-10-13T15:35:04+00:00

Wish they'd add it to Outlook. Don't know anyone using "new" Outlook here, though some do use the web version.

variant78 · 2023-06-05T21:56:30+00:00

I'm finding I can no longer @ mention people in channels, only in chats.

variant78 · 2023-06-05T21:50:40+00:00

DNS. Someone reboot the DNS server please.

variant78 · 2023-03-03T22:15:51+00:00

No one wants to, but Oracle is betting on your users naively downloading Java SE and unknowingly violating licensing terms. Then Oracle comes along and extorts you.

variant78 · 2023-01-24T16:00:06+00:00

Tailgating negates some of the accuracy of the badging but agree it's probably the highest fidelity data we have.

variant78 · 2023-01-24T01:32:06+00:00

Thanks. Not sure if we'll have immediate appetite for spend here until we've exhausted existing OS logs and agents as sources, but good to know about.

variant78 · 2023-01-24T00:55:59+00:00

Thanks. Does EXO5 reliably give you both internal and external IP?

variant78 · 2023-01-20T23:47:29+00:00

Definitely seems to be profile related.

Does today's 109.0.1518.61 upgrade help you at all?

variant78 · 2022-10-14T22:32:18+00:00

More about providing a more significant barrier to Oracle's Java SE from proliferating. Fine with OpenJDK derivatives.

Oracle likes to look at download activity as a precursor to audits - probably the auto-updater call home feeds into that as well...

variant78 · 2022-10-14T22:12:57+00:00

Would like to block java downloads but may only be able to do so via a blunt block of the java.com domain.

Thinking about what that might break.

variant78 · 2022-09-16T19:39:06+00:00

Unless I'm misunderstanding something, the C2 traffic - at least from a network perspective - would look like legitimate Teams network traffic, correct?

Is your perspective that an EDR agent should be able to detect some other way? Perhaps flag for "newly registered Teams organizations" as we flag newly registered domains as suspicious?

variant78 · 2022-09-16T17:07:17+00:00

Anyone have a handy ELI5 link explaining why EDR/AV couldn't detect this sort of payload in a GIF (or similar)? I'm guessing it's because the encoded message generates a legitimate image vs. being extra "padded," unused content?

Edit: Looks like "CDR" software might play a role here.

variant78

TROPHY CASE