What Are You Doing Right Now
-
@StuartJordan said in What Are You Doing Right Now:
Webmin 0 day exploit:
https://pentest.com.tr/exploits/DEFCON-Webmin-1920-Unauthenticated-Remote-Command-Execution.htmlGood example of how even a good product can have risks. WebMin being an unnecessary extra layer that Linux doesn't need creates just overhead and exposure that can be avoided simply by keeping the system lean.
-
Did not have to run to Louisiana today, so today is a Synology clean up day for a customer.
-
@scottalanmiller said in What Are You Doing Right Now:
@StuartJordan said in What Are You Doing Right Now:
Webmin 0 day exploit:
https://pentest.com.tr/exploits/DEFCON-Webmin-1920-Unauthenticated-Remote-Command-Execution.htmlGood example of how even a good product can have risks. WebMin being an unnecessary extra layer that Linux doesn't need creates just overhead and exposure that can be avoided simply by keeping the system lean.
- Buy server.
- Don't install ANYTHING.
- Keep powered off.
- Zero overhead, zero exposure, lean system.
-
@scottalanmiller said in What Are You Doing Right Now:
@StuartJordan said in What Are You Doing Right Now:
Webmin 0 day exploit:
https://pentest.com.tr/exploits/DEFCON-Webmin-1920-Unauthenticated-Remote-Command-Execution.htmlGood example of how even a good product can have risks. WebMin being an unnecessary extra layer that Linux doesn't need creates just overhead and exposure that can be avoided simply by keeping the system lean.
Would you say the same thing if cockpit was exploited too?
-
@black3dynamite said in What Are You Doing Right Now:
@scottalanmiller said in What Are You Doing Right Now:
@StuartJordan said in What Are You Doing Right Now:
Webmin 0 day exploit:
https://pentest.com.tr/exploits/DEFCON-Webmin-1920-Unauthenticated-Remote-Command-Execution.htmlGood example of how even a good product can have risks. WebMin being an unnecessary extra layer that Linux doesn't need creates just overhead and exposure that can be avoided simply by keeping the system lean.
Would you say the same thing if cockpit was exploited too?
For sure, extra layer that isn't really required. Cockpit has some advantages, but a GUI is a GUI.
-
@thanksajdotcom said in What Are You Doing Right Now:
a wild A.J. appears
Hey everyone!
Currently at a conference in Atlanta. Learning investing from Phil Town as part of the Rule #1 investing team. Value-based investing is the name of the game!
Back from the dead! How long will you be in Atlanta?
-
Watching Linux Academy videos while I track targets in Project 1999 Everquest.
-
-
Just saw this headline.... "RAID 5 ON 3 md1200s with 36 8tb drives". I'm not going to read that thread, but boy can I just imagine the setting him up for disaster advice that people are going to give because they think that it is funny to trick people into losing data.
-
Coffee time.
-
@scottalanmiller said in What Are You Doing Right Now:
Just saw this headline.... "RAID 5 ON 3 md1200s with 36 8tb drives". I'm not going to read that thread, but boy can I just imagine the setting him up for disaster advice that people are going to give because they think that it is funny to trick people into losing data.
Raid 5, Just why????
-
Windows Updates on all the things..
-
@JaredBusch said in What Are You Doing Right Now:
Windows Updates on all the things..
Well that should give you a few hours to catch up on some other things then!
-
Got a call from one of the other tier-3 techs. A client had a RAID battery go bad and take the controller with it. Happy times are sure to ensue. They were only told the server needs replaced at least once a year for the past 3 years that we have documented.
-
Starting to organize a bookshelf in my office to hold my D&D books and accessories.
I found this in a box labeled D&D. I should have the entire series in one box or another....
-
Poorly packed box of graphic novels. Umm, I think I need to purge.
-
Back to work after a whole week out, feels good.
-
More user migrations using rsync, some of these users have a ton of files and way less intrusive to copy the bulk of their files using ssh and rsync.
-
watching my co worker try to figure out how to configure a D-Link AP for our HR POS (IPAD based POS system) . It's quite Comical to be honest.
-
@WrCombs said in What Are You Doing Right Now:
watching my co worker try to figure out how to configure a D-Link AP for our HR POS (IPAD based POS system) . It's quite Comical to be honest.
Everything about that statement is comical, from the D-Link AP to the HR PoS and the iPad. . .