life's a game that you're bound to lose / like using a hammer to pound in screws
fuck up once and you break your thumb / if you're happy at all then you're god damn dumb
that's right we're on a fucked up cruise / God is dead but at least we have booze
bad things happen, no one knows why / the sun burns out and everyone dies
What they should be doing is setting up their systems to only run signed powershell scripts and then sign their in-house scripts after they've been properly tested. Gives protection against malicious scripts without severely hampering the ability to administer things in a modern Windows environment. Blocking powershell but allowing batch scripts is not any actual useful amount of security.
Just remember that half the people you meet are below average intelligence.
Our security monitoring systems trigger alerts on base64 encoded PS commands.
I suspect if their idea of "security" is "use batch scripts instead of powershell" then they probably don't have any monitoring systems :P
life's a game that you're bound to lose / like using a hammer to pound in screws
fuck up once and you break your thumb / if you're happy at all then you're god damn dumb
that's right we're on a fucked up cruise / God is dead but at least we have booze
bad things happen, no one knows why / the sun burns out and everyone dies
Turns out person giving me that direction may not grasp the reasoning behind it, a simple wrapper will work per other team members in the case that it's even necessary.
For the record, we don't block Powershell. We just monitor for base-64 encoded commands as one (of several) indicators of obfuscation.
Yeah that's a legit thing to block, it seems they only legit reason to do the encoding is to discourage tinkering but any user that's able to crack the script open and tinker would be able to do the decoding.
life's a game that you're bound to lose / like using a hammer to pound in screws
fuck up once and you break your thumb / if you're happy at all then you're god damn dumb
that's right we're on a fucked up cruise / God is dead but at least we have booze
bad things happen, no one knows why / the sun burns out and everyone dies
Oh wait, my favorite use of encoded commands: when you've got issues with like, nesting escape chars across multiple shells and you just need to do SOMETHING to remove one of the layers of pain.
life's a game that you're bound to lose / like using a hammer to pound in screws
fuck up once and you break your thumb / if you're happy at all then you're god damn dumb
that's right we're on a fucked up cruise / God is dead but at least we have booze
bad things happen, no one knows why / the sun burns out and everyone dies
Let me tell you how much I love it when I spend 4 hours working on an issue that presents a specific error code and the actual problem ends up being completely unrelated to the specific error code it was throwing.
Over the summer I worked through a study guide for the CCENT, and passed in September. The primary issue is that the 2-volume set I picked up years ago was for the CCENT 100-101 and the CCNA 200-101.
When I realized that the tests had changed I checked the syllabus / blueprint for the 100-105 and thought, "hey, this volume still covers 95% of the material, and the rest doesn't seem to be a focus." So perhaps I skated by.
I've been trying to move on to the CCNA, but (amongst other things) the gulf of differences between the 200-101 and the 200-105 syllabi feels significantly wider. The local libraries only have one book that covers the correct test, and it's been a poor resource*.
The question I'm trying to ask here is
would it be reasonable to pick up the guide for the CCNA 200-301 with the aim of passing the 200-105?
It'd be more expensive, sure, but the material would in theory better prepare me for an actual job. I'm cross-referencing the syllabi, but I suspect the -301 is a superset of the -105. Is that a fair suspicion?
(an additional question: a long time ago I was fond of the nutshell line of books, and noticed there's a Portable Command Guide available. Would that a worthwhile addition to my toolkit?)
* yesterday in particular, I checked the website for errata and they a) claimed the errata was behind a registration gate, and b) suggested that, "...mistakes can still slip through the next".
Over the summer I worked through a study guide for the CCENT, and passed in September. The primary issue is that the 2-volume set I picked up years ago was for the CCENT 100-101 and the CCNA 200-101.
When I realized that the tests had changed I checked the syllabus / blueprint for the 100-105 and thought, "hey, this volume still covers 95% of the material, and the rest doesn't seem to be a focus." So perhaps I skated by.
I've been trying to move on to the CCNA, but (amongst other things) the gulf of differences between the 200-101 and the 200-105 syllabi feels significantly wider. The local libraries only have one book that covers the correct test, and it's been a poor resource*.
The question I'm trying to ask here is
would it be reasonable to pick up the guide for the CCNA 200-301 with the aim of passing the 200-105?
It'd be more expensive, sure, but the material would in theory better prepare me for an actual job. I'm cross-referencing the syllabi, but I suspect the -301 is a superset of the -105. Is that a fair suspicion?
(an additional question: a long time ago I was fond of the nutshell line of books, and noticed there's a Portable Command Guide available. Would that a worthwhile addition to my toolkit?)
* yesterday in particular, I checked the website for errata and they a) claimed the errata was behind a registration gate, and b) suggested that, "...mistakes can still slip through the next".
I haven't spent a lot of time reading up on the changes to the CCNA program, but I looked over the exam topics this morning. Your plan isn't entirely unreasonable; however, I see what appear to be two big differences between the 200-105 and 200-301. The newer exam doesn't seem to cover either EIGRP or OSPFv3 (for IPv6 routing). So the question is whether or not the book for 200-301 covers these topics sufficiently. There appear to be other, smaller differences as well.
Ultimately the question I think is: will you be ready to take the 200-105 well before February 23rd? After that, you are forced into the 200-301. If you suspect that's possible, just get the 200-301 and be prepared to take that in February. Otherwise it may be worth finding a used copy of something for the 200-105.
If you have any questions/run into anything while prepping feel free to @ me or drop me a PM.
I definitely intend to take the 200-105 before the year is out, though the holidays may eat into some of my study time. I'm trying to avoid going back to fast food, even (especially) temporarily, and my projections don't support dragging this out much past the new year.
Thanks again! I'll look into a used copy through abebooks or something.
This is giving me a single object, thousands of characters long of pc names with no spaces.
I've been going over the refs and stack overflow but I think I'm missing a basic concept and am hoping someone here might have some tips on how to get my head on straight.
This is giving me a single object, thousands of characters long of pc names with no spaces.
I've been going over the refs and stack overflow but I think I'm missing a basic concept and am hoping someone here might have some tips on how to get my head on straight.
Why do you have @($computer.name) at the end? That initializes an array with all the computer names every time the loop runs.
This is giving me a single object, thousands of characters long of pc names with no spaces.
I've been going over the refs and stack overflow but I think I'm missing a basic concept and am hoping someone here might have some tips on how to get my head on straight.
Why do you have @($computer.name) at the end? That initializes an array with all the computer names every time the loop runs.
lwt1973King of ThievesSyndicationRegistered Userregular
How I hate shared spreadsheets. Because the users don't close out of them for 12+ hours sometimes Excel just decides they are corrupt and their file size goes down to 0 so I have to restore them from backup.
Anyone have experience with them in Office 365 and do they work well in that environment?
"He's sulking in his tent like Achilles! It's the Iliad?...from Homer?! READ A BOOK!!" -Handy
How I hate shared spreadsheets. Because the users don't close out of them for 12+ hours sometimes Excel just decides they are corrupt and their file size goes down to 0 so I have to restore them from backup.
Anyone have experience with them in Office 365 and do they work well in that environment?
How I hate shared spreadsheets. Because the users don't close out of them for 12+ hours sometimes Excel just decides they are corrupt and their file size goes down to 0 so I have to restore them from backup.
Anyone have experience with them in Office 365 and do they work well in that environment?
I've never encountered that before, ever.
I've had it twice now. I have no idea what they are doing to cause it.
"He's sulking in his tent like Achilles! It's the Iliad?...from Homer?! READ A BOOK!!" -Handy
How I hate shared spreadsheets. Because the users don't close out of them for 12+ hours sometimes Excel just decides they are corrupt and their file size goes down to 0 so I have to restore them from backup.
Anyone have experience with them in Office 365 and do they work well in that environment?
I've never encountered that before, ever.
I've had it twice now. I have no idea what they are doing to cause it.
It could be some sort of excel addon causing issues. We've got tons and tons of shared sheets and have never had problems like this. Most of our excel grief has been caused by 3rd party addons though.
Sat down at a client in front of the tower servers to set up the new firewall. Few minutes into configuring the boss comes by and asks if something is wrong because they can't reach the internet. Look down and the server is off.
The power button in the case was stuck and when my knee pressed against the case it held down the power and shut it off.
Because if you're going to attempt to squeeze that big black monster into your slot you will need to be able to take at least 12 inches or else you're going to have a bad time...
Sat down at a client in front of the tower servers to set up the new firewall. Few minutes into configuring the boss comes by and asks if something is wrong because they can't reach the internet. Look down and the server is off.
The power button in the case was stuck and when my knee pressed against the case it held down the power and shut it off.
Best part was that I looked at the server next to it and the button was stuck as well. Almost took down both the Exchange server and the file server at the same time. I can't wait until the physical servers are gone and those are virtualized.
Because if you're going to attempt to squeeze that big black monster into your slot you will need to be able to take at least 12 inches or else you're going to have a bad time...
Best part was that I looked at the server next to it and the button was stuck as well. Almost took down both the Exchange server and the file server at the same time. I can't wait until the physical servers are gone and those are virtualized.
It will save you so much time accidentally killing servers when you can do them all at once from a single button. :P
Just remember that half the people you meet are below average intelligence.
How I hate shared spreadsheets. Because the users don't close out of them for 12+ hours sometimes Excel just decides they are corrupt and their file size goes down to 0 so I have to restore them from backup.
Anyone have experience with them in Office 365 and do they work well in that environment?
I've never encountered that before, ever.
I encounter file corruption issues with shared Excel workbooks all the damn time, across multiple environments.
DFS makes the problem even worse.
I generally hate that feature largely because of that.
every person who doesn't like an acquired taste always seems to think everyone who likes it is faking it. it should be an official fallacy.
Best part was that I looked at the server next to it and the button was stuck as well. Almost took down both the Exchange server and the file server at the same time. I can't wait until the physical servers are gone and those are virtualized.
It will save you so much time accidentally killing servers when you can do them all at once from a single button. :P
*stares in high availability*
every person who doesn't like an acquired taste always seems to think everyone who likes it is faking it. it should be an official fallacy.
the "no true scotch man" fallacy.
0
Options
Donovan PuppyfuckerA dagger in the dark isworth a thousand swords in the morningRegistered Userregular
Yeah, until someone provides iron clad documentation that Microsoft won on merit over Amazon, I'm going to assume political interference here. Trump hates Amazon that much.
Not a slight on Microsoft/Azure, I actually really like the stack, but just a reality of the current political landscape in the US.
AthenorBattle Hardened OptimistThe Skies of HiigaraRegistered Userregular
I wanted to give a shoutout to a guy who lives in the same town as me that I've never met (to my knowledge) and has done far more for the world than I ever have.
I wanted to give a shoutout to a guy who lives in the same town as me that I've never met (to my knowledge) and has done far more for the world than I ever have.
I wanted to give a shoutout to a guy who lives in the same town as me that I've never met (to my knowledge) and has done far more for the world than I ever have.
You know what’s amazing about that story? His employer won’t pay him enough to cover his bills.
Yet the article quotes a security researcher who is worried about law enforcement taking advantage of him.
...
You know what? You're absolutely right, I hadn't even considered that angle! The article was just heaping praise on the guy, who seems to be one of the company's best workers, and yet he's basically working poor. And I should've noticed, because I worked in a very similar position for a local MSP, being paid 1/3 what I am now.
Huh. and here I was, bringing this up to all sorts of friends and connected folks in town, including spreading the story at work, and feeling like I should try to help him out.. when the real answer would be for his employer to pay more based off the publicity this article generates for them.
Posts
Wrap all your ps into one line batch scripts and see how long they take to notice.
For real fun base64 encode the scripts: https://community.idera.com/database-tools/powershell/powertips/b/tips/posts/converting-powershell-to-batch
fuck up once and you break your thumb / if you're happy at all then you're god damn dumb
that's right we're on a fucked up cruise / God is dead but at least we have booze
bad things happen, no one knows why / the sun burns out and everyone dies
the "no true scotch man" fallacy.
I suspect if their idea of "security" is "use batch scripts instead of powershell" then they probably don't have any monitoring systems :P
fuck up once and you break your thumb / if you're happy at all then you're god damn dumb
that's right we're on a fucked up cruise / God is dead but at least we have booze
bad things happen, no one knows why / the sun burns out and everyone dies
Oh yeah for sure.
the "no true scotch man" fallacy.
the "no true scotch man" fallacy.
Thank glob
Yeah that's a legit thing to block, it seems they only legit reason to do the encoding is to discourage tinkering but any user that's able to crack the script open and tinker would be able to do the decoding.
fuck up once and you break your thumb / if you're happy at all then you're god damn dumb
that's right we're on a fucked up cruise / God is dead but at least we have booze
bad things happen, no one knows why / the sun burns out and everyone dies
fuck up once and you break your thumb / if you're happy at all then you're god damn dumb
that's right we're on a fucked up cruise / God is dead but at least we have booze
bad things happen, no one knows why / the sun burns out and everyone dies
Over the summer I worked through a study guide for the CCENT, and passed in September. The primary issue is that the 2-volume set I picked up years ago was for the CCENT 100-101 and the CCNA 200-101.
When I realized that the tests had changed I checked the syllabus / blueprint for the 100-105 and thought, "hey, this volume still covers 95% of the material, and the rest doesn't seem to be a focus." So perhaps I skated by.
I've been trying to move on to the CCNA, but (amongst other things) the gulf of differences between the 200-101 and the 200-105 syllabi feels significantly wider. The local libraries only have one book that covers the correct test, and it's been a poor resource*.
The question I'm trying to ask here is
would it be reasonable to pick up the guide for the CCNA 200-301 with the aim of passing the 200-105?
It'd be more expensive, sure, but the material would in theory better prepare me for an actual job. I'm cross-referencing the syllabi, but I suspect the -301 is a superset of the -105. Is that a fair suspicion?
(an additional question: a long time ago I was fond of the nutshell line of books, and noticed there's a Portable Command Guide available. Would that a worthwhile addition to my toolkit?)
* yesterday in particular, I checked the website for errata and they a) claimed the errata was behind a registration gate, and b) suggested that, "...mistakes can still slip through the next".
I haven't spent a lot of time reading up on the changes to the CCNA program, but I looked over the exam topics this morning. Your plan isn't entirely unreasonable; however, I see what appear to be two big differences between the 200-105 and 200-301. The newer exam doesn't seem to cover either EIGRP or OSPFv3 (for IPv6 routing). So the question is whether or not the book for 200-301 covers these topics sufficiently. There appear to be other, smaller differences as well.
Ultimately the question I think is: will you be ready to take the 200-105 well before February 23rd? After that, you are forced into the 200-301. If you suspect that's possible, just get the 200-301 and be prepared to take that in February. Otherwise it may be worth finding a used copy of something for the 200-105.
If you have any questions/run into anything while prepping feel free to @ me or drop me a PM.
I definitely intend to take the 200-105 before the year is out, though the holidays may eat into some of my study time. I'm trying to avoid going back to fast food, even (especially) temporarily, and my projections don't support dragging this out much past the new year.
Thanks again! I'll look into a used copy through abebooks or something.
Im not sure where I'm fucking up so I'm going with "you overcomplicated it"
Doing an Ad query and a Cm query in to array $1 and $2 respectively
This is giving me a single object, thousands of characters long of pc names with no spaces.
I've been going over the refs and stack overflow but I think I'm missing a basic concept and am hoping someone here might have some tips on how to get my head on straight.
What I actually did this morning: screwing with broken SQL crap.
kill me.
Why do you have @($computer.name) at the end? That initializes an array with all the computer names every time the loop runs.
$(computer.name) might be what you want.
Also, make sure to initialize $notin =@()
Thank you, that cleared up my misunderstanding.
Anyone have experience with them in Office 365 and do they work well in that environment?
I've never encountered that before, ever.
I've had it twice now. I have no idea what they are doing to cause it.
It could be some sort of excel addon causing issues. We've got tons and tons of shared sheets and have never had problems like this. Most of our excel grief has been caused by 3rd party addons though.
The power button in the case was stuck and when my knee pressed against the case it held down the power and shut it off.
Man, I have been there.
It will save you so much time accidentally killing servers when you can do them all at once from a single button. :P
Unless you have multiple hypervisors with high availability to protect against that.
but then what if someone accidentally unplugs the hypervisors
well then you have dual power supplies
but then what happens if someone accidentally turns off the PDU
well then you have multiple PDU's with each power supply plugged into a separate PDU
but then what if the power to the rack goes
well then you have a UPS
but what if the UPS dies
well then you get a generator and have bypass so you can go without the UPS if required
but what if the generator dies
well then you go get a beer and start looking for a new job.
I encounter file corruption issues with shared Excel workbooks all the damn time, across multiple environments.
DFS makes the problem even worse.
I generally hate that feature largely because of that.
the "no true scotch man" fallacy.
*stares in high availability*
the "no true scotch man" fallacy.
Then you have the roof of the building covered in solar panels and a couple of wind turbines...
I'm not. Part of gov contracts is knowing how tick boxes. Azure has gotten a bunch of additional certs and stuff over the past year like ISO etc
Or to have Trump tell the Pentagon to screw Amazon.
Not a slight on Microsoft/Azure, I actually really like the stack, but just a reality of the current political landscape in the US.
XBL:Phenyhelm - 3DS:Phenyhelm
https://www.youtube.com/watch?v=WVDQEoe6ZWY
https://www.propublica.org/article/the-ransomware-superhero-of-normal-illinois
You know what’s amazing about that story? His employer won’t pay him enough to cover his bills.
Yet the article quotes a security researcher who is worried about law enforcement taking advantage of him.
For some reason Google is getting caught up in that today.
...
You know what? You're absolutely right, I hadn't even considered that angle! The article was just heaping praise on the guy, who seems to be one of the company's best workers, and yet he's basically working poor. And I should've noticed, because I worked in a very similar position for a local MSP, being paid 1/3 what I am now.
Huh. and here I was, bringing this up to all sorts of friends and connected folks in town, including spreading the story at work, and feeling like I should try to help him out.. when the real answer would be for his employer to pay more based off the publicity this article generates for them.