redfox

joined 1 year ago
sorted by: new top controversial old
Indianapolis lost federal funds for replanting trees in the city because of the word “diversity” in biodiversity in c/indiana@midwest.social
[–] redfox@infosec.pub 3 points 3 days ago (1 children)

Your desire for fresh air is "woke" and "extremist". We Christians have determined you're somehow headed straight to hell...

/S

1
No more hybrid schedules for state workers as remote work slashed (www.therepublic.com)
submitted 3 days ago* (last edited 3 days ago) by redfox@infosec.pub to c/indiana@midwest.social
0 comments fedilink
 

Article covers Braun's intentions to reduce state employees by revoking remote work - my opinion.

Anyone have really good support for removing remote or hybrid work?

All I hear is rhetoric about productivity in person and collaboration, but too many studies say that's unnecessary.

Is this a veiled attempt to reduce headcount or is there actual legitimacy to removing remote work?

EV tax credits might end even sooner than House bill proposed in c/technology@lemmy.world
[–] redfox@infosec.pub 1 points 5 days ago

Sucks if you wanted a different EV, like Rivian, Leaf, that toy battery truck coming soon...

Indiana taxpayers pay nearly $500K for Attorney General Todd Rokita’s disciplinary defense • Indiana Capital Chronicle in c/indiana@midwest.social
[–] redfox@infosec.pub 1 points 5 days ago

It's like living in the upside down from the Netflix show

Cigarette, gas tax hikes coming to Indiana July 1 in c/indiana@midwest.social
[–] redfox@infosec.pub 1 points 5 days ago

Anyone going to bat for the smokers here?

I'm not at all upset by taxing tobacco, but I'm sure plenty of people have good arguments backed by studies regarding alcohol and sugar.

If they start trying to add sugar taxes to candy bars and cup cakes, I imagine people would riot.

3
Gov. Mike Braun says tolling needs to be an option for Indiana's road funding future (www.wfyi.org)
 

Could anyone explain this in a way that doesn't make me hate it?

The usual arguments I relate to are things like: we are taxed multiple times for vehicle ownership. Purchase, plates, mandatory insurance, gas tax, parking. Did I miss any?

Now I know there's plenty of people who would rather have robust public transportation, which would be nice, but I don't see that happening as a result of all this money I'm already paying.

People who make just enough or barely enough to afford to drive to work could now have to pay for the right to trade their precious time for money.

Insert tirade here about that.

I've heard view points regarding tolls:

recover costs to maintain interstate infrastructure used by commercial trucking to move the rolling warehouse of America around so Jeff Bitchboy can have a Venice wedding and I can have my materialistic lifestyle delivered to my door possibly the same day...sorry slipped into rant.

Should I be looking at this a different way before I exercise the almost non-existent power I have as a resident and voter, which is sending emails to my elected corrupt aristocrats and beg them to consider regular people, darn did it again.

Indiana taxpayers pay nearly $500K for Attorney General Todd Rokita’s disciplinary defense • Indiana Capital Chronicle in c/indiana@midwest.social
[–] redfox@infosec.pub 1 points 1 week ago (2 children)

This was a long article, but I appreciated the details and perspective.

Now, personally, if we're going to argue weather lawsuits are political or Justice related, and if it's a waste of money, then since he was found at fault in two of the six reported cases he can pay back a third of what we spent, right?

5
Indiana taxpayers pay nearly $500K for Attorney General Todd Rokita’s disciplinary defense • Indiana Capital Chronicle (indianacapitalchronicle.com)
Hoosier can't sue BMV for damages related to agency error • Indiana Capital Chronicle in c/indiana@midwest.social
[–] redfox@infosec.pub 1 points 1 week ago

I don't know enough about this legal principal to attribute it to political parties or not.

I don't like it thought 😕

Hoosier can't sue BMV for damages related to agency error • Indiana Capital Chronicle in c/indiana@midwest.social
[–] redfox@infosec.pub 2 points 1 week ago

Personally, after reading the specifics from the article, but without further details, I am currently disappointed in this ruling.

I feel like if a private company can be sued for negligence resulting in material loss, then we should be able to equally keep our public services accountable to that same standard.

5
Hoosier can't sue BMV for damages related to agency error • Indiana Capital Chronicle (indianacapitalchronicle.com)
 

My reading of the article shows a decision that the right of residents to sue the government for neglect actions was not specifically granted in this instance.

VMware cloud partners demand “firm regulatory action” on Broadcom in c/sysadmin@lemmy.world
[–] redfox@infosec.pub 1 points 2 weeks ago

Ha, "regulatory action"...

Only when corporations feel pain do they ever utter the words...

The only time corporate enshittification is fun to watch is when they're doing it to each other. Of course, normies still pay for it...

Is Ops a bullshit job? (from Dan Slimmon) in c/sysadmin@lemmy.world
[–] redfox@infosec.pub 2 points 2 weeks ago

I mind the work much less than the general corporate organization and interacting with it.

I usually enjoy system building. I agree it's taking many technologies and pieces and putting them together. Where we differ maybe comes down to the why, for whom, and how much good it does? Maybe if you're any good at it?

I have no interest in duck taping things. Any solutions I'm involved with need to be balls out, bullet proof, maximum effort, or not at all.

I wonder how many of us agree with the 'dona few things really well' vs being a generalist.

European customers report Oracle Cloud identity outage, Big Red is silent in c/sysadmin@lemmy.world
[–] redfox@infosec.pub 1 points 2 weeks ago

How is their stock price still so high? Especially after their recent beach denial?

Slate Auto confirms where it’ll build its $20,000 Truck (Warsaw) in c/indiana@midwest.social
[–] redfox@infosec.pub 2 points 2 months ago

Hell yeah

What are your methods to harden *nix servers? in c/cybersecurity@infosec.pub
[–] redfox@infosec.pub 1 points 2 months ago

If you want to go balls out, go get DISA stigg for Redhat.

-36
Sophos XG Firewall Home Use (www.sophos.com)
 

Public Service Announcement:

Have you checked out Sophos XG Firewall for home use lately?

It's basically an enterprise firewall fully licensed for personal use.

  • All the firewall stuff
  • Normal IPS
  • Built-In easy transparent SSL/TLS proxy
  • Web Application Firewall

I like it better than PF/Open Sense right now.

https://youtu.be/Ui8UC8-MeJU

12
Permanently Deleted (indianacapitalchronicle.com)
submitted 3 months ago* (last edited 5 days ago) by redfox@infosec.pub to c/indiana@midwest.social
4 comments fedilink
 

Not sure why the original post was deleted, but I voiced anger at the hypocrisy of the article subject

5
State settles with anti-abortion group; will release terminated pregnancy reports • Indiana Capital Chronicle (indianacapitalchronicle.com)
 

I consider myself slightly in a conservative, Christian viewpoint camp. I say slightly because as I get past middle age, all those views or opinions have shifted.

I'm not a huge fan of abortion, but my opinion is slightly more nuanced and that's not a topic I think will be fruitfully discussed online.

Button line, seeing things like this however make me slightly lose my fucking mind.

Insert huge rant here about hypocrisy and unreasonable people, laced with outrage and much profanity.

I know others in my circle who also feel similarly. My hope is that people might know even church going conservative people think this is fucking bullshit and that piece of shit attorney general need to go. Fuck him.

22
Keep Tier-One Applications Out of Virtual Environments (www.darkreading.com)
submitted 9 months ago* (last edited 9 months ago) by redfox@infosec.pub to c/technology@lemmy.world
34 comments fedilink
 

After reading this article, I had a few dissenting thoughts, maybe someone will provide their perspective?

The article suggests not running critical workloads virtually based on a failure scenario of the hosting environment (such as ransomware on hypervisor).

That does allow using the 'all your eggs in one basket' phrase, so I agree that running at least one instance of a service physically could be justified, but threat actors will be trying to time execution of attacks against both if possible. Adding complexity works both ways here.

I don't really agree with the comments about not patching however. The premise that the physical workload or instance would be patched or updated more than the virtual one seems unrelated. A hesitance to patch systems is more about up time vs downtime vs breaking vs risk in my opinion.

Is your organization running critical workloads virtual like anything else, combination physical and virtual, or combination of all previous plus cloud solutions (off prem)?

7
Question: What do you use for configuration management? (infosec.pub)
 

I've seen companies do all sorts of home grown things.

One uses a spreadsheet that is just the configuration row by row, they turn it I to text file and copy to startup, reload.

I have used git servers to do the same thing, but with obvious change tracking history of git.

What real or home grown things are you using?

4
Question: Cisco SSL VPN or FlexVPN? (infosec.pub)
 

Currently using an ISR4461x. Now 17.7+ supports ssl VPN.

Should we learn flexvpn or do ssl VPN?

3
Firewall Schemes at Different Layers (infosec.pub)
submitted 1 year ago* (last edited 1 year ago) by redfox@infosec.pub to c/cybersecurity@infosec.pub
1 comments fedilink
 

This is a network defense design scheme question.

In a scenario where your organization is designing multi-layered firewall deployment and management, how granular  do you create rules at each of these three layers?

Example site is a main/HQ site that also houses your data center (basic 3 tier model).

  1. Site has your main internet gateway and VPN termination point. As am example, it's a Cisco or other ZBF. It has four zones: (1) Internet, (2) VPNs from other sites/clients, (3) your corporate LAN including data center, (4) Guest/untrusted/Iot.

  2. Between your gateway and the rest of your corporate network/datacenter, you have transparent proxy firewall/IPS/monitor. It's bridging traffic between gateway and data center.

  3. Within data center, hosts have software host based firewalls, all centrally managed by management product.

Questions:

  • How granular do you make ZBF policies at gateway? Limit it to broad zones, subnets, etc? Get granular by source/destination? Further granular by source/destination/port?

  • How granular do you make rules for transparent proxies between segments? Src/dst? Src/dst/port?

  • How granular do you make rules for host based firewalls? Src/dst? Src/dst/port? Src/dst/port/application/executable?

  • How have organizations you've worked for implemented these strategies?

  • Were they manageable vs effective?

  • Did the organization detect/prevent lateral movement if any unauthorized access happened?

  • What would you change about your organization's firewall related designs?

3
Technical Controls (infosec.pub)
 

What sources of technical controls does your organization use?

Do you base device/operating system configurations on:

  • CIS workbench?
  • NIST/STIG?
  • Microsoft best practice?
  • Google searches and 'that looks good'?

How closely rigorously does your organization enforce change management for policies or settings?

  • Can you change GPOs/Linux/Network device settings as needed?
  • During maintenance window?
  • After a group meeting with code/change review and some sort of approval authority?
view more: next ›