floof.org
I am seeing so many incorrect reckons from people about patch management staging.
Modern EDR content updates don’t work the way old school patches do.
You have agent versions.
Policy versions.
Content versions.
This all work slightly differently.
Staging them old school ways is impossible if you want to get protection for threats updated in time.
Wake up babe, new furry elevator stress test meta just dropped.
#furry #convention #AnthroWeekendUtah2024 #elevator
Oh, so, spicy take -
I expect to see other failures of similar nature to the crowdstrike issue, in other companies and their products.
My expectation is informed by the massive number of layoffs in the past couple years, and a suspicion that many companies' internal infrastructure has been running in a degrading or possibly entirely unmaintained state since heavy layoffs occurred.
I just digitized a VHS tape produced by Yggdrasil Computing, Inc., titled "Linux - Installation and Beyond" that doesn't seem to be preserved anywhere. It's an interesting look back at what Linux installation was like in 1995, and hopefully should provide some historical context for those of you who weren't (un?-)lucky enough to live through this period of Linux.
YouTube: https://youtu.be/2IAa6MYVpVs
Internet Archive: https://archive.org/details/linux_-_installation_and_beyond
A seminar produced by Yggdrasil Computing, Inc., in 1995, demonstrating how to install Linux, recorded from VHS tape.Contents:- Introduction - History and ca...YouTube
PSA: delete your old Photobucket account now! Don’t put it off.
You know those emails you’ve been getting for a year from Photobucket threatening to delete your old account and you were like lol who cares and ignored them?
Turns out they didn’t delete them anyway, they repurposed the business as a broker of biometric data to AI companies and they’re using your old pictures for that. You have to actually go in and delete your account to opt out, and you only have until Monday, July 22 to do it.
Microsoft Recovery Tool available now, with instructions to assist with the Crowdstrike issue impacting Windows endpoints.
This will require physical access & 1GB USB. You will need admin rights (+ access to the Bitlocker key, if Bitlocker is in place).
Steps for how to access and use the recovery tool Microsoft created to generate a USB recovery drive to expedite the repair process from the CrowdStrike issue..TECHCOMMUNITY.MICROSOFT.COM
Them: “You’re not trans, why are you always defending them?”
Me: “I am also not a domestic cat, and if I see you abusing one of those I’ll kick your ass too.”
Shiny yote meets fluffy proot! What kind of mischief are they planning 👀
Left: @datbluehusky.bsky.social
Right: me
📸: @Shinyraptor
#SqueakySaturday #latexfur #rubberfur #latex #rubber
Normal folks hating on C++: it’s an old and memory unsafe programming language.
Me hating on C++: there is a convicted rapist and registered sex offender on the C++ committee and the committee leadership worked really hard to keep him there.
My brain has never brained logically 😂
@linguistics @linguisticsmemes @writing
#LinguisticMemes
#Linguistics #Words #AmWriting #Writerdons #Writers #Writer #Writing #WritingCommunity #Writinglife #WritersOfMastodon
Apollo 17 launched from the moon to return to earth 51 years, 7 months and 6 days ago, and no one's been back since. I'm 50, and no one's been to the moon — or even outside low earth orbit — in my lifetime. The (manned) space age finished before I was born!
The idea that we should now attempt to colonise a planet or moon within the time it takes us to trash the earth into unlivability is fanciful, to say the least.
In an unexpected turn of events, a sensible take on #Crowdstrike from the Orange Site.
Source: https://news.ycombinator.com/item?id=41004184
This is a remarkable story.
A factory belonging to a Polish snack company Aksam burned down last weekend, restricting its production capacity to only about 35%.
However, the CEO announced that no employee will be fired.
"Employees will be employed in a two-week system. Then there will be a crew exchange. I want everyone to have a job. However, a two-week job does not mean a reduction in salary. It will be full. In our company, we always put the human being in the first place and this will not change" - said the president Adam Klęczar
Here is the story (in Polish) https://businessinsider.com.pl/biznes/fabryka-paluszkow-splonela-zwolnien-jednak-nie-bedzie/0je1txd
W poprzedni weekend spłonęła fabryka produkująca m.in. "Paluszki Beskidzkie". W związku z tym właściciel wprowadził rotacyjny system pracy. Zwolnień jednak nie będzie.IAB Polska
‘In this area of healthcare, like no other I know of, the professionals with the requisite expertise are positioned by their critics as having been “captured by ideology” and therefore lacking in credibility. Meanwhile, those without the expertise are positioned as “independent”, which critics argue makes them better able to evaluate the evidence – despite having never worked in the field and having no understanding of its complexities’
Dr Aiden Kelly, clinical psychologist
“the ban is not supported by the Cass review or the wider evidence, and the exceptional approach to transgender youth is discriminatory and unfair.”
Decisions around the tiny minority for whom the option could be helpful should be made by clinicians, not Wes Streeting, says clinical psychologist Aidan KellyAidan Kelly (The Guardian)
people often ask me if my radio software's badass unicorn mascot is trans-coded
well duh, it's radio software, everything on it gets transcoded
"To deter long-distance travel, the band offered an initial presale of tickets for local postal codes only.
#MassiveAttack are giving train travellers special privileges: access to a VIP bar with separate toilets, extra pre-sale tickets and free transfers to and from the train station via electric bus. They are also working with the local train network, Great Western Railway, to lay on five extra trains for travelling fans."
https://www.bbc.com/travel/article/20240717-the-band-that-doesnt-want-you-to-travel-for-their-tour
Massive Attack have been campaigning on environmental issues for years – and are now fixing their gaze on the music industry itself with a groundbreaking Bristol show next month.Daniel Stables (BBC)
Haroon Siddique sums up the problem with the Just Stop Oil sentencing:
'Individual comparisons, while also imperfect, can also pose questions. Can it be right that protesters who forced closure of a motorway will be locked away for so long, when in March a woman was given a six-month suspended sentence for causing death by careless/inconsiderate driving?'
And if you think this is just 'whataboutism' then you've missed the point about property & life in law!
#politics
https://www.theguardian.com/law/article/2024/jul/19/just-stop-oil-jail-terms-questions-harsh-treatment-protesters
Lengthy prison sentences seen by many as heavy-handed and prompt comparisons with other offencesHaroon Siddique (The Guardian)
So managers are starting to spew the whole "well I didn't do anything wrong, it affected everyone else, so we're not liable" bullshit.
Did you allow a third party vendor to have the highest privilege access to all of your systems AND let them run Remote Code Execution on your systems whenever they want?
You didn't have a test environment set up to test each update or patch that is applied to your systems before you push them to prod? No? Just let it auto-update?
Yeah, that "Risk Transference" didn't work so well as your GRC policy seemed to think it would, huh? I know they're a security company and they SHOULD have tested it, but they didn't, did they?
I know everyone else does it, but if everyone else jumped off a bridge, would you?
Just because everyone else fucked up, doesn't mean you didn't fuck up.
There's gonna be a lot of deep discussions in this post-mortem and hopefully orgs will change. Those that don't will just be hit again... and again... and again.
Wow! 😲
CrowdStrike’s CSO sold $1.5M worth of stock right before the outage today!
I repeat, the Chief Security Officer sold $1.5M worth of stock!
https://www.barrons.com/articles/crowdstrike-insiders-sold-stock-cac5e509?siteid=yhoof2
Learn more about the July 19, 2024 CrowdStrike outage and the technical details related to it.CrowdStrike
Note that the BBC didn’t go offline today.
That’s because their entire operation is run from a bank of half a million BBC Micros all linked together in an enormous basement under Broadcasting House.
The whole of greater London takes its heating from that basement.
If a hacker had done this, we would be trying to put them in prison forever. If this were a company making a physical device that happened to kill people, the settlement numbers would be astronomical.
I predict that *at best,* there will be some kind of "hearing" along the lines of the Boeing inquisition, but I doubt even that will happen.
Which makes me wonder (among other things) why we have allowed software bugs and errors to occupy their own special moral category.
Something I love bringing up again from time to time: a little more than five years ago a friend and I found a functional microphone in a smart kitchen appliance that wasn't advertised to have one. The product in question was being promoted hard by Lidl because they sold it at a fraction of the price of similar devices.
It made national & european news and I was interviewed by the biggest TV news show at prime time.
All we wanted was run Doom on the thing. We installed Discord on it and hopped into a call because we thought it would be funny and fell off our chairs when it turned out the person on the other side could hear us just fine
Le tout nouveau robot-cuiseur connecté de Lidl fait un carton en France depuis début juin 2019. En voulant s'amuser à détourner son écran tactile, deux Français ont découvert plusieurs éléments curieux dans le fonctionnement de l'appareil.Marie Turcan (Numerama)
"Please allow me a moment to clean this up. Rest assured, I will let no harm come to you."
I've been swooning over Von Lycaon for a while now, and @gearwurk surprised me with this awesome art of Von TK! I guess Mr. Von Lycaon decided it was time for a new recruit. ^^
Thanks again so much! ^^
.... what if my paws are non-removable?
@philpem shoot, I'd pay money for actual real paws.
Not being able to use elevators seems like a fair tradeoff.
@DeltaWye @mcc
"The paw you have used to call the lift is too fluffy. To obtain a special dialling wand, mash the button with your snoot now"
Unless they’re hitting the STOP button that shouldn’t cause problems worse than the elevator going to each floor.
Crazy solution would be to see if the elevator controller has a “Sabbath/Shabbat Mode” they could put the elevator in. No button pushing required. Just goes up and down automatically to each floor. Takes ages though.
@DeltaWye I haven't looked at these elevators (I always stay in the hotel across the street) but I assume furs are hitting an emergency stop or fire alarm button.
I get it, but it's still funny!
Problem is, sometimes they trip the cable break sensor too, and that makes the controller lock the lift offline until it's checked out by a technician.