--- Log opened Tue Mar 19 00:00:54 2024
05:49 <@Dolemite> mr0ning, be0tches and h0ez!
05:49 <@Dolemite> Another day, another day waiting on the firewall rule process
06:34 < Evilpig> tell me about it
06:34 < Evilpig> I think i'm getting close to the two month mark
06:36 < Evilpig> just checked.  I am 1 week away from two months
06:40 <@Dolemite> You need to get Chad to escalate that shit
06:45 < Evilpig> the whole thing is absurd
06:45 < Evilpig> I could reach out and get them done but that's not fixing the problem
06:45 <@Dolemite> yes, beyond.  Guy and I were just chatting about the process and how convoluted it is now.
06:45 < Evilpig> we have a team meeting today and i'm going to bring it up again
07:08 <@Dolemite> Bob Marley - One Love dropped last night
07:08 < Evilpig> I read that this morning.  it wasn't listed as a documentary either
07:14 < Evilpig> supposed to get the 1.6 stardew valley update released today too
07:27 < Evilpig> stinkin' nvidia.  I had to put a change into my reboot checker to account for them.  everytime cuda updates it needs to reboot to reload the kernel stuff but the package doesn't have the reboot flag on it
07:28 < Evilpig> just added another if section to my script that runs after dnf-automatic so now if nvidia-smi throws that error about version mismatch after patching it will reboot 
07:30 < Evilpig> I was watching cutthroat kitchen this mornining and it just went black.  thought that was odd then the email came in for updates loading and saw the cuda update. :-/
08:16 <@Dagmar> In Stardew Valley you can now drink mayonnaise!  Are you excited?
08:18 < Evilpig> it's what i've always wanted to do.  I am kinda happy about the juices, jellies, etc taking on the color of their respective fruits though
08:19 < Evilpig> when I was choosing what wines to put in the aging barrels it sucked to have to read the names to find the most expensive ones, being able to see the difference by color might make it a little better
08:31 <@Dagmar> I can see that.  I'm anxious for paint to work in Nightingale so I can paint all these damn chests I'm collecting
08:31 <@Dagmar> You have to get kind of close for their names to appear
08:37 -!- Usul-al-fiqh is now known as eryc
11:05 < aestetix> https://www.youtube.com/watch?v=mdR6UznAtuc
11:06 < PigBot> When Posting All Your Crimes to Snapchat Comes Back to Haunt You - YouTube (at www.youtube.com) https://tinyurl.com/2845mo8y
12:20 <@Dagmar> Lord help Fortinet.  I'm finally being forced to put in support requests for the Fortimanager
12:20 <@Dagmar> I'm going to know every support person they have by name in the next three months
12:21 <@Dagmar> The "starter ticket" is literally it not doing the thing we need it for the most
12:21 <@Dagmar> Make a policy change, and you can push it to _most_ of the devices, but about 5% of them you can't push the new policy to because it'll insist they already have it (which is nutso)
12:21 < Evilpig> I sent someone from helpdesk to go test a network connection and told him to plug his laptop into the same switch this desktop is then try to ping the desktop.
12:22 <@Dagmar> Thats, that's kind of a _major_ fuckin' problem
12:22 < Evilpig> he went in there, pulled the network cable out of the desktop then told me he still wasn't able tp ing the desktop
12:22 <@Dagmar> Did you tell the department head they need him to pee in a cup?
12:22 < Evilpig> nope, because this is how that group operates
12:23 <@Dagmar> I'm not sure that level of situational awareness is appropriate for even the greenest of new hires
12:23 <@Dagmar> They should simply not be working in IT
12:23 < Evilpig> keep in mind for this ticket to have gotten to me it's been three two previous tiers of support now
12:23 <@Dagmar> Clearly some people think its funny that the other party is that dumb
12:24 < Evilpig> Pretty sure this NIC is getting its mac dropped at the switch so i've pinged netops to verify
12:24 <@Dagmar> Why would it be doing that?  Are ya'll doing NAC blacklisting of compromised hardware?
12:25 < Evilpig> yes
12:25 < Evilpig> new cisco experiment that was over hyped and trash
13:12 < Evilpig> Dagmar: you've done a bunch of android dev stuff.  is there any way that you know of to execute an adb command when a device boots up?  ie "adp tcpip 5555"
13:24 <@Dagmar> Not one that's a good idea.  lol
13:24 <@Dagmar> It's possible through the emulator but dangerous AF for a real device
13:25 <@Dagmar> ADB's access controls aren't that great
13:26 <@Dagmar> Seriously I just found out some of our people were told (by Change Healthcare folks) to use a thing called PingID for their 2FA
13:26 <@Dagmar> ...becuase using some software that generates 2FA codes _on the desktop_ and which also provides cloud management as well as "pairing" of the desktop to mobile devices is a good idea.
13:27 <@Dagmar> I would not be even a little bit surprised to find out this was how Change got pwned
13:27 <@Dagmar> I'm going to push for changing our verbiage/guidance on 2FA apps
13:28 <@Dagmar> "Microsoft Authenticator, Google Authenticator, or Authy *only*.  No other apps should be used for 2FA codes.  No exceptions."
13:28 <@Dagmar> "Phone apps only, no exceptions."
13:29 <@Dagmar> "Personally owned devices only, no exceptions."
13:29 <@Dagmar> "No exceptions because no."
13:48 <@Mirage> Okta
14:04 < Evilpig> authy no longer allows desktop app access
14:04 < Evilpig> i'm likely switching from authy to bitwarden for my 2fa google codes
14:06 <@Dolemite> PingID is similar to Okta.  It's a full Identity Provider platform that, unlike Okta, has the ability to run either as a cloud component, on-premise, or a hybrid.  This is why Okta keeps getting pwned - because it's cloud only.
14:06 < Evilpig> I don't mind a bad idea either.  this is for my tablet that never leaves the house.  just want to be able to it with scrcpy whenever without plugging into the usb to enable it first
14:06 <@Dagmar> Well it does appear that PingID is totes fine with breaking the pragma that a 2FA code is "something you have"
14:07 <@Dagmar> Someone's personal phone is probably orders of magnitude safer than some high-value target cloud infrastructure
14:08 <@Dagmar> EMR called foul on it becasue it immediately went after WMIC and I was like "WTF does a 2FA app need to enumerate desktop hardware for.  Also, WTF is 2FA doing on a desktop."
14:08 < Evilpig> when I need 2fa for multiple browsers and stuff I have it on the desktop for that
14:09 <@Dagmar> That's fine and dandy for you, but most of our users are nursing staff sharing public workstations
14:09 <@Dagmar> We have enough trouble with them using each other's accounts as it is
14:09 < Evilpig> this is not for them. my desktop is semi-secure
14:09 <@Dagmar> Well, of course.  You're a steely-eyed bastard who knows the risks.
14:50 <@Dolemite> aestetix: wow.  https://www.youtube.com/watch?v=2Bghj3EFNPs
14:51 < PigBot> When a Murder Suspect is Caught During Traffic Patrol - YouTube (at www.youtube.com) https://tinyurl.com/ywll39vk
15:25 <@Mirage> The sales/project guys keep referring to OS/SAN/NAS/Network/etc as 'Domains' and 'sub-Domains' when talking about this new customer's environment for onboarding.   Drives me nuts
15:27 <@Mirage> About like some of the videos I watch where people refer to MB+CPU+Memory as "The Platform".  
15:28 <@Mirage> I can see the use of platform, but not domain. Keeps making me think, "I didn't know we were managing their DNS"
--- Log closed Wed Mar 20 00:00:55 2024