starneld

joined 1 year ago
[–] starneld@infosec.pub 26 points 2 months ago (1 children)

It was the style at the time

[–] starneld@infosec.pub 7 points 3 months ago (1 children)

Setting the update policy to N-2 (or any other configuration) would not have avoided the issue. The Falcon sensor itself wasn’t updated, which is what the update policy controls. As it turns out, you cannot control the content channel updates - you simply always get the updates.

[–] starneld@infosec.pub 2 points 11 months ago

Congrats on getting funding, that’s awesome!

[–] starneld@infosec.pub 2 points 11 months ago

My preference is for the native AWS WAF as we already use it. The rub comes from how the cluster is architected which would mean we’d have an ALB ingress per application - the prohibitive cost is purely the extra ALBs that would be created. Though I literally just heard it’s not going to be as bad as initially forecast so ¯_(ツ)_/¯

My original curiosity was if any of the K8s specific WAFs are any good, for example Prophaze.

[–] starneld@infosec.pub 4 points 11 months ago (2 children)

Trying to find a suitable WAF for AWS EKS. Any suggestions?

One of the teams has a cluster built with the nginx ingress which uses classic load balancers. Shifting them to the AWS ingress (which uses ALBs enabling our AWS WAF to apply) looks like it’ll be massively expensive due to the blow out in load balancer costs - but it gets us a WAF we already use across everything else. Other option is to find a WAF specifically for EKS and shift all clusters to that.

[–] starneld@infosec.pub 7 points 1 year ago

I rate Climate Town, always funny as fuck while covering so much ground and information.

[–] starneld@infosec.pub 3 points 1 year ago* (last edited 1 year ago)

My bad, just noticed you asked for Windows, this is MacOS.

Rectangle - just a simple and reliable MacOS window manager. They do have a paid version which gives you a few extra features, but I used the free one for a long time before buying to support and get access to one of the paid features.

[–] starneld@infosec.pub 16 points 1 year ago (9 children)

Very small quality of life increase, but I got the Scrub Daddy Soap Daddy. Makes life a bit easier and tidier for cleaning up in the kitchen.

[–] starneld@infosec.pub 2 points 1 year ago

I rate Rectangle - I bought Pro as well to support the developer and get the hot key to snap multiple apps to a specific layout.

[–] starneld@infosec.pub 7 points 1 year ago

Search engine or browser? For browsers I’ll use Firefox, but if I’m logging into anything I’ll usually use Chrome or Safari. I’ll also use Tor browser sometimes.

On the search engine side, I’ll generally use DuckDuckGo but I’m trying out Kagi to see if it’s worth paying for.

[–] starneld@infosec.pub 11 points 1 year ago (1 children)

I’ve read that it turned out to be a nothing burger primarily because there was a concerted effort to address the problem. That said, yeah, nothing melted down so functionally there was no issue.

view more: next ›