Maybe the reason we’ve had a bunch of crashes all the sudden is that we SHOULD have fired all them before now? Maybe they are INDEED the geniuses, and WE are the stupid ones…

Anyone use open source tools professionally or in your shop? Security Onion, Wazuh, etc?

Won’t someone please think of the investors…!

I’m just glad they’re still distracted with torrents…

rawdawg some torrents

LOL! Did you spray 1’s and 0’s in their face when you were done?

Good comments.

Do you think there’s still a lot of traditional or legacy thinking in IT departments?

Containers aren’t new, neither is the idea of infrastructure as code, but the ability to redeploy a major application stack or even significant chunks of the enterprise with automation and the restoration of data is newer.

Blank check

Funny how that seems to often be the case. They need to see the consequences, not just be warned. An ‘I told you so’ moment…

Yeah, that’s pretty risky for this point in time.

I guess the MBA people look at total cost of revenue/reputation loss for things like ransomware recovery, restoration of backups vs the cost of making their IT systems resilient?

Personally, I don’t think so (in many cases) or they’d spend more money on planning/resilience.

Seems like your org has taken resilience and response planning seriously. I like it.

contract “options” are indeed normal. You could also lump in government contracts into the category your thinking about. I’ve never heard of a scenario where the vendor broke contract by not honoring the options. I also have never dealt with a vendor getting bought out and then not honoring existing contracts. Super fun to watch the corporate drama. I personally don’t care for the private equity style business that seems to be an even bigger problem than the investor first/profit centric model that I thought was the worst thing.

I have been painstakingly laying the ground work for segmenting network into data center management plane, and future overlay networks for internal applications and dmz / public services.

It would have been easy to burn the place down and start over…

Ever look at emby?

How far do you guys go?

'All of it’s or until it’s inconvenient?

What’s the pain tolerance for when everyone says it makes the job too hard?

Ever compared CIS controls to STIG ACAP?

I’ve only ever used SCAP for a few reasons z but one being it’s free.

What do you guys use for STIG audit?

Manual STIG viewer or SCAP?

Makes sense. Thanks. I have heard of R7. Had not heard of Qualys.

Thanks

Good info, thanks.

I am familiar with ACAS, which is why I am testing the products.

Fully capturing all the capabilities of scanning, auditing configuration seems like you could put countless hours into the implementation.

I imagine the ROI is high based on what I’ve seen.

Would you agree?

Thanks,. I’ll check into those two

I know businesses like to skip on spending money for upgrades, but still using 2010 is pretty far out. These just mom and pops that have no idea, or these just businesses that don’t care?

I spent Wednesday tracking down what was transferring too much data. It was domain controllers. The team didn’t figure out why though. I’m waiting in anticipation. I also can’t call people names without knowing/JK