sysadmin

i need help, i am taking a summer college class for a comptia security+ exam. Does anyone know how to set up group audit policy in windows. i need to do this for a lab. i have attached a image of what i need to do.

I wonder if this new system is why I can't make slack remind me at weird times...

It is always interesting to read about other people's experiences with k8s.

Archive Mirror for those that hate medium: https://archive.is/sQcHH

Off topic:
The amount of 'please login to read the rest of the article' popup blocks is insane now. They must be really trying to make money...

Looks like another Intel specific CPU issue. Be on the lookout for the new microcode updates

i was setting up postmaster on Linux Mint, and i saw that a lot of UDP requests were blocked from one local IP address. I found out the IP belonged to my parents Samsung smart TV. i loaded up wireshark and found out it is sending UDP requests with different port numbers per request. any ideas what is going on, and how i can stop it.

I guess it could be worse...

Hey Sysadmin,

I need some ideas around "IDS/IPS".

• What are people using for passing security audits?
• What about for AWS / Azure?
• Can they cover devices on/off prem (work from home, etc)
• What is a figure that your management team actually approved?

Everytime I have to do something with a dns, subnet, general networking shenanigans. I get really lost. Are there any good books for self learning that won't put me to sleep?

Grabbing a new coffee and enjoying some drama that has absolutely no affect on me what so ever....

cross-posted from: https://reddthat.com/post/138527

Wow Microsoft. You actually suck.

It'd be great if this could be a community for sysadmins of NSFW sites.

So you want to know how we host lemmy?

I bought a server for 12 months, cloned this repository, edited the smtp details, modified the host vars, and ran the deploy!

The lemmy stack uses nginx, docker, and certbot. Inside docker it runs, lemmy, lemmy-ui, pictrs, postgresql, and postfix.

For our CDN we are using the "dreaded" cloudflare for caching. Here's a pretty picture of our analytics for the past 7 days (the whole life time of reddthat.com):
Incase you hate me for using cloudflare, don't worry I don't like using it either, but it's free for the time being. We are planning to move to BunnyCDN once we become funded. We've enabled Strict SSL to ensure all communications are secure. We also allow Tor users to access the site, and have our cloudflare "security" setting to minimal.

We are using UptimeRobot for our status page; status.reddthat.com.

Emails are hosted via my Mailcow instance.

The git repo linked here has been forked to a git repo and I'll be looking at making some changes in the coming days. Mainly to add the nginx configuration to be part of the code as well. It will then be completely under code, not just partly under code as it is now.
This is a gitea instance utilising gitea_runners, so once I get that done, I'll be creating gitea actions for:

• Adding renovate to automatically check for new versions of the docker files and notify of passing tests
• Once the PR is merged, automatically deploy it.

& that's about it.

Tiff

In case you’re having issues connecting to sysadmin communities, this space can be used as a communication point for sysadmins in the fediverse to stay connected.