#sysadmin#cybersécuritay
Un type se connecte en IMAP sur TLS au serveur, depuis une machine en Chine, et se déconnecte avec l'alerte TLS "bad certificate".
C'est un certificat CAcert. S'il ne te plait pas, tu dégages !
#sysadmin
Un démon plantait à peu près tous les jours. Je mets en place un script qui teste s'il est toujours là et le démarre sinon, et, depuis, le démon ne plante plus (là, trois jours d'uptime). #Alpine
Clear-eyed explanation of disastrous fragility in current technical systems, yet it’s also very funny. Plus discussion. Well worth your time, and good inspiration for systems builders/sysadmins.
Bon, la partition / monte pas, la partition /home apparaît comme inconnue et il y a des erreurs de secteur.
3 ans d’activité, le disque n’a été utilisé que pour le serveur je crois, et sa capacité était largement sous-exploitée (1To)
Why Windows 10 might be gaining users at Windows 11’s expense, an old DHCP option is a potential risk for VPN users, we should probably say “renting” rather than “buying”domains, and avoiding tracking when using IPv6.
Putting today's events on the scale, it seems balanced:
Client 1: "The setup you provided on FreeBSD and dedicated hosting outperforms an expensive public Cloud. I'm very satisfied!"
Client 2: "To simplify DevOps, I want to use low-cost, low-quality external service and decommission our servers. Infrastructure costs are too high." (Four physical servers on a low-cost provider with consultancy for management).
Coworker wrote a very useful in-house utility that they named "ATH." I of course made a joke about the next version needing to be called "ATDT." Half the team didn't get it. We work in telecom. I feel old. #sysadmin#bofh
Hm, so because I am so eager to understand things I know have the task to explain #NeighborDiscoveryProtocol of #IPv6 tomorrow.
From what I understand, I can think of multicast of like topics in MQTT:
One sender and whoever is interested can read from it. New hosts are subscribed to it when they go online.
By setting certain flags in #ICMPv6 their are messages for routers and neighbors. One for request and a matching respond (called solicitation and advertisement).
Now I would love to have a #SysAdmin confirm my understanding.
#AskInfoSec I'm trying to wrap my head around security aspects of IPv6 protocol.
From what I've learned that now my networking devices have a public IP address (unlike with IPv4 which would have to be port translated at the router).
In order to talk to a service I still will need a port next to the IP address.
Does that mean that every device in the network should have a firewall? Or can I still have one at the router level handle everything?
My fear is that a router could be easily bypassed.
Mastodon’s link previews are causing downtime for web servers without properly configured caching, locking down DNS inside Windows networks, why using write-once backup media is a bad idea, and increasing the performance of a Microsoft SQL Server with SSDs and ZFS.
We're thrilled to announce a new service: myip.bsd.cafe!
Now live, this tool is your go-to resource for checking your public IP address via Telnet, SSH, and HTTP—also perfect for times when you're on a command-line interface without browser access.
Whether you're an IT professional or a tech enthusiast, this service is built to make your digital life a bit easier. Set up your own instance or use our public service.
Full instructions available on our Brew repository!
Spread the word and let's make network troubleshooting easier for everyone!