SwiftOnSecurityJan 14, 2023

Note that OneDrive is actually pretty good now. (Yes, it was fucking garbage, I lived it every day, I know.) If your org is having consistent problems:

- Install OneDrive machine-wide with the installer switch, get binaries and maintenance tasks out of user profile
- Check your registry for weird old GroupPolicy still being applied
- Review and apply latest GroupPolicy settings
- If you use a proxy, make sure you're on latest vendor recommended exclusions. Call them and ask for a health check. We just did one and it found issues with our O365 settings.

We have largely moved users to OneDrive for business content and also selectively doing Desktop/Documents backup.

Show threadSwiftOnSecurityJan 14, 2023
If your company uses Office365, your most important ransomware insurance is getting your user files on OneDrive. And it can transparently backup Desktop/Documents now, users don't need to put stuff in OneDrive manually if you manage the setting with GroupPolicy.
Show threadSwiftOnSecurityJan 14, 2023
Enterprise Security is Operational Excellence. If you can't even recover from non-malicious stuff like SSD crashes, you absolutely positively are going to get wrecked by ransomware. And you're wasting IT staff time on routine garbage instead of actual resilience engineering.
Show threadSwiftOnSecurityJan 14, 2023
If you can't rebuild a dead machine in ~40 minutes with full data migration, you're going to be in a world of hurt either by hackers or an IT screwup. I've lived both of these lives, Helpdesk and Cyber. It's the same freaking continuum and it feels like I yell my throat raw trying to get people to realize this. If your user experience sucks you're not ready.
Show threadSwiftOnSecurityJan 14, 2023

The reason I went from Helpdesk Engineer to Security Engineer is because a lot of it is a subset skillset, if you're trying to build truly resilient systems and ensure nobody fucking calls you with their problem because the issues never happened in the first place, because you designed for the worst possible scenario.

I didn't learn most of this stuff because I was responsible for Security. I learned because it was my job to clean it up, either per-machine or a whole-network compromise. And I really didn't want to do that.

Show threadDavid D. Levine
@SwiftOnSecurity That's how I went from Technical Writer to Software Engineer to UX Designer. I wanted to fix or prevent UI problems instead of documenting the workarounds.
Jan 14, 2023 at 2:18amWeb