Kevin Beaumont@beej During the pandemic in the depths of looking for things to do (and deep in Play in Forward archives as background noise) I took the Betrayal At Krondor MIDIs and cleaned up a few with more contemporary instrument packs and arranging. Never properly finished them, but any interest in hearing the rough cuts?
The Bard At Work
- 16 Followers
- 52 Following
- 27 Posts
I do vulnerability management and traditional Irish music.
@hacks4pancakes I experienced this deeply at my last position at an org that almost exclusively hired fresh college grads; as the senior SOC person I basically had to run most new people through crash courses on networking etc.
Then I was asked why we couldn't have their average sysadmin doing IR and when I pointed out they often lacked a lot of the technical knowledge (like networking for example) the response was "well, if there's something networking related they should be pulling in a network engineer"
Notably, for the second year running (and same with all prior reports) (and the same across other IR and MDR providers), the report doesn't mention AI or Generative AI once.
Absolutely not popular to say that and always get next to zero engagement on LinkedIn, but let me be super clear on this one:
The threat to your business is foundational IT and security. The big incident that screws you over will be somebody pointing and clicking. Focus on what actually matters, not AI.
@wdormann thus far my favorite conversation about this was someone who asked if I'd seen all the articles about the crazy Linux RCE and i told them about the CUPS vuln and they went "okay well let me know if we hear about the one from the article it sounds bad"
The number of unsolicited vendor e-mails I'm getting with 'reply to unsubscribe' or 'send us a note if you want to unsubscribe' is too damn high.
@Graham_LRR I look forward to seeing how their new project goes forward and what that crew can do free from both the corporate overlords and the exceedingly problematic history associated with the brand.
Lesley Carhart 
Oh to be young again, and believe I was really clever recommending technical cybersecurity solutions to the average human being.
@SteamDieselEV @frankmcg Heh, yep. I feel that!
@sjvn If the description is accurate the CVSS might be warranted, but the scope is probably very small.
I see what you mean, and digging through it looks like you can be using samba tooling on top, but you would still have to swap out smbd for ksmbd. I don't think if you're running smbd it would access that code, it has its own functions for tree handling.
@jerry @livinginsyn @GossiTheDog
The helpful @lschuermann scraped the git logs and pulled the versions that commit went to.
https://paste.selfnet.de/index.php/i6y/
Looks to me like it's anything past 5.15, which makes sense since it's in the ksmbd smb server, which they added in the 5.15 release.