@gclimer

7 Followers
19 Following
67 Posts

he/him

Father and husband, born and raised in the southeast United States, doing data engineering stuff for a living

Biggest hobby is watching Chattanooga Football Club (soccer), currently learning to knit

Knittinghttps://tincanknits.com/pattern/maize
gclimerDec 7, 2023
Gotta love when security admins need to update a script, but they couldn't figure out how to make it work so they just stopped working on it without telling anyone.
gclimerDec 4, 2023

Server Admin: _server_ has a vulnerability that needs to be remediated before it can be promoted to production

Me (not a server admin): ... ok?

gclimerNov 9, 2023
If you're in identity & access management / information security, and you don't have even a basic understanding of how or why one would want to use kerberos for authentication, you should probably find a different career.
Show threadgclimerOct 11, 2023

AND NOW IT WORKS.

FFS why can't people be bothered to do the bare minimum of checking logs and/or comparing configurations with known-good configurations?

gclimerOct 11, 2023

Me to Security team: Kerberos initialization still isn't working on <server>.

ST: Probably because <server> isn't whitelisted?

Me: Maybe it's because this server has <missing config>? Have you checked the logs?

ST: Try again.

Me: Still not working. Did you check the logs?

ST: Does <server> have an agent installed?

Me: The initialization is being done remotely with a powershell script. No agent involved. Have you checked the logs and <missing config>?

ST: <adds missing config> Try again?

gclimerOct 10, 2023

Dev: I'm having an issue with xyz

Me: You should be able to work around that by doing this and this

Dev: That won't work once it gets to a certain point

Me: <writes simple poc to show it works > Did you try?

Dev: 🦗

gclimerSep 28, 2023

Had the privilege of finding a phishing/pharming operation and reported it to the domain registrar.

The domain is no longer in service.

Show threadgclimerSep 6, 2023
@d curious, what's your use case for #1?
Show threadgclimerAug 3, 2023
also, "we didn't listen to your recommendation years ago, but our cyberthreat team would love to hear your ideas now that you've exposed the very flaws you warned us about previously that we promptly dismissed"
gclimerAug 2, 2023
Gotta love when the cyberthreat response team disables your account for following the exact procedures they published on retrieving credentials from the enterprise vault because their threat prevention software flagged your script based on the name alone. But sure, somehow we're to blame.