Aboutcybersecurity engineer in aerospace
Skillspython, c++, flask, linux, security, containers, docker, container security, kubernetes
Joined devRant on 5/17/2019
Do all the things like ++ or -- rants, post your own rants, comment on others' rants and build your customized dev avatarSign Up
From the creators of devRant, Pipeless lets you power real-time personalized recommendations and activity feeds using a simple APILearn More
TL;DR: "Best" job is a dynamic flow, your job or your priorities will change, better to just start.
It depends on your definition of "best": do you mean the job that you think you will enjoy the most? The job that you are the most knowledgeable on? The job that you will have the most upward mobility in terms of opportunity for promotions and salary increases?
All of them at once, i suppose, but you cant have everything at once: my advice would be just start somewhere. Thinking you're going to get your dream job fresh out of college is a bad way to look at the world. The best job may be the best right now, but your priorities will change in life.
The best job today may not be the best tomorrow for a variety of reasons, but if you start somewhere, you will always have the experience generated by your existing occupation to carry you forward and propel you into your next big position.
We literally have Ph.D's here who dont know how to use a Linux CLI... I'm baffled as to how you get into the security industry without understanding actual security. The only thing your Ph.D. counts for is understanding the rules that allow you to ball-bust people into paying your salary.9
Part 1: https://devrant.com/rants/4298172/...
So we get this guy in a meeting and he is now saying "we can't have application accounts because that violates our standard of knowing who accessed what data - the application account anonamizes the user behind the app account data transaction and authorization"
And so i remind him that since it's an application account, no one is going to see the data in transit (for reference this account is for CI/CD), so the identity that accessed that data really is only the app account and no one else.
This man has the audacity to come back with "oh well then thats fine, i cant think of a bunch of other app account ideas where the data is then shown to non-approved individuals"
We have controls in place to make sure this doesnt happen, and his grand example that he illustrates is "Well what if someone created an app account to pull github repo data and then display that in a web interface to unauthorized users"
M******* why wouldnt you JUST USE GITHUB??? WHO WOULD BUILD A SEPARATE APPLICATION FOR THAT???
I swear I have sunk more time into this than it would have costed me to mop up from a whole data breach. I know there are situations where you could potentially expose data to the wrong users, but that's the same issue with User Accounts (see my first rant with the GDrive example). In addition, the proposed alternative is "just dont use CI/CD"!!!
I'm getting pretty pissed off at this whole "My compliance is worth more than real security" bullshit.
User: If we use Oauth2, can we audit exactly where this data is going and who sends it there, and in addition cam we audit who grabs that data from the Authenticating app and make sure it doesn't violate our requirements?
User: Why not?
Me: Because thats like asking us to audit whether or not a user accessed files and then uploaded them to their personal drive instead of corporate. We don't mandate that application owners take responsibility for their data outside of their application, why would we require that in this case???
FFS the lack of understanding of application accounts here boggles my mind. I understand that the security concerns are real but throwing out all permissible contexts based on a mandate that we dont even apply to extremely permissive accounts (i.e. users compared to apps) is folly1
"Dude, you HAVE to check out this meme i saw...
No; of course it's not in the joke/meme category!"1
I'm getting pretty fed up with dependency injection and having to do work in Loopback; why cant it just work!1
I chose Network/Cyber Security because it was my internship experience and they were willing to pay me good money to stay on... No but seriously I am much better at understanding how complex systems work than coding them. This job, as stressful as it is, is a different kind of stressful that the deadline-fraught jobs of software developers worldwide.
And i can do it fully remote.2
Manager: "Can we get an accurate report on how many containers we have on the Kubernetes cluster?"
Me: "Well not really since Kubernetes is designed to be dynamic and agile with the number of resources and containers being created and deleted being subject to change at a moment's notice."
Manager: "I want numbers"
Me: "Okay well if we look at a simple moving average over time, we can see how the number of containers changes and then grab a rough answer from that"
Manager: "These numbers look a little round, are you sure these are exact?"
I'm going to throw myself into a pile of used heroin needles and hope i get stuck with whatever the hell this guy has to somehow be a manager while also being this retarded.15
I really thought i would never run into integer overflow issues, but damn, not being able to set a date as 100 years into the future for comparison is pretty shite. Fuck this bug.3
My pet peeve (for non-anglicanized saxons, essentially something that bothers you a lot): when people get really upset or freaked out for you in order to outdo your own sense of shock or anger at the circumstance you just told them about.
Today i had a rock hit my windshield. Later i told my brother about it and he was EXTRAORDINARILY concerned, and although its just him looking out for me, i cant help but feel noided by it.
Am i an asshole for this or do you guys feel this way sometimes?7
Everybody's coding on the weekend
Everybody needs a new project task
You want a piece of my results
You gotta start from the start
You want to be in the contributors
C'mon baby let's go
Yeah essentially I'm going to be working this weekend due to protect constraints and SME being unresponsive and unhelpful1
Another leetcode interview down. I really appreciate the options to choose your own language nowadays; being forced to use C to figure out byte gaps is like being forced to clean the freeway with a toothbrush!1
Anyone have experience with filterless or chemical-free aquarium ecosystems? Looks like a real neat hobby but i dont want to mess with living things too much for fear they get harmed6
Had to put down my dog today. I've felt real shitty before but this is my closest experience of loss I've had.
I miss her so much you guys. I'm sorry for bringing it down. You guys all feel like a real community so help me feel my feels and not just push it down.12
Replace all the python scripts with Perl file extensions. It wouldn't really do anything because people would still be able to run things if they did things right, it would just be a harmless funny prank
SIEM: Security Information and Event Management system
Within a SIEM there is usually a reporting, alerting, and learning framework wherein you perform investigations and threat hunting. Our SIEM is connected to our data lake through a glorified elastic backend.
Today we were figuring out how to get dynamic data that we store in our SIEM to show up in the regular data lake presentation layer. All the solutions only half worked or had barriers to progress that seemed larger than the proposed solution.
So now we're going with the proposed solution: send static data back into the data lake in order to pull it out on the normal frontend with all the enriched info. We're basically turning this thing into a damn feedback loop.
I hate designing solutions within the confines of COTS products.
The titles - some of these events have the most insufferable titles. If it's not some cringey pop-culture acronym like AVNGRS then it's a super nondescript, mysterious title like "The Bakeoff", which helps nobody and doesnt do the event justice.
I would much prefer "MIT Anual CTF, 2021" than the usual bullshit fanfare referencing the Matrix.1
Had a meeting with about 5 people, 4 of which showed up, 1 of which did not.
Guess which one was the subject matter expert without whom we spent 55 minutes positing what-if's that could've been easily answered if that individual was there?
Yup. Never rescheduled, and that was the end of that conversation.
Learning from the smart people; in every workplace there are drones and leaders, each have their own selective intelligence. Pick the ones that are the most intelligent to learn from, and you'll be going along happily while learning at breakneck speed from the best.
Just finished moving all my python code documenation from hand-written wikis to API docstrings and set it up to autodeploy to github pages with each commit. Feeling really hopeful about this, although its going to be frustrating going back to other languages that dont have inline docstrings.1
The fact that there's only two characters between "run this job every 10 minutes" and "run this job every hour on the tenth minute" was the fix for the particular problem i just spent 5 hours on :facepalm:8
"I need these permissions that J has"
J has those permissions because he worked on a different team that was granted those, you do not.
"I need it"
"I need it"
Its not within my power to allow you access, you have to talk with R and M.
"Okay well guess what I'm gonna escalate this up thr chain and its gonna come down on you"
*sigh* what do i do when i literally have no authority to give someone something and am clearly doing my jobb right, but someone thinks they can get me... idk... in trouble? Threaten me??? Logic, meet the window5
Loopback 4 really is pulling me out of the expressjs shithole... It really feels like I'm avoiding a lot of tedious work.
"B-b-bbut you have to use typescript and its a slower"
I've preferred typescript ever since angular 2 came out, and the 'slower' comment is invalidated by the fact that, when working on projects that are distributed between multiple devs, are marked by silent errors and serialization issues, and can change datasource types between customers, then the benefits of typescript and loopback's CLI far outweigh any potential slowdowns that may be caused. If you can find me an alternative that does this better, please let me know.1
The best way to get a kid interested in coding is give them legos. If they hate legos, they most likely wont like programming, or anything that requires you to understand how something is designed in order to build a service or product.
Next is just to see what the kid likes and what they're good at.2
Can you guys let me know how microsoft teams is? Is it good, or is it polluted with fluff and garbage?15
So if you recall, my last rant was about last minute, supposed critical-severity, ASAP due date requests being made, and me telling them to fuck off.
So today the boss' boss' boss called down and said a different task needs to be done by end of the month.
So now my current tasks get pushed to next month, and the person who needed their task done ASAP will now more than likely get it by mid june. Amazing.
And if you've been actively following my other rants, this is the same section manager that sends a quirky email out at the end of every night about what she's been fucking with lately.
I WANT OFF MR TOAD'S WILD RIDE
An actual email thread:
G: I need this done
Me: okay. Whats the priority, when's the due date, who are the stakeholders, what's the sensitivity level of the data?
G: Priority is ASAP, due date is ASAP, stakeholders are ALL OF IT, and i want to be able to control the data sensitivity level
Those arent ANSWERS; they're REQUESTS!!!9