D'Arcy Norman @dnorman@mastodon.social

"wait - the webserver needs to be accessed from outside the internal campus networks? that's a HUGE vulnerability. we'll need someone to approve that!"

It's. A. Webserver. That's literally what it is intended to do. You know, being accessed by people out on the internet somewhere.

And I just got a nice $80 ticket in the mail from campus parking, from when I had the audacity to briefly park beside the loading dock for 10 minutes while dropping off Christmas gifts to staff at the TI over the break. Awesome.

“Hey. You should eat some breakfast before you leave for school.”

“YOU’RE A FASCIST!”

ThatEscalatedQuickly.gif

step. away. from the computer.

Updated UCalgaryBlogs to WP5 yesterday, and all plugins/themes. a few hours later, server appeared compromised, sending over 150K spam emails. IT knocked it offline to figure out what's up. I'm so tired of running web software.

Now that I’ve paused my PhD for almost a year (pre-candidacy, so not even ABD), I’m no longer sure I’ll unpause it later. And I’m ok with that.

Dementia is a hell of a thing. 83 does not sound like fun.

taking a day off to rest a bit. what do I do? check emails. check RSS feeds. send emails. stare blankly at twitter for a bit. time to seriously unplug for awhile. is that still a thing?

digital media companies: "Direct streaming will disrupt the Big Cable companies! Cheap streaming will end illegal downloads!"

Also digital media companies: "Be sure you subscribe, separately, to Netflix, Disney, Amazon Prime, CraveTV, HBO Go, etc. and definitely also keep your cable package so you can get the rest of it too. Disruption! WOO! Oh, and we're gonna put ads in your digital streaming shows, too. WINNING!"

the one where he sends a less-than-diplomatic email to various people in IT to express frustration with an apparent ad hoc requirements goalpost-moving process. remember when D'Arcy worked here? that was awesome.

we got nailed by malware back in 2016. we paid $20K to get key systems unlocked, and likely $millions afterward on consultants and new security. awesome. All of this is money that could have been used for teaching and learning. https://www.cbc.ca/news/canada/calgary/samsam-ransomware-attack-university-calgary-1.4924568

Got 100% on a test today. Sure, it was just one of those “Are You Burned Out?” questionnaires, but still. Nailed it!

this week's episode of Adventures of Enterprise IT Security Reviews…

there goes the neighbourhood…

Why in hell do organizations force both english and french acronyms into a domain name? Often followed by a language picker to get to the right site. Stupidity.

have I mentioned lately how much I _LOVE_ the finer bits of the enterprise RFP process? 🤥