-
Notifications
You must be signed in to change notification settings - Fork 0
/
Copy pathindex.html
45 lines (45 loc) · 11.9 KB
/
index.html
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
<!doctype html><html class=no-js lang=en><head><meta charset=utf-8><meta name=viewport content="width=device-width,initial-scale=1"><meta name=siteBaseUrl content="https://bongoeadgc6.github.io/"><meta name=author content="Cliff Hults"><meta name=description content="Personal tech blog."><meta name=keywords content="blog,personal,responsive,search,font awesome,pages,posts,highlight.js,syntax highlighting,shortcuts"><meta name=generator content="Hugo 0.64.0"><title>A personal blog to compile notes, thoughts, and many mistakes of a SysAdmin's journey. | HagueSt Blog</title><meta name=description content="Personal tech blog."><meta itemprop=name content="A personal blog to compile notes, thoughts, and many mistakes of a SysAdmin's journey."><meta itemprop=description content="Personal tech blog."><meta property="og:title" content="A personal blog to compile notes, thoughts, and many mistakes of a SysAdmin's journey."><meta property="og:description" content="Personal tech blog."><meta property="og:image" content="https://www.gravatar.com/avatar/fbadc1ea6f3dfcdfcf43615da5f2b9bf?size=200"><meta property="og:url" content="https://bongoeadgc6.github.io/"><meta property="og:site_name" content="HagueSt Blog"><meta property="og:type" content="website"><script src=/modernizr-simple.js></script><link href=/ rel=alternate type=application/rss+xml title="HagueSt Blog"><link href=/ rel=feed type=application/rss+xml title="HagueSt Blog"><link rel=stylesheet href=https://bongoeadgc6.github.io/theme.css></head><body class=bilberry-hugo-theme><nav><div class=container><ul class=topnav><li><a href=https://bongoeadgc6.github.io/page/about/>About Me</a></li><li><a href=https://github.com/BongoEADGC6 target=_blank>Github</a></li></ul></div></nav><header><div class=container><div class=logo><a href=/ class=logo><img src="https://seccdn.libravatar.org/avatar/fbadc1ea6f3dfcdfcf43615da5f2b9bf?d=mm&size=200" alt>
<span class=overlay><i class="fa fa-home"></i></span></a></div><div class=titles><h3 class=title><a href=/>HagueSt Blog</a></h3><span class=subtitle>A personal blog to compile notes, thoughts, and many mistakes of a SysAdmin's journey.</span></div><div class=toggler><i class="fa fa-bars" aria-hidden=true></i></div></div></header><div class="main container"><div class="article-wrapper u-cf"><a class=bubble href=https://bongoeadgc6.github.io/article/2021-12-16-log4j/><i class="fas fa-fw fa-pencil-alt"></i></a><article class="default article"><div class=content><h1 class=article-title><a href=https://bongoeadgc6.github.io/article/2021-12-16-log4j/>Log4j Scanning and Detection</a></h1><div class=meta><span class="date moment">2021-12-16</span>
<span class=readingTime>2 min read</span>
<span class=categories><a href=https://bongoeadgc6.github.io/categories/info/>Info</a></span>
<span class=author><a href=https://bongoeadgc6.github.io/author/cliff-hults/>Cliff Hults</a></span></div>Lately, everyone has been talking about Log4Shell (CVE-2021-44228) and likely, if you’re reading this, you’re looking for info for what to do. Most people attempted to utilize Huntress’s Log4Shell tool (https://log4shell.huntress.com/) to show connections to a LDAP server they were hosting. Some people had issues with this as it was overburdened with requests (rightfully so) or didn’t want to, or aren’t allowed to send outbound traffic to a server they didn’t own.
<a href=https://bongoeadgc6.github.io/article/2021-12-16-log4j/ class=more>Continue reading</a></div><div class=footer><div class=tags><i class="fa fa-tags"></i><div class=links><a href=https://bongoeadgc6.github.io/tags/java/>java</a>
<a href=https://bongoeadgc6.github.io/tags/security/>security</a>
<a href=https://bongoeadgc6.github.io/tags/vulnerability/>vulnerability</a>
<a href=https://bongoeadgc6.github.io/tags/log4j/>log4j</a></div></div></div></article></div><div class="article-wrapper u-cf"><a class=bubble href=https://bongoeadgc6.github.io/article/2020-11-20-adfs-cve-2020-17049/><i class="fas fa-fw fa-pencil-alt"></i></a><article class="default article"><div class=content><h1 class=article-title><a href=https://bongoeadgc6.github.io/article/2020-11-20-adfs-cve-2020-17049/>ADFS & CVE-2020-17049</a></h1><div class=meta><span class="date moment">2020-11-20</span>
<span class=readingTime>2 min read</span>
<span class=categories><a href=https://bongoeadgc6.github.io/categories/info/>Info</a></span></div>Microsoft recently performed a patch for Kerberos and the KDC service on domain controllers. This would patch a heavy vulnerability in the Kerberos signing structure. However, this presented a problem with our domain joined Qumulo storage appliance, and disallowed any users from authenticating to SMB shares. In order to alleviate ourselves of the issue, we followed the instructions to disable the following registry key within HKLM\SYSTEM\CurrentControlSet\Services\Kdc\ by adding PerformTicketSignature set to DWORD 0.
<a href=https://bongoeadgc6.github.io/article/2020-11-20-adfs-cve-2020-17049/ class=more>Continue reading</a></div><div class=footer><div class=tags><i class="fa fa-tags"></i><div class=links><a href=https://bongoeadgc6.github.io/tags/adfs/>adfs</a>
<a href=https://bongoeadgc6.github.io/tags/windows/>windows</a>
<a href=https://bongoeadgc6.github.io/tags/vulnerability/>vulnerability</a>
<a href=https://bongoeadgc6.github.io/tags/cve/>cve</a></div></div></div></article></div><div class="article-wrapper u-cf"><a class=bubble href=https://bongoeadgc6.github.io/article/2019-10-20-gcp-image-build/><i class="fas fa-fw fa-pencil-alt"></i></a><article class="default article"><div class=content><h1 class=article-title><a href=https://bongoeadgc6.github.io/article/2019-10-20-gcp-image-build/>Building Images for GCP</a></h1><div class=meta><span class="date moment">2019-09-11</span>
<span class=readingTime>1 min read</span>
<span class=categories><a href=https://bongoeadgc6.github.io/categories/devops/>DevOps</a></span>
<span class=author><a href=https://bongoeadgc6.github.io/author/cliff-hults/>Cliff Hults</a></span></div>In my last post, I opened with the fact that my company has decided to dive into the world of GCP to get ahead of most of the market in our space. With a few of us being tasked for this initive, I decided to take it upon myself to look into Packer. The goal would be to roll our homebrewed software/OS image into an automated build process to make images in GCP (or AWS, vSphere, etc.
<a href=https://bongoeadgc6.github.io/article/2019-10-20-gcp-image-build/ class=more>Continue reading</a></div><div class=footer><div class=tags><i class="fa fa-tags"></i><div class=links><a href=https://bongoeadgc6.github.io/tags/devops/>devops</a>
<a href=https://bongoeadgc6.github.io/tags/packer/>packer</a>
<a href=https://bongoeadgc6.github.io/tags/terraform/>terraform</a>
<a href=https://bongoeadgc6.github.io/tags/ansible/>ansible</a></div></div></div></article></div><div class="article-wrapper u-cf"><a class=bubble href=https://bongoeadgc6.github.io/article/2019-09-11-vault-journey/><i class="fas fa-fw fa-pencil-alt"></i></a><article class="default article"><div class=content><h1 class=article-title><a href=https://bongoeadgc6.github.io/article/2019-09-11-vault-journey/>Vault Journey</a></h1><div class=meta><span class="date moment">2019-09-11</span>
<span class=readingTime>1 min read</span>
<span class=categories><a href=https://bongoeadgc6.github.io/categories/devops/>DevOps</a></span>
<span class=author><a href=https://bongoeadgc6.github.io/author/cliff-hults/>Cliff Hults</a></span></div>Being a good SysAdmin requires some sense of laziness. In the spirit of that approach, I’ve spent some time looking into Hashicorp’s Terraform and Red Hat’s Ansible tools in my organization’s route to Google Cloud Platform. I wanted a method to create reproducable Copute Engine VMs that would allow us to easily create multiple hosts with minor changes quickly and easily.
I decided that with the use of Terraform, Vault (also from Hashicorp) would allow me to templatize the configs, as well as, create secrets/passwords that would be randomized, able to be called at will, and even automatically rolled with a configured frequency.
<a href=https://bongoeadgc6.github.io/article/2019-09-11-vault-journey/ class=more>Continue reading</a></div><div class=footer><div class=tags><i class="fa fa-tags"></i><div class=links><a href=https://bongoeadgc6.github.io/tags/vault/>vault</a>
<a href=https://bongoeadgc6.github.io/tags/devops/>devops</a>
<a href=https://bongoeadgc6.github.io/tags/terraform/>terraform</a>
<a href=https://bongoeadgc6.github.io/tags/ansible/>ansible</a></div></div></div></article></div><div class="article-wrapper u-cf"><a class=bubble href=https://bongoeadgc6.github.io/article/2019-09-07-initial-commit/><i class="fas fa-fw fa-pencil-alt"></i></a><article class="default article"><div class=content><h1 class=article-title><a href=https://bongoeadgc6.github.io/article/2019-09-07-initial-commit/>Initial Commit!</a></h1><div class=meta><span class="date moment">2019-09-07</span>
<span class=readingTime>1 min read</span>
<span class=categories><a href=https://bongoeadgc6.github.io/categories/info/>Info</a></span>
<span class=author><a href=https://bongoeadgc6.github.io/author/cliff-hults/>Cliff Hults</a></span></div>Finally getting to use this site! Been looking forward to creating some posts here to document travels of random sets of information. Hopefully to provide some steering for those who during their travels ended up in the same situation and went looking for info.</div><div class=footer><div class=tags><i class="fa fa-tags"></i><div class=links><a href=https://bongoeadgc6.github.io/tags/hello/>hello</a>
<a href=https://bongoeadgc6.github.io/tags/world/>world</a>
<a href=https://bongoeadgc6.github.io/tags/start/>start</a>
<a href=https://bongoeadgc6.github.io/tags/initial/>initial</a>
<a href=https://bongoeadgc6.github.io/tags/init/>init</a></div></div></div></article></div><div class="article-wrapper u-cf"><a class=bubble href=https://duckduckgo.com target=_blank><i class="fas fa-fw fa-link"></i></a><article class=link><a href=https://duckduckgo.com target=_blank><h4>Duckduckgo.com</h4><p>A search engine that respects your privacy.</p></a></article></div><div class=paginator></div></div><footer><div class=container><div class=recent-posts><strong>Latest posts</strong><ul><li><a href=https://bongoeadgc6.github.io/article/2021-12-16-log4j/>Log4j Scanning and Detection</a></li><li><a href=https://bongoeadgc6.github.io/article/2020-11-20-adfs-cve-2020-17049/>ADFS & CVE-2020-17049</a></li><li><a href=https://bongoeadgc6.github.io/article/2019-09-11-vault-journey/>Vault Journey</a></li><li><a href=https://bongoeadgc6.github.io/article/2019-10-20-gcp-image-build/>Building Images for GCP</a></li><li><a href=https://bongoeadgc6.github.io/article/2019-09-07-initial-commit/>Initial Commit!</a></li></ul></div><div class=categories><a href=/categories/><strong>Categories</strong></a><ul><li><a href=/categories/info>Info
(3)</a></li><li><a href=/categories/devops>Devops
(2)</a></li><li><a href=/categories/privacy>Privacy
(1)</a></li></ul></div><div class=right><div class=external-profiles><strong>Social media</strong>
<a href=https://github.com/BongoEADGC6 target=_blank><i class="fab fa-github"></i></a><a href=https://www.linkedin.com/in/cliff-hults-iii/ target=_blank><i class="fab fa-linkedin"></i></a></div></div></div></footer><div class=credits><div class=container><div class=copyright><a href=https://github.com/BongoEADGC6 target=_blank>©
2021
by Cliff Hults</a>
-
<a href=https://bongoeadgc6.github.io/index.xml>RSS</a></div><div class=author><a href=https://github.com/Lednerb/bilberry-hugo-theme target=_blank>Bilberry Hugo Theme</a></div></div></div><script type=application/javascript>var doNotTrack=false;if(!doNotTrack){window.ga=window.ga||function(){(ga.q=ga.q||[]).push(arguments)};ga.l=+new Date;ga('create','UA-147134547-1','auto');ga('send','pageview');}</script><script async src=https://www.google-analytics.com/analytics.js></script><script type=text/javascript src=https://bongoeadgc6.github.io/theme.js></script></body></html>