IRC logs for #openttd on OFTC at 2024-07-19
โด go to previous day
02:05:25 *** Wormnest has quit IRC (Quit: Leaving)
02:58:24 *** godbed_ has joined #openttd
03:01:48 *** D-HUND has quit IRC (Ping timeout: 480 seconds)
03:01:48 *** debdog has quit IRC (Ping timeout: 480 seconds)
04:43:33 <DorpsGek> - Update: Translations from eints (by translators)
05:02:08 *** Ox7C5 has quit IRC (Ping timeout: 480 seconds)
05:39:36 *** johnfranklin has quit IRC (Server closed connection)
05:39:36 *** johnfranklin has joined #openttd
05:42:32 *** Ammler has quit IRC (Server closed connection)
05:43:20 *** XeryusTC has quit IRC (Server closed connection)
05:43:36 *** Hirundo has quit IRC (Server closed connection)
05:43:51 *** XeryusTC has joined #openttd
05:44:21 *** Hirundo has joined #openttd
06:15:36 *** wallabra has quit IRC (Server closed connection)
06:15:43 *** wallabra has joined #openttd
06:53:23 *** alfagamma0007 has joined #openttd
06:53:37 <alfagamma0007> Better just add the github/gitlab link
07:02:00 *** murr4y has quit IRC (Server closed connection)
07:24:55 <reldred> clownstrike falcon is shitting itself
07:25:03 <reldred> it's wrecking havoc in australia atm
07:40:07 <LordAro> just starting to in UK as well
07:40:13 <LordAro> presumably as all the overnight updates get run
08:11:04 *** jlx__ has quit IRC (Server closed connection)
08:14:16 *** asymptotically2 has quit IRC (Server closed connection)
08:14:16 *** asymptotically2 has joined #openttd
08:26:31 <truebrain> Crowdstrike is right in their slogon .. it does stop breaches. Just making sure the machine can't boot is the most optimal form of cybersecurity
08:27:56 <truebrain> `we have 2000 remote users with always-on VPN and many of them are BSOD too. `
08:28:01 <truebrain> this is a new form of job-security
08:28:04 <LordAro> it's not quite as good as airgapping, but it's almost as effective
08:28:07 <truebrain> many SysOps can show their value now ๐
08:28:48 <LordAro> that would be a hard fix
08:29:05 <LordAro> only thing i can think of is sending out detailed instructions for the users to fix it themselves
08:29:09 <LordAro> which would be ... tricky.
08:29:14 <truebrain> and hope you don't have bitlocker, ofc ๐
08:29:24 <truebrain> which ... most people most likely have
08:29:31 <truebrain> so good luck sending out recovery keys to everyone
08:29:37 <truebrain> generating those keys alone will take you a while ๐
08:29:57 <LordAro> nah, keys are readily available in AD console
08:30:11 <truebrain> yes .. you have to generate them per user, and send them to the right user ๐
08:30:13 <truebrain> good luck with that!
08:30:41 <truebrain> what surprises me most, tbh, is that clearly Crowdstrike pushes updates to everyone at once
08:30:50 <truebrain> which is a bit unusual for that kind of software
08:41:29 *** brickblock19280 has joined #openttd
08:41:29 <brickblock19280> A lot of our public transport tickets also went down due to it
08:42:28 <merni> brickblock19280: perils of making everything dependent on computers
08:42:32 *** Artea has quit IRC (Server closed connection)
08:43:10 <merni> or to be specific, dependent on the operator's (or whoever's) servers being online
08:44:41 <brickblock19280> Yeah it's only the journey planning which went down from what I could tell but that prevents you from buying tickets for some operators due to having to search for it
08:45:25 <brickblock19280> The local system here from 2007 still works since everything is on the cards themselves but that's easy to hack
08:46:50 <merni> worth having a fallback like that even if it can be occasionally exploited by whoever's willing to somehow get all the equipment and special paper needed to forge a railway ticket ๐
08:48:05 <merni> I had no idea they even kept this stationery around (in fact Indigo is new enough that they never used it as a primary method)
08:52:58 <brickblock19280> Our regular paper tickets for busses will soon need an internet connection
08:54:25 <merni> our regular paper tickets for buses need only some fingers here :p
08:54:54 <merni> though they are going to give the conductor machines to print them soon
08:56:19 <merni> Heck even the monthly passes are handwriten
08:58:47 <brickblock19280> Tbf those are probably harder to fake then our ones which are meant to be printed from pdfs
09:11:45 <reldred> LordAro: not always, we had a machine pop the dreaded buttlocker the other day, checked azure ad, machine was there... keys just... weren't? oh what fun!
09:24:56 *** jinks has quit IRC (Server closed connection)
09:30:48 <andythenorth> Once again centralised security tools are the single point of failure
09:31:05 <andythenorth> I know that this is confirmation bias
09:52:29 *** Flygon has quit IRC (Read error: Connection reset by peer)
10:04:40 *** TinoDidriksen has quit IRC (Server closed connection)
10:05:51 *** TinoDidriksen has joined #openttd
10:21:49 *** f_ has quit IRC (Remote host closed the connection)
10:31:43 *** f_ has quit IRC (Remote host closed the connection)
10:39:07 <truebrain> `Took down our entire emergency department as we were treating a heart attack. 911 down for our state too. Nowhere for people to be diverted to because the other nearby hospitals are down.` .. some reports are just horrifying
10:42:26 <LordAro> I get that the architecture of Windows makes it really difficult to isolate drivers (especially the privileged ones), but maybe this will make them look at it a bit harder...
10:43:10 <LordAro> and just generally all sorts of missing risk assessments and contingency plans...
10:43:19 <truebrain> Or you know... don't update the whole world at the same time ๐
10:43:36 <LordAro> by the sounds of it any sort of internal testing would've done
10:44:07 <LordAro> but that's on Crowdstrike, it could've been any other cause of system failure
10:51:22 <merni> truebrain: What do they mean by taking down an emergency department, though? I guess they can't use their computers to issue prescriptions or access records or whatever, but surely they could keep treating patients?
10:51:39 <merni> Or is all the electronic medical equipment linked to the computer systems?
10:52:06 <merni> or more scarily, the power supply?
10:53:35 <reldred> nah it's just windows machines, pc's/servers. but yeah, an ED moving a lot of patients in/out, tracking status/etc. on windows machines, medical imaging all relies on windows machines, etc.
10:53:46 <LordAro> windows all the way down
10:53:53 <truebrain> Lot of older XRay machines still run Windows XP ... but they should be airgapped ๐
10:54:15 <reldred> sure, but then how do you get the Xray imaging out to the people who need to look at it?
10:54:36 <merni> Seems to work pretty well here
10:54:44 <reldred> these aren't enterprises capable of running extensive airgapped networks like defense
10:55:06 <yiffgirl> truebrain: therac 25 type beat
10:55:14 <LordAro> I'm impressed by the number of airlines/airports that are down though
10:55:24 <merni> Was this crowdstrike stuff even capable of running on XP though
10:55:34 <reldred> crowdstrike falcon has had pretty good market penetration
10:55:38 <merni> LordAro: I guess a lot of them use the same software
10:55:39 <truebrain> A few years ago I needed an XRay, and had to bring it to a specialist with some haste. They had to print the XRay ... it was a whole thing. They had to boot up the printer, and make a cdrom with my XRay to get it from the machine to the printer .. it was fun!
10:56:31 <reldred> but god damn, crowdstrike sure charge like they're the only player in town. I guess threatlocker are going to be doing gangbuster sales after this.
10:57:12 <reldred> oh yeah, i keep forgetting about them
10:57:26 <truebrain> ESET is actually really good
10:57:34 <reldred> the mob that bought us out do the whole trend suite. it's uhhhhhhhh it's something.
11:01:07 <andythenorth> Monocultures are vulnerable eh
11:01:16 <andythenorth> But cheaper in the short run
11:08:40 *** yiffgirl has quit IRC (Server closed connection)
11:08:41 *** yiffgirl has joined #openttd
11:08:53 <reldred> well, bit hard to go 'take anything you design, split it half between two products, but make each half also able to operate completely standalone'
11:09:56 <reldred> that said, they did that in australia with the old PSTN/ISDN network. three layer network, core, agg, dist, and then at each layer it was a nation wide fully redundant mix of erricson and alcatel
11:10:06 <reldred> but hey, cold war era paranoia was good back in those days
11:10:59 <reldred> every erricson upstream and downstream, and laterally, connected to both another erricson and an alcatel system. if a vendor wide fault occurred they could still maintain 50% capacity.
11:11:21 <reldred> these days? no, a spanning tree error can wipe a whole state out ๐
11:25:45 *** ahyangyi has joined #openttd
11:25:45 <ahyangyi> andythenorth: Big mike bananas
11:28:21 <ahyangyi> The variety of bananas that nobody ever served with their MacBook Pro
11:36:04 *** murr4y has quit IRC (Ping timeout: 480 seconds)
11:43:25 <johnfranklin> what happened with Microsoft Imperial?
11:50:10 <andythenorth> I have the same problem with a single source cloud vendor. Splitting it might make sense, but is much more complex and still has many single failure points
11:50:13 *** f_ has quit IRC (Remote host closed the connection)
11:54:14 <reldred> it's horrifically complex
12:23:36 *** dihedral has quit IRC (Server closed connection)
12:24:17 *** dihedral has joined #openttd
12:25:44 *** Hobbyboy has quit IRC (Server closed connection)
12:25:49 *** Hobbyboy has joined #openttd
12:40:58 <andythenorth> Our DR plan assumes that our service vendors might also be down if a big cloud platform has issues
12:43:10 <reldred> For us itโs the absolute last rung in the ladder for DR to be relying on a cloud vendor, we keep local replicas, then local backups, then backups in our instate DC, and only as a final resort do we have cloud
12:43:25 <reldred> That said, plenty of other single points of failure
12:43:33 <reldred> Canโt win โem all
13:29:28 *** moll has quit IRC (Server closed connection)
13:32:08 *** audigex has quit IRC (Server closed connection)
13:32:08 *** audigex has joined #openttd
13:55:36 *** merni has quit IRC (Server closed connection)
14:23:13 *** gelignite has joined #openttd
14:35:14 *** gelignite has quit IRC (Quit: Stay safe!)
14:59:44 *** godbed is now known as debdog
15:07:36 *** talltyler has quit IRC (Server closed connection)
15:07:37 *** talltyler has joined #openttd
15:15:04 *** toktik has quit IRC (Server closed connection)
15:25:12 *** michi_cc[d] has quit IRC (Server closed connection)
15:25:12 *** michi_cc[d] has joined #openttd
15:40:24 *** tokai has quit IRC (Server closed connection)
15:41:00 *** ChanServ sets mode: +v tokai
15:52:56 <audigex> I like being a dev in a big organisationโฆ DR is someone elseโs problem ๐
15:59:20 *** debdog has quit IRC (Server closed connection)
16:41:22 <andythenorth> @nielsm some posters could find an argument in an elevator with a single occupant ๐
16:54:09 *** gelignite has joined #openttd
17:40:38 <peter1139> Oh noes, my twitter account is locked.
17:43:38 <peter1139> Didn't tell them my date of birth, hah.
17:44:26 <truebrain> pfff, like they don't already know!
18:47:20 *** Wormnest has joined #openttd
19:57:33 *** nielsm has quit IRC (Ping timeout: 480 seconds)
20:54:55 *** gelignite has quit IRC (Quit: Stay safe!)
21:06:11 *** WeaverBeavers has joined #openttd
21:26:48 *** keikoz has quit IRC (Ping timeout: 480 seconds)
21:26:57 *** WeaverBeavers has quit IRC (Quit: Page closed)
21:44:33 *** tokai|noir has joined #openttd
21:44:33 *** ChanServ sets mode: +v tokai|noir
21:51:13 *** tokai has quit IRC (Ping timeout: 480 seconds)
continue to next day โต
