@Mitchell90 profile picture
Greig Mitchell @Mitchell90

IT systems/security engineer studying Cyber Security. I also skateboard, play guitar and drink a lot of coffee. All opinion’s are my own.

Joined November 2008
  • Tweets 2,731
  • Following 282
  • Followers 134
226 Photos and videos
I’m guessing I picked the wrong time to buy NVMe drives for an upcoming Proxmox build lab. 🙈 Does anyone know the best cost effective drives to get at the moment?
24
I feel like Windows development is going back to 2002-2004. Teams too focused on AI features with bugs/perf issues going unnoticed. A complete lack of situational awareness.
1
28
A modern OS running on hardware that its meant to compliment shouldn’t feel increasingly slow…
22
Has anyone implemented PAWs in environments hardware budgets were tight or non existent? What solution did you use? VDI or separate VM on laptops? What about access to the PAW in remote work scenarios?
63
Obviously we don’t have the exact details on the M&S attack but going by what’s been reported regarding DC level access and NTDS being grabbed, that’s pretty much a rebuild scenario right?
68
Greig Mitchell retweeted
David Davis MP
@DavidDavisMP
21 Feb 2025
In an attempt to meet the demands of the Home Office - demands made on false illusions of providing security - Apple has been forced to entirely undermine the online security of pretty much every UK citizen who uses an Apple product. bbc.co.uk/news/articles/cgj5…

Apple pulls data protection tool after UK government security row

Customers' photos and documents stored online will no longer be protected by end-to-end encryption.

bbc.co.uk
838
2,700
11,111
764,063
Does anyone know if/when BPDU Guard will be supported natively on UniFi switches via the controller? @Ubiquiti
121
I’m seeing our Azure AD joined devices using NTLM auth when connecting to our on-prem file servers (Server 2022) within our corporate network. I’m assuming these can/should use Kerberos when it’s available @SteveSyfuhs @brdpoker Any thoughts?
1
121
My org went through an internal AD security assessment a few years ago, a lot of good came out of it. (Tiering, separation of administration, RBAC implemented) Working on some additional hardening but getting there. PingCastle score down to 11/100 & 64% on PrupleKnight :)
1
1
125
What are some of the most bizarre GPO configs you’ve seen on endpoint machines? Noticed on my wife’s work laptop that the shutdown and restart options are removed from the logon screen. What a usability nightmare!
100
I’m hearing reports that the University of West of Scotland have apparently suffered a cyber incident and have been down since last Thursday? Their website is offline and there has been no communication which is worrying.
1
1
286
I heard someone mention “SMB1” at work today and thought to myself…I bet @NerdPyle just flinched :)
1
1
380
Been doing an AD audit recently. What’s the recommendation regarding disabling RC4 and forcing AES? If no accounts are using RC4 is it safe enforce AES on DCs and Clients or just leave things as is and make sure future accounts/apps support AES? @SteveSyfuhs
2
542
Rishi Sunak trying to justify his police fine for breaching Covid rules because he was working every day on the pandemic. Well if you were just working then you wouldn’t have been fined.
I had a dream last night where a user received a suspicious email with a link containing a password protected file with the password “hunter” being given in the same email. Then I woke up…
Question for those who manage Windows VDI environments. Do you enable VBS/HVCI and Credential Guard?
From the MS AD security best practices doc. Wouldn’t requiring the Built-in Administrator account to use Smartcard logon prevent an AD/Forest recovery scenario from being performed? @brdpoker @SteveSyfuhs Any insight?
1
If you are concerned about KrbRelayUp then cast back to 2019/2020 when Microsoft advised enabling LDAP Singing and Channel Binding to mitigate this very thing. support.microsoft.com/en-us/…
1
Trying to work out if the Protected Users group in AD only allows Kerberos authentication and for interactive logon only? The documentation doesn’t seem clear on this. For example, attempting to LDAP bind with an user in that group fails. @JosephRyanRies @NerdPyle Any ideas?
Feel as though I’m checking the Exchange Supportability Matrix website every other week to see if Server 2022 DCs get the approval for Exchange 2016/2019. Doesn’t look like it’s gonna happen :(
Load more