Progeny’s Post

From cyberspace to outer space and everything in between, no reach is too far. Bring on Tomorrow with #SAIC as a System Administrator in Dededo, Guam. https://bit.ly/4bFUfQb #InformationTechnology #IT

System and network monitoring is one of the popular services of All for One related to the administration of IT environments of our customers. A proactive approach and an immediate response to incidents guarantee high availability and continuity of operation of our customers’ systems. We have built our expertise based on the competencies and experience of consultants and the best available tools supporting supervision of the systems entrusted to us. That’s why we have migrated to Zabbix, an enterprise-class IT infrastructure monitoring solution. Read more in our specialists' article: Nikola Okupniarek i Jan Pieścik: https://lnkd.in/eA_MrG6t hasztag#AllforOnePoland hasztag#Zabbix

network technician

What are the technical differences between HCX Migrations and vMotion for live migrations? Check out our Networking & Security Tech Zone to learn more!

Being an IT Admin/Sysadmin is one of THE HARDEST jobs in technology, this is why... At most organizations you're wearing 100 different hats. You have to keep the lights on AND make sure you don't get hacked. I empathize so much because I lived this life. You have to deploy new servers, and upgrade networking equipment. Oh and you also have to patch those systems and devices. This is an incredibly difficult task nowadays because we are all spread so thin. We have to lean on our team and have conversations about priority. Always adjusting to make sure we're spending our time wisely and in the most effective way possible.

Take the help desk or tech support role💡You can have all the knowledge but experience will get you further🤓I know so many people who will not. In my current role I am building services with routers, switches, pots and hpbx phones. I am also troubleshooting ONT’s on racks and network issue via ssh using Linux and Cisco CLI. I am at an MSP which is expanding my skillset far beyond resetting passwords. I actually rarely reset passwords. So again, take the help desk role because all tech support and help desk isn’t the same💡 #IT #helpdesk #techsupport #entrylevel #Troubleshooting #learndaily

Hi everyone! I wanted to share a recent improvement I made in managing NIC profiles. On a daily basis, I frequently switch NIC profiles from public to private to resolve various networking issues, such as network discovery and OS firewall settings. This task can become quite tedious, especially when dealing with domain-joined profiles, where running a piped Get-NetConnectionProfile | Set-NetConnectionProfile may lead to potential issues. Recently, I refined my script to make it more efficient and streamlined, significantly reducing redundancy and simplifying the logic. While it’s a relatively simple script, the process of enhancing it was a valuable learning experience, and I’m quite pleased with the results. Looking forward to tackling more challenges and sharing more insights! #Powershell #Systemadministrator #sysadmin

I'm excited to share the successful completion of a project of deploying Red Hat Satellite. This project focused on three key areas:  - Centralized Management: We deployed Red Hat Satellite 6.14, allowing for efficient management of RHEL systems across the organization. This streamlines updates, patch management, and provisioning, ensuring smooth operation and scalability.  - Enhanced Security: We identified and addressed errata (bug fixes, security patches, and system enhancements) for critical servers. This significantly reduces vulnerabilities and strengthens overall system security.  - Up-to-Date Systems: We successfully updated servers to the latest RHEL versions (8.9 and 8.10). This ensures access to the latest features, performance improvements, and critical security patches. While some limitations were encountered regarding major version upgrades due to partition size restrictions, we've documented this for future planning and will explore solutions like resizing partitions or provisioning additional space. #redhat #redhat_satellite #system #smart_management

Linux Incident Response and Forensics: Linux Incident Response and Forensics is the systematic process of detecting, analyzing, and mitigating security incidents on Linux systems while preserving and examining digital evidence. Here are some essential commands and tools for investigating user activity, system resources, network settings, processes, services, log entries, and files. User Accounts: $ echo $USER $ passwd -S <USER> $ grep :0: /etc/passwd $ cat /etc/passwd $ cat /etc/shadow $ cat /etc/group $ cat /etc/sudoers General Information: $ date $ cat /etc/timezone $ uname -a $ uname -m $ cat /etc/*-release $ hostname $ cat /etc/hostname System Resources: $ uptime $ free $ df $ cat /proc/meminfo $ cat /proc/mounts Network Settings: $ ifconfig $ lsof -i $ netstat -ano $ netstat -nap $ netstat -antp $ netstat -antp | grep "ESTAB" $ netstat -rn $ route $ cat /etc/hosts $ arp -a $ echo $PATH Processes: $ ps -aux $ ps aux --sort=-%mem | head -n 10 $ top $ htop $ vmstat -s $ lsof -p <PID> $ pstree Services: $ service --status-all $ more /etc/hosts $ more /etc/resolv.conf $ cat /etc/crontab $ crontab -u <USER> -l $ tail -f /etc/cron.*/* $ cat /etc/cron.daily $ cat /etc/cron.hourly $ cat /etc/cron.monthly $ cat /etc/cron.weekly Log Entries: $ lastlog $ last $ cat /var/log/lastlog $ grep -v cron /var/log/auth.log* | grep -v sudo | grep -i user $ grep -v cron /var/log/auth.log* | grep -v sudo | grep -i Accepted $ grep -v cron /var/log/auth.log* | grep -v sudo | grep -i failed $ grep -v cron /var/log/auth.log* | grep i "login:session" Files: $ find /home/ -type f -size +512k -exec ls -lh {} \; $ find /etc/ -readable -type f 2>/dev/null $ find / –perm -4000 -user root -type f $ find / -mtime -0 -ctime -7 $ find / -atime 2 -ls 2>/dev/null $ find / -mtime -2 -ls 2>/dev/null Review Activities: $ history $ cat /home/$USER/.*_history $ cat /home/$USER/.bash_history $ cat /root/.bash_history $ cat /root/.mysql_history $ cat /home/$USER/.ftp_history Persistence areas: # Directories /etc/cron*/ /etc/incron.d/* /etc/init.d/* /etc/rc*.d/* /etc/systemd/system/* /etc/update.d/* /var/spool/cron/* /var/spool/incron/* /var/run/motd.d/* # Files /etc/passwd /etc/sudoers /home/<user>/.ssh/authorized_keys /home/<user>/.bashrc Tools for Linux Incident Response and Forensics: • Network Monitoring: tcpdump, Wireshark, Bro/Zeek • Log Analysis: logwatch, splunk, ELK stack • Filesystem Analysis: sleuthkit, autopsy, extundelete • Memory Analysis: volatility, lime • Disk Imaging: dd, dcfldd • System Monitoring: top, htop, ps, sar

Linux Incident Response and Forensics is the systematic process of detecting, analyzing, and mitigating security incidents on Linux systems while preserving and examining digital evidence. Here are some essential commands and tools for investigating user activity, system resources, network settings, processes, services, log entries, and files. User Accounts: $ echo $USER $ passwd -S <USER> $ grep :0: /etc/passwd $ cat /etc/passwd $ cat /etc/shadow $ cat /etc/group $ cat /etc/sudoers General Information: $ date $ cat /etc/timezone $ uname -a $ uname -m $ cat /etc/*-release $ hostname $ cat /etc/hostname System Resources: $ uptime $ free $ df $ cat /proc/meminfo $ cat /proc/mounts Network Settings: $ ifconfig $ lsof -i $ netstat -ano $ netstat -nap $ netstat -antp $ netstat -antp | grep "ESTAB" $ netstat -rn $ route $ cat /etc/hosts $ arp -a $ echo $PATH Processes: $ ps -aux $ ps aux --sort=-%mem | head -n 10 $ top $ htop $ vmstat -s $ lsof -p <PID> $ pstree Services: $ service --status-all $ more /etc/hosts $ more /etc/resolv.conf $ cat /etc/crontab $ crontab -u <USER> -l $ tail -f /etc/cron.*/* $ cat /etc/cron.daily $ cat /etc/cron.hourly $ cat /etc/cron.monthly $ cat /etc/cron.weekly Log Entries: $ lastlog $ last $ cat /var/log/lastlog $ grep -v cron /var/log/auth.log* | grep -v sudo | grep -i user $ grep -v cron /var/log/auth.log* | grep -v sudo | grep -i Accepted $ grep -v cron /var/log/auth.log* | grep -v sudo | grep -i failed $ grep -v cron /var/log/auth.log* | grep i "login:session" Files: $ find /home/ -type f -size +512k -exec ls -lh {} \; $ find /etc/ -readable -type f 2>/dev/null $ find / –perm -4000 -user root -type f $ find / -mtime -0 -ctime -7 $ find / -atime 2 -ls 2>/dev/null $ find / -mtime -2 -ls 2>/dev/null Review Activities: $ history $ cat /home/$USER/.*_history $ cat /home/$USER/.bash_history $ cat /root/.bash_history $ cat /root/.mysql_history $ cat /home/$USER/.ftp_history Persistence areas: # Directories /etc/cron*/ /etc/incron.d/* /etc/init.d/* /etc/rc*.d/* /etc/systemd/system/* /etc/update.d/* /var/spool/cron/* /var/spool/incron/* /var/run/motd.d/* # Files /etc/passwd /etc/sudoers /home/<user>/.ssh/authorized_keys /home/<user>/.bashrc Tools for Linux Incident Response and Forensics: * Network Monitoring: tcpdump, Wireshark, Bro/Zeek * Log Analysis: logwatch, splunk, ELK stack * Filesystem Analysis: sleuthkit, autopsy, extundelete * Memory Analysis: volatility, lime * Disk Imaging: dd, dcfldd * System Monitoring: top, htop, ps, sar