Hi. Actually i dont know if my blog interested at all to any one, but any way 🙂 if your SIEM is drowning in firewall logs—allowed traffic, denied traffic, heartbeats, DNS pings, internal chatter—you’re paying big just to listen to crickets. that’s old school. Microsoft just flipped the switch with selective logging, and now your…
Tag: azurepolicy
Azure Landing Zone on Steroids: Why You Need a Dedicated Security Subscription and Management Group
What just happened? Microsoft introduced a new management group called Platform, along with a dedicated subscription solely for core platform and security services in Azure Landing Zone. Why? To cleanly separate foundational security services from the app mess. Why this matters Security and infrastructure are like the skeleton of your cloud. If it’s weak, everything…
🧨 SUDO, YOU HAD ONE JOB!
Hi, now any user can get root — and Microsoft told you this would happen “Don’t run as root!” — they shouted.“Use sudo, it’s secure!” — they said.Well guess what?Even a user not in sudoers can now gain full root access. All thanks to sudo‘s cozy little bug involving chroot, nsswitch.conf, and your complacency. 🧬…