zero0n3

A few months into letting non-technical staff use AI coding tools

Posted by allmightybrandon@reddit | sysadmin | View on Reddit | 94 comments

zero0n3@reddit

What? This post was unlikely to be made from AI. Maybe passed thru and revised, but has no major flags of a “low effort” AI generated content post. Frankly I’d rather read AI posts when it’s done by someone who knows the tool well. Almost always get better (efficiency and density) info out of the AI pass output

After a year of using Windows Server 2025, I'm finally throwing in the towel

Posted by sarosan@reddit | sysadmin | View on Reddit | 434 comments

Github allegedly Breached

Posted by ITSecurityAdam@reddit | sysadmin | View on Reddit | 238 comments

zero0n3@reddit

The price seems suspect. This, if true, and with large org private code, would be worth way more than 50k. Like 50 million. Imagine having access to the code repo of a F500 or F100 company. You’d be inside their network and hidden extremely easily once you’ve analyzed their code for vulnerable versions of modules and stuff. Probably a few private keys or keytabs or whatever in there too. Documentation on their setup and how to potentially work around security measures.

fastest way to kill an enterprise SaaS deal: make IT feel nervous during auth review

Posted by Lol_Panda2004@reddit | sysadmin | View on Reddit | 163 comments

zero0n3@reddit

The alternative is not having it at all. It’s “self serve SAML on enterprise” and “SSO not available on plans lower than enterprise”

Guy takes credit for engineering the Microsoft Volume Licensing system, like it's a good thing.

Posted by zackofalltrades@reddit | sysadmin | View on Reddit | 73 comments

zero0n3@reddit

Because this is legit interesting? Do you not see the dates? This was when MS was trying to exert control of their software as hardware started exploding. Windows desktop everywhere. This shows they were trying to standardize and claw back some of the margin from the biggest resellers. Also, you do a disservice to this article - it’s about the EA agreement and partner portal type stuff, not “volume licensing”. Most in sysadmin likely will see this title as meaning the volume licensing code. Like the client / server stuff, but this is just “engijeering” a legal software licensing model

Never thought I'd see the day, but we're eliminating our Citrix farms and moving back to about 100k fat clients

Posted by eldersveld@reddit | sysadmin | View on Reddit | 543 comments

zero0n3@reddit

I assume you aren’t including the m365 license users have, and is that with Nerdio pricing or without it (aren’t they like a dollar a VM a month?)

Never thought I'd see the day, but we're eliminating our Citrix farms and moving back to about 100k fat clients

Posted by eldersveld@reddit | sysadmin | View on Reddit | 543 comments

zero0n3@reddit

Horizon is the worst DAAS product. Citrix is by far the best for end user experience. Azure virtual desktop is second best, but not something that’s self hostable.

Kerberos hardening

Posted by cgklowd@reddit | sysadmin | View on Reddit | 15 comments

CMV: Boom Aerospace looks like an Investment Scam

Posted by TaskForceCausality@reddit | aviation | View on Reddit | 578 comments

zero0n3@reddit

I mean I could see the big nations buying a few each for politicians (means more spend on military to tail them too). Maybe a few dozen billionaires and some Saudi princes. So what 40-50 sold max?

CMV: Boom Aerospace looks like an Investment Scam

Posted by TaskForceCausality@reddit | aviation | View on Reddit | 578 comments

Lessons learned after auditing 6 months of helpdesk tickets - the real causes behind "network is slow"

Posted by michealdesanto@reddit | sysadmin | View on Reddit | 36 comments

Meta will beam sunlight from space to power AI data centers, solar-collecting satellites will orbit 22,000 miles above Earth — firm reserves 1 Gigawatt of orbital solar energy and 100 Gigawatt-hours of long-duration storage

Posted by sr_local@reddit | hardware | View on Reddit | 237 comments

zero0n3@reddit

You’d likely have a deorbit specific thruster to do this? Nudge it down and accelerate that burn up. Would be like the decommissioning process

Meta will beam sunlight from space to power AI data centers, solar-collecting satellites will orbit 22,000 miles above Earth — firm reserves 1 Gigawatt of orbital solar energy and 100 Gigawatt-hours of long-duration storage

Posted by sr_local@reddit | hardware | View on Reddit | 237 comments

zero0n3@reddit

It’s actually logical. The only way to remove heat in space is black body radiation. So storing energy as heat in space in theory could be easier to do if you build a system that can’t radiate the heat. Satellite collects solar energy (may not even need to be panels. Maybe heating up a material using mirrors). Then when needed, point it down and convert stored energy to infrared that gets beamed down.

PSA: Domain controllers may restart repeatedly after installing April security update

Posted by AspiringTechGuru@reddit | sysadmin | View on Reddit | 87 comments

zero0n3@reddit

Literally got of a call with a MS engineer recently (large multi forests; with over 1000 DCs) and this is basically their recommendation these days. Zero reason in 2026 to ever bother with the headaches a poorly or incorrectly deployed RODC.

I compiled years of Active Directory admin notes into a 28-page quick reference (PowerShell, GPO, Event IDs, attacks)

Posted by Available_Ad9294@reddit | sysadmin | View on Reddit | 16 comments

zero0n3@reddit

No one cares unless you post. Why even ask? This sounds like a massive scam. “Hey guys I made this stuff I want to share with the community!! Please DM me and I’ll give it to you [I pinky promise]!!”

NetWatch: real-time network diagnostics in the terminal (open source)

Posted by Potential-Access-595@reddit | linuxadmin | View on Reddit | 26 comments

zero0n3@reddit

Would be cool if it had a “dilation factor” you can configure in the GUI to slow it down or speed it up relative to real time. What does this look like when monitoring a device that can and does do 2GB/s steady state and spikes to 7/8

If Copilot actually works as advertised, Microsoft loses seats. If it doesn't, you wasted the budget. Either way you're explaining it to leadership.

Posted by DigitalSignage2024@reddit | sysadmin | View on Reddit | 58 comments

zero0n3@reddit

Yeah but does “good phishing simulators” make sense when it’s say 10 a month across 1000 employees? Now do that against 10 “single use vendors” tally up the numbers and compare their cost to the M365 suite. Add in additional pressure if you are already a heavily MS shop, all those things are getting easier to leverage and use correctly

If Copilot actually works as advertised, Microsoft loses seats. If it doesn't, you wasted the budget. Either way you're explaining it to leadership.

Posted by DigitalSignage2024@reddit | sysadmin | View on Reddit | 58 comments

This judge is what's wrong with users and how IT staff are treated

Posted by tdhuck@reddit | sysadmin | View on Reddit | 532 comments

zero0n3@reddit

Nope. There is no way a judge could use contempt of court on someone who’s on court payroll as an administrative worker. Sure, maybe some bumfuck town allows it, but it would be pretty big news and that judge would be facing some serious consequences for exerting that power as such.

DF Direct Q+A: The Big DLSS 5 ML Debate + Why We Should Have Waited With Our Coverage

Posted by KARMAAACS@reddit | hardware | View on Reddit | 314 comments

zero0n3@reddit

Oh fuck off on the ethics. End of day it’s a product from a game studio. The artist has no say. They are paid to make an asset, they do not own that asset, the company does. You can’t sit here and call this shit post processing or a simple AI filter (to shove your view of the tech on someone), and then also discuss how it’s taking away the agency of the artists. Do artists tell me I can’t run game X on my shitty computer because it can only play on potato settings at 15 fps? The artist can now give me shit because the game I’m playing doesn’t accurately represent the model they made? Maybe Tarkov artists should complain that players use post fix settings to adjust color and saturation? Again, either is a post processing filter and end user controls it like any setting, or it’s set in the game by the studio giving the company more control on implementation.

Building a 4‑node NVMe Ceph cluster for game server hosting. Looking for advice.

Posted by Temporary-Reaction97@reddit | sysadmin | View on Reddit | 20 comments

zero0n3@reddit

Most game servers care about RAM and CPU speeds. Minecraft for example is or was based on Java. So you need massive RAM and CPU. Your disk activity is going to be nowhere close to saturating the NVMe. Could probably go to SATA SSDs with a flash backed RAID card. The best thing to do, is to rent a VM from azure or other cloud provider, and run tests. Spin up a game server, find a way to get people to use it, and monitor to collect metrics. Rinse and repeat for each server type. Additionally, most games don’t use much BW (though total concurrent users matters here). You really need to get better data first, then right size the machines to the need.

Jensen Huang says Nvidia is pulling back from OpenAI and Anthropic, but his explanation raises more questions than it answers | TechCrunch

Posted by Shogouki@reddit | hardware | View on Reddit | 162 comments

zero0n3@reddit

Broadcom and in some cases Google. Remember, Nvidia doesn’t make the chips. They outsource fab. So eventually the big labs will want their own chip to have better control over its strengths and costs

Jensen Huang says Nvidia is pulling back from OpenAI and Anthropic, but his explanation raises more questions than it answers | TechCrunch

Posted by Shogouki@reddit | hardware | View on Reddit | 162 comments

zero0n3@reddit

What you’ve basically said, since you can’t prove anything here, is: “I like to call out other people’s bullshit with my own unverified bullshit, and so far it’s working great!”

Anyone actually using Entra Domain Services?

Posted by Carefu68@reddit | sysadmin | View on Reddit | 131 comments

zero0n3@reddit

Yes you can Azure has products for this. They have the azure file shares - which is capable of Kerberos and I think ties into entra. They also have Azure ADDS, which I assume he is talking about here, which gives you Kerberos as well - just have to set it up.

AI Programming, Can we just forget this exist?

Posted by TheJavaEng@reddit | sysadmin | View on Reddit | 207 comments

AI Programming, Can we just forget this exist?

Posted by TheJavaEng@reddit | sysadmin | View on Reddit | 207 comments

zero0n3@reddit

No it’s not. It literally helps them get domain experience. You do know you can ask the AI “why” it is doing X or Y, and it will typically give you enough supporting info to understand or get said understanding. It’s only dangerous if you don’t understand or care about testing.

Key Considerations Before Joining Linux Servers to an Active Directory Domain

Posted by maxcoder88@reddit | linuxadmin | View on Reddit | 17 comments

zero0n3@reddit

Look into keytabs for Kerberos authentication. It’s a PITA, but most enterprise vendor tie ins with AD will have it as an option. Oracle is uhhh fun for this

Homeowners can choose the assessed value of their property for taxes. However, the city has the option to buy the house at that price.

Posted by Electronic_Fun_776@reddit | CrazyIdeas | View on Reddit | 229 comments

zero0n3@reddit

So what happens when I keep upping the offer by 20%? Soon enough your yearly tax bill will be equal to your original house value. But since I’m a billionaire, I got no problem buying it if it’s in the spot I want.

CBS reportedly spent over $12 million remastering Star Trek: The Next Generation for its high-definition Blu-ray release. This massive investment involved returning to the original film negatives to reconstruct every episode from the ground up.

Posted by happydude7422@reddit | TNG | View on Reddit | 490 comments

Does the Highest Ranking IT Person in Your Company Report to the CEO?

Posted by Likely_a_bot@reddit | sysadmin | View on Reddit | 248 comments

zero0n3@reddit

That’s not what they mean, is my guess. Change management != Sox controls (Sox controls are robust regulations surrounding publicly traded companies and are heavy on finance rules) Sounds more like an unscrupulous CFO, with a push over or partnered IT director, has a really easy time to hide money theft and then have it fall off the books via IT. Like, you’re the CFO and in charge of finance both ways (revenue and expenses). So giving them access to the person in charge of the largest expense in your company (outside labor expense) is a big ass risk.

our 'ai transformation' cost seven figures and delivered a chatgpt wrapper

Posted by ruibranco@reddit | sysadmin | View on Reddit | 359 comments

zero0n3@reddit

Build out boilerplate docs for engineers to then go thru and complete? Also doable. This screams like a problem with the scope of the project and their goals / milestones. Bad data in, bad data out. Tale as old as time IMO.

our 'ai transformation' cost seven figures and delivered a chatgpt wrapper

Posted by ruibranco@reddit | sysadmin | View on Reddit | 359 comments

zero0n3@reddit

Any company that is just a wrapper to the foundational models will eventually die / dry up. Same idea as the WWW explosion. The people building websites all crashed, but the people hosting sites / data? Still around. There was a search engine war, Google won.

our 'ai transformation' cost seven figures and delivered a chatgpt wrapper

Posted by ruibranco@reddit | sysadmin | View on Reddit | 359 comments

PSA: Foxit working well for us to replace Acrobat Pro and Docusign

Posted by FatBook-Air@reddit | sysadmin | View on Reddit | 99 comments

zero0n3@reddit

Sorry, but as a Chinese company it won’t be allowed in some companies likely due to regulations. Regardless of its certifications.

If you use AI to break down scripts or code for you regularly, I really encourage you to read this LLM study

Posted by segagamer@reddit | sysadmin | View on Reddit | 276 comments

zero0n3@reddit

Normal does a lot of heavy lifting in my comment ;) I just don’t see most people who use powershell to ever get to the point where they need to. I personally, HAVE hit that though, by over querying for attributes in AD and across tens of millions of AD objects. So I think my point is there are way easier ways for a powershell coder to lower memory footprint over manually / explicitly using GC. An easy way (easy doesn’t mean quick or that I have any desire to do this!), would be to analyze GitHub powershell repos and see how many repos have explicit GC code or chunks. How strict is your definition of GC though for powershell? Like would you call me doing a $data = $null garbage collection? I personally wouldn’t, but in thinking about it I guess it would count?? Maybe my definition of GC is a bit more strict or less fuzzy here. I go back to C++ days in college where you had to think about memory management pretty much across the board like did you delete the pointer? Did you avoid dangling pointers, are your returns correctly scoped, etc etc etc.. So in my mind, while I typically try to have my end blocks with $var = $null, I don’t really see that as GC, but normal function cleanup and good coding practices, but I guess it could be!

If you use AI to break down scripts or code for you regularly, I really encourage you to read this LLM study

Posted by segagamer@reddit | sysadmin | View on Reddit | 276 comments

zero0n3@reddit

Except it does. And if you want it to try harder, modify your prompt with things like: - please make this as a function - please use begin / process / end - please include comment based help at the top - please abide by the “PowerShellPracticeAndStyle” style guide located at: (GitHub link here)

If you use AI to break down scripts or code for you regularly, I really encourage you to read this LLM study

Posted by segagamer@reddit | sysadmin | View on Reddit | 276 comments

zero0n3@reddit

Sad you think atomic habits is a grift book and not a template of tools and ideas people can use to become more efficient and robust with their habits.

If you use AI to break down scripts or code for you regularly, I really encourage you to read this LLM study

Posted by segagamer@reddit | sysadmin | View on Reddit | 276 comments

zero0n3@reddit

Garbage collection is not something any normal powershell writer would worry about or concern themselves with. What I am saying is that in most PS cases, you shouldn’t be having to worry about garbage collection

If you use AI to break down scripts or code for you regularly, I really encourage you to read this LLM study

Posted by segagamer@reddit | sysadmin | View on Reddit | 276 comments

VMware now threatening outages to perpetual license holders

Posted by mac10190@reddit | sysadmin | View on Reddit | 483 comments

zero0n3@reddit

Patching isn’t the ONLY solution that insurance providers / things like HITECH allow as mitigation. Just check the CVEs and mitigate. Just hope one isn’t a VM to host vulnerability. (I still wonder how long the NSA had been using those “read the memory of other VMs” exploit. They’d have the skill and access levels needed to leverage it correctly within large US cloud environments)

Taiwan considers TSMC export ban that would prevent manufacturing its newest chip nodes in U.S. — limit exports to two generations behind leading-edge nodes, could slow down U.S. expansion

Posted by Lighthouse_seek@reddit | hardware | View on Reddit | 294 comments

zero0n3@reddit

Everything TSMC uses in the latest gen nodes is tied to various US patents and European companies who make the fabs. So the US has a LOT of leverage too.

Taiwan considers TSMC export ban that would prevent manufacturing its newest chip nodes in U.S. — limit exports to two generations behind leading-edge nodes, could slow down U.S. expansion

Posted by Lighthouse_seek@reddit | hardware | View on Reddit | 294 comments

zero0n3@reddit

Their technology stands on the shoulders of US patents and Swiss / German companies… This just means US will play the “fine, we won’t let you buy the hardware from ASL anymore” card.

Taiwan considers TSMC export ban that would prevent manufacturing its newest chip nodes in U.S. — limit exports to two generations behind leading-edge nodes, could slow down U.S. expansion

Posted by Lighthouse_seek@reddit | hardware | View on Reddit | 294 comments

zero0n3@reddit

This may be a dumb move too though…. TSMC buys products that the US controls patents on. We just stop letting them get exported to TSMC. Or we stop protecting them, and give China the green light, with the understanding that say TSMC assets (the assets now under CCP control) gifted to say “Intel” who now has a full business all ready spun up in “China (China controlled Taiwan)”. How easy you think it would be for the US to kneecap their defense? Now, none of this is likely, but may as well look at some worst case scenarios!

Are you looking at keyboard response rates? Amazon is.

Posted by BoldInterrobang@reddit | sysadmin | View on Reddit | 196 comments

zero0n3@reddit

Yes but your frame of reference is the laptop. If I, on my KVM press A B C…. Whatever base lag exists between laptop and KVM will be there, but there for everything. So if A (15ms) B (20ms) C (15ms) on my kvm…. Becomes ABC with those delays between chars, and an overall 100ms latency. But the delta between key presses is still 15/20/15

Are you looking at keyboard response rates? Amazon is.

Posted by BoldInterrobang@reddit | sysadmin | View on Reddit | 196 comments

zero0n3@reddit

Even then, the KVM should be caching those states. You shouldn’t see excess lag if all you have access to is the contractor laptop itself. Your KVM in theory is more like Netflix for your laptop. So I just don’t see how they could find this out in a definitive manner.

Homegrown Chinese CPUs bring Core i7 Raptor Lake performance to domestic gaming PCs — Hygon C86-4G lands between a Core i7-13700 and Core i7-14700

Posted by tuldok89@reddit | hardware | View on Reddit | 130 comments

zero0n3@reddit

Because they did the fab? AMD doesn’t do any fab. So this is basically trying to point out that China can now successfully fab a chip design of this complexity reliably enough for a sellable product

Qualcomm has quietly rewritten Arduino's terms and conditions, and its not looking good

Posted by imhariiguess@reddit | hardware | View on Reddit | 80 comments

The wildest LLM backdoor I’ve seen yet

Posted by AIMadeMeDoIt__@reddit | LocalLLaMA | View on Reddit | 294 comments

zero0n3@reddit

Generating a zero day isn’t even the same as “covertly add a backdoor to the code you make”. That’s even harder than finding and making a zero day.

The wildest LLM backdoor I’ve seen yet

Posted by AIMadeMeDoIt__@reddit | LocalLLaMA | View on Reddit | 294 comments

zero0n3@reddit

Yet they will click an email that’s says their PW was compromised and need to change it “here”… And sure enough they click it and change it.

The wildest LLM backdoor I’ve seen yet

Posted by AIMadeMeDoIt__@reddit | LocalLLaMA | View on Reddit | 294 comments

zero0n3@reddit

If user A has an AI agent… why can that AI agent do things the user can’t? Just treat the agent AI like a user - same restrictions and such. If my company can’t download from public GitHub, why would they drop that rule for the AI agent? Obviously doesn’t fix everything, but does some.