Weekly thread to discuss whatever you’re working on, big or small, at work or in your free time.

  • edric@lemm.ee
    link
    fedilink
    English
    arrow-up
    5
    ·
    11 months ago

    Reviewing the CIS recommended hardening config for Windows Server. Just realized that you shouldn’t just look at the failed controls but the ones that passed too. One control when enabled actually passes command line entries into the audit log in plain text, so that includes passwords.