shakedown.social is one of the many independent Mastodon servers you can use to participate in the fediverse.
A community for live music fans with roots in the jam scene. Shakedown Social is run by a team of volunteers (led by @clifff and @sethadam1) and funded by donations.

Administered by:

Server stats:

264
active users

#azure

3 posts3 participants0 posts today

Microsoft Azure daily rage:

Today Copilot suggested a specific URL construction to call the API Management Resource Manager API 2024-05-01 version that:

a) Has no supporting API documentation to show it as a valid parameter set for this function

and

b) Works perfectly and exactly like Copilot says it would

So now I'm frustrated with a API call that does exactly what I need in a single GET but has no SDK support in Python or Java because it's not officially part of the spec.

#Terraform is great because it is not simply for one provider/one cloud. You can target multiple clouds in the same Terraform configuration. It doesn't have to be multiple clouds, the more generic term is multiple providers (e.g. #Azure + Entra ID)

Read my article on using Terraform for multi-cloud over at #Spacelift spacelift.io/blog/terraform-mu

terraform multi cloud
SpaceliftMulti-Cloud Provisioning and Management with TerraformLearn how to manage multi-cloud infrastructure with Terraform. Explore provisioning strategies, best practices, and real-world examples.

#Microsoft outsourced administration of classified #DoD data to cheap workers in #China. 🇨🇳 🕵️

My latest update on karl-voit.at/2024/07/17/Micros (see bottom of article for further links)

Do you really want to #trust companies where such a thing is not only possible but also done? 🤷

public voit - Web-page of Karl Voit · Read That Before You Trust Anything by Microsoft Once AgainRead That Before You Trust Anything by Microsoft Once Again

The thing that gets me about #selfhosting web services is that you will never be able to #selfhost your TLD domain. You will never be free of big tech on the clear open Internet; we baked it into DNS, the lowest layer of the protocol. So unless you're self-hosting an #Onion, or #IPFS site I don't see the point in avoiding #cloud providers.

It's like calling yourself Vegan and working at KFC.

#aws#gcp#azure

"Repeated data leak offender" - Looking for contacts in Malaysia

This #leak is a really weird story and I am looking for help in #Malaysia.

If I were in the medical business, I would be very careful about what pictures of my customers I store longterm. And there would be tons of safeguards before I would allow them to be stored in a bucket (#Microsoft #Azure #Blob in this case). At the very least I would make sure that the Blob IS NOT world readable and world indexable. Should this ever happen to me, I would be so deeply ashamed that this shame would eternally prevent me from doing the same mistake again. Doing this over and over again takes the approach to IT security and privacy protection to a new low.

This brings us to BP Healthcare, a Malaysian healthcare giant that runs a multitude of businesses in that country. This includes online health services, laboratories, pharmacies, dental clinics, eye centers and much, much more. According to their own publications, they serve 35 million customers. Furthermore they seem to rely heavily on cloud services.

While other data leaks (at least four we know of) inside the sprawling empire of BP Healtcare since April 2019 were mostly fixed in a timely fashion (but without ever acknowledging the problem or answering at all), we currently see no less than three Azure blobs with a gigantic amount of data on which (even though the security researcher inquired multiple times) no action is forthcoming.

The data includes

  • One Blob with 1.5 million prescriptions, receipts and invoices
  • One Blob with 1.7 milltion invoices for healthcare services
  • One Blob with 1.8 million assorted documents

The last blob is the most critical as it seems tied to a medical service provided via chat. The blob contains (among other) things images customers uploaded to show their medical problems. Naturally this includes their customers being in varying state of undress. Surprisingly, a lot of the telemedicine chats involved named patients seeking diagnosis or treatment for sexually transmitted diseases.

We are looking for a government agency (or contact in the technical press) that would take a long hard look at all the ITZ operations of BP healthcare. The fact that we see the same problem occurring again and again worries us deeply. Sometimes it is even the same subsidary that is having the same problem. Furthermore they are exposing the most intimate information about the customers. There are several warning signs, that the trouble may run deeper than just these leaks.

Closing remark: I usually do a PostMortem of the data leak including the URL of the leak that was closed. This will not happen in this case. Even a first glance at the cloud infrastructure paints a worrying picture and we are not confident that they will not reopen (assumed they close it in the first place) the leak at some point in the future. Thererefore I will abstain from naming it in the report.

bphealthcare.comBP Healthcare
Balos beach on Crete Island. March. Visit off season.

What picture doesn’t tell you:
a) an unpaved and unmaintained road to get to;
b) tourist trap for parking fees and umbrellas.
c) full of Instagrammers: overcrowded in season;
d) northwest corner of the island and thus sadly suffers from plastic and other sea pollution dumped by storms in winter.

#balos #beach #rock #crete #greece #sand #azure

Passage furtif d'un petit papillon bleu dans mon jardin ce matin. Quel plaisir après des années sans en avoir vu un seul ! Les photos, prises dans mon autre jardin, datent de 2008.
Le dessus des ailes est bleu.
#papillons #azuré #nature

A Historic Photo: Torvalds and Gates Together
When #Linux met #Microsoft: a historic photo of Linus Torvalds and Bill Gates standing side by side for the very first time.

linuxiac.com/a-historic-photo-

From the hell is freezing department. #azure would be not existing without Linux.

And this fuels also the joke that the relationship between #WNT and #VMS is the same as between #IBM and #HAL.

Linuxiac · A Historic Photo: Torvalds and Gates TogetherWhen Linux met Microsoft: a historic photo of Linus Torvalds and Bill Gates standing side by side for the very first time.