The code is the structure, the LLM is the glue at the joints. There’s a widespread misconception about automations “powered by artificial intelligence”: People picture a model you give an order to, which then carries out a complex operation from start to finish all on its own. It’s a seductive image, and almost always wrong….
Read MoreIn real-world security environments, “simple” rarely means simple. As a technical consultant, I often see Elastic Defend deployed within infrastructure that’s anything but standard: segmented networks, restricted outbound connectivity, compliance-driven isolation, and operational constraints that make direct internet access impossible for managed endpoints. One recurring requirement in these environments is the local delivery of Elastic…
Read MoreOne of your servers is reporting moderate CPU usage, enough available memory, and storage that’s busy but not saturated. The dashboard looks healthy, the application does not. Requests to it are slowing down, background jobs are taking longer, and latency is rising even though no resource appears fully exhausted. The problem here is that most…
Read MoreIssue migration between Jira projects can usually be handled in two ways: Migration Within the Same Instance Method 1 This is the simpler case. Main steps: What to check first: Migration Method 2 Between Projects: CSV Export and Import Recently, I found myself working on a specific Jira use case that comes up more often…
Read MorePostfix is not typically the first component that comes to mind when talking about critical services. And yet it’s through Postfix that all notifications, ticketing system-related correspondence, and monthly SLA reports are sent out from NetEye. As long as everything is working properly, Postfix is almost invisible. And that’s exactly what it does: silently and…
Read More1. Introduction The abuse of vulnerable drivers has become an increasingly common technique adopted by attackers to bypass modern security controls. This attack pattern, commonly referred to as Bring Your Own Vulnerable Driver (BYOVD), consists of loading legitimately signed but vulnerable drivers into the operating system in order to gain kernel-level privileges, disable security products,…
Read MoreImportant: GLPI security update Type/Severity NetEye Product Security has rated this update as having a high security impact. Topic An update for the glpi packages is now available for NetEye 4. Security Fix for NetEye 4.48 Summary The vulnerabilities include two SQL injections, an Arbitrary file deletion, a Privilege Escalation via authtype API manipulation, an Unauthorized debug mode…
Read MoreFix SLM Reports generation with Object Filter on service custom variables. We have resolved an issue that caused SLM Reports generation to fail when the report was based on a contract whose Object Filter contained expressions on service custom variables (e.g., service.vars.service_system_service~true). The error prevented users from generating or viewing SLM reports for contracts using…
Read MoreCustomer feedback provides insights that operational metrics alone cannot capture. Jira Service Management has long offered built-in CSAT surveys, automatically collecting satisfaction ratings through a simple star-based mechanism when tickets are resolved. With the introduction of Native surveys, Atlassian extends these capabilities with a more flexible survey builder supporting multiple questions and richer feedback. While…
Read MoreImportant: Grafana security update Type/Severity NetEye Product Security has rated this update as having a high security impact. Topic An update for the grafana packages is now available for NetEye 4. Security Fix for NetEye 4.48 Summary A Grafana Editor can overwrite a dashboard not owned by them to acquire admin permission on that specific dashboard. The user…
Read MoreTL;DR When designing GDPR-conscious AI workloads in Azure, the model name is not enough. The version matters, the region matters, the deprecation date matters, and the deployment type matters, too. For EU-bound workloads, the practical question is often this: which exact model versions can I deploy in European Azure regions using Data Zone Standard (DataZoneStandard)?…
Read MoreIn a previous post, I wrote about the challenges of building a public GitHub organization correctly: The need for structure, consistency, and enforcement rather than relying on memory. What I didn’t cover was how we actually solved it. The short answer: We treat the organization as infrastructure. Repositories, teams, branch protection rules, labels, permissions, all…
Read MoreToday, most digital identity systems are built around a Central Identity Provider. That provider signs users in, stores key identity data, and often sits in the middle of every trust relationship between people, applications, and organizations. This model works, but it also creates several growing problems: This article explains: The Problems with the Current Model…
Read MoreAutomation is now part of everyday operations. It helps teams move faster, cut down on manual work, and keep processes consistent. But automation only works well if it can be trusted. When something breaks in the background and nobody notices, the consequences can spread quickly. That’s why alert notifications matter. They add a layer of…
Read MoreScenario Secure Boot was always a long bet on the idea that the PC boot chain could be made boring, predictable, and resistant to tampering. When UEFI replaced the old BIOS model, Microsoft and the PC industry moved toward a world where firmware would check signatures before handing control to bootloaders, option ROMs, and operating…
Read More