-
Reddit SystemAdmin. Thanks @reddit2telegram and @r_channels.
I just discovered UniGetUI for Windows, what other incredible tools am I likely not aware of?
I am not a pro sys admin, but I just learned about UniGetUI, which is really freakin' cool.
> The main goal of this project is to create an intuitive GUI for the most common CLI package managers for Windows 10 and 11, such as WinGet, Scoop, Chocolatey, Pip, Npm, .NET Tool, PowerShell Gallery and more (Check out the package manager compatibility table)!. With this app, you can easily download, install, update, and uninstall any software published on the supported package managers — and much more!
https://github.com/marticliment/UniGetUI 16.2k stars
Along similar lines, what other tools should I know about?
note: learning about this came out of thinking about https://www.theverge.com/news/675446/microsoft-windows-update-all-apps-orchestration-platform
https://redd.it/1kxh2w5
@r_systemadmin
Heads-up: Major .top DNS outage on May 27 - registry silent
On May 27, a large number of .top domains were affected by a major DNS outage. Domains across multiple registrars failed to resolve or were redirected to Cloudflare IPs (some pointing to China-based addresses).
No official incident report, no tweet, no announcement from the .top registry.
This is an ICANN-accredited TLD operator — and yet there's been zero transparency or communication.
Just putting it out there in case anyone else was troubleshooting unexplained .top failures yesterday. Might be worth double-checking DNS records or reconsidering use of this TLD for anything production-critical.
https://redd.it/1kxebtp
@r_systemadmin
Transitioning an org away from BYOD - higher-ups want an exemption.
My biggest project this year is blocking end-users from accessing any work app or account on non-MDM-managed end-points.
It’s been a grind, but everything is now connected to Entra: core apps (Salesforce, Apple Developer, Wells Fargo, etc.); shared accounts (Twitter, Google Analytics, etc.); and internal services. All my end-users now access these through Entra SSO with MFA.
The final step is enabling the managed devices only conditional access policy. However, a few higher-ups (fewer than 10, and I manage \~2,000 end-users) are asking for a carve-out...
These holdouts want to access work services on their personal phones. We don’t issue company phones so I can’t enforce the policy without locking them out.
The frustrating part is some of the laggards previously approved the project. They either didn't get what what I was trying to achieve, or they just didn't think rules applied to them.
This is half rant, but I'd be curious to know if anyone has any tips or tricks for working with these delightfully frustrating individuals?
https://redd.it/1kxcv8u
@r_systemadmin
The folder that will not delete. A 15min saga.
Got asked by end user to delete a folder as they couldn't do so. Turns out the tinkerer on the site shared the folder and gave full control to 3 groups. Someone in group took ownership of folder, broke inheritance from these groups.
Cue me with speech, only admins or similar should have. Explained difference between modify and full control.
So in comes the deleting and all steps i tried logged in as admin all elevated:
- shift + del
- del via cmd
- takeown via cmd
- icals to strip it and give me ownership
- reg edit to add take own to context menu
- robocopy with the backup switchs to move then delete source
- reg edit to set admin token to equal zero
All met with same 2 errors, access denied...you need to be owner, or access denied...you need Administrators permission to do this.
I gave up, reiterated that end users shouldn't be given full control. It 99% wasn't that (I hope) and want to burn that vhdx to the ground.
https://redd.it/1kwzmnd
@r_systemadmin
Client is F'd, right?
Client PC took a surge while on and the magic smoke came out. This PC was sent up years ago by a former employee, and Bitlocker was enabled. I pulled the drive, which works just fine but is demanding a Bitlocker key that is not linked to the account of the last three people working here who signed in to MS accounts. I do have an identical PC that I can try it in, but before I start taking out screws to attempt a boot with this, I'm 99.44% Sure that the drive is not recoverable without the original key, correct? It will not even boot in any machine except the one it was originally installed on?
https://redd.it/1kws6x3
@r_systemadmin
I don't know who needs to hear this, but use the Office Deployment Toolkit.
We sometimes reinstall Office suites just because it can be a quick and easy way to rule out a corrupted installation. Sometimes this happens after an update.
I still remember rookie me a few months ago (I'm still a rookie, but a more experience one), needing to reinstall an Office suite but the end user had 14 language packs installed. I had the user on call, so I couldn't have prepped for the call. I manually uninstalled every single language pack, 15 mins a pop. I was sweating. I messed up by not having the balls to admit it'd take longer than 30 mins. I sent a distress beacon in the group chat asking if there was a better way to do this. I was getting half-baked replies- suggestions thrown over the fence. I felt like I had to do it on my own, and since by that time I had already uninstalled 8 language packs, I figured I'd power through.
I just put a folder called ODT in our shared document library with several XML files, one for each common purpose. I did this on a Surface laptop and cleaned up all the language packs and installed the two language packs I wanted in less than fifteen minutes, I might even say ten, I didn't count specifically. Another Surface was struggling a bit with uninstallation until I finally got it to work.
I still need to work out the kinks and figure out just exactly why the first laptop worked perfectly and the other laptop needed a bit more kicks to it. One thing to note is that for the first laptop, I used the offline Microsoft Support and Recovery Assistant tool to uninstall the language packs, and for the second one, I attempted the same, eventually ended up trying an uninstall .xml file.
I still need time to completely master this and figure out what these tools need to work properly (think Click to run vs .msi installations), but I'm excited that I finally took the time to do this. Once I figure out how to use this on all our machines, regardless of brand, I'll save so much time.
Who else is using ODT/SaRA? Any tips and tricks? (Our Office suites are rolled out via Intune, so no ODT during app installation.)
https://redd.it/1kwysgp
@r_systemadmin
Add "google.com##.hdzaWe" without quotes to your Ublock Origin My Filters to block the google AI overview
Don't forget to click Apply Changes in the top left!
edit:
google.com##.hdzaWe
thank you u/mordacthepreventer
https://redd.it/1kwsvcj
@r_systemadmin
Leaving Job Where I Can Do Whatever I Want, Am I Crazy?
So let me start off by saying my entry into IT was a very strange path most don't take. I am not booksmart and absolutely suck at memorizing terminology. What I am good at is critical thinking and problem solving, so when it comes to certificates, I have none. When it comes to experience I have an extremely broad skill-set ranging from spinning up Azure instances, to setting up new Firewalls, even down to pentesting and vulnerability assessments. Some days I just coil some cables. My current job I am given near complete creative freedom to problem solving, which I LOVE. I also more or less can do anything I want, leave as early as I want, etc. As long as the work gets done. And that's the problem with my current job. I have maxed out my knowledge in this environment. I have also made everything as streamlined as it's going to get. I feel like I have nothing to do now most days. So I read and expand my skills, but that now feels pointless because I'm not applying those skills.
So my next thing is money of course. I make about 44k/yr. It's a nonprofit with better funding than most nonprofits, but all the big money goes to the Marketing team. If I left, their infrastructure would probably crumble or an MSP would take over for much more money than simply giving me a raise. But they refuse to give me a raise because they see our department as overhead. It's not sleek and sexy like Marketing, I get it. The thing is, I could immediately jump to 80k/yr and have a few days remote instead of always being on-site.
So my question really is: Do I trade work-life balance, amazing community and mission, but shitty pay for being paid double, expanding my skills but not knowing what my work life will be like? Or do I stay, knowing I am being underpaid and underappreciated, and continue to work on skills, knowing I'll always have free time for hobbies and things I like doing?
For the record I am 30 years old, in a stable relationship, and want to start a family soon. I know at the end of the day it's my choice... But I feel like I'm making a mistake either way and need advice from fellow techies.
Thank you.
https://redd.it/1kwrelv
@r_systemadmin
Anyone actually solving vulnerability noise without a full team?
We’re a small IT crew managing a mix of Windows and Linux workloads across AWS and Azure. Lately, we’ve been buried in CVEs from our scanners. Most aren’t real risks; deprecated libs, unreachable paths, or things behind 5 layers of firewalls.
We’ve tried tagging by asset type and impact, but it’s still a slog.
Has anyone actually found a way to filter this down to just the stuff that matters? Especially curious if anyone’s using reachability analysis or something like that.
Manual triage doesn’t scale when you’ve got three people and 400 assets.
https://redd.it/1kwmf2m
@r_systemadmin
LAPS – what‘s the benefit?
We want to implement LAPS in our environment. Our plan looks like this:
\- The local admin passwords of all clients are managed by LAPS
\- Every member of the IT Team has a separate Domain user account like “client-admin-john-doe”, which is part of the local administrators group on every client
However, we are wondering if we really improve security that way. Yes, if an attacker steals the administrator password of PC1, he can’t use it to move on to PC2. But if “client-admin-john-doe” was logged into PC1, the credentials of this domain user are also stored on the pc, and can be used to move on the PC2 – or am I missing something here?
Is it harder for an attacker to get cached domain user credentials then the credentials from a local user from the SAM database?
https://redd.it/1kwm5r4
@r_systemadmin
Looking for a Remote Management Software
I am looking right now for a open source remote management software for our team.
Right now we are using a pre configed Configfile for MremoteNG.
It works, but its not handy. We are a team of 15 IT Guys.
Right now im looking into Guacamole by Apache.
Do you have a good alternative?
https://redd.it/1kwkjea
@r_systemadmin
Just promoted to IT Administrator
Hi All,
I just been promoted to IT Administrator as I was an IT Support, any advices from wha has experience? What should I do to improve my skills and succeed?
https://redd.it/1kwegjo
@r_systemadmin
Help Desk T1 Job | Feel underpaid?
Hello all :)! I am currently working as T1 help desk, however, do feel I do a bit more than normal help desk; maybe you guys can tell me that I'm wrong or right? Let me also know what roles I should be applying out for & salary expectations please :D! There is no room for career advancement where I am as most senior engineers have been there 10+ years and are not looking to leave. I get the standard 3% raise yearly and cannot ask for anything more or I will prob be termed.
Location - Columbia SC
How long have I been in this role? 1 1/2 year
Education - B.S. in IT
Pay - $35,650 USD
Certs - Net+, Sec+, CySA, AZ 900, jamf 100, 200 & 300
Day-to-day -
Fully manage ABM & Jamf (apps and everything)
Fully manage Intune (apps and everything else)
Patch prod and non-prod servers based on CVE / CVSS scoring (and advice from soc analyst) < also update devices
Manage Entra ID SSO certs + configs & adding people to groups that enable SSO for SaaS platforms.
Create AAD groups and create the configs above \^
Account creation + group mapping on-prem and in Entra. <-- I actually created a script that auto creates 200 seasonal users based on a csv I am provided that then adds them to the scoped on-prem and Entra groups + sends their password out.
Created scripts to automate onboarding by auto adding a defined user to defined groups on-prem and in Entra.
Create new images
I am working on upgrading VMs in Vsphere to Windows 11 so I have exp there too
Currently am working on migrating VPN providers & am in the POC stage so that will be another project.
I do a bit of the normal help desk stuff too like work station setups and stuff, however, they aren't nearly as common (prob do 1 a month, if that).
https://redd.it/1kw6mb8
@r_systemadmin
Senior Sys doing a 2-hour 365 training for HD team — need cool troubleshooting examples
No theory, just real issues. I’ve got the basics (MFA, licensing, mailbox perms), but want spicy stuff: sync fails, Teams weirdness, PowerShell voodoo, DNS hell.
What’s your favorite “WTF” 365 issue?
https://redd.it/1kvtxjy
@r_systemadmin
Google confirmed: Their system is designed so you can't directly find the person handling your case
TL;DR:
Google Workspace assigns you a support agent who takes “personal ownership”—
but policy forbids you from directly contacting them.
You have no other way to reach them either.
Just spent 72 hours in Google Workspace support hell:
agent after agent who didn’t understand the issue, getting bounced around, re-explaining everything from scratch, and being given the wrong solutions that wasted hours.
After all this chaos, Google finally assigned me an agent who says "I'm taking personal ownership of your case and will personally follow up."
Naturally, I ask: “Can I get a direct way to contact you?”
After days in this maze, I need to reach the one person who actually understands the case.
After several rounds of deflection, their response:
Me: "Can I contact you directly?"
Google: "No."
Me: "Can you find someone who can be contacted directly?"
Google: "No"
Me: "Why?"
Google: "As per policy we don't have any direct contact"
Me: "So after 2 days of multiple agents screwing up and system failures, I still can't directly contact anyone responsible for my case?"
Google: "Correct"
screenshot here
Their “solution”? Email a generic inbox and hope it forwards.
Don’t trust it? Test it yourself.
So instead of giving me direct contact, they want me to test if their system even works?
Why make something so basic so complicated? Every other business in the world gives you a direct way to reach the person helping you.
But wait, it gets even better.
After waiting for 24hrs as they asked me to:
My assigned support agent has vanished into the digital ether.
No proactive contact as promised.
Instead, I got an unsigned, automated email asking me to try the same form that had already failed twice. So I tried it a third time.
Surprise! It failed again.
So I had to reach out through their forwarding system.
That's when I discovered that their earlier suggestion to "test" the system wasn't to ease my concerns - they genuinely needed to test if the magic portal to customer service Narnia actually exists!
Spoiler alert: It doesn't.
Turns out there's no customer service fairy godmother automatically receiving messages through their mystical forwarding system.
A generic inbox is just... a generic inbox.
Who could have predicted such sorcery wouldn't work?
My problem still isn't solved, and I still can't directly contact anyone because - you guessed it - that's against policy.
This isn't incompetence. This is intentionally designed accountability theater.
For a PAID business service.
This makes me wonder: What exactly does Google gain by ensuring customers can never directly contact anyone responsible for their case?
Full chat logs and case numbers available for verification.
UPDATE: While writing this post, I just received an email from Google Workspace. Was it my missing support agent finally responding? Nope. It was a marketing email promoting their business services.
With the tagline:
“Achieve more together.”
I honestly don’t know whether to laugh or scream at this point... 💀
https://redd.it/1kw37xg
@r_systemadmin
How are your teams split up?
Where you work who is responsible for what? I know there is lots of variation across IT departments.
Interested to hear if people have lots of teams with quite specific roles or larger teams with broader responsibilities.
Of course, Systems Administration is the 'omni-team'. Everything that no other team wants ends up with us...
https://redd.it/1kxg1df
@r_systemadmin
2 months into new job I found out our company have basically no email security
No DKIM, no SPF, no DMARC, no SEG, no CDN/CDR sandboxes, and most company computers use Outlook 2016 for clients, and tomorrow they’re holding a seminar for “educating employees on basic cybersecurity”
It’s an apparel manufacturing company, been around for 30+ years, I’m not part of the cybersecurity/IT team but I tested with a few emails between my company email and private one, and yeah, after a disguised email with malformed html and some tracking pixels went through into my work mailbox with no problem, in pretty fucking sure our company email have minimal security.
They said they sent a test out to people and are surprised by how many people actually viewed the email. I got the test, it came from an internal address, with a company IP. I only opened the email, didn’t click anything in it. And if IT is concerned with parser vulnerabilities being exploited, they should update our email clients instead, and focus on teaching about social engineering attacks rather than “not click on promotion emails that has no business to do with your work email”
Forced to waste an hour tmr because cybersec isn’t doing their job lol
https://redd.it/1kxe40s
@r_systemadmin
Do you socialize with your team?
Stealing shamelessly from the "How many people do you share a space with" thread; I thought I'd inquire how many folks socialize with your team mates (if you happen to have them that is). We spend 40+ hours working with those folks, with some level of 0-100% remote/WFH. Do you folks make the effort to be friendly / social / converse about non work things? Or just strictly business and go home?
Also, how much do you value the above?
I'll start. Every team I've been on (about 5 or 6 variations over the past decade) has been very close, some more than others. It helps that there's a lot of tenure and "blue collar in a white collar world" type vibes. We still mind some business etiquette (we don't swear like sailors or tell offensive jokes given the multi-racial/gendered of most teams, company policy, etc) - but anywhere from a 4-6 hours a week to 10-60 minutes, I've always been on teams where laughter, jokes, and anecdotes and memes are present. I like to set down roots as well, I've never been short term contract - and if I'm going to work with you all day in the weeds, I want to know who you are a bit - and be able to complain about vendors and issues and such.
What about you lot?
https://redd.it/1kx7s9o
@r_systemadmin
What's your current linux server distro of choice?
This isn't a "what OS should I chose?" post (well, it is, but in disguise), I am interested in your personal opinions regarding the current Linux server landscape, what are your favourites and why? what changed in recent years?
I have been looking into various server distros in recent days, figuring out whether I should try RHEL 10, maybe go openSUSE, or back to debian with my home server, and while >try them and use what you like best< is the obvious answer, I wanted to get some input on what other sysadmins think.
Yes, I know right now is a kind of inbetween state: RHEL 10 just dropped, Trixie is anticipated, but I think it might be a good time, especially with the CentOS drama having cooled down a everything being stablizied, right before the next big changes are coming into effect
https://redd.it/1kwzihe
@r_systemadmin
How does being a k8s admin change your day to day?
Curious about folks who moved from traditional sysadmin work to full k8s management?
Do you find you job got more complex or easier? What's your biggest complaints for your day to day changes? What kinds of things got way easier to do?
https://redd.it/1kwwwfx
@r_systemadmin
Has anyone attempted IPv6 on their internal network?
I manage a large network comprising 25 FortiGates, numerous VLANs, and extensive ACLs. Has anyone moved forward with IPv6, and if so, what were the pitfalls and was it worth it?
https://redd.it/1kwugd1
@r_systemadmin
First day as a sysadmin and I already feel like an imposter.
This is not to say I am without technical skill, but when I'm asked by my supervisor to reset the network configuration and I'm blanking out about IP config reset and release, it doesn't make me feel good. I used the cmd Getmac during Windows setup instead. I even asked him to see how he copied a user object to create my user account on AD. I've never done that but I know how it works. flawed answer during the interview in response to "what should I do if my computer has a virus"? See my Reddit history for that. I know about Hyper-V and have used it to build a microsystem of 2 DCs and 1 file server on azure...like I have some sort of complex where I know a lot of technical stuff, but I can't even relax. My manager even told me "relax, calm down and don't kill yourself". He's really cool.
It's a typical first day where I'm getting acquainted and there's nothing to do, but there's a lot to do. I know I can do it all if I'm patient. I'm also socially anxious from my last job where I had multiple managers and end users harassed me despite being the "lifesaver." I'm still traumatized from that and my manager can feel it, but he invited me to lunch and let me know:
"You have a less than zero chance of getting fired. You're the smartest interviewee I've had in months. He told HR in front of my face to take off any job postings about this job because I had my doubts and brought it up with him. I should be comfortable, and all the coworkers are ok. No bad vibes unlike day 1 in my previous role (support analyst).
edit: I was micromanaged to all hell in myprevious job and this role is the exact opposite. I have freedoms I never even knew existed.
https://redd.it/1kwtavg
@r_systemadmin
Do you use a standing desk for coding often? is it uncomfortable?
My current desk wobbles af and it's driving me crazy trying to do IT work while my screen is subtly shaking. I'm pretty sure that hunching to stabilize things is why my back's been killing me. And my friend told me to get a new standing desk but I'm so not convinced.
I know all the talk about 'sitting is the new smoking' but for real? standing just totally screws with my focus. I can barely get work done. And I never see anyone actually using them it's always just regular desks. Feels more like hyped thing!
Can't we just like sit normally and hit the gym? but my sciatica still forces me to do something. Any better recs? Thanks
https://redd.it/1kwp4fl
@r_systemadmin
How many people do you share an office with?
I currently am growing more frustrated at having to share an office with 3 other full time staff members. Another sysadmin, network security and network admin, all with varying personalities, stinky microwavable leftovers, shouting and whistling habits.
What's the norm outside my little bubble? I wfh one day a week on alternate shift 12:00Pm-8Pm
https://redd.it/1kwmnwd
@r_systemadmin
Phishing through OneDrive / SharePoint on the rise?
Surely, it's nothing new, but lately we are getting a lot of shared documents through SharePoint from some of our clients, which point to a clear as day phishing PDF pointing to officefiles.microsoftonedriveonline.com or whatsoever.
Should be a clear case of compromised accounts? What you usually do with those mails? Contact the sender?
https://redd.it/1kwktzq
@r_systemadmin
Anyone using NVME over TCP?
Currently running all iscsi on VMware with PUREs arrays. Looking at switch from iscsi to NVMe / TCP. How’s the experience been? Is the migration fairly easily?
https://redd.it/1kwamwq
@r_systemadmin
Edge New tab page - May 2025 update
Start of May 2025; Microsoft changed the behaviour of the new tab page so it initially defaulted to ‘discover’ instead of ‘work’ (now it defaults to whatever is last selected)
This prompted an email to our Helpdesk from management to say “why are we seeing news articles instead of work related items” can it be set to work for everyone or if not set new tab to our intranet.
Someone in Helpdesk explained that it initially defaults to discover but staff could change it back to ‘work’; it’s each users choice. And if they needed intranet click the home button.
Management didn’t think this was good enough and had Helpdesk change it to our intranet; which is completely fucking useless.
There is nothing anybody ever needs on the intranet home page.. each time they open a new tab (except not seeing the news/discover)
No recently accessed sites
No recently used documents
No upcoming meetings (I loved this one)
Now every time I open a new tab I get the fucking useless intranet.
No one in my IT team agreed with me and said management knows what’s best.
Now every-time I open a new tab and see the fucking intranet with no way to access new tab page anymore: I’m triggered.
Honestly it pissed me off so much I decided to go home for the day and post here.
Rip new tab page in edge.
Rant over.
Edit:
F u MS
F u management
F u IT team changing my config
https://redd.it/1kwdute
@r_systemadmin
How would you handle this ultra-niche need?
TL:DR - Great friend and dental client has a nonprofit (funding isn't an issue) that treats children at "random" locations such as schools all over our area. Started as just exams, has grown to include imaging. Struggling to find a good server solution. It's all women that don't understand computers at all.
So a friend sold an existing dental practice in the pursuit of helping children via a nonprofit, originally the plan was just to provide basic exams and then refer the children out to local dentists that would donate the treatment. Generally this was at schools, rehab centers, treatment facilities etc, the places you'd expect to find underserved children.
Originally the data being input was just text via their PMS Open Dental. I set them up with a stout R640 in their office location that they work out of when not at a "dental day" at an outside location. Locally this works flawlessly, they have a massively overpowered server for the task at hand. Remote work was handled with a combination of Wireguard/Twingate as well as an "internet box" I'd send them with. Effectively a Peplink router inside a custom Pelican case with a T-mobile connection and Starlink in addition to WiFi as WAN from whatever location they were at. Totally fine and workable most of the time.
That was until we started finding that the schools would NOT let them connect to anything but the guest network (which I understand) but also sort of lame to have them come repeatedly and be unwilling to work out some form of network they could use that wasn't heavily throttled and blocking all services. They would call and be unable to reach the server, I'd remotely connect and realize WiFi as WAN was blocking basically everything. As luck would have it they'd be in a gymnasium or something that had TERRIBLE cell coverage AND the school would say they couldn't leave a door open to run a cord out to Starlink.
So it quickly becomes a nonsense game of "no matter how many options I give them, they're screwed". We've tried to talk to the schools and generally it gets nowhere. They've been able to make do in those less than ideal scenarios by just doing everything on paper then inputting into the computers when they leave. But now things are changing, they are adding mobile x-rays to the mix, which obviously requires a connection and a fast one at that to constantly move images back and fourth.
The only solution I can think of that will work "all the time" is to have them literally bring the "server" with them. That said, these ladies aren't going to carry around a full size server, it's just not in the cards. Even if it was, how do you ensure it always has power, is turned on and shut off properly etc etc.
My only conclusion is to find a very stout laptop that can act as their server both on and off site. It doesn't feel very elegant, but I can't think of another easy to use, ready for travel setup that won't require a stable connection every single time at every single location. I can control their local network to have a couple laptops that talk to this "server laptop", but I'm hoping someone has a brilliant idea that solves the problem.
I've considered mini racks, big battery backup etc. But I try to run this all through the filter of it being basically a group of technically challenged people that can't figure anything out. Gotta be a "turn on and it works" type solution.
Ideas??
https://redd.it/1kw92b3
@r_systemadmin
I don't understand exactly why self-signed SSL Certificates are bad
The way I understand SSL certificates, is that say I am sending a message on reddit to someone, if it was to be sent as is (plain text), someone else on the network can read my message, so the browser encrypts it using the public key provided by the SSL certificate, sends the encrypted text to the server that holds the private key, which decrypts it and sends the message.
Now, this doesn't protect in any way from phishing attacks, because SSL just encrypts the message, it does not vouch for the website. The website holds the private key, so it can decrypt entered data and sends them to the owner, and no one will bat an eye. So, why are self-signed SSL certs bad? They fulfill what Let's encrypt certificates do, encrypt the communications, what happens after that on the server side is the same.
I asked ChatGPT (which I don't like to do because it spits a lot of nonsense), and it said that SSL certificates prove that I am on the correct website, and that the server is who it claims to be. Now I know that is likely true because ChatGPT is mostly correct with simple questions, but what I don't understand here also is how do SSL certs prove that this is a correct website? I mean there is no logical term as a correct website, all websites are correct, unless someone in Let's encrypt team is checking every second that the website isn't a phishing version of Facebook. I can make a phishing website and use Let's encrypt to buy a SSL for it, the user has to check the domain/dns servers to verify that's the correct website, so I don't understand what SSL certificates even have to do with this.
Sorry for the long text, I am just starting my CS bachelor degree and I want to make sure I understand everything completely and not just apply steps.
https://redd.it/1kvztot
@r_systemadmin
feeling. Let it rewire you. Let it remind you that people before you have already written the answers.
You don’t need to figure everything out alone. You just need to start reading again.
https://redd.it/1kw1y5p
@r_systemadmin