SysAdmin Weekly

Andy Syrewicze and Eric Siron
  • 5.0(3則評分)
  • 科技
  • 每週更新

Welcome to the SysAdmin Weekly Podcast, your go-to source for IT-related content tailored to busy system administrators in the trenches. Hosted by longtime sysadmins and Microsoft MVPs Andy Syrewicze and Eric Siron, this show dives deep into the challenges and solutions that matter most to sysadmins on any given day. From technical know-how to real-world insights, SysAdmin Weekly is dedicated to those tireless professionals who keep our digital world running. Tune in for relevant topics, expert advice, and engaging discussions to make your busy schedule a little bit easier.

  1. 5 天前

    046 - Can Claude Code Help SysAdmins? Scripting, Log Analysis, and the Claude.md workflow

    The skepticism is earned. Most AI demos are built for developers. Most AI hype is vendor noise. And most SysAdmins have better things to do than adopt another tool that solves a problem they may or may not have. That said: this is Andy putting the grumpy SysAdmin argument aside for an hour to make the honest case for Claude Code in SysAdmin workflows. With caveats. With the parts that still fall short. With a clear line between where it helps and where you should keep your hands on the wheel. The episode also covers a rough few weeks for the Linux kernel: three local privilege escalation vulnerabilities publicly disclosed in quick succession. All local, not remote. Still worth knowing about before your next patch cycle. In this episode: - A rundown of the three recent Linux kernel LPE vulnerabilities (Fragnesia, DirtyFrag, and CopyFail) and what they mean for SysAdmins running Linux in their environments - Nerd Hour: Restic offsite backups via Hetzner storage, Beszel and Uptime Kuma monitoring running on K3S - What Claude Code actually is, and why the CLI-based workflow changes the value proposition compared to chatbot-style AI use - The CLAUDE.md file: the single biggest thing most SysAdmins are missing when they try AI tools. What it is, how to build one, and how it turns Claude into something that actually knows your environment - Practical use cases: script generation with real AD and environment context, incident triage as a thinking partner, log analysis, documentation from terminal history, run book drafting, and YAML/Kubernetes help - Where to stay skeptical: sensitive data, the "do whatever you want" permission mode, and always reviewing AI-generated scripts before running them anywhere near production The tool amplifies competence. It doesn't substitute it. That framing is the whole episode. --- ## Resources and Show Notes ### Linux Vulnerabilities: - Fragnesia (CVE-2026-46300): https://www.helpnetsecurity.com/2026/05/14/fragnesia-cve-2026-46300-linux-lpe-vulnerability/ - DirtyFrag (CVE-2026-43284 + CVE-2026-43500): https://www.helpnetsecurity.com/2026/05/08/dirty-frag-linux-vulnerability-cve-2026-43284-cve-2026-43500/ - CopyFail (CVE-2026-31431): https://www.helpnetsecurity.com/2026/04/30/copyfail-linux-lpe-vulnerability-cve-2026-31431/ ### Claude Code: - Claude Code Security Documentation: https://code.claude.com/docs/en/security - Claude Code Permissions Documentation: https://code.claude.com/docs/en/permissions ### Tools Mentioned: - Restic Backup: https://restic.net - Beszel Monitoring: https://beszel.dev - Uptime Kuma: https://github.com/louislam/uptime-kuma - Hetzner Object Storage: https://docs.hetzner.com/storage/object-storage/ - Hetzner Object Storage + Restic Setup Guide: https://docs.hetzner.com/storage/object-storage/howto-backups/restic/ ### Community: - Friends and Family IT Support Stories on GitHub Discussions: https://github.com/ProjectRunspace/sysadmin-weekly/discussions - Andy's Music TUI Terminal Apple Music Controller: https://github.com/asyrewicze/music_tui ### Previous Related Episodes: - SysAdmin Weekly 008 - Getting Started with GitHub Copilot: https://open.spotify.com/episode/2eTtoAgeKEikKeLzYExfOY?si=ySl9Ho7mQ861mHAKiTAQ5w - SysAdmin Weekly 016 - AI Agents for IT Admins episodes featuring Mike Nelson: https://open.spotify.com/episode/7u5T3Tp04EEP0hZRst3KPZ?si=zTpzVTXZR42vle4Gk0-tow ## Chapters 04:32 - Community Comments and News React 07:16 - Linux Vulnerabilities Overview 10:08 - Nerd Hour: Personal Projects and Backups 13:21 - Exploring Claude Code for Sysadmins 16:09 - The Grumpy Sysadmin and AI Adoption 19:24 - Understanding Claude Code's Functionality 22:35 - Use Cases for Claude Code 30:01 - The Importance of Documentation in Sysadmin Work 32:52 - Leveraging Claude.md for Enhanced Context 37:27 - Practical Applications of Cloud Code in Sysadmin Tasks 42:11 - Challenges and Limitations of Cloud Code 53:54 - Future of Cloud Code and Its Value in Sysadmin Work

    59 分鐘

  2. 5月8日

    045 - Why is It ALWAYS DNS?!?

    It's always DNS. Every SysAdmin has said it, usually at the worst possible moment. This episode is the explanation for why that joke is only half a joke. Andy and Eric walk through how DNS actually works from first request to final answer: recursive resolvers, root servers, authoritative name servers, TTLs, and caching. From there they get into Windows Server and Active Directory DNS integration, covering SRV records, dynamic registration, and scavenging. The back half covers DNS security: DNSSEC, DNS over HTTPS, Encrypted Client Hello, DNS-based content filtering, and how attackers use DNS for C2 traffic and exfiltration. Throughout, the guys pull from real war stories, including a ticketing system that silently failed every few weeks because one of four DNS servers had a stale record, and a BIND config that refused to load because of a trailing space. --- ## Show Notes and Resources ### News React - Cloudflare DNS filtering tiers: https://blog.cloudflare.com/introducing-1-1-1-1-for-families/ - AI token costs exceeding replacement labor costs: https://fortune.com/2026/04/28/nvidia-executive-cost-of-ai-is-greater-than-cost-of-employees/ - Claude deleting company data and backups: https://www.tomshardware.com/tech-industry/artificial-intelligence/claude-powered-ai-coding-agent-deletes-entire-company-database-in-9-seconds-backups-zapped-after-cursor-tool-powered-by-anthropics-claude-goes-rogue - Backyard RAM manufacturing: https://www.theregister.com/2026/04/23/youtuber_builds_working_dram/ ### Nerd Hour - Andy's PomoCLI app: https://github.com/asyrewicze/pomocli ### Main Segment Resources - Cloudflare: What is DNS?: https://www.cloudflare.com/learning/dns/what-is-dns/ - MXToolbox: https://mxtoolbox.com - DNS over TLS vs. DNS over HTTPS - Cloudflare Learning: https://www.cloudflare.com/learning/dns/dns-over-tls/ - Encrypted Client Hello - the last puzzle piece to privacy: https://blog.cloudflare.com/announcing-encrypted-client-hello/ ### Community - GitHub Discussions: Friends and family IT support stories: https://github.com/ProjectRunspace/sysadmin-weekly/discussions/15. ## Chapters 12:45 - Understanding DNS: The Final Boss 25:49 - The DNS Resolution Process 38:43 - Exploring DNS Services and Tools 39:45 - Managing DNS: Windows vs. BIND 43:36 - Active Directory and DNS Integration 48:38 - Dynamic Registration and Scavenging in DNS 52:42 - Understanding DNS Record Types 54:44 - Common DNS Tools and Their Uses 59:28 - DNS Security: Threats and Protections 01:06:27 - DNS Filtering and Content Control 01:12:36 - Should You Run Your Own DNS?

    1 小時 16 分鐘

  3. 5月1日

    044 - Hyper-V Failover Clustering in 2026

    Failover clustering is the part of Hyper-V that trips up the most people, especially anyone arriving from the VMware side. In this episode Andy Syrewicze and Eric Siron pick up directly where episode 043 left off: you have standalone Hyper-V running, now what does it actually take to make it highly available in 2026? The guys start with the "why bother" question: Azure Local versus a traditional Hyper-V failover cluster comes down mostly to billing and governance overhead, not capability. From there the conversation moves into prerequisites: shared storage options (Storage Spaces Direct, iSCSI, SMB shares, Fiber Channel), Active Directory integration, and the heartbeat NIC myth Eric has been fighting against since he started seeing outdated Microsoft docs still getting passed around. The bulk of the episode is quorum: what split-brain means, why a two-node cluster needs a third vote, and the practical tradeoffs between a file share witness, a disk witness, and a cloud witness in Azure. Dynamic quorum gets its own explanation, including how graceful node shutdowns allow a cluster to shrink without taking everything offline. They close on the creation experience (PowerShell over Windows Admin Center, period), the gotcha that catches every VMware migrant (creating the cluster and adding VMs as clustered roles are two separate steps), live migration and shared nothing live migration. In the news and nerd hour segments this week: the FCC ban on foreign-made consumer routers (with Netgear already approved as an exception before anyone finished reading the press release), 3D printing of circuitry using microwave-based manipulation now down to the width of a human hair, Tim Cook stepping down from Apple, Andy using Claude Code to build a master index of every topic covered across all 43 episodes and every newsletter edition, and Eric deep in research on a home routing setup built around a mini PC with a separate router component so the internet does not require an IT degree to reset when he is traveling. --- ## Episode Resources SysAdmin Weekly Website: https://www.sysadminweekly.com SysAdmin Weekly Companion Newsletter: https://newsletter.sysadminweekly.com Community Discussion Board: https://github.com/ProjectRunspace/sysadmin-weekly Share Your Family/Friends IT Support Stories (community post): https://github.com/ProjectRunspace/sysadmin-weekly/discussions/15 AndyOnTech: https://www.andyontech.com Project Runspace: https://www.projectrunspace.org **Previous episodes referenced in this episode:** - Episode 043: Getting Started with Hyper-V in 2026: https://open.spotify.com/episode/4J77iiMVDWvvf8fshSurAL?si=D1hPaG7eSKiX6uU7UPBL3g - Episode 042: Should SysAdmins Job Hop or Stay Put?: https://open.spotify.com/episode/0o7EMW8JTGDm8rJv7Xu6Pg?si=uv1KIDZwS-y4l0g6yIV8jA - Episode 13: Should Hyper-V Be Domain Joined?: https://open.spotify.com/episode/0KWjIe5xgqZV9XYHuV2UF3?si=oK6XKjJiQ_mvpEEDqY_vyg - Episode 017: Hyper-V Management Story episode: https://open.spotify.com/episode/0rHwIc4U297R7I6KFayhlm?si=oTB7nX3bTgG7xekebnIU5g **Articles referenced in this episode:** - FCC ban on foreign-made consumer routers: https://www.wired.com/story/us-government-foreign-made-router-ban-explained/ - What's New with Hyper-V in Windows Server 2025 (Microsoft Docs): https://learn.microsoft.com/en-us/windows-server/get-started/whats-new-windows-server-2025#hyper-v-ai-and-performance --- ## Chapters 03:30 - Tech News Highlights 14:38 - Nerd Hour: Personal Projects and Innovations 21:02 - Listener Feedback and Career Insights 25:54 - Hyper-V Failover Clustering in 2026 32:56 - Automated Setup and Shared Storage Solutions 35:03 - Active Directory Integration and Clustering Best Practices 36:55 - Understanding Quorum in Failover Clustering 46:15 - Establishing a Failover Cluster: Tools and Processes 57:18 - Live Migration and Storage Migration in Hyper-V 01:01:14 - Day Two Operations and Cluster Management

    1 小時 9 分鐘

  4. 4月23日

    043 - Getting Started with Hyper-V in 2026

    Hyper-V has been around since 2008, runs Azure, runs Xbox, and still gets overlooked by shops fleeing VMware/Broadcom pricing. In this episode Andy Syrewicze and Eric Siron go back to basics: what Hyper-V actually is under the hood, why it is still worth your attention in 2026, and everything you need to know to stand it up and run your first virtual machine without losing your mind in the process. They walk through licensing (Standard versus Data Center, OSEs, core-based math, and the very short answer: call your licensing rep), then peel back the architecture to explain why Hyper-V is a genuine Type 1 hypervisor even though it boots into Windows. From there the conversation covers hardware requirements, the virtual switch types that trip up every VMware migrant, storage options, Gen 1 versus Gen 2 VMs (short answer: go Gen 2), Integration Services, and Dynamic Memory. Checkpoints and clustering get flagged as topics that deserve their own full episodes. In the news and nerd hour segments this week: CPU component prices climbing again with Intel and AMD reportedly raising costs by 15% or more, Microsoft announcing plans to rebuild Windows apps natively instead of relying on WebView, the MacBook Neo stirring up comparisons to the original Surface, Eric's week spent patching NetScaler appliances through a critical CVE while fighting Citrix's new licensing model, and Andy's experience standing up a Forgejo self-hosted git forge and putting Claude Code to work as a local repository agent. --- ## Episode Resources SysAdmin Weekly Website: https://www.sysadminweekly.com SysAdmin Weekly Companion Newsletter: https://newsletter.sysadminweekly.com Community Discussion Board: https://github.com/ProjectRunspace/sysadmin-weekly/discussions Share Your Family/Friends IT Support Stories (community post): https://github.com/ProjectRunspace/sysadmin-weekly/discussions/15 AndyOnTech: https://www.andyontech.com Project Runspace: https://www.projectrunspace.org Forgejo (self-hosted git forge): https://forgejo.org Claude Code: https://claude.ai/code **Previous episodes referenced in this episode:** - VMware/Broadcom coverage: https://open.spotify.com/episode/764MqlqHjNimkiAdoWNoRb?si=pLZoVGM9RCivR6iBOW7b0A - Hyper-V management tools episode: https://open.spotify.com/episode/0rHwIc4U297R7I6KFayhlm?si=X_lxLkBDTuejzC_NCsoo2w --- ## Chapters 02:50 - Getting Started with Hyper-V in 2026 15:25 - Nerd Hour: Personal Projects and AI Tools 27:47 - Main Segment: Hyper-V Fundamentals 29:06 - The Evolution of Hyper-V31:33 - Understanding Hyper-V Licensing 37:53 - Navigating Hyper-V Licensing Complexities 41:44 - Hyper-V Architecture Explained 56:40 - Getting Started with Hyper-V 01:03:45 - Understanding Hyper-V Networking Challenges 01:08:45 - Exploring Hyper-V Storage Options 01:13:29 - Choosing Between Generation 1 and Generation 2 VMs 01:18:34 - Key Features of Hyper-V: Integration Services and Dynamic Memory 01:20:50 - Managing Hyper-V with System Center Virtual Machine Manager

    1 小時 23 分鐘

  5. 4月1日

    042 - Should SysAdmins Job Hop or Stay Put? There's a Secret Option C....

    Andy and Eric Siron tackle one of the most debated questions in IT careers: do you find a company and stay for the long haul, or do you job hop every few years to chase better pay and new challenges? With over four decades of combined industry experience between them, they've lived both sides of the equation and they make the case that the real answer is neither. In News React, Eric calls out Nvidia CEO Jensen Huang's proposal that engineers should burn through AI tokens worth half their salary as a productivity metric, and Andy flags Intel's announced 10% consumer CPU price hike as the compute consolidation squeeze continues to tighten. Nerd Hour covers Andy's maddening K3S node kernel lockup mystery and Eric's journey from WordPress to Hugo for the Project Runspace site. For our main segment the guys walk through the case for staying long term at a job bringing deep institutional knowledge, ownership of your environment, the satisfaction of building something to your standards along with the real downsides: skill calcification, salary stagnation, and the risk of becoming so embedded you can't leave. Then they flip to the case for hopping. This method typically lands meaningful pay jumps, escaping bad culture, and breadth of experience alongside the pitfalls of being labeled a flight risk, never building depth, and fueling the contract economy. The guys then end the episode with Secret Option C.... --- ## Episode Resources - Nvidia CEO Jensen Huang: Engineers Should Spend 50% of Salary on AI Tokens (CNBC) - https://www.cnbc.com/2026/03/20/nvidia-ai-agents-tokens-human-workers-engineer-jobs-unemployment-jensen-huang.html - Intel (AND AMD!!!) Preparing 15% Consumer CPU Price Increase (PCMag) - https://www.pcmag.com/news/intel-amd-reportedly-set-to-raise-cpu-prices-by-up-to-15-percent - SysAdmin Weekly Website - https://www.sysadminweekly.com - SysAdmin Weekly Companion Newsletter - https://newsletter.sysadminweekly.com - AndyOnTech - https://www.andyontech.com - Project Runspace - https://www.projectrunspace.org - SysAdmin Weekly GitHub Community Discussions - https://github.com/ProjectRunspace/sysadmin-weekly/discussions - SysAdmin Weekly GitHub Discussion: Share Your Family & Friends IT Support Stories - https://github.com/ProjectRunspace/sysadmin-weekly/discussions/15 ## Episode Chapters 00:00 - Introduction to Sysadmin Weekly 03:02 - Navigating Career Choices in IT 17:59 - The Case for Staying in One Organization 34:13 - The Case for Job Hopping 34:40 - The Job Hopping Dilemma 42:42 - Navigating the Contract Economy 47:47 - Finding Your Forever Home in IT 58:22 - Advice for Sysadmins at Different Career Stages

    1 小時 5 分鐘

  6. 3月25日

    041 - Is Microsoft Giving Up on Security? - The SFI Leadership Shakeup Explained

    Andy and Paul Schnackenburg dig into a leadership change at Microsoft that has the security community raising eyebrows. Charlie Bell, the executive vice president of security who championed the Secure Future Initiative, is out and being replaced by a go-to-market sales executive from the Google Cloud. Satya Nadella's announcement focused on selling more security products, with no mention of continuing the SFI's mission. That omission says a lot. In News React, the crew covers the new Microsoft 365 E7 SKU (Copilot, Agent 365, and a $99/user/month price tag aimed squarely at mega-enterprises), and the Iran-linked Stryker wiper attack where hackers compromised an Intune admin account and remotely wiped devices across 79 countries (no malware required). Nerd Hour features Andy's Forgejo self-hosted Git setup and Paul's new electric vehicle. From there Andy and Paul trace the arc from Microsoft's repeated security breaches, to the scathing CSRB report that seemingly forced the creation of the SFI, to what now looks like the initiative quietly losing steam. Included is discussion on Microsoft's pattern of treating security as a profit center, the ethical tension of selling security add-ons for your own platform's vulnerabilities, and what SysAdmins should be watching for as this plays out. SysAdmin Weekly Website - https://www.sysadminweekly.comSysAdmin Weekly Companion Newsletter - https://newsletter.sysadminweekly.com SysAdmin Weekly GitHub Community Discussions - ⁠https://github.com/ProjectRunspace/sysadmin-weeklyAndyOnTech - https://www.andyontech.comProject Runspace - https://www.projectrunspace.orgKrebsOnSecurity: Iran-Backed Hackers Claim Wiper Attack on Stryker - https://krebsonsecurity.com/2026/03/iran-backed-hackers-claim-wiper-attack-on-medtech-firm-stryker/CSRB Report: Review of the Summer 2023 Microsoft Exchange Online Intrusion (PDF) - https://www.cisa.gov/sites/default/files/2025-03/CSRBReviewOfTheSummer2023MEOIntrusion508.pdfRisky Business Podcast (Recommended by Paul) - https://risky.biz

    1 小時

  7. 3月21日

    040 - Big Tech Owns Your Compute... Should you be Worried?

    After a brief hiatus, the crew is back! Andy is joined by both Paul Schnackenburg and Eric Siron to tackle a big question: what happens when access to compute becomes a subscription privilege instead of an owned capability? This week's topic goes deep! Big tech bankrolling elections, Bezos pushing rented cloud PCs over owned hardware, a global RAM shortage driven by AI demand. All the ingredients for a dangerous consolidation of compute seem to be in place. The crew explores the erosion of trust in cloud providers, geopolitical implications for non-US businesses, how consolidated AI models could subtly shape reality, the environmental cost of AI data centers, and the growing movement toward cloud repatriation and on-prem infrastructure. There's no silver bullet, but awareness and intentional choices about where we place our trust and spend our money are the first steps. ## Episode Resources ## SysAdmin Weekly Website - https://www.sysadminweekly.comSysAdmin Weekly Companion Newsletter - https://newsletter.sysadminweekly.comSysAdmin Weekly GitHub Community Discussions - ⁠https://github.com/ProjectRunspace/sysadmin-weekly⁠VoidLink AI-Generated Malware Framework (The Hacker News) - https://thehackernews.com/2026/01/voidlink-linux-malware-framework-built.htmlGoogle Quietly Removes Net-Zero Carbon Goal Amid AI Data Center Buildout (Tom's Hardware) -https://www.tomshardware.com/tech-industry/google-quietly-removes-net-zero-carbon-goal-from-website-amid-rapid-power-hungry-ai-data-center-buildout-industry-first-sustainability-pledge-moved-to-background-amidst-ai-energy-crisisGoogle Plans to Power Data Center with Fossil Fuels and Carbon Capture - https://theconversation.com/google-plans-to-power-a-new-data-center-with-fossil-fuels-yet-release-almost-no-emissions-heres-how-its-carbon-capture-tech-works-270425Why a Carbon Capture Breakthrough Will/Won't Save Us (PBS Reactions) - https://www.pbs.org/video/why-a-carbon-capture-breakthrough-willwont-save-us-9cmmk0/

    1 小時 30 分鐘

  8. 2月14日

    039 - BitLocker, Key Escrow, and the Microsoft Trust Question

    Microsoft reportedly handed over BitLocker recovery keys to the FBI as part of a criminal investigation and that raises some uncomfortable questions. In this episode of SysAdmin Weekly, Andy and Eric unpack what actually happened, how BitLocker key escrow works, and why the default behavior in Windows 11 matters more than most users realize. We dig into: - How BitLocker recovery keys get stored in Microsoft accounts without end users knowing - What “key escrow” really means in practice - The difference between consumer and enterprise configurations - The privacy vs. law enforcement debate - Why encryption is meaningless if someone else controls the key - The broader implications for trust in cloud vendors We also discuss the “tyranny of the default,” the quiet shift toward mandatory Microsoft accounts in Windows 11, and what this means for SysAdmins responsible for protecting executive devices and sensitive data. If you manage endpoints, run M365, or care about privacy, this one’s worth your time. And yes… we also manage to cover frozen beach vacations, AI replacing CEOs, SMTP auth drama, and why abstraction always comes back to bite you eventually. ## Episode Resources - SysAdmin Weekly Website - https://www.sysadminweekly.com - SysAdmin Weekly Companion Newsletter - https://newsletter.sysadminweekly.com - New SysAdmin Weekly Discussion Boards - https://github.com/ProjectRunspace/sysadmin-weekly/discussions - AndyOnTech - https://www.andyontech.com - Project Runspace - https://www.projectrunspace.org - Forbes Article - Microsoft hands over BitLocker encrypted data keys to FBI - https://www.forbes.com/sites/thomasbrewster/2026/01/22/microsoft-gave-fbi-keys-to-unlock-bitlocker-encrypted-data/ - Office 365 for IT Pros article on SMTP AUTH Basic Authentication retirement delay - https://office365itpros.com/2026/01/29/smtp-auth-basic-retirement/ - SysAdmin Weekly - 036 - The Hidden Cost of Abstraction in Modern IT - https://open.spotify.com/episode/0B4SfPgTbUlXTzSuJyfiby?si=OOehzhGTSnyda-zTKoW4tA - SysAdmin Weekly - 035 - AI Browser, Chromium Monoculture, and the Future of Browser Security - https://open.spotify.com/episode/0zZDUAtcCJQ74d6zQdKV6N?si=R286nY4UTmaBIULFvArAcg

    1 小時 14 分鐘
顯示全部 (47)

評分與評論

5
(滿分 5 顆星)
3 則評分

簡介

Welcome to the SysAdmin Weekly Podcast, your go-to source for IT-related content tailored to busy system administrators in the trenches. Hosted by longtime sysadmins and Microsoft MVPs Andy Syrewicze and Eric Siron, this show dives deep into the challenges and solutions that matter most to sysadmins on any given day. From technical know-how to real-world insights, SysAdmin Weekly is dedicated to those tireless professionals who keep our digital world running. Tune in for relevant topics, expert advice, and engaging discussions to make your busy schedule a little bit easier.

資訊

  • 創作者
    Andy Syrewicze and Eric Siron
  • 活躍年代
    2025年 - 2026年
  • 集數
    47
  • 年齡分級
    兒少適宜
  • 版權
    © Andy Syrewicze and Eric Siron
  • 節目網站
    SysAdmin Weekly

你可能也會喜歡