An evening with SVD-2022-0607

Back in June, along with the release of Splunk 9.0, Splunk dropped several security advisories. I’m spending a little time digging in on SVD-2022-0607. Come along with me as we learn together. The first thing of interest to me about this one is … we’ve been here before. Go back to https://www.duanewaddle.com/splunk-pass4symmkey-for-deployment-client-deployment-server/ and read the […]

Continue reading


Proving a Negative

I’ve got this Foo Fighters lyric stuck in my head … All my life I’ve been searching for something.  Something never comes, never leads to nothing. This seems, relevant, given my focus on search technologies in my career.  Today, I’m going to talk about proving a negative.  That is, I’m going to talk about searching […]

Continue reading


Splunk 7.2.2 and systemd

Consider this a draft.  I’ll update it as I have time, but I’m posting now because it may help someone. Updated 2019-04-07:  Some improvements thanks to Red Hat support.  I am also trying to collect the knowledge and experience of other SplunkTrust and Splunk community people in order to document this more completely.  Many thanks […]

Continue reading


Back from the brink?

I really gave up on blogging for a long time. “So busy” and all that. I’m trying to get back, lets just call all of that ‘excuses’. So in support of that, a whole bunch of housekeeping on the site. Latest and greatest remote exploits .. err I mean wordpress 😉 SSL by default thanks […]

Continue reading