IT Discussion

Your browser does not seem to support JavaScript. As a result, your viewing experience will be diminished, and you have been placed in read-only mode.

Please download a browser that supports JavaScript, or enable it if it's disabled (i.e. NoScript).

IT Discussion

J

Pentest - Who would you recommend?
• Jimmy9008

47

47
Posts

226
Views

@IRJ said in Pentest - Who would you recommend?:

Internal attacks are many times more likely than external attacks

And more effective. A trivial insider attack can do more damage than a dramatic external one.
Managing Hyper-V
• Dashrender

214

214
Posts

1140
Views

@matteo-nunziati said in Managing Hyper-V:

ok, if it is able to mix hyper-v version it can make a bit of sense but it is slooooooooooow.

have to move to the other warehouse, if I've time I'll try to run this in linux under wine.

ok wine failed both as common user and as root. I give up!
RamBox
• fuznutz04

18

18
Posts

64
Views

@fuznutz04 said in RamBox:

@scottalanmiller said in RamBox:

@fuznutz04 said in RamBox:

@JaredBusch I use OWA because I switch back and forth between my Windows Desktop at my home office, and my Macbook while I am in the office, and traveling. While I could run Outlook on both the Windows box, and run Outlook on the Mac side, I think the Mac Outlook version sucks. So, I use OWA.

I find OWA more mobile as well, but Outlook does handle moving between devices pretty easily.

Yes, it does. On the Linux side, would you use a local mail client, or still stick with OWA?

If a native mail client, which one?

I use OWA. I tried Nylas, but something about my O365 account made it sluggish when it isn't with my other email. I don't use Exchange for my primary email, so OWA is fine. It's not Zimbra, that's kicking its butt in usability, but it is okay.

It's nice to have moved back to something better than Exchange. I forgot how much I preferred it.
F***kin Petya Ransomware
• msff-amman-Itofficer

4

4
Posts

74
Views

@DustinB3403

Thanks for the heads up, the bat script in that article seems like good vaccination method.
Port from SW - Salt master rsa key issue
salt salt master salt minion rsa • • DustinB3403

60

60
Posts

308
Views

Q

@dgingerich @scottalanmiller sorry for the delay in a response from me. Working on a sev-1 at work at the moment so I'm only sporadically available. I'll be sure to take a look at this later when either the sev-1 clears up or my day is over.
Veeam: All instances of the storage metadata are corrupted
veeam endpoint backup vee • • Danp

2

2
Posts

37
Views

FWIW, I was able to start a new backup set by adjusting the job's advanced settings --
Tracking user steps on files
• Joel

12

12
Posts

490
Views

@Jimmy9008 said in Tracking user steps on files:

@scottalanmiller said in Tracking user steps on files:

@Joel said in Tracking user steps on files:

@gjacobse said in Tracking user steps on files:

Server details?

OS version?

Windows Server 2012 R2

Audit records will tell you everything that can be told. Copy, however, doesn't have an "action" with it so there is no means of tracking that. The server isn't told when a copy is made, so there is no way to log that.

Will that record access if say, viewed in preview pane, rather than opened fully? Would be good to setup prtg to look in event log for that on specific files, if possible.

It should has it has to open it for that.
A vaccination for Petya
ransomware petya • • DustinB3403

1

1
Posts

52
Views

No one has replied
Printing broken by June 2017 updates
windows 10 internet explorer updates • • Dashrender

28

28
Posts

1192
Views

Microsoft released a new cumulative update last night that appears to address this for Windows 10

I haven't tested it yet.

This specific link is for version 1703

https://support.microsoft.com/en-us/help/4022716/windows-10-update-kb4022716

1607

https://support.microsoft.com/en-us/help/4022723/windows-10-update-kb4022723

1511

https://support.microsoft.com/en-us/help/4032693/windows-10-update-kb4032693
Twilio as a SIP provider
• EddieJennings

52

52
Posts

696
Views

@EddieJennings said in Twilio as a SIP provider:

Unless @bigbear is talking about my "normal" month estimate. I don't have CDR before the toll fraud started, so I made an estimate based on the proportion of 60/60 and 6/6 minutes from my last bill.

Most likely he assumed you did not calculate as you did. Most people cannot figure it out even once explained. I cannot count how many times I have done this.
NextCloud with FreeIPA
freeipa ldap openldap linux nextcloud owncloud • • AlyRagab

16

16
Posts

139
Views

Done
F***kin WannaCry
• msff-amman-Itofficer

15

15
Posts

183
Views

@Dashrender said in F***kin WannaCry:

@scottalanmiller said in F***kin WannaCry:

@msff-amman-Itofficer said in F***kin WannaCry:

its joke man its just goes LSTB looks close to LGBT

LTSB... Long Term Support Build.

Should have just been LTS, the industry standard term. Why they added the B to the end, no one knows.

Thought it was Long Term Servicing Branch?

I agree with Scott - if you think your computer is ever infected, you can't really ever trust it again. Format and reinstall - or restore to an old backup, whatever.. get to a known clean state.

In other words, scorched earth.
Zevenet load balancer
• matteo nunziati

7

7
Posts

79
Views

@JaredBusch said in Zevenet load balancer:

I have HAProxy setup on Fedora 25 for use with Exchange 2010.

I really need to turn that into a write up as I need to replicate it at another client anyway. Last two current clients with on prem Exchange.

oh cool - you got it to work.
Nextcloud Questions
nextcloud vm ubuntu 16.04 hyper-v disk partitioning • • brandon220

29

29
Posts

83
Views

@NashBrydges said in Nextcloud Questions:

@scottalanmiller said in Nextcloud Questions:

@brandon220 said in Nextcloud Questions:

I thought about making a new VM using Fedora 25 as the one @scottalanmiller provided the group works so well. I'm just afraid I won't be able to successfully migrate the data.

It's all just a database and filesystem. I've not done this, but should not be bad.

Would this still be possible if you've chosen to enable encryption? I would assume that your encryption key would be different in a new install. I don't remember reading anywhere about how to migrate data from one install to another if it was encrypted (although maybe I've never read it because it doesn't matter). Has anyone done this? Moved users and data to a new install with encryption turned on?

Doing the migration would decrypt on the source before doing the move. So it should be the same. The key would change or not depending on if you move the key.
openvas test results
• momurda

8

8
Posts

71
Views

Openvas isn't as an informative as some other tools. Once you get the cve you can research it better using Google.
Laser printer sometimes trips an APC and shuts off computer??
• guyinpv

57

57
Posts

541
Views

@Tim_G said in Laser printer sometimes trips an APC and shuts off computer??:

@JaredBusch said in Laser printer sometimes trips an APC and shuts off computer??:

@Tim_G said in Laser printer sometimes trips an APC and shuts off computer??:

I wouldn't put a laser printer into a UPS.

If you lack plugs, and need protection, use a good power strip (for the printer) in one wall socket, use the APC in the other.

FFS people. There is no damned printer plugged into a UPS.

Misread. Please do accept my apology.

We need pictures. IT people love pictures.
Should We Ever Talk About JBODs
storage jbod • • scottalanmiller

101

101
Posts

1064
Views

@scottalanmiller said in Should We Ever Talk About JBODs:

Argh

ROFL.
Accessing and enabling Powershell Remoting in a workgroup environment
enable-psremoting psremoting powershell powershell remoting windows server windows • • Romo

3

3
Posts

130
Views

B

In case you have a mix of private and public network profiles use this command.

Enable-PSRemoting -SkipNetworkProfileCheck - Force

SkipNetworkProfileCheck ignores any public network profiles so you can enable remote powershell successfully.
[ALERT] Looks Like A New Worldwide Ransomware Outbreak
security malware ransomware knowbe4 knowbe4 blog windows patching zero day • • stus

2

2
Posts

98
Views

@stus Thanks. Was just reading about it here.
B

SMBv1 is removed in the Windows 10 Insider Preview Build 16226
windows 10 windows windows desktop smb smb 1 storage • • black3dynamite

12

12
Posts

194
Views

@Dashrender said in SMBv1 is removed in the Windows 10 Insider Preview Build 16226:

@scottalanmiller said in SMBv1 is removed in the Windows 10 Insider Preview Build 16226:

@dafyre said in SMBv1 is removed in the Windows 10 Insider Preview Build 16226:

@scottalanmiller said in SMBv1 is removed in the Windows 10 Insider Preview Build 16226:

Not quite the same as NFS 3 and NFS 4, but we intentionally use NFS 3 much of the time today even though NFS 4 is old.

This may be good for a fork...but why hang on to NFSv3 instead of stepping up to NFSv4??

Because the work differently and having the overhead of NFSv4 often does not make sense.

Can you give more detail?

They are very different protocols with a lot of different features. NFSv3 is much lighter than NFSv4.
SAP via published RDS session
sap rds remote desktops • • gjacobse

5

5
Posts

36
Views

Do you mean ?

Or a different product package?
Help StarWind to pick the name for the upcoming product!
• Oksana

19

19
Posts

170
Views

@FATeknollogee said in Help StarWind to pick the name for the upcoming product!:

@scottalanmiller said in Help StarWind to pick the name for the upcoming product!:

@FATeknollogee said in Help StarWind to pick the name for the upcoming product!:

@Oksana said in Help StarWind to pick the name for the upcoming product!:

Management for StarWind Virtual SAN, Microsoft Storage Spaces Direct, and Ceph.

Starwind is now doing Ceph?

Yes

Where is that info about Starwind & Ceph?

In their product description.
Hyper-V Replication Health/State Error
• wirestyle22

6

6
Posts

33
Views

You will see that status if replication had been failing long enough to get into critical status. Even if it is now replicating again. I will show critical for a few more replication cycles.

That is why you need to open the full status and check what it says.
How would you build this
research opinions business • • JaredBusch

31

31
Posts

349
Views

Thanks for your comments all.
J

Disk2VHD M.2
• Jimmy9008

19

19
Posts

162
Views

@Jimmy9008 said in Disk2VHD M.2:

@tim_G what OS was your Host where it worked?

2012 R2 and 2016, both Hyper-V Server and Windows Server.

I've also done it with Hyper-V on Windows 10.

It's always worked for me. When it hasn't, it's because of not paying attention and using incorrect options.
Inter-Tel Session Manager 2.71
mitel phones did extensions • • DustinB3403

1

1
Posts

21
Views

No one has replied
Korora Desktop Rollcall
linux linux desktop korora fedora • • scottalanmiller

32

32
Posts

286
Views

R2D2ing a laptop together today top install while on vacation next week.
Suggestions on HP laptop for work
hp hpzbook hpspectre • • Ambarishrh

3

3
Posts

39
Views

The Spector series are designed for executives. They look pretty, have decent specs, and have a price tag to match.
Debian/Ubuntu Kernel Update breaks Unifi Controller
unifi controller • • brianlittlejohn

2

2
Posts

77
Views

Thanks for posting this!
Remix Mini: as a Thin Client
thinclient remix android vdi • • FATeknollogee

64

64
Posts

2311
Views

@Dashrender The app doesn't have ads :)

1 / 258

Pentest - Who would you recommend? • Jimmy9008

Managing Hyper-V • Dashrender

RamBox • fuznutz04

F***kin Petya Ransomware • msff-amman-Itofficer

Port from SW - Salt master rsa key issue salt salt master salt minion rsa • • DustinB3403

Veeam: All instances of the storage metadata are corrupted veeam endpoint backup vee • • Danp

Tracking user steps on files • Joel

A vaccination for Petya ransomware petya • • DustinB3403

Printing broken by June 2017 updates windows 10 internet explorer updates • • Dashrender

Twilio as a SIP provider • EddieJennings

NextCloud with FreeIPA freeipa ldap openldap linux nextcloud owncloud • • AlyRagab

F***kin WannaCry • msff-amman-Itofficer

Zevenet load balancer • matteo nunziati

Nextcloud Questions nextcloud vm ubuntu 16.04 hyper-v disk partitioning • • brandon220

openvas test results • momurda

Laser printer sometimes trips an APC and shuts off computer?? • guyinpv

Should We Ever Talk About JBODs storage jbod • • scottalanmiller

Accessing and enabling Powershell Remoting in a workgroup environment enable-psremoting psremoting powershell powershell remoting windows server windows • • Romo

[ALERT] Looks Like A New Worldwide Ransomware Outbreak security malware ransomware knowbe4 knowbe4 blog windows patching zero day • • stus

SMBv1 is removed in the Windows 10 Insider Preview Build 16226 windows 10 windows windows desktop smb smb 1 storage • • black3dynamite

SAP via published RDS session sap rds remote desktops • • gjacobse

Help StarWind to pick the name for the upcoming product! • Oksana

Hyper-V Replication Health/State Error • wirestyle22

How would you build this research opinions business • • JaredBusch

Disk2VHD M.2 • Jimmy9008

Inter-Tel Session Manager 2.71 mitel phones did extensions • • DustinB3403

Korora Desktop Rollcall linux linux desktop korora fedora • • scottalanmiller

Suggestions on HP laptop for work hp hpzbook hpspectre • • Ambarishrh

Debian/Ubuntu Kernel Update breaks Unifi Controller unifi controller • • brianlittlejohn

Remix Mini: as a Thin Client thinclient remix android vdi • • FATeknollogee

Pentest - Who would you recommend?
• Jimmy9008

Managing Hyper-V
• Dashrender

RamBox
• fuznutz04

F***kin Petya Ransomware
• msff-amman-Itofficer

Port from SW - Salt master rsa key issue
salt salt master salt minion rsa • • DustinB3403

Veeam: All instances of the storage metadata are corrupted
veeam endpoint backup vee • • Danp

Tracking user steps on files
• Joel

A vaccination for Petya
ransomware petya • • DustinB3403

Printing broken by June 2017 updates
windows 10 internet explorer updates • • Dashrender

Twilio as a SIP provider
• EddieJennings

NextCloud with FreeIPA
freeipa ldap openldap linux nextcloud owncloud • • AlyRagab

F***kin WannaCry
• msff-amman-Itofficer

Zevenet load balancer
• matteo nunziati

Nextcloud Questions
nextcloud vm ubuntu 16.04 hyper-v disk partitioning • • brandon220

openvas test results
• momurda

Laser printer sometimes trips an APC and shuts off computer??
• guyinpv

Should We Ever Talk About JBODs
storage jbod • • scottalanmiller

Accessing and enabling Powershell Remoting in a workgroup environment
enable-psremoting psremoting powershell powershell remoting windows server windows • • Romo

[ALERT] Looks Like A New Worldwide Ransomware Outbreak
security malware ransomware knowbe4 knowbe4 blog windows patching zero day • • stus

SMBv1 is removed in the Windows 10 Insider Preview Build 16226
windows 10 windows windows desktop smb smb 1 storage • • black3dynamite

SAP via published RDS session
sap rds remote desktops • • gjacobse

Help StarWind to pick the name for the upcoming product!
• Oksana

Hyper-V Replication Health/State Error
• wirestyle22

How would you build this
research opinions business • • JaredBusch

Disk2VHD M.2
• Jimmy9008

Inter-Tel Session Manager 2.71
mitel phones did extensions • • DustinB3403

Korora Desktop Rollcall
linux linux desktop korora fedora • • scottalanmiller

Suggestions on HP laptop for work
hp hpzbook hpspectre • • Ambarishrh

Debian/Ubuntu Kernel Update breaks Unifi Controller
unifi controller • • brianlittlejohn

Remix Mini: as a Thin Client
thinclient remix android vdi • • FATeknollogee