IT Discussion

• 

  Cloud CyberSecurity monitoring and alerting
  • magicmarker  

  2
  1
  Votes
  2
  Posts
  53
  Views

  

  What alerts are you looking to get that isn't natively available?
• 

  Bad one: SonicWALL Remote Management Vulnerability
  • PhlipElder  

  6
  2
  Votes
  6
  Posts
  79
  Views

  

  @wrx7m said in Bad one: SonicWALL Remote Management Vulnerability: WTF? People NAT their iDracs? Some people...
• 

  Backup ISP - 4G
  isp cradlepoint 4g • • fuznutz04  

  11
  2
  Votes
  11
  Posts
  79
  Views

  

  I have a cradlepoint AER2200 setup with an AT&T connection at a location across town at a warehouse that gets occasional use. We were going to be using handheld wireless bar code scanners that needed connection to our ERP server. I created an IPSec tunnel to our main office and used an ACL to only limit the correct ports to the server here. Anyway, the connection has been reliable even though it doesn't get much use. They were going to move out of that location and I was happy because I was going to use the cradlepoint in the main office as a backup, but more for out-of-band management, than for the whole company. Now we have at least another 6 months at that location, so I might end up getting a new one for here anyway. We'll see.
• 

  AzureAD and shares
  • brandon220  

  119
  1
  Votes
  119
  Posts
  186
  Views

  

  @scottalanmiller said in AzureAD and shares: @stacksofplates said in AzureAD and shares: @scottalanmiller said in AzureAD and shares: @stacksofplates said in AzureAD and shares: @scottalanmiller said in AzureAD and shares: @stacksofplates said in AzureAD and shares: @scottalanmiller said in AzureAD and shares: @stacksofplates said in AzureAD and shares: @brandon220 said in AzureAD and shares: Here is an example from the FFIEC Cybersecurity Assesment Tool: The more OSS you have, the lower your score will be. I'm not defending or even sure this is what they are talking about, but they may be looking at the risk of the licensing. It can be tough to keep track of all of the licensing of open source tools and making sure you comply with them. But, honestly, not nearly as hard as the risks of anything else. And "can be" should never be a legitimate factor. ONce we go down that path, we could list unrealistic risks for forever. Right, like I said I'm not defending them. Just trying to look at it from all angles. What people never consider is that closed source licensing COULD still require in the EULA that you comply with GPL of your own code simply by using the closed source product Cloud source EULAs can pretty much carry any risk imaginable. They don't, but they could. Yeah definitely true. I don't like closed source at all. I mean if I need the tool I'll buy it but I'd rather use a open source tool. I've seen a lot of people thought that think they can just do whatever since it's open source and it doesn't matter. AGPL is pretty strict and there's a lot of popular tools written with that license. In most cases, it's people thinking that they can just use the code without following the license. Technically, a far bigger risk with closed source under the same conditions. In general yeah, but the GPL police are fierce. I work with a guy who's old company was going to be sued for not including the simple configs they wrote along with the distribution. Yeah, although now we are talking product firms, not operations. The affect on operations is generally minimal. Yeah true, but that's similar with proprietary also, most people don't get caught. You still have to comply though. It can be a lot of work to ensure you're in compliance. Like when software decides to change licenses between versions.
• 

  What the world? No user backup script
  • gjacobse  

  12
  1
  Votes
  12
  Posts
  110
  Views

  

  @travisdh1 said in What the world? No user backup script: @gjacobse said in What the world? No user backup script: @travisdh1 said in What the world? No user backup script: @DustinB3403 said in What the world? No user backup script: Why not use something like UrBackup rather than recreating the wheel with custom scripts? Especially when it's in the Chocolaty repo. Just script the install and configuration! Many aspects of Chocolatey are blocked. I tried to install Greenshot and it failed. It’s the state- which has a high number of limiting GPOs and such. Scripts are also restricted... to a degree. Ugh, hope you find a job somewhere reasonable quick! I took this as a stop gap. But it's what I have now, and what I have to work with. Just trying to improve and make the best of it while here.
• 

  Ansible Agent Option?
  ansible • • scottalanmiller  

  163
  0
  Votes
  163
  Posts
  342
  Views

  

  @stacksofplates said in Ansible Agent Option?: Yeah it's obviously bad to treat it like a LAN but if you stop using tools just because it can be treated that way you are sometimes stopping yourself from doing some really interesting and helpful things. Yes, LAN-like tools are only LAN-like if you treat them in that fashion. The behaviour is rarely intrinsic.
• J

  IBM Storewize V3700 - Supported Drives
  • Jimmy9008  

  8
  0
  Votes
  8
  Posts
  43
  Views

  

  @Jimmy9008 said in IBM Storewize V3700 - Supported Drives: @scottalanmiller said in IBM Storewize V3700 - Supported Drives: D) drives: So, any SAS SSD under 1.6 TB should work with this? Perfect. That ALWAYS refers to Lenovo's own drives. It never implies third party drives. This is true for all server vendors.
• 

  Backup Target for Linux
  linux fedora backup nas disaster recovery readynas rsync fedora 30 • • brandon220  

  15
  1
  Votes
  15
  Posts
  117
  Views

  

  I've been using Duplicati where I need a standalone backup of a thing. Web based management interface makes it super simple to manage.
• 

  P2V Windows 2000 on KVM
  virtualization kvm p2v windows server 2000 windows 2000 • • scottalanmiller  

  10
  0
  Votes
  10
  Posts
  147
  Views

  

  @scottalanmiller said in P2V Windows 2000 on KVM: So this is ridiculous, but we just found out that it is actually 2003 R2, not 2000. So I assume that this will be way better. I had a ton of issues getting mine to work - I had to run chkdsk like 15 times before it finally booted... I don't recall what migration tool I used.
• 

  Account getting locked out
  ldap login • • WLS-ITGuy  

  9
  0
  Votes
  9
  Posts
  73
  Views

  

  @DustinB3403 said in Account getting locked out: @WLS-ITGuy said in Account getting locked out: @DustinB3403 said in Account getting locked out: Any services or scheduled tasks that might be setup under this account? Possibly, however the password hasn't changed in the last 30 days that it would cause this. Then something was turned on recently that is using a password older than 30 days. Nope. Turns out I had a couple servers that I was giving RDP remote access to another vendor for them to migrate to a new server and I forgot to turn off RDP.
• 

  SOLVED Can someone explain yaml spacing to me because Im going insane
  ansible yaml formatting • • DustinB3403  

  4
  0
  Votes
  4
  Posts
  76
  Views

  

  @JaredBusch said in Can someone explain yaml spacing to me because Im going insane: @DustinB3403 said in Can someone explain yaml spacing to me because Im going insane: I'm aware there are tabs, this is due to Notepad++ There is a setting for that in Notepad++ I'll be searching for that tomorrow.
• 

  Ransomware Hits Windows 10 Litar Extension
  security ransonware • • scottalanmiller  

  9
  1
  Votes
  9
  Posts
  193
  Views

  S

  Maybe they have a couple keys...
• 

  GPO issue
  gpo mapped drive • • WLS-ITGuy  

  32
  0
  Votes
  32
  Posts
  206
  Views

  

  @WLS-ITGuy said in GPO issue: @Dashrender said in GPO issue: I would change this up by applying your GPOs to the OU above these WLS OUs, then set filters to only apply to the users you want. So in the case of the Library, you've already created a security group, so you'll grant permissions to that group. Then you'll need to create a WLS-Faculty security group and do the same with it's GPO. So the GPOs would be at 'domain level' not in the OU level...Like this? Then I apply the security groups from there? That makes sense. yeah - you could do it at the domain level - I personally wouldn't. I'd make a new OU, and put your WLS-faculity and WLS-Library in that new OU.. then apply your GPOs to that new one you created. But that's just me.
• 

  CIS 1.4.2 Ensure bootloader password is set
  • IRJ  

  3
  0
  Votes
  3
  Posts
  28
  Views

  

  Like for example adding rd.break at boot.
• 

  script running with cron
  cron raspberry pi 3b+ ubuntu mate • • hobbit666  

  13
  0
  Votes
  13
  Posts
  78
  Views

  

  Looks like I needed to put export DISPLAY=":0" originally when I was trying it I didn't have the " Now to test the whole script
• 

  Installing Snipe-IT on CentOS 7 and MariaDB
  linux centos centos 7 how to snipe-it centos 7.1 • • scottalanmiller  

  290
  14
  Votes
  290
  Posts
  85994
  Views

  

  @Pete-S said in Installing Snipe-IT on CentOS 7 and MariaDB: <rant>NodeBB works like crap on all threads that are longer than a page or two. You can't just grab the scroll bar and find all posts. You have to release it and grab it again for the page to realize there are more posts to show. Also you can just use pgup/pgdn either. It will get a couple of posts then stop unless you work really slow. At least on Firefox. And it's so many round trips to the server just to get a few posts. I which it would get at least a hundred posts or so in one go. Bandwidth needs are minimal. Posts on ML is mostly just a few lines of text. </rant> I can't stand NodeBB on mobile. It's absolute shit in that aspect. On desktop it's great though. But I'd be on way more of it worked half decently on mobile.
• K

  Ubiquiti NVR Performance Improvement
  • krisleslie  

  33
  0
  Votes
  33
  Posts
  1325
  Views

  K

  @taurex said in Ubiquiti NVR Performance Improvement: Are you recording most of your streams at full 30 FPS? Are you able to reduce it to 15 FPS and record motion only? This should cut down Unifi NVR's IOPS quite a bit. I didn't think about changing the FPS, yes I'm noticing my NVR is THE Biggest talker on the entire network.
• K

  Having sluggish performance on my Xen Server VM's, looking for suggestions to boost performance
  • krisleslie  

  55
  3
  Votes
  55
  Posts
  260
  Views

  

  @DustinB3403 said in Having sluggish performance on my Xen Server VM's, looking for suggestions to boost performance: @Pete-S That would have very easily been a much cleaner approach to this. I don't know if there was some sort of budget constraint but, clean is always the best if possible. Agreed. My thoughts are: If you have no budget then do nothing If you have a small budget then make sure you get the most value for the little money you have If you don't have enough budget to get a good return on your investment then wait until you do Some cost saving measures are just too expensive if you look at the total cost and what you get in return. More so for a non-profit that has to use each dollar wisely.
• 

  Windows RDS User Profiles - Migrate, Recreate or User Profile Disks?
  windows windows server windows server 2016 rdp remote desktop services rdp sessions remote desktop server migrate migrations user profile disks • • wrx7m  

  51
  2
  Votes
  51
  Posts
  357
  Views

  

  @pmoncho said in Windows RDS User Profiles - Migrate, Recreate or User Profile Disks?: @Dashrender said in Windows RDS User Profiles - Migrate, Recreate or User Profile Disks?: Cool, then you should have it easy. FYI - Published apps still create a full profile on the RDS box, Just the desktop isn't presented to the user. If the application allows them to browse around, they could typically see the drive letters, the mapped printers, etc... that's why you still need to lock all that stuff down. Thanks for the info. I will keep that in mind. I was debating about using UPD's like @wrx7m and that was my interest in this post. Also, still planning out where to put Connection Broker, WebAccess and Licensing but that is another post. For local profile management, UPDs are a lot cleaner. If we are not putting them on a file server across the network then a second partition/VHDX is set up for that task to keep them separate. With the inclusion of FSLogix with RDS CALs/SALs now it's a no-brainer, IMNSHO, to set the project up on the FSLogix version. Storage management is another reason why UPDs on a network or separate partition make sense. Keeping a local profile on the C:\ of the session host is messy and can cause issues down the road with users coming and going. As far as the Broker/Gateway/Web put those roles on one VM but separate from the Session Host.
• 

  New version of free ONLYOFFICE Desktop Editors
  • hellonadya  

  1
  2
  Votes
  1
  Posts
  48
  Views

  No one has replied

• 

  SOLVED When does a port-in number show up in the Skyetel portal
  skyetel number porting • • JaredBusch  

  12
  0
  Votes
  12
  Posts
  107
  Views

  

  @JasGot Actually I read things very carefully. You clearly stated that our experiences were different. That means you had to of seen the numbers right after the port was requested because that is the current status of my port. As I clearly stated in the original post I just started the port request.
• 

  WordPress Divi site - links are invisible
  • Dashrender  

  31
  1
  Votes
  31
  Posts
  85
  Views

  

  Will @BRRABill help, I found where to change the color setting globally for links. Thanks Willard.
• 

  Skyetel auto enables billable services without notice
  skyetel • • JaredBusch  

  141
  0
  Votes
  141
  Posts
  254
  Views

  

  @JaredBusch said in Skyetel auto enables billable services without notice: @Skyetel said in Skyetel auto enables billable services without notice: @scottalanmiller said in Skyetel is a scam: @DustinB3403 said in Skyetel is a scam: It's not about sensitive. Accounting departments can be incredibly cranky about things being negative and not "due". Negative usually means past due, and can get people up in arms. Normally the system is pay ahead only, that he was able to port with no money on the account is odd. It is, under normal circumstances (and this is pretty standard for trunk providers for many reasons) standard to only allow you to pay ahead and send a notice when you are getting low on funds so that you can "top up", either manually or automatically. Under normal conditions here, I wouldn't expect a possibility of being in the negative. This is true - our LNP team should not have ported the number without first reaching out to him about having a $0 balance. We made a mistake and we're going to be making sure to clarify that with our team I intentionally didn't add funds to a new account I setup (but it does have a valid CC linked) and inititated a port request. New process FTW. Good work @Skyetel Thanks! We work hard to listen to everyone's feedback!
• 

  Cloud Career Planning
  • Obsolesce  

  11
  4
  Votes
  11
  Posts
  136
  Views

  

  I'm a bad one to ask for this because I only have my RHCSA. I don't know why I don't do more certs, I still do all of the learning for these things, Im just not a good test taker so I think that makes me hold back a lot when I look at this stuff.
• 

  Server 2012R2 DHCP reservations problem with my VOIP equipment?
  yealink dhcp server 2012 r2 • • bnrstnr  

  15
  1
  Votes
  15
  Posts
  123
  Views

  

  @JaredBusch said in Server 2012R2 DHCP reservations problem with my VOIP equipment?: I never use reservations for phones. Specifically with Yealink phones, I set the DHCP hostname value in the config file. So when I am on the network, I can easily just ping ext103.domain.local and shit.. Or If I look at the DHCP server lease list, I see the hostnames listed as ext101, ext103, etc. Love this idea
• 

  Opinions: Ansible vs. SaltStack
  saltstack salt devops ansible automation • • scottalanmiller  

  38
  3
  Votes
  38
  Posts
  2679
  Views

  D

  @wrx7m What’s the goal of your question ? With edu institutions ? Yes, some.
• J

  Yealink will not register with VitalPBX, Wrong password
  vitalpbx • • JasGot  

  18
  1
  Votes
  18
  Posts
  124
  Views

  

  @JasGot said in Yealink will not register with VitalPBX, Wrong password: @JaredBusch said in Yealink will not register with VitalPBX, Wrong password: @Romo said in Yealink will not register with VitalPBX, Wrong password: @JaredBusch The device is tied to the numeric extension, it lets you set the device's username to whatever you want. The better question is why are you even thinking this is a good idea? What benefit are you thinking you are gaining by using a non-standard approach? All this does is complicate things by putting a random value in a place that is normally something that matches the extension. This is a 1 to 1 tie between this informaiton and the extension. There is no benefit to this. Only after you've pigeon-holed yourself into that 1 to 1 relationship. No, it is a 1 to 1 relationship regardless of if you use the extension or a name or a fuck01. That auth name is 100% tied 1 to 1 to the extension.
• 

  Codec order not saved VitalPBX PJSIP
  error vitalpbx pjsip codec • • JaredBusch  

  2
  0
  Votes
  2
  Posts
  48
  Views

  

  Tagging @MontesVitalPBX
• F

  Shadow Tracker Live
  • frodooftheshire  

  7
  0
  Votes
  7
  Posts
  86
  Views

  

  @Dashrender said in Shadow Tracker Live: Though - if you don't tell them that they lost you as a possible customer - they will likely never fix their shit. Probably best, to help make people aware of how bad they are.
• 

  I guess Skyetel doesn't want business
  skyetel • • JaredBusch  

  115
  1
  Votes
  115
  Posts
  1199
  Views

  

  @JaredBusch said in I guess Skyetel doesn't want business: @Dashrender said in I guess Skyetel doesn't want business: And cell phones have allowed pure 10 digit dialing for at least 10, though likely more like 15 years (when the plan simply included what used to be called long distance) Since my very first one in 1996 My first was 1992, because of the reasons I mentioned above with the land lines and everything being long distance. Long distance on the cell in 1992 was so much cheaper than the land line cost per minute, that it paid for the cost of the cell phone!