IT Discussion

• 

  Lenovo - if it's on your network, you ARE breached.
  security lenovo • • travisdh1  

  66
  3
  Votes
  66
  Posts
  4208
  Views

  

  https://www.theregister.co.uk/2019/08/23/lenovo_solution_centre_cve_2019_6177/
• 

  Why does some key combinations not work over ssh?
  ssh midnight commander • • Pete.S  

  32
  1
  Votes
  32
  Posts
  96
  Views

  

  @scottalanmiller said in Why does some key combinations not work over ssh?: @Pete-S said in Why does some key combinations not work over ssh?: @scottalanmiller said in Why does some key combinations not work over ssh?: So the issue is that SSH uses the ASCII definitions for what can be passed, and things like Control-Shift aren't defined in the ASCII C0 control set. https://en.wikipedia.org/w/index.php?title=C0_and_C1_control_codes&oldid=869654887#C0_controls So they aren't passed because they aren't part of the character set of the protocol. So yes, it's SSH not passing it because it doesn't exist to SSH That's too bad. Do you have any link where it says that ssh uses these definitions? Maybe there is a way around it. Can't find one, not with OpenSSH. Tectia supports it, but is crap in general. If you search on it, everyone talks about the ASCII limits of SSH. You'll find SFTP / SCP have the ASCII / Binary option for connections because of the underlying ASCII protocol in use. Thanks, I'll dig around and see if I can find something. Otherwise I'll just have accept that it is what it is
• 

  Issues with FOP2 and DND on Asterisk 16
  fop2 asterisk 16 do not disturb • • JaredBusch  

  5
  3
  Votes
  5
  Posts
  308
  Views

  

  Finally fixed in 2.31.25
• B

  Any idea why Debian complains about a start job failure on boot after a new install?
  linux debian • • biggen  

  22
  0
  Votes
  22
  Posts
  73
  Views

  B

  @Pete-S Ok, I went ahead and let the installer partition it using the defaults for LVM. Everything is working! The installer creates a small primary partition and installs /boot to it. It then creates an extended partition with the remainder of the drive and slices up logicals out of that for the LVM. It puts “/“ in vg1 as “lv root” and puts /swap in vg1 as well as lv swap”. I was not creating a /boot. Never have. I was just creating a primary for the “/“ and then saving some of it for an extended /swap. I’ve done this forever. It even works in a VM. I have no idea why I couldn’t get it to work on the physical machine.
• 

  Redefining the purpose of a corporation
  • nadnerB  

  3
  0
  Votes
  3
  Posts
  95
  Views

  M

  @nadnerB That is just marketing of company's public image. And it surely does make financial sense for Apple. Scott's example of NTG is probably something different. The company I work for have priorities other than financial, but that is not true for Apple or many other signatories there.
• 

  A question for the SMB owners and operators here
  software crm erp business systems • • DustinB3403  

  5
  2
  Votes
  5
  Posts
  140
  Views

  

  @JasGot said in A question for the SMB owners and operators here: In-house software. We developed it in 2002 and maintain it to keep up with our needs. I think that for MSPs that that tends to make the most sense. Our needs tend to be highly unique, and not that difficult to fill.
• 

  Need headphones
  • Obsolesce  

  44
  0
  Votes
  44
  Posts
  315
  Views

  

  I thought it would be good to give an update on how the headphones are holding up to my usage and expectations. Just a reminder, I got the Sennheiser PXC 550. They are over/around-ear Bluetooth noise-cancelling headphones. So I've been using them almost daily now for the past almost 4 months, about 45-60 minutes each way to/from work on the train. I don't always use the noise cancelling on the train, but when I do, it shuts up what I am trying to avoid hearing pretty well. I also use them at home for watching Udemy courses, at work, music for R&R at home, and sometimes for a video game. I usually use them wirelessly, but sometimes I hook them up to my computer's USB while listening when they need a charge. The charge still lasts well over 20+ hours. I don't time it, but it lasts weeks before needing a charge. Definitely 2+ weeks, depending on usage, which I mentioned above, give or take. I found out a co-worker has had the same pair for years, and they also still look and work like new. To wrap up, they are definitely holding up well, and surpassed my expectations. I definitely recommend!
• 

  Force USB encryption Windows and Mac
  • Dashrender  

  112
  0
  Votes
  112
  Posts
  255
  Views

  

  @JaredBusch said in Force USB encryption Windows and Mac: @Obsolesce said in Force USB encryption Windows and Mac: @JaredBusch said in Force USB encryption Windows and Mac: @Obsolesce said in Force USB encryption Windows and Mac: Another solution for Macs will be required. It's not uncommon to have multiple solutions in place to cover different platforms That is useless as it means the encrypted media is useless between macOS and Windows. That's not an issue. There is no requirement to transport data between Mac and Windows devices on USB drives. The point of wanting to use USB media is for portability. Otherwise, you simply disable it. I don't know how many users are sticking data on a USB drive from a Mac, then giving it to someone else or marching it over to a Windows device, or vice versa, but if that's the case, there are ways to make it work. https://docs.microsoft.com/en-us/windows/security/information-protection/bitlocker/bitlocker-to-go-faq
• F

  Custom web apps for SMB
  • flaxking  

  19
  0
  Votes
  19
  Posts
  139
  Views

  F

  @Pete-S said in Custom web apps for SMB: Also how big of an SMB are we talking about? A company with 10 employees is very different from one with 100 employees. The cost of something custom is the same but a larger company can make more use of it and as such it creates more value for them, hence they are more inclined to invest in it. I've developed a custom application when working for a 100+ employee company, so that's kind of where my mind heads.
• 

  Syncing massive amounts of changing data to BackBlaze B2 via Linux
  b2 file storage disaster avoidance thoughtworks active backup • • DustinB3403  

  17
  1
  Votes
  17
  Posts
  129
  Views

  

  @DustinB3403 said in Syncing massive amounts of changing data to BackBlaze B2 via Linux: @Pete-S At my workstation I'm getting 225Mbit/s down and 155Mbit/s up (clearly not symmetrical there. . .) but not bad either considering I have nothing special configured for my workstation. On a second test I noticed this A connection of 152.8 Mbps upload would backup 1,650 GB in a day So this very well could be feasible to do. Yes, that's not too bad. It could work. As @dafyre and other mentioned you should give it a try. $.005 per GB is $5 per TB. So get an account and upload 2TB of random data to see how long it takes. Only going to cost you 10 bucks to find out.
• 

  GPO question
  • WLS-ITGuy  

  36
  0
  Votes
  36
  Posts
  249
  Views

  

  @WLS-ITGuy said in GPO question: @WLS-ITGuy Thanks everyone for the assistance! I forgot that I had disabled the damn thing in the beginning of all this even though I told @dbeato that in a PM. I wonder what was setting it to 30 days then? Perhaps someone in the past set it to 30, then the GPO was disabled, and the setting just stuck until it was changed again and enabled.
• J

  ChromeBook Tablet with LTE?
  google chromebook chromeos tablet • • JasGot  

  17
  1
  Votes
  17
  Posts
  174
  Views

  

  @JasGot said in ChromeBook Tablet with LTE?: So I started looking for information on an Android tablet could be re-initialized with the Chrome OS at a later date. Not much on that topic out there... Different hardware, unlikely to be happy trying to do that.
• 

  Managing spam posting
  • IRJ  

  32
  1
  Votes
  32
  Posts
  256
  Views

  

  @Danp said in Managing spam posting: Maybe they're enjoying the extra traffic.
• J

  In-Wall PoE Switch
  • JasGot  

  14
  0
  Votes
  14
  Posts
  103
  Views

  M

  @bnrstnr : In their 24V POE models you can turn off POE for these ports...
• 

  SOLVED PATH Error with TimeScaleDB-Tune on Fedora 30
  linux fedora database rdbms nosql fedora 30 postgresql timescaledb postgresql 11 • • scottalanmiller  

  15
  0
  Votes
  15
  Posts
  93
  Views

  

  @dafyre said in PATH Error with TimeScaleDB-Tune on Fedora 30: then why are you even using it? Capacity Planning, for example.
• 

  SSD cache on linux software raid?
  • Pete.S  

  3
  1
  Votes
  3
  Posts
  47
  Views

  

  https://access.redhat.com/documentation/en-us/red_hat_enterprise_linux/6/html/logical_volume_manager_administration/lvm_cache_volume_creation LVM has some of that stuff, too.
• B

  FreePBX : Skyetel inbound call "Rejecting unknown SIP connection ..."
  freepbx skyetel • • BraswellJay  

  13
  0
  Votes
  13
  Posts
  158
  Views

  

  @BraswellJay said in FreePBX : Skyetel inbound call "Rejecting unknown SIP connection ...": Go into your @Skyetel endpoint setting and make sure it is talking to your PBX on port 5160 also. This seems likely to be my issue then. I had left it at 5060 in the skyetel portal as you showed above and initially had it port forwarded to 5060 on the FreePBX. When I realized that I had set port 5060 up as the chan_sip port instead of the pjsip I changed the firewall to forward 5060 to 5160 on the FreePBX. I'll try making the change in the Skyetel portal directly to 5160 and just direct port forward 5160 in the morning. As @JaredBusch figured, this fixed my issue. Once I made this change I had two way audio and no call's being taken down prematurely. Audio issues are always port related. Though mostly because firewalls are fucking things up.
• 

  Domain Planning: Network shares or ,..
  windows server nas san server 2012 das ntfs server 2008 server 2019 • • gjacobse  

  20
  0
  Votes
  20
  Posts
  159
  Views

  J

  @Dashrender said in Domain Planning: Network shares or ,..: @dafyre said in Domain Planning: Network shares or ,..: @notverypunny said in Domain Planning: Network shares or ,..: Does NC allow exposure of their "file shares" as smb? If you have users that can't / don't want to use a browser-based access they can always mount it in windows explorer via webdav. Alfresco allows (allowed?) access via both, but the last time I played with it the performance was meh, which I attributed to it being built on java... You can mount NextCloud into a drive letter or folder using WebDav. The question does become the aforementioned performance issue (if there is one). I wonder how file locks are handled when using WebDav? There are a few topics elsewhere here where file locking and cloud hosting were discussed. You do have to give up what we have all come to appreciate in file locking. Here is a response in one of those other topics I spoke about: @scottalanmiller said in file sharing in the 21st century: @Donahue said in file sharing in the 21st century: I am aware of that. It's online locking that I am after. Though, I will concede that any locking scheme has to plan for both online and offline. I like sync because of local performance and offline availability, but it really feels like it is best for non shared files. When you add multiple users into the mix, almost everything goes out the window, especially when and if they go offline. Everything is best for non-shared files SMB shines at "always online, always nearly local" files because it handles offline so poorly. It's a balance. To handle offline or very distant (e.g. high latency) networks well, you have to sacrifice locking.
• 

  Setting up a Skyetel SIP trunk in FreePBX
  freepbx freepbx 14 skyetel pjsip • • JaredBusch  

  22
  4
  Votes
  22
  Posts
  214
  Views

  

  The benefit (to me) of setting this up like this means that your inbound routing is all just 10 digit numbers.
• 

  Why Do Vendors Use MAP Pricing?
  var • • scottalanmiller  

  36
  1
  Votes
  36
  Posts
  271
  Views

  

  @Dashrender said in Why Do Vendors Use MAP Pricing?: So you don’t believe in real capitalistic environment. You are mixing concepts. Like or dislike MAP, the issue here is the reselling, not the selling. The "capitalist" effect is the ability of a different product maker to step into the space. See the stuff that they sell, make something like it for less, make more money.
• 

  Netgear R6400 / AC1750 Port Forwarding Overlap Issue
  networking firewall router netgear port forwarding netgear genie netgear r6400 netgear ac1750 • • scottalanmiller  

  7
  1
  Votes
  7
  Posts
  64
  Views

  

  Roflol
• 

  WSL - Using Powershell how would you create multiple sessions
  windows ubuntu wsl terminal • • DustinB3403  

  2
  0
  Votes
  2
  Posts
  42
  Views

  

  New-PSSession -ComputerName Host1 New-PSSession -ComputerName Host2 Get-PSSession will show all sessions you created. Use Enter-PSSession to enter one of your opened session
• 

  cloud-init verification or logs?
  cloud-init • • IRJ  

  5
  1
  Votes
  5
  Posts
  124
  Views

  

  @IRJ said in cloud-init verification or logs?: So I checked journalctl --boot which has a very large output. However I did find some helpful information about cloud-init. I got to see what Amazon does in their portion of the script, and I got to see when packages were installed from my cloud-init. However other commands such as sed or echo did not show up anywhere. Although I can confirm them being run. This kind of helps, but it isn't 100% what I want. Ah ok. That's interesting that they don't show up. It might just be stderr for the script portion then? Idk.
• 

  My Misadventures with Cloud At Cost
  cloud computing web server • • Danp  

  37
  1
  Votes
  37
  Posts
  8543
  Views

  

  @scottalanmiller said in My Misadventures with Cloud At Cost: I always recommend CloudFlare, it's the best DNS host I have found. I am more of a ClouDNS + BunnyCDN fan
• 

  Microsoft Word Settings GPO for Citrix
  citrix word • • wirestyle22  

  5
  0
  Votes
  5
  Posts
  78
  Views

  M

  If this is a terminal server you'll need to create a user based GPO then enable loopback processing so that a user GPO can apply to a computer.
• 

  SSH tunneling/gateway question
  ssh tunnel gateway • • Pete.S  

  16
  1
  Votes
  16
  Posts
  145
  Views

  

  using ssh to tunnel rdp is quite handy as well.
• 

  Windows 2019 Slower Than Windows 2012 R2
  smb windows 2012 r2 windows 2019 client server • • scottalanmiller  

  38
  0
  Votes
  38
  Posts
  363
  Views

  K

  @scottalanmiller just read this post from Intuit support which I know what your talking about is different. But I recall Intuit not even supporting NAS/SAN unless it was built on a Windows or Linux system. But some reports from intuit say defragmentation causes the problem, even when on an SSD. I smell fish. 
• 

  Question - how to use tar to compress multiple top level folders recursively into discrete zip files
  • DustinB3403  

  20
  0
  Votes
  20
  Posts
  81
  Views

  

  @DustinB3403 said in Question - how to use tar to compress multiple top level folders recursively into discrete zip files: Supposedly tar -C /Volumes/Parent/Child/Target-folder -cvf Compressed.zip SelectedDirectory works. . . let me test that. Okay so that does work, just is a pain in the rear to have to do manually.
• 

  Application Virtualization in Linux Environment
  linux citrix xenapp application virtualization • • EddieJennings  

  61
  2
  Votes
  61
  Posts
  265
  Views

  

  So how we did it the last place I worked. We used a mix of X2Go, X-11 forwarding/MobaXTerm, and RDP. It depended on the user as to how they wanted to do it. RDP gave them a full desktop since X2Go couldn't any longer on GNOME 3. X2Go gave them just applications from a menu to pick. People who were used to the cli used X-11 forwarding because it's what they were used to.
• M

  Cyber Liability Insurance
  • mmicha  

  8
  0
  Votes
  8
  Posts
  69
  Views

  

  @mmicha said in Cyber Liability Insurance: Just curious what others thoughts and take it on this new form of insurance. Are most starting to carry? No, several reasons... Insurance for something like this means that smart, secure, backed up companies pay for companies that don't protect themselves. So if you are competent, you get screwed. On average, the insurer makes money. That means that on average you don't just pay for the damages that happen, but for their profits on top of them. Those that carry insurance are much higher profile targets than those that do not as there is so much more to potentially gain. The likelihood of getting paid even when something happens is insanely low. For the average company, cyber insurance does more harm than good.