Oops, we didn't not resolve this and moved to CentOS and there was no further issue.

@scottalanmiller sorry I wanted to answer @flaxking but ended up replying to yours reply xD

@black3dynamite said in DBeaver Community:

@JaredBusch said in DBeaver Community:

I use the MySQL plugin for VSCode to access MySQL/MariaDB directly.

Which one are you using, MySQL 0.3.0 from Jun Han or MySQL 0.3.1 from Yury Bukin?

The 0.3.0. I noticed the other one today when I addded it to my laptop. He only added a single feature that I don't need. So I went with the one used more.

@Obsolesce said in Adminer hack in the wild:

@JaredBusch said in Adminer hack in the wild:

De Groot says that all Adminer versions from 4.3.1 to 4.6.2 are vulnerable. The last two Adminer releases, 4.6.3 and 4.7.0, are safe.

https://www.zdnet.com/article/online-stores-for-governments-and-multinationals-hacked-via-new-security-flaw/

Definitely a vulnerability in the Adminer app, but not an issue if people secure it in the first place!

Correct. And also fixed.

@jmoore said in Scale, Negma, and Green Bean IT in Farmer's Branch:

@scottalanmiller Sounds interesting

Not far for you.

@scottalanmiller said in [Solved] All computers cannot access 1 specific site:

@manxam Well that worked out then 🙂

I did. We're not ones for forcing tech on clients but there's a limit to client risks that we're willing to live with.
This particular client deals with a LOT of sensitive data and it always bothered me that they had a known vulnerable router in place that we had to admin with a 5 year old version of Firefox.

@anthonyh said in Zimbra, fail2ban, CentOS 7, and firewalld:

@scottalanmiller said in Zimbra, fail2ban, CentOS 7, and firewalld:

https://arstech.net/zimbra-fail2ban-setup/

I came across that article and it's the most promising. Though it's still a iptables based fail2ban configuration. I'm not sure if it's as simple as changing the references to iptables or if tweaking it to work with firewalld is more involved.

I suppose an option is to disable firewalld and install iptables. I've done that before in the past.

Hmm...

That's probably what they did, because you need to disable firewalld to enable iptables.

Conversely, I over-allocated vCPUs across several VMs (ESXi) when I was new to type 1 hypervisors and ran into performance issues associated with high CPU ready times. After scaling down, performance improved dramatically.

@FATeknollogee said in Fedora 29 Server (or 28) install is stuck...?:

Update from SM:
"After we perform more test and use a non-widescreen monitor, we can finish installing Fedora 29 on our 4C version MB."

Very odd.

@bnrstnr said in FreePBX fail2ban or SIP provider whitelist on router?:

@scottalanmiller said in FreePBX fail2ban or SIP provider whitelist on router?:

@bnrstnr SIP-ALG in ISP provided gear is nearly universal.

Guh, who would have thought... Is SIP-ALG purely sabotage or is it useful in certain scenarios?

Actually sabotage. Ubiquiti is the only vendor that I know where it works most of the time.

Most firewall vendors are also either phone companies or in bed with phone companies and have a huge interest in convincing people that other phone products don't work reliably.

This is the sysem that I use for work.
f1ef56be-6669-4c8d-9005-745e991c9894-image.png

We only have 6 active users. All use the Sync Client.

We never have any issues with conflict files.

@scottalanmiller said in What tools do you use...:

Some places use RMM in house. It's more logical than it seems at first glance.

Right, if you use one that bills by tech and there are only a few of you, this can be quite effective.

Just ignore the billing part if you want.

Or better, set it up to get costs for all this internal work. Could be useful next time hardware, services, or staffing are discussed.

d049c01f-e361-4e09-8b35-7e042814f9ad-image.png

@Spiral said in Court Case - Court orders company to produce previous records:

I will look to see if I can find it. I remember reading this issue, and the referenced case from years ago.

This is not an “issue”

This is simply how it works.

If it was in the news it was because some company was stupid.

@flaxking said in Which is easier to learn Ansible or Chef or Puppet:

The whole container/CM thing is kind of at a weird place right now. With containers, we've sort of migrated back to the golden image thing, just with the pressure to create an image using a config file. I don't really like images on docker hub that don't have links to the dockerfile.

Yes, images that can't be tweaked without rebuilding. It's has benefits, and a lot of caveats. Having to deploy new containers for every patch is pretty silly. And so many things can't be immutable, including the platform on which the containers run.

At the end of the day, containers are either mutable, or immutable. The former need CM inside the container, the later need it outside the container.

I just did it. The guide still applies, apart from getting 15 and not 13.

https://techsnips.io/

@DustinB3403 said in MS Visual Studio Update: KB4336999:

@notverypunny said in MS Visual Studio Update: KB4336999:

Haven't put any more time into this, as it seems that my machine is one of the only ones hit. Weirdly enough the KB shows as already installed and needed at the same time..... this is worse than old school linux dependency hell....

Worth noting that Linux has fixed a lot of their issues and will at least tell you, dnf install <something> required before this can proceed.

Oh for sure, I've yet to play with dnf in depth, but yum was pretty stable the last time I had much of anything to do with a RH based distro. apt-get has been rock solid for years now, last time I can recall anything messing up with an apt based distro was on ubuntu 8.something if my memory is correct. zypper seems pretty solid too, but I've never been able to warm up to opensuse.