@minion-queen said in Mac O365 update issue:

@dashrender said in Mac O365 update issue:

@minion-queen said in Mac O365 update issue:

@dashrender said in Mac O365 update issue:

@minion-queen said in Mac O365 update issue:

Having users that leave the office with their laptops = updates being pushed off etc. pretty often. Can't wait for a good way to monitor this stuff aka SODIUM (man they really do need to come up with a better name for that).

Where there no other products you could use to monitor this? or the client wasn't willing to pay for it?

Of course they aren't willing to pay for it... story of smb life.

Then why are you worrying about it? I'm assuming they aren't willing to pay to have you monitor Sodium either.

For my own sanity I would. However again they only pay when they need me and an emergency clean up is more $$ for me so... while I would rather do it right in the first place and not have to scramble to fix it. They do make it worth my while.

Exactly, so deploying Sodium isn't what the customer wants. Should you offer it to them - heck yes. Say something like - hey we can offer this great new inexpensive service, for $200 or so a month, we'll monitor all of your machines. If we see one outside of updates, or whatever in this given timeline, we'll either automatically go on the clock and fix it, or we'll notify you and schedule time to fix it. But the monitoring shouldn't be free. They are just lucky that the tool to do the monitoring can be free.

@black3dynamite said in Installing LXC Containerization on openSuse Tumbleweed:

@scottalanmiller said in Installing LXC Containerization on openSuse Tumbleweed:

@black3dynamite said in Installing LXC Containerization on openSuse Tumbleweed:

@scottalanmiller said in Installing LXC Containerization on openSuse Tumbleweed:

I have to say, though, I prefer the Ubuntu LXD approach much better.

I know Canonical is a big supporter of LXD. Who is the big supporter for LXC?

LXD is just an interface for LXC. So Canonical supports LXC through LXD. The biggest contributors to LXC are Virtuozzo, IBM and Google.

So LXD makes it easier to manage LXC?

Yes

@dustinb3403 said in Hardware differences - what makes one less than enterprise:

@scottalanmiller said in Hardware differences - what makes one less than enterprise:

@dustinb3403 said in Hardware differences - what makes one less than enterprise:

@scottalanmiller said in Hardware differences - what makes one less than enterprise:

@jaredbusch said in Hardware differences - what makes one less than enterprise:

@scottalanmiller said in Hardware differences - what makes one less than enterprise:

@jaredbusch said in Hardware differences - what makes one less than enterprise:

@scottalanmiller said in [Hardware differences - what makes one less than enterprise]

The software. The hardware is about equal, sort of.

But a $95 Ubiquiti is faster than a $3,000 CIsco. So the hardware still matters. Cisco at $3,000 is "Maybe able to handle your house."

Prove this.

Don't bullshit or theorize. Prove it. Get a unit and run tests or stopping stating it like a fact and predicate these statements with "in my opinion" and such.

Granted I'll never buy Cisco in the SMB when Ubiquiti exists for the cost and performance that it currently exists with.

But none of that invalidates the quality or functionality of Cisco hardware and software.

Cost has nothing to do with that.

I'm not the one making the claim, it's based off of measured PPS between the two.

You are the one always making the claim and have never linked to source material to back up your claims.

I've never made the claim. I've repeated Ubiquiti's performance measurements. It's nothing to do with me. I just remember the number and repeat it as it is a critical guideline for understanding where Ubiquiti falls within the Cisco product range. When people are talking $10K Ciscos, we can't talk Ubiquiti, it just doesn't make sense. But at $3K and below, I've never had anyone come up with any value proposition to Cisco gear considering that Ubiquiti is measured at better throughput until that price point. Granted, Ubiquiti did the study, but Cisco has not disputed it or claimed any other performance of which I am aware.

If you're repeating it, find the source and post a link, FFS. I want to believe a lot of what you say, but I agree with @jaredbusch here. It comes out like another scott-ism.

It only sounds that way because you think I don't have sources for all of my stuff.

You can always go look up Cisco performance, too, and see what it is.

But you're the person spouting something off as a fact, so provide the source!

This is correct, it is not our job to do research when you are the one claiming a fact. It is the reader's job to verify, but the reader cannot do that without the initial facts.

Yes, I know you already answered. Just closing my part of the conversation.

@dbeato said in Citrix: clicking app link and nothing happens:

@dashrender Man this looks like the nightmare I go through every day!

Yeah, every 3 to 6 months, you know.. when they bother to do any updates.

@stacksofplates said in So you want to build a Security Program? Part 1 - Vulnerability Scanning:

@dafyre said in So you want to build a Security Program? Part 1 - Vulnerability Scanning:

@irj said in So you want to build a Security Program? Part 1 - Vulnerability Scanning:

@dafyre said in So you want to build a Security Program? Part 1 - Vulnerability Scanning:

@stacksofplates said in So you want to build a Security Program? Part 1 - Vulnerability Scanning:

I don't have permission to change things on their Nessus system. So I think it's more important that they don't have permissions on mine. If we had to do something, I would craft a sudoers file for them vs just give them root/sudo for everything.

If they're doing real pen testing, they don't need root access to stuff. Hack the box and tell me how you got in!

Vulnerability Scanning and pen testing are not the same. Not all attack surfaces are covered during pen tests and pen testing is much more labor intensive for less information.

I guess I don't see why you would do either without it being blind. I guess it's not a far cry to assume that hackers could get root on your box if they find a vulnerable application.

I can see the merit to a credentialed scan because of insider threats. It will show packages are up to date, file perms that should be set, etc. However I don't see the merit to a plain root access scan. I would at the very least craft sudo perms for the Nessus user.

Edit, initially wrote can't see the merit. Meant to say can.

@jaredbusch said in Zabbix + ELK In A Box:

@donaldlandru said in Zabbix + ELK In A Box:

From the page itself

We haven’t performed any major capacity planning exercises or performance validation exercises to validate the limits of what Zabbix + ELK In A Box can do at the recommended configuration i.e. 2 vCPU’s, 4 GB RAM. However, we would highly recommend that you use limit use of Zabbix + ELK In A Box to a small setup i.e. ~15-20 machines. For larger environments we would highly recommend designing and building your own scalable monitoring and log file analysis solution from scratch to meet your requirements.

Seems more like a quick way to get a PoC environment up before investing in learning how to deploy the applications.

That would be fine. But still a bad idea in general.

Also that page mentioned Ununtu 14. Just WTF

Agreed! Bad designed, and the article is over 2 years old.

@jaredbusch The PBX is still running. I guess I'll just roll back to this morning after hours?

@gjacobse said in Ubiquiti released EdgeOS 1.9.7:

@scottalanmiller said in Ubiquiti released EdgeOS 1.9.7:

Just got my EdgeRouter for home hooked up after years of it disconnected.

Welcome back to the world of Internet.....

And to good Internet equipment, as well!

Take a look at the following link, you might find it useful:

http://www.msexchange.org/tutorials/GAL-Sync-Identity-Integration-Feature-Pack-IIFP.html

I'd also suggest implementing MIIS to achieve it:

http://www.microsoft.com/downloads/details.aspx?FamilyId=15032653-D78E-4D9D-9E48-6CF0AE0C369C&displaylang=en

@wrcombs said in Unifi Controller in Oracle Virtual Box Problems:

@dustinb3403 said in Unifi Controller in Oracle Virtual Box Problems:

@wrcombs said in Unifi Controller in Oracle Virtual Box Problems:

@dustinb3403 said in Unifi Controller in Oracle Virtual Box Problems:

@wrcombs said in Unifi Controller in Oracle Virtual Box Problems:

@dustinb3403 said in Unifi Controller in Oracle Virtual Box Problems:

The guide you're following tells you to create /etc/apt/sources.list.d/100-ubnt.list

So do a sudo touch /etc/apt/sources.list.d/100-ubnt.list and then put in the 3 records, save the file and go from there.

okay, its still doing the same thing. how do you "put in the 3 records" treat me like i dont know what im doing (Cause i really dont)

Are you connected to this VM via PUTTY? If so do sudo nano /etc/apt/sources.list.d/100-ubnt.list then you can copy the records directly into the file.

ctrl + o to save the file and then ctrl + x to exit the file.

No idea. I litterally opened Oracle Virtual box and started my Controller.

OK...

type in ip addr find the IP address and then use putty to connect to this VM. Once your logged into the VM as "williamcombs" proceed with editing the file using nano.

ggtgCQDs.png

Delete every record in the file, you've messed it up. Go to the start of each line and do ctrl + k that'll remove the records.

Open a crontab for the apache user

crontab -u apache -e */15 * * * * php -f /var/www/html/nextcloud/cron.php

As far as many comments about redundancy and not all eggs in one basket. Just need to have a backup system that runs a nightly backup and restore script to another server or two. Setting up a server cluster is also possible for both systems.

@jaredbusch said in NextCloud: import users, groups and assignment:

In the time you have spent digging, you could have created all 20 users.

Go here: http://passwordsgenerator.net/plus/ Generate passwords 0_1501532564772_1d7d06c7-4b01-4476-b190-7b45a37f7546-image.png Set your default settings in Nextcloud (gear on bottom left) 0_1501532689678_87562b09-d58f-4993-9655-190aee22bd83-image.png Create users entering email addresses and selecting groups as you go. 0_1501532767284_dd2f6c53-e4ea-4d77-93a9-1047910201bf-image.png

Yea,.. I did that...Thanks though.

@scottalanmiller said in Cyber Security Topic in MangoCon:

@pchiodo had a session on security.

It was a good one too. I enjoyed it thoroughly.

@coliver said in Vendors...Who are you using?:

@bigbear said in Vendors...Who are you using?:

@nerdydad I just switched it to tactical to allow for weapons. Im on my way to being the next Amazon baby...

See... this is how the FBI gets involved.

Man...

Big Bear's VoIP Fashion

I will make all my money off of T-Shirts

@emad-r

Fake Comment to make the post go back up and more people see it to help... corrupt comment.

@travisdh1 said in Enterprise wireless access control system:

@coliver said in Enterprise wireless access control system:

@francesco-provino said in Enterprise wireless access control system:

@travisdh1 what do you reccommend for Radius? On Linux, of course… any quality tutorial out there?

The biggest name (and one of the oldest projects) is FreeRadius (http://freeradius.org/).

@coliver beat me to it. Also one of the most documented around.

I've seen some tutorials on how to enable this in Windows, and it's adding a role on a Domain Controller if I remember correctly.

You don't have to it can be added via a second server.

@biglittle said in Certifications for IT SAMIT Video:

I found this very interesting, since I'm switching to IT from education I always saw certifications as state mandated in order to even be considered for a position.

Oh yes, in many cases if you want a government IT job you will require certs. In fact, you'll be required to have certs from other industries. That's the degree to which government IT isn't considered professional. Government IT often pays a fraction of the industry and is not taken seriously. In NY state, for example, top level IT technical positions are often below entry level in pay. So below the professional scale.

So if your goal is "government IT" which is sort of its own thing, you'll need certs from non-IT to even be allowed to be hired. But it's often considered on the fringe or outside of "real" IT.

Keep in mind that while we often use IT Professional, as a term, IT are not professionals. Actual "professional" guidelines are actually considered insulting in IT. The idea that IT could be certified or that university education would be meaningful, the very tenants of professional work, are insulting in IT where things are performance based, not government pseudo-union based. A better term to use, at least in your head, is IT Practitioner, not professional. IT does not function if held to the standards of normal "professions". The education or certification needed for those fields are far too low to be useful in IT. The breadth of knowledge and continuous education needed for IT success are much higher than many other fields. This is why it is not considered polite or appropriate to compare IT Practitioners to something like doctors. The bar for being a successful doctor is embarrassingly low for IT, for example.

That looks like some good stuff.