@aidan_walsh said in Blind user friendly full disk encryption:

@scottalanmiller said in Blind user friendly full disk encryption:

@aidan_walsh said in Blind user friendly full disk encryption:

@scottalanmiller I work at a government education board, the laptop was one we had in reserve.

Government is buying Chinese products with software to violate their basic security on them instead of American ones without? That makes me very sad 😞

I'm not in the US, and I've read about the NSA Cisco backdoors 😉

Unless you are in China, it's still the same problem... but definitely don't buy American either. Same problem, different solution, buy Taiwanese. Only machines you can trust. In the US, anything passing through customs may be modified to spy on us, so it doesn't matter the source. The problem with Lenovo is that it isn't China spying on us, but a single company. I "trust" China with my data (because it's worthless to them), but I don't trust Lenovo because, well, they are bad people.

No problem. Nothing like GPO on the Mac, but for mapped drives it is really not needed. You can also use tools like Chef or Ansible to do this. That adds a GPO like functionality to the Mac, in a way.

@scottalanmiller

alt text

It's a poor article when most of the "maestros" list their own tools they sell along with a token few that everyone already has heard of.

Maybe pick 10 people, list their credentials and background and have better content from 10 rather than 85 which are mostly poor.

Almost every time I'm helping someone with an exchange issue on Spiceworks, they chime in with their spam. No information about how it does it different or what it does that the free Microsoft tools don't do, just spam. A couple of times I have ask them for more information about how their product will help the OP and they never reply.

Have never touched that.

@IRJ said in IDS?:

Sorry for so many questions. I have never used the open source version.

No problem. I'm not responding as fast anymore because some imaging jobs finished.

@IRJ said in IDS?:

@travisdh1 said in IDS?:

@IRJ said in IDS?:

@travisdh1 said in IDS?:

@IRJ said in IDS?:

@travisdh1 said in IDS?:

I've been using AlienVault's OSSIM, basically the open source version. It's been good so far, but I just deployed the agents to each server/workstation and haven't setup any custom rules, so it just uses the rules for currently known threats.

Do you find the agents useful? I am still testing the agents in a test environment.

OSSIM would be useless without them for me, honestly. without custom rules, or some way to get data besides the login, OSSIM is kinda crippled.

You use them for file integrity and registry change reporting, correct?

Yes. Mine has an internet connection, so it also gets the latest threat updates from the public pool.

You do the updates through SSH, right?

Yep. You just might get introduced to my basic update script on the 16th.

Single point of failure is my favorite feature in a public DNS server. wait....

@scottalanmiller Add virualhosts to the list too 😉

So I found out that a couple of the other failures I had were due to misspellings in their check scripts. Without going back through everything, I'm assuming that's what's happening here.

Things like this line

user-administration-disabled=true

failing because the check was looking for

user-administratrion-enabled=true

Both a misspelling and the wrong key value.

For those who were still having problems getting Mattermost running on CentOS 7, I was also having the same problems and couldn't get beyond the postgres install. I found another guide and with a few tweaks, I was able to get this running.

https://www.howtoforge.com/tutorial/install-mattermost-with-postgresql-and-nginx-on-centos7/

The change that was required from this guide was in the "Download and Extract Mattermost"

Instead of...
[root@mattermost ~]# wget -q "https://github.com/mattermost/platform/releases/download/v2.0.0/mattermost.tar.gz" -O mattermost.tar.gz

Use this...
wget https://releases.mattermost.com/3.3.0/mattermost-team-3.3.0-linux-amd64.tar.gz

Then in the next block, instead of...
tar -xvzf mattermost.tar.gz

Use this...
tar -xvzf mattermost-team-3.3.0-linux-amd64.tar.gz

After that, follow the guide to the letter and it will get you to this...
0_1473265786807_upload-d89fe07b-7d71-4d39-8dd7-e00395f6aa84

@aaronxiang @wirestyle22 @scottalanmiller

@scottalanmiller said in Time syncronisation in domain:

@BRRABill said in Time syncronisation in domain:

You know that thread we had once where someone was complaining about how a simple question here always digresses into a mutli-page discussion and then an argument?

At least this one was completely focused on the OP's needs (or explaining what he had said.)

Uh....

@travisdh1 said in Strange computers you've built:

@AshleyJR said in Strange computers you've built:

@Breffni-Potter said in Strange computers you've built:

I like how you heard white with red bits and then built a classy seutp to suit. Very nicely done.

Thanks, I tried my best, I went for looks over spec

Spec is modest
I5 6600k
32gb ram
512gb ssd
Gtx1060
32" screen

Modest? That's closer to a barn burner than a modest system I think. The only component you may be lacking in is the i5 rather than an i7, and that's mostly cosmetic.

Not really its an entry level current generation CPU, GPU with a bit of ram for video editing

@scottalanmiller said in Final Call ... XenServer Boot Media:

I added sparse files and lastlog to the SAM Linux guide so that I remember to cover them in a upcoming installment.

You are going to have to make a chapter called BRRABill Questions/Requests.

@AlyRagab said in Using Rsync to Replicate Elastix 2:

all passwords are matched

And you've tested them with the MySQL client, for example?

@Breffni-Potter This. It's a transient data store and is not meant to be used in the way you are attempting to use it. It is more for convenience then anything else. I don't think it migrates within Exchange Online unless they are using the Outlook Web App.

If the contacts and info are important have the users save them as contacts to a shared resource.

@Danp said in So this might be a NodeBB bug but:

What happens if you click it?

👿

Try it.

Very cool, let's make something!

@IRJ said in Pre-Baked LAMP server with AD Authentication in Apache:

@JaredBusch said in Pre-Baked LAMP server with AD Authentication in Apache:

@IRJ said in Pre-Baked LAMP server with AD Authentication in Apache:

This might help...

www.randomtechtips.com/validate-domain-authentication-test-ad-password-using-powershell/

He wants a LAMP stack based website to authenticate to AD.

It seems like that powershell script will accomplish the same task even though it is a different route.

But won't run on the desired platform.

@Dashrender said in XenServer Live Adjust capacity of drive that is shared:

Would he really need to reboot if he's adding another 'disk' copying data the removing the old disk?

Depends on the guest OS and applications using said space.