@thwr said in Apache 2 and Ldap Auth:

Awesome, glad you found a solution. Please be aware that auth basic is plaintext, just base64-encoded. Better use at least SSL to protect at the transport layer.

https://en.wikipedia.org/wiki/Basic_access_authentication#Client_side

Yes, I know. First thing I did when I setup this server was to add a cert, setup the SSL and create a rewrite rule to force all access over SSL (HTTPS). This auth stuff is also only in the default-ssl.config file.

@IRJ said in IT Consultant / Manage Service Practices:

Hi, I am an IT department guy that works with a MSP

We use our MSP for mostly VOIP issues, but when we are overwhelmed or short handed we reach out to our MSP to help with certain tasks. It's nice for me to know we always have a bank of hours, that way we are never out of luck if we have a major issue or just need a hand.

Basically we use our MSP as a 6th man. This allows our IT team to get treated like a normal employee and get vacation time and a relief for being on call all the team. It makes a huge difference if you have a major problem and you can instantly add IT members to your team.

This is how it is at the place I work at, at least for today as it's my last day here. And it really helps especially being a one man shop. Our MSP handles backups and that's pretty much it. I could call on them for anything above my level of knowledge or of something was on-fire, but for the most part they just play the 3rd man role. In when needed.

@coliver said in Cross Posting - Storage Spaces Conundrum:

@Jhon.Smith said in Cross Posting - Storage Spaces Conundrum:

@scottalanmiller said in Cross Posting - Storage Spaces Conundrum:

Actually that switched around 2000 when the Pentium IIIS hit the market (the S was the 1.1+ GHz line with the double cache, the ancestor of the Xeons) because the average system had enough spare CPU that the software RAID overhead was no longer an issue and the mainline CPUs and memory were so much faster than the RAID cards that it overall made the system faster. The gap between hardware and software RAID and the amount of spare resources for software RAID has continued to increase since then.

Why do people then continue to buy RAID cards in 2016, if there are many free software RAID solutions that should be faster?

Some features of hardware RAID are useful. It isn't because it performs better then software RAID. It's much easier for bench workers to replace a drive with hardware RAID, that supports hot swap and blind swap, then it is for a bench worker to replace a drive with software RAID.

SOftware RAID supports hot swap too, it's exclusively blind swap that is the difference.

@fuznutz04 said in Vitelity and VFax:

Do you use vitelity for fax?

No, I use eFax.com as a service or deal with spotty faxing on a normal SIP trunk.

@scottalanmiller said in Best Access Points now:

@JaredBusch said in Best Access Points now:

@scottalanmiller said in Best Access Points now:

@AshKetchum said in Best Access Points now:

But if it didn't workout, i guest you will be stuck with Ubiquity and get higher models?

If what does not work out? If that model does not have what you are looking for?

Exactly. You do not buy something that will not work.

If you cannot determine from spec sheets, then you buy a single unit and test.

That's one of the great things about Ubiquiti, it's cheap to field test. Cheaper than looking into more expensive units more thoroughly.

And honestly for a 30 unit deployment, I would contact vendors for demo units if it was that important to your business.

@BRRABill said in DC Interelations:

I don't want to confuse anyone in that other thread...

But if, say, the port the host was plugged into went bad, the host and VMs would still be able to talk to each other right?

He would not be able to connect to any VM on that host.
The fact that the vSphere console sees it hints that this isnot a problem. but it certainly is still possible if they had dedicated management networks. That is uncommon in this size though.

User of CentOS and Ubuntu servers myself. Mint is still top go-to for desktop, though there are interesting alternatives like ElementaryOS.

Linux is not always easy to learn, I just forget everything if it's not regularly used, especially CLI with their bazillion switches that no mere mortal can ever memorize. And moving between different distros where commands don't work exactly the same, Aptitude and Yum, etc.

Cool, but always challenging.

Upload to your own Nextcloud instance and share out from there. 8-)

@JaredBusch said in Screenconnect connects but only have black screen:

@Dashrender said in Screenconnect connects but only have black screen:

@JaredBusch said in Screenconnect connects but only have black screen:

@gjacobse said in Screenconnect connects but only have black screen:

@JaredBusch said in Screenconnect connects but only have black screen:

@gjacobse said in Screenconnect connects but only have black screen:

The consensus is that there is a version conflict between the Server and the Client.

0_1473345638627_2016-09-08 10_39_13-NTG Remote Portal.png

Select your PC and click the MORE option and Re-Install.

You can also upgrade them all at one time by hitting the Check Box at the top of the list...

I have this problem with a fully updated client device.
One specific system does it 95% of the time.

Curious... Have you uninstalled it and re-installed the newest version? I would expect you have but thought I would ask anyway.

Yes. It also works immediately after a reboot.

A reboot while on the old client did not solve the problem. I didn't uninstall/reinstall since I am remote to the user.

Reintstall from the GUI as @gjacobse stated.

Yeah I didn't know about that at the time, which is really why I made this post. 🙂

While it is O365, the Business OWNS the email and Domain. They are allowed to do as they please.

Instead of deleting, you may want to have it forwarded to HR or some other party.

@Dashrender said in RRAS vs. everything:

Fiber to the box in my neighborhood with copper running from there - how would that be different than fiber terminated on the edge of your house that you still can't touch?

Because there is no fiber TO YOU at all. Your last mile is coax. All services are fiber backed and named by the last mile - what goes TO YOU.

You have coax, plain and simple. FiOS is fiber, plain and simple.

@aidan_walsh said in Blind user friendly full disk encryption:

@scottalanmiller said in Blind user friendly full disk encryption:

@aidan_walsh said in Blind user friendly full disk encryption:

@scottalanmiller I work at a government education board, the laptop was one we had in reserve.

Government is buying Chinese products with software to violate their basic security on them instead of American ones without? That makes me very sad 😞

I'm not in the US, and I've read about the NSA Cisco backdoors 😉

Unless you are in China, it's still the same problem... but definitely don't buy American either. Same problem, different solution, buy Taiwanese. Only machines you can trust. In the US, anything passing through customs may be modified to spy on us, so it doesn't matter the source. The problem with Lenovo is that it isn't China spying on us, but a single company. I "trust" China with my data (because it's worthless to them), but I don't trust Lenovo because, well, they are bad people.

No problem. Nothing like GPO on the Mac, but for mapped drives it is really not needed. You can also use tools like Chef or Ansible to do this. That adds a GPO like functionality to the Mac, in a way.

@scottalanmiller

alt text

It's a poor article when most of the "maestros" list their own tools they sell along with a token few that everyone already has heard of.

Maybe pick 10 people, list their credentials and background and have better content from 10 rather than 85 which are mostly poor.

Almost every time I'm helping someone with an exchange issue on Spiceworks, they chime in with their spam. No information about how it does it different or what it does that the free Microsoft tools don't do, just spam. A couple of times I have ask them for more information about how their product will help the OP and they never reply.

Have never touched that.

@IRJ said in IDS?:

Sorry for so many questions. I have never used the open source version.

No problem. I'm not responding as fast anymore because some imaging jobs finished.

@IRJ said in IDS?:

@travisdh1 said in IDS?:

@IRJ said in IDS?:

@travisdh1 said in IDS?:

@IRJ said in IDS?:

@travisdh1 said in IDS?:

I've been using AlienVault's OSSIM, basically the open source version. It's been good so far, but I just deployed the agents to each server/workstation and haven't setup any custom rules, so it just uses the rules for currently known threats.

Do you find the agents useful? I am still testing the agents in a test environment.

OSSIM would be useless without them for me, honestly. without custom rules, or some way to get data besides the login, OSSIM is kinda crippled.

You use them for file integrity and registry change reporting, correct?

Yes. Mine has an internet connection, so it also gets the latest threat updates from the public pool.

You do the updates through SSH, right?

Yep. You just might get introduced to my basic update script on the 16th.