@travisdh1 said in Best Whiskey (Hypervisor) versus the most sold Whiskey (Hypervisor):

@Carnival-Boy Summed up many threads from that other place very well.

Not really. He's got a good summary of "why ESXi is his favourite" which he's said before and makes sense. That's very different from him telling everyone that the other three are stupid and have no support and only fools with failing businesses wouldn't pay for ESXi without any actual reasons for it.

Saying that it is his favourite and telling everyone else that they should only consider it are very different things. On SW it is the later.

@KOOLER That's basically everything what I've learned about the current situation on hyperconvergence and VSAN's during the last couple of months. Really appreciate your introductory disclaimer. Just remembering one of your posts a couple of months ago over at SW where you said something like "Actually, I'm the sales prevention guy here at StarWind".

Anyway, thanks for your excellent writeup.

@Jason said in Fibrant ISP/SIP Provider Salisbury NC:

@JaredBusch said in Fibrant ISP/SIP Provider Salisbury NC:

@scottalanmiller said in Fibrant ISP/SIP Provider Salisbury NC:

@JaredBusch said in Fibrant ISP/SIP Provider Salisbury NC:

@scottalanmiller said in Fibrant ISP/SIP Provider Salisbury NC:

@coliver said in Fibrant ISP/SIP Provider Salisbury NC:

Just for background - Fibrant is a municipal ISP that was setup by the City of Salisbury to fill in the gaps that other ISPs in the area refused to fill. They expanded from there and offer high speed services to the majority of the city.

but adding in SIP to services, that's where the problems tend to start. Being an ISP is good. Offering SIP is good. Putting the two together is generally bad. No
t always, of course, but pretty often.

Just because an ISP offers sip does not mean they are a shit IST

Yup, which I pointed out. I leans that way, but doesn't mean that it is the case.

That isn't what your first response was though. Your first response was very narrow and specific.

Yep, correlation doesn't equal causation. The two aren't related at all.

Ah, but they are. ISPs turn to SIP in many causes for the purpose of retaining customers in the face of competition based on quality of service.

Thanks, will check that out later, but don't have the time right now to fiddle around with something new.

I don't think Gluster (it's no longer GlusterFS) uses STONITH because they don't go for the two node configuration where it is needed. They use a quorum system.

I know a guy who built his own blade unit. Wooden blade enclosure and some simply power supplies and his own fans, then made it allow straight motherboards to slide in so that it make having a handful of systems running in a cluster super cheap. Pointless for production, but for a lab was very interesting.

@Mike-Davis said in Ubiquiti classes?:

@aaronstuder said in Ubiquiti classes?:

They look costly for stuff you could likely learn on Youtube....

There was a time when I would have agreed 100%. Now it seems the only way I would cram in 16 hours of learning would be to head off site some where with my phone forwarded to voicemail...

If you can make it to a class, you can schedule time away 😉 If you can't schedule time for YouTube, you'll not be able to get the value from the class.

@brianlittlejohn said in Solving poorly programmed app that requires local admin rights:

@aaronstuder You would have to give everyone admin rights on the Terminal Server.

3a923ace4ce91fac6c8d406d94bb9846.jpg

there-s-no-way-this-could-possibly-go-wrong.png

@aaronstuder said in Moving to a New WSUS server:

@BBigford No Problem. Once I realized that the port numbers change, I realized the issue right away.

Clients are being seen by the WSUS server now 🙂

Sweet!

Found it, nevermind.....

@Mike-Davis said in Ubiquiti wifi bridge static on VoIP calls:

I knocked it down to 20MHz channel width and ran it for 14 hours with no pings over 20 ms. Users have been on it for 2 work days now and everything is working fine. I wish I understood the science behind it so I could know...

You could always try to go on a Ubiquiti training course for this kind of thing. 🙂 - Depends on the location.

@JaredBusch said in VM from ESXi to Xenserver:

Specifically to the CentOS test, the boot image looks like it needs rebuilt prior to the V2V or from a boot media after the V2V.

This is what i'm thinking at the moment but unsure how to do this with my level of Linux skills.

Awesome, good progress, at least.

@tonyshowoff said in Hello Mr Chinese IP based hacker:

That's why we set any WAN-fancing SSH port to something obscenely high like 41022, not for "security" but because of the logs. In fact, all of our sshd services run following that pattern, as does our internal HTTP(S) servers but the load balancers take in 80/443.

This prevents as many services as possible from running as root, which anything running port < 1024 does. I don't think most people even know this. At the very least if there's a NAT in play, one can always set ssh and web services ports much higher and just translate the ports to avoid the same issue.

(I know there are some work arounds like setcap on Linux, but in general this is the default behaviour on most machines)

For some reason this made me think of The Venture Bros, Hunter Gather says:

And we want your sad ass undercover agents to stop trying to infiltrate our group. Frankly we're tired of killing them and we can't afford the body bags!

Useful piece of information. Thanks!

@aaronstuder said in Changing SQL SPN:

You missed blacking out some hostnames 😉

😆 Damn VNC!

@Dashrender said in ESXi recovery woes:

If backing up a 5.5 and restoring back onto a 5.5 still fails, then the only option you have (currently) is to do what the vendor said, backup the DB separately and the restore in the prescribed fashion.

I think you're right.

@Jason said in Why Faxing is Less Secure Than Email:

@scottalanmiller said in Why Faxing is Less Secure Than Email:

@BRRABill said in Why Faxing is Less Secure Than Email:

@Dashrender said

Tapping a phone line once it reaches a neighborhood hub is anything is trival I'm guessing. But the main point that I want to point out here is that tapping a phoneline requires physical access to something, somewhere in the path to make happen. This requirement makes the cost significantly higher than trying to get access to say email, through the previously mentioned malware attack.

Pretty easy to get access to phone lines if you are in any sort of business complex.

Even if you are not. In rural areas it is especially easy to tap lines. There is even equipment that allows you to tap the lines without climbing the poles, you can do it, touchless, from the ground!

Our buliding here is in a rural area.. but because we are the biggest company around Verizon brought the whole trunk of lines multiplex in to our buliding incase we need all of them we would have them.. there are resturants, stores, and urgent medical care centers all around us. all of their analog lines both phone and fax come into our building and we could listen in from the NID

Having worked as an alarm installer for 7+ years I too know how common this is.

I wander into the phone room and start clipping on to various pairs looking for the # I am supposed to use and end up finding all kinds of things that are not part of the company I am there working for.

2 things:

0_1463756625365_offended.jpg

0_1463756631307_da51d98179afa10507f2d70088d30488.jpg

All we know is that GPO for crytolocker was broken/denied thus any protection for CryptoLocker was disabled for at most 48 hours. It was a combination of incidents lead to CryptoLocker. Don't think flash is the cause here.