Well, my first interview is Tuesday, even before my final pay check is due

@DustinB3403 said in What Are You Doing Right Now:

@RojoLoco said in What Are You Doing Right Now:

@DustinB3403 said in What Are You Doing Right Now:

@RojoLoco That is a totally different life style to what I was imaging...

So where do they grow their plants if they don't have land to work? Where do they sleep if they don't own or rent? And don't they ever just get an urge to have a big fat juicy steak with a side of shrimp?

The answer to all those queries is "who cares, they're filthy hippies".

hey now, hippies have a use, like human shields.... or fertilizer for feed for beef farms..

Yes, they made my news feeds again today.

https://www.bleepingcomputer.com/news/security/hardcoded-password-found-in-cisco-software/

Since Cisco keeps being so popular with the security breaches and vulnerabilities, I figured it's time they get their very own thread.

Well, looks like I will be able to make it, thanks to @DustinB3403!

Dilbert and one of the big topics around here:

Thought I'd drop one of my current projects here. It started as just wanting a way to see what the temperature in a room is without having to have someone go check. (It's another building in a locked room few people have a key for.)

We already have lots of project cases, and also already had a Raspberry Pi. The new $5 Pi would need a network connection of some sort, so figure $10 for the networked PC ($20 if you need a power supply and memory card as well). I splurged at $13 for a combination temperature and humidity sensor. I went ahead and added a door sensor as well, it was $2. I also got a Cobbler Plus GPIO Breakout for $8 and a Perma-Proto board for $6. Total cost for me was $29. If you need a Pi as well figure ~$50 for everything. Compare that to any of the commercial offerings!

I'll post the code I use for everything here, along with references where possible. After all, that's where the real cost of these little things end up being.

It might be good to add a battery backup to it as well, which is quite easy, but I have no real need for that (if the power is out, the temperature isn't going to be getting out of control.) Adafruit makes it really easy.

@eddiejennings said in What Are You Doing Right Now:

Thing learned today: Domain controller must have SMB v1 enabled for a Server 2003 member to join the domain.

I learned that I only have to get inside your LAN in order to steal all the network data.

This is mostly to make things a matter of public record, in addition to a bit of a rant.

Got a call yesterday morning. They can't process credit cards. That office happens to use Intuit/Quickbooks for everything from inventory tracking, to payment processing and accounting. I've been down the road of getting away from Intuit often. Don't know if this will push them past the edge or not.

Ok, spent 2 hours manually doing updates because the automatic ones broke along the way somewhere. Updates complete. Good, we should be up and running. They try to login, and get asked for a code. Ok, check the email address... nothing.

Now I'm calling Intuit support (bad idea, but we're basically not in business at this point.) That's a 3 hour call where I'm told something is wrong with our email server.

Fine, hang up with one unhelpful peon. Go eat lunch (3:30pm at this point, my blood sugar is about to tank.)

Get back into the office around 4:30. Enough time to find something very interesting in the server logs...

2016-10-05 14:01:56 H=lvmailappout12.intuit.com [199.16.139.22]:30939 sender verify fail for <[email protected]>: response to "RCPT TO:<[email protected]>" from mailin.intuit.com [206.108.40.19] was: 550 #5.1.0 Address rejected.
2016-10-06 11:17:10 H=mailout203.intuit.com [206.108.40.17]:49121 X=TLSv1.2:ECDHE-RSA-AES256-GCM-SHA384:256 CV=no F=<[email protected]> rejected RCPT <[email protected]>: Sender verify failed

Now, I spent way to much time figuring out how to deal with spam, and have gotten it figured out for the most part. So, they are sending a confirmation code out using an address that their own email server does not acknowledge as being valid. Yet it's somehow my fault that the email is not being delivered.

Spent another 2 hours on the phone this morning going over the same stuff. We're working through alternatives, none of which are something the business would normally find acceptable.

This on top of them having me enable SSL2 in the browser. Uhm, these computers have to remain PCI compliant, and they just purposely made them non-compliant.

Malicious company, let it be known.

Getting noticed is easy!

Getting the right kind of notice is very hard!

http://www.bleepingcomputer.com/news/security/900-000-routers-knocked-offline-in-germany-amid-rumors-of-cyber-attack/

On Facebook, Deutsche Telekom engineers recommended that users unplug their devices, wait for 30 seconds and restart their router. If the equipment fails to connect to the company's network, engineers told users to disconnect their device from the company's network permanently.

To compensate the downtime, Deutsche Telekom is offering free mobile Internet until the technical problem is resolved.

DSL routers all over Germany, and presumably worldwide if anyone else happens to be using the same DSL Modem that got hit by this.

@thwr, hope you're still running!

@Oksana said in Step-by-Step: Add RDM Disks to Your vSphere VM:

Raw device mapping is still useful when you want direct LUN access from a VM, keep storage workflows on the array, or need physical mode behavior for specific workloads.
Our new article by Alex Bykovskyi for StarWind explains what RDM is, the difference between virtual and physical compatibility modes, how to present LUNs to ESXi hosts, and how to attach an RDM disk to a VM step by step. Read more here: https://starwind.com/s/142

Don't do this, you'll just create headaches for anyone following after you.

@gjacobse The biggest difference between the two in actual usage for myself is that flatpack is available across all common distributions that I use. So all the distributions based on Debian, Ubuntu and RedHat would all work with flatpack.

I still prefer to use the native tool set when available, but flatpack does come in handy when it has a newer version or the native packages have issues.

@scottalanmiller said in Random Thread - Anything Goes:

We have SEVEN cats now!

We called it enough at 3!

The only thing I've had problems with when using double NAT is some phone systems get very very cranky.

Other than that, just the normal downsides of not controlling your own external access.

goauthentik.io

I've seen this mentioned in a number of places recently, and it sounds like a good option to enable SSO. The open source/free version has useful features.

I just got it installed tonight. All I can say about it so far is that it is an easy install on Ubuntu Server using Docker. I'd imagine the Kubernetes version is also an easy install.

Just wondering if anyone else has used it and what you think of it if you have?