@dafyre said in MSPs the New Hacker Target?:

@scottalanmiller said in MSPs the New Hacker Target?:

@coliver said in MSPs the New Hacker Target?:

@scottalanmiller said in MSPs the New Hacker Target?:

@dafyre said in MSPs the New Hacker Target?:

@Dashrender said in MSPs the New Hacker Target?:

@dafyre said in MSPs the New Hacker Target?:

@scottalanmiller said in MSPs the New Hacker Target?:

User individual user credentials whenever possible, not shared credentials.

It is so tempting, especially because customers often push for this, to has common credentials for tasks. But this means that leaking creds is easy and maintaining them is hard. Not to mention problems tracking their use. Have users log in as themselves, track them, make them maintain their own creds. Keep creds individualized whenever possible.

Both at the MSP and your clients. Each MSP Agent should have an account at the client, with maybe an emergency "if all else fails" shared account.

I'd like to think the client could maintain the emergency account - but I could see some companies where the MSP is the ENTIRE IT department, so there would be no one at the company, save maybe the owner/CEO who could have this - but would likely lose it, etc.

That's actually not a bad idea for the clients that can maintain one.

It's pretty common to do so. Problem is, the MSP also needs confidence that the account is not used without them knowing.

Need a break glass account.

That's what we are discussing, I thought, lol.

He means literally an envelope with a username & password sealed inside protected by a glass case?

I mean not literally... but pretty close. Offline user credentials that are stored in a safe location sealed away to ensure the business doesn't have access to them until a time comes where the need to break the seal.

@penguinwrangler said in What Are You Doing Right Now:

@coliver said in What Are You Doing Right Now:

Spent most of the nights this week trying to get rusted or galled bolts out of the truck front end. Trying to replace the hubs and struts as the ones that are there are shot. Resorting to heat as nothing else seems to work.

I usually just pay someone to do that. Could I do it? Yes. Do I want to....HELL NO.

Mechanics aren't cheap up here. We'd be looking at 90-120$ per hour depending on where we go. Plus, as a benefit, my father restores old Volkswagens, so he has all the tools we need to get this thing in running order.

@Obsolesce said in TrendMicro 10.6:

Is TrendMicro still blocking ML?

No, we run it here and I'm able to access it.

@hobbit666 said in What Are You Doing Right Now:

@dashrender @coliver
As in Microsoft Launcher?

I believe it is called Arrow.

Isn't it the name of the series that Bell released in the 60's? It's like WD40.

Date night saw us going to Home Depot and Lowes looking for a tool to break free rusted bolts on this truck... so no movie night for us.

Yep it's just the name of the model

From https://en.wikipedia.org/wiki/66_block

The term 66 block reflects its Western Electric model number.

@travisdh1 said in Non-IT News Thread:

@mlnews said in Non-IT News Thread:

How is this judge surprised? NY Judge "surprised" to find out that the NYPD takes no backups of its criminal evidence system...

https://arstechnica.com/information-technology/2017/10/nypd-database-that-tracks-seized-evidence-and-cash-has-no-backup/

And has a criminally negligent IT department... why am I not surprised?

Government... you really shouldn't be.

@scottalanmiller said in IT reporting website for every day users:

Dokuwiki is the right answer because it is so much simpler and no one that can't format should ever be allowed to give a status (it means that they are too stupid to understand the status) and no one should be formatting anything anyway when giving a status, so making it easier to screw up makes no sense

This. No requirements for a backend other then a webserver makes it portable and easy to use.

@brianlittlejohn said in What Are You Watching Now:

Listening to this guy talk makes his case worse than just reading it...

He sounds so presidential...

@JaredBusch said in IT reporting website for every day users:

Wiki.js

Doesn't that require MongoDB? I've never deployed it so curious. Although it can store all it's data in a git repository which is a really big draw.

@rojoloco said in What Are You Doing Right Now:

@rojoloco said in What Are You Doing Right Now:

@coliver said in What Are You Doing Right Now:

@rojoloco said in What Are You Doing Right Now:

WTF, Unifi controller??? I've pressed "reset password" at least a dozen times from 3 different browsers, yet you have sent me zero emails.

Is this normal behavior or am I going to need to blast it out and start all over?

Did you setup smtp? You have to configure the mail routing piece of it before it will send and email. I've had to do it on mine previously and it worked as expected.

I don't think I had set smtp up yet, but I could have sworn that I had to reset the password once before. Perhaps I was remembering incorrectly. So it's nuke and pave time?

Wow, you can put a bunch of wrong passwords in and still not get locked out. I had my username wrong (derp).

Or that will fix it.

Grav looks really cool.

@irj said in Clap for Chinese president anywhere in the world...:

@coliver said in Clap for Chinese president anywhere in the world...:

Nah, the US will get jealous and have one of these in a few days.

If you made a trump one that allowed the player to select either clapping or middle finger. You would own the app store.

Pay per clap! With all the money Trump has he'd be our best customer.

You can also host Zabbix on a VPS. It can eat up storage in a hurry if you're not careful though.

@dashrender said in What does cord cutting mean to you?:

@scottalanmiller said in What does cord cutting mean to you?:

@dafyre said in What does cord cutting mean to you?:

We simply pay for the services we want that have the shows we like. Primarily Netflix and Hulu right now. No need for anything else, really.

Just Netflix and Amazon here, we dropped Hulu as it was just awful. Found that we didn't miss it at all. Plenty on Netflix and Amazon, really no need for anything else.

So you don't want network television at all then? I wouldn't be surprised if you say correct.

I really don't know anyone my age that watches network television when it is broadcast. Other then live sports of course.

@jevans said in USG Pro 4 and our Company Security:

This is from the Rep:

"UTM (Unified Threat Management) This is where you have multiple layers of security at the gateway to protect against threats. These typically come with a subscription for regular update usually daily or even multiple times a day for their threat updates. Also DPI SSL inspection. "

This is why he was saying the USG will not be a viable option for us.

Why were you even running this by them? They don't really need to know what equipment is running in the rack.

@dustinb3403 said in Three Word Address:

@scottalanmiller said in Three Word Address:

@dustinb3403 said in Three Word Address:

@coliver said in Three Word Address:

@scottalanmiller said in Three Word Address:

@dafyre said in Three Word Address:

@dashrender said in Three Word Address:

@dustinb3403 said in Three Word Address:

@dashrender But the three word address system could be synonymous with "I live at .yellow.cloud.google" the same as "I'm at 50th and dodge"

Just requires an adjustment of familiarity.

Really? Think about what you just said. You mean a person for the first time and you're going to their place.. and the tell you they live at horse.shoe.staple - why would you have any idea where in the city that is? You've never been there before.

We would give folks directions, the same as we do now. "Hang a right at green.frog.pocketbook. Then take the third left onto brown.apple.fritter. I'm at horse.shoe.staple -- about 5 minutes down."

Might as well just use GPS coordinates, that's even easier for humans to use because they increment in expected ways.

This was my first question when I read the transcript. How does this help anyone just do addressing by GPS coordinates easier to use and already used by every GPS unit in existence.

Because trying to say im at Lat <#> Minutes <#> Long <#> is impossible for people to remember.

But by providing a simple 3 word phrase can the Muggles of the world provide a specific location.

You don't remember, you send via email, facebook, or text.

In any case, the means of transportation is way more simple to remember, email, text 3 words than it is to send Latitude Longitude coordinates. . .

Every modern messaging app has the ability to pull in your current location. I did this on Saturday to help my brother and sister-in-law get to us when we were in Boston.

Have you looked at Arista by any chance? I don't have any experience with them but they have made their name on the higher speed networking technologies.

@dustinb3403 said in Three Word Address:

@coliver said in Three Word Address:

@dustinb3403 said in Three Word Address:

@scottalanmiller said in Three Word Address:

@dustinb3403 said in Three Word Address:

@coliver said in Three Word Address:

@scottalanmiller said in Three Word Address:

@dafyre said in Three Word Address:

@dashrender said in Three Word Address:

@dustinb3403 said in Three Word Address:

@dashrender But the three word address system could be synonymous with "I live at .yellow.cloud.google" the same as "I'm at 50th and dodge"

Just requires an adjustment of familiarity.

Really? Think about what you just said. You mean a person for the first time and you're going to their place.. and the tell you they live at horse.shoe.staple - why would you have any idea where in the city that is? You've never been there before.

We would give folks directions, the same as we do now. "Hang a right at green.frog.pocketbook. Then take the third left onto brown.apple.fritter. I'm at horse.shoe.staple -- about 5 minutes down."

Might as well just use GPS coordinates, that's even easier for humans to use because they increment in expected ways.

This was my first question when I read the transcript. How does this help anyone just do addressing by GPS coordinates easier to use and already used by every GPS unit in existence.

Because trying to say im at Lat <#> Minutes <#> Long <#> is impossible for people to remember.

But by providing a simple 3 word phrase can the Muggles of the world provide a specific location.

You don't remember, you send via email, facebook, or text.

In any case, the means of transportation is way more simple to remember, email, text 3 words than it is to send Latitude Longitude coordinates. . .

Every modern messaging app has the ability to pull in your current location. I did this on Saturday to help my brother and sister-in-law get to us when we were in Boston.

Modern apps.... third world countries barely have electricity. Much less a phone to send their exact location to emergency responders.

Which, oddly, isn't true. They have no electricity but even tribes in Africa and Australia have cell or sat phones. It's been well documented.