Music educator who has completed his transition into IT. I want to know all t3h thingz. Alas, one lifetime isn't long enough to learn everything, so I'll settle for what can be shoved into my brain during this life time.
I plan on mainly posting content on Saturdays or Sundays, but for the opening week, I made a few things.
Click over to the channel and check it out, should the below interest you.
I've never had much use for Cortana, other than practicing my disable-and-remove-useless-programs skill.
I finally got around to getting a little WordPress site going in my lab, and I've decided to make it the new home of www.eddiejennings.net. Enjoy!
Over time I'll try to find good ways of making some content from previous iterations of my blog (and podcast) available.
Sometimes for malware, you have to nuke and start over. :(
It cannot be stated enough how important community is. Since joining ML in 2016, all of you have effectively been my IT mentors. :D
Hard drive from xbyte arrived a day early. :D
<rant>
What boils my blood more than anything:
User: HELP HELP. . . but not right now.
</rant>
@dustinb3403 said in I can't even:
hah...
If he's running out of stroage just direct him to https://downloadmorestorage.com/.
Just signed a litter accepting a promotion effective 9/22. Not bad for a Friday :D
@gjacobse said in What Are You Doing Right Now:
Wondering how I am going to improve my response and function when certain tools are turned off across the board.
Have to GUI remote to a computer to restart a service that randomly stops when I could have used PS to remotely kick it... It's what's scripting is for, even as obtuse as I am, I know that.
There are a couple of ways of handling this with a scheduled task.
When the service crashes, is there an Event Log entry? If so, you can make a task to restart the service, if said log happens.
Write a PowerShell script that does something like
if ( (Get-Service -Name foo).Status -ne "Running" ) {
Start-Service -Name foo
}
and have a scheduled task that runs that script at whatever your desired interval is.
@dashrender said in WinRM: Security Question:
@gjacobse said in WinRM: Security Question:
@dashrender said in WinRM: Security Question:
@gjacobse said in WinRM: Security Question:
Here, it's turned off by design as a security risk, which to some degree I can see and agree with, but now I'll have to annoy users and in some cases drive across town to perform a minor task I could have done with PS.
Do they not have any other remote management system in place of any kind?
Almost anything would be better than driving across town.We are using Manage Engine for remote -
Does ME not have the ability to run commands on the machines? I know SC and MC both do.
I wonder the same.
@dashrender said in WinRM: Security Question:
The same ones for SSH, only those that affect remote powershell ;)
Yeah, that's the point that I'm getting at. While, yes, making WinRM available and using remote PowerShell is a potential vector for attack, preventing management automation seems like a greater risk.
@gjacobse said in WinRM: Security Question:
Here, it's turned off by design as a security risk, which to some degree I can see and agree with, but now I'll have to annoy users and in some cases drive across town to perform a minor task I could have done with PS.
What's the specific risk?
Using Powershell remoting, which uses WinRM, would be a requirement for managing windows endpoints, in my opinion.
@scottalanmiller said in sudo problems:
@eddiejennings said in sudo problems:
@scottalanmiller said in sudo problems:
I can prove the degree to which sudo exposes that it is allowing a privileged account to take an action compared to allowing access to a privileged account (which can be argued is the same thing, both are privileges, but sudo is more extreme of the original account being the privileged one.) Older tools, like su allow the user to move from using their own unprivileged account to using root (or something else) that is privileged. Sudo does not, sudo still acts as the original account which has been given admin level rights.
Here is how you can see it in action...
[email protected]:/tmp$ sudo touch test1 [email protected]:/tmp$ ll | grep test -rw-rw-r-- 1 scott scott 0 Jul 19 15:34 test0 -rw-rw-r-- 1 scott scott 0 Jul 19 15:34 test1Notice that when I made a file using sudo, it didn't make the file as root or any other account, the action was taken by the same account. Just in one case access to privileges was allowed and in the other case it was protected. But the account itself has the privileges in this case, just administered by the sudo mechanism.
A little test on my Fedora 34
That's weird. Why is it one way on Ubuntu and one way on Fedora?
I did a test on a fresh Ubuntu Server 21.04 install. For me it behaves the same as Fedora. Top example was before I set NOPASSWD:ALL on the sudo group.
