@JaredBusch said in Vagrant Install on QEMU / KVM:

@IRJ For Debian/Ubuntu

CentOS / Fedora

#***********************************************************
# Vagrant QEMU / KVM Dependencies
#***********************************************************

#CentOS
sudo yum install qemu libvirt libvirt-devel ruby-devel gcc qemu-kvm

#Fedora
#dnf -y install qemu libvirt libvirt-devel ruby-devel gcc

#***********************************************************
# Vagrant QEMU / KVM Plugin
#***********************************************************

#CentOS
sudo yum install libxslt-devel libxml2-devel libvirt-devel \
  libguestfs-tools-c ruby-devel gcc

#Fedora
#sudo dnf install libxslt-devel libxml2-devel libvirt-devel \
  libguestfs-tools-c ruby-devel gcc

#***********************************************************
# Download, copy, and install vagrant
#***********************************************************
#CentOS
sudo yum install vagrant

#Fedora
#sudo dnf install vagrant


#***********************************************************
# Start Vagrant VM
# In prepared project directory, run following command:
#***********************************************************

# vagrant up --provider=libvirt
# vagrant init generic/ubuntu1804

Man this browser is fast on Android!!! Try it out on mangolassi

I'd also be interested in trying the Windows Browser.

https://www.puffinbrowser.com/index.html

@openit said in CompTIA Linux+ LX0-103/104 or XK0-004? free training?:

On other hand, I'm looking for free or cheaper training, in which whole course content matches the updated/latest Linux+ exam, so I can take the certification. I had a look on Cybrary.it but it doesn't seems to be covering all topics from certification syllabus.

I find Cybrary to be a complete waste of time. Their courses are outdated and quite frankly suck! Don't even bother. I recommend Udemy where courses are around $10-20. They are rated by many people and you can get a good idea about the course through reviews before buying.

We are IT professionals here, and dont have time to try to save $10 and waste hours of time looking at useless material like cybrary or incomplete and incorrect data that can be on youtube and other untested sources.

Subscription based training is also bad IMO since there is no incentive to make each course be the best in it's category. No competition on a platform like Udemy.

@rojoloco said in Hi, my name is _____ and I have a problem...:

Only 36?

@wirestyle22 said in Quick List of Useful Powershell Commands:

@IRJ Every day is like 12 hours of work in an 8 hour day and that's when I don't have random things thrown at me. I am working on the weekend but it's mostly in Linux. May need to make time

You could probably feel comfortable with it in a week if you used it for everything. It is quite amazing how much you can feel lost with something one day and the next day you 100% get it. This happens alot and learning isn't always linear. There is generally a break through period.

What is the deal with the everyone using dark themes these days? I have noticed a significant switch. Personally, I like light themes better and cannot stand looking at dark themes. I realize everyone has their preferences, and I assumed most people did dark themes because they are better for your eyes. Research shows that light themes are actually better for most people.

One of these can't hurt..

@brandon220 said in AzureAD and shares:

sharing files on the LAN is painful

That should be the easiest part of a cloud solution. LAN shouldn't even be a thought here. That doesn't make any sense and negates the benefit of using azure and 0365.

Duckduckgo > Google

I have news for you. Everyone's spying on you. Chinese companies/government , US companies/government , Russian government/companies, and any one else.

Why? Because it's extremely valuable. Data is the new oil. It's easy to deflect attention when you point at the other guy everytime he gets caught. It's a strategy used to make all sides feel like their right and it works. Fact is they've all been caught Alot!

@jaredbusch said in What Are You Doing Right Now:

@wrcombs said in What Are You Doing Right Now:

@eddiejennings said in What Are You Doing Right Now:

@wrcombs said in What Are You Doing Right Now:

Horrible day at the office- my manager and I have so little to do , that we have sat here and talked about how little we have to do - after I asked him if there was anything that needed to be worked on and if there was anyway I could get extra hours cause I'm not making very much on a straight 80 pay period.. needless to say I'm extremely bored.

There's always something that needs to be turned into a script.

I should probably learn how to script first ( i dont want to be a script kiddy)

That's how you start. You go take something that exists and then tear it apart and understand it.

I still do that

Also for you guys that do this kind of stuff on a small scale like this, do you create policies for the client? It seems like you could cover alot of these in policies that can be used in a cookie cutter fashion to work with other customers.

Handing a manager or ceo a best practice policy and asking for valid reasons for exceptions is a good way to get a good security posture.

@Julien said in Internship for a future developer:

Thanks, I am currently learning how to use GitHub to drop my projects on it. I wasn't aware of GitLab though.

If I don't want to work as a web developer, do I have to create a web page as a portfolio or no?

Creating a blog and documenting some of your work, troubleshooting, etc is probably best. You dont need a flashy looking webpage.

These types of attacks happen often and certainly wouldn't be considered being hacked. Scapers do this all the time and send phishing emails. It is also common to have legit emails attacked as well as non legit emails that are dropped. This actually very common.

@dbeato said in Doublecheck the Security of Your Linux:

Also changing the SSH Port is not a guarantee that your SSH Port won't be exploited.

CIS is weird. They dont care about SSH, but want you to change your database ports. Considering Many apps are three tiered, its almost like having an enemy army breach your outer walls, take over your city, and instead of fleeing the castle you decide that hiding in it is a valid strategy.

This is the same resistance people had with Virtualization. To those that understand cloud services, its has many more benefits security and infrastructure wise.

The key problem here is proper data management. Why are you storing PII in the help desk? For verification of end users? If that is the case, even if on prem, you should have a better way of making sure that is accessed securely and preferably not stored in a ticketing system.

http://www.theguardian.com/technology/2015/feb/26/net-neutrality-activists-landmark-victory-fcc

@scottalanmiller said in Trying to find a good, on-premises, multi-department help desk application:

@IRJ said in Trying to find a good, on-premises, multi-department help desk application:

The key problem here is proper data management. Why are you storing PII in the help desk? For verification of end users? If that is the case, even if on prem, you should have a better way of making sure that is accessed securely and preferably not stored in a ticketing system.

That's a good point. Helpdesk systems are rarely designed for safely storing PII data. And mingling it with loads and loads of non-PII data risks making a security nightmare, too.

Logging would not be up to par with a help desk system, nor would you expect it to be. It's not meant as a place to store sensitive data. If your Helpdesk was breached, you should not lose anything other than internal ip addresses, email addresses, and maybe work phone numbers. None of which give an attacker access.

If you are storing passwords, or even information like DOB or last 6 of social, you are opening yourself up for huge issues.

@stacksofplates said in Cyanogen, Inc. lays of 20% of its workforce, incl. OS devs:

@scottalanmiller said in Cyanogen, Inc. lays of 20% of its workforce, incl. OS devs:

@stacksofplates said in Cyanogen, Inc. lays of 20% of its workforce, incl. OS devs:

@IRJ said in Cyanogen, Inc. lays of 20% of its workforce, incl. OS devs:

I've used CyanogenMod OS many times, but I never heard of Cyanogen, Inc. It sounds like it was doomed for failure from the beginning.

Well they had that whole referral program to get the OnePlus and screwed it up. Not surprised.

OnePlus?

It was the first phone they put out. They've had a few since then. They were really popular when they first came out.

Here is the problem. The people that use CM are techy enough to put it on themselves. The ones that don't use CM aren't techy enough to appreciate and understand the features. Sure there is a group of a techy people that don't root their devices, but that group is a small percentage of total sales.