Topics created by lance

@scottalanmiller said:

@lance said:

@Dashrender said:

I guess I'm missing something.

Even with Linux, you can have ACLs. Linux can participate in AD through LDAP and pass user credentials if they were ever needed.

That's where I am getting confused. I think I did read once that Linux can participate in AD through LDAP , but completely forgot about it since I have never used it. Thanks. 🙂 If I ever needed to use it, does it work smoothly?

That's not related to NTFS ACLs though.

That's true - that's why I posted my first post the way I did - there was mixing of terms Samba and NTFS - not talking the same language one is a sharing protocol and the other drive format.

I suppose that the OP didn't specify if they wanted the ACL set at the share level or at the filesystem level. Actually he did, it was that he needed no permissions. Although in light of things like Cryptolocker - if users don't normally need write permissions there, I'd limit them to read only for the sake of things like Cryptolocker.

@alexntg said:

@Nic said:

I've been using the Getting Things Done system religiously for a decade. I highly recommend it!

THIS!! I can't emphasize enough how much of a life saver this is. It's quite literally saved my career and sanity. Read the book (or listen if you're an audiobook person). Enact the system and stick with it. You'll be more productive, less stressed, and may come out of it an entirely new person.

Agreed on saving my sanity. At the time I was a very stressed out sysadmin keeping everything in my head. Now, whenever I feel stressed at work I know that I need to update my to-do list and make sure everything is in order. Instant stress relief.

@Dashrender said:

I'll resurrect this old thread.

Microsoft included OneGet inside PowerShell with Windows 10.

It uses Chocolatey repos, etc.

https://github.com/OneGet/oneget

That's freaking awesome that is uses the Chocolatey repos!!

@Dashrender said:

@scottalanmiller said:

@Dashrender said:

All that makes me wonder if/when we can have AD in the cloud, either fully or hybrid, and be safe.

That's been available for a while. But the federation limitations remain. There is both traditional AD in the cloud (NTG runs that way) and Azure's cloud AD service. It is that cloud service that is being discussed binding to.

What about doing something crazy like setting up an RODC in Azure or AWS, and put ADFS on that? or skip ADFS altogether and use something like Pertino for logons.

If you're considering this from a DR perspective, a regular DC in a hosted environment would make sense. That way, if your on-premise infrastructure is unavailable, you can carry on as usual. I use AWS for my geographically distributed AD in my test lab, I have a DC on each side of the country.

the purchase of my question is more: What is a good way to have a distributed AD authentication scheme for a spread out network of mobile users? or if not mobile, in a setup where you don't want to pay for an onsite server (though if you're small enough, an on site small HP would be much cheaper in the long run, of course, not as protected as one in the Azure or AWS network)

What are you currently using for VPN?

Azure AD at this point isn't the full AD that you're familiar with. It's a platform to connect applications to. If you want to use Azure and use it for full AD, you'll need to spin up a Windows Server instance on Azure and set it up as a DC.

Here is a link to a Symantec post on the subject: http://www.symantec.com/connect/blogs/cryptodefense-cryptolocker-imitator-makes-over-34000-one-month

Hmm seafood in tomato sauce (FILIPINO)

It's class Lab day... 🙂

I always have so many things open, I easily go all day without seeing my background.

@JaredBusch said:

had I the money to do such philanthropy, I would certainly not talk about it on some social media site because all that does is invite the beggars.

Shit tons of people have horrid financial outlooks and most have lost hope. But there are so many people who just want a free buck that being so genuinely philanthropic is a lot of work.

Charity for vanity........

@lance said:

@scottalanmiller said:

I thought that they tried this long, long ago. And then didn't it kinda of again with Flickr? And now there is Vimeo and others. Is there room for another player like this?

I think they will have to do something out of the box to drive people to the site.

Something pretty dramatic.

@tfl Good perks for being a MVP? Many requirements asked of MVPs?

I would use them constantly. Recording the kids, recording my commute, places I go. I want to get a pair to use in conjunction with Kidding Around Europe.

I used Backup Exec recently for an environment whose policy required tape. It worked quite well for the purpose. If you need backups to removable media, Backup Exec is the way to go.

Now, before someone talks about how Veeam can do tape now, yes, I've tried it. It's ok. However, if I had an environment that was entirely virtual and required tape, I'd just have Backup Exec back up my Veeam repository.

@Bill-Kindle said:

@lance said:

@Bill-Kindle said:

They've been talking up a faster release schedule for a while now. Expect a new OS to roll out every 2-3 years now if not sooner. I'm just hoping that 2012 R2 isn't too old by the time I get certified.

That's one reason I don't like some of the MS certs, although they aren't as expensive as alot of other certs.

Well, in order for most businesses to upgrade on a cycle like that, MS is counting on the economy getting way better. Investing thousands (even more than that for most SMB's and up) upgrading OS'es every 2 years isn't something that's going to go over very well. Which ironically, plays into their selling of cloud services with Office 365, Azure, etc.

Sneaky little..... Well played Microsoft.

@Bill-Kindle said:

I have tried it in the past but never really put it through any paces past the built in packages. I can't get any more into a budget at the moment, blew most of it on a NAS this year.

I feel like I couldn't do my job without it. I saved my company the costs of PDQ with one deployment on the 2nd day after we bought it. Its paid for itself 50 times over for me.

I'd have to say Ubuntu, I've found it has the best "Built in" compatibilities and since it's the "Band wagon" linux OS, I've never had an issue finding support online.

for anyone looking to install it on Ubuntu below are the directions

sudo apt-get update

sudo apt-get install goaccess

Once it is installed run

goaccess -f /var/log/nginx/access.log

I didn't know I had a long lost sibling! I wonder why my mom hasn't told me?

I just wish I could remember why I didn't like them - I clearly do remember thinking to myself, OMG really - you're selling that? There's no security in that model at all.

The biggest thing I would look at - can Citrix look at your stuff if they want to? If you're in a HIPAA setup, you want to make sure you control the encryption keys so they can't look, even if they wanted to.