@dashrender said in Ubuntu/shred?:
@marcinozga said in Ubuntu/shred?:
Then just make sure complete set of disks from any server doesn't end up in one school. Schools don't have the budgets/personnel/skills/time/motivation to play the NSA.
But kids in a lab do.
And since when kids in labs are allowed to sit there for hours swapping disks between servers?
@jimmy9008 said in Ubuntu/shred?:
@marcinozga said in Ubuntu/shred?:
@jimmy9008 said in Ubuntu/shred?:
@marcinozga said in Ubuntu/shred?:
If drives are identical in all servers, why don't you just randomly mix them? Pull drive 2 from server 1 and swap it with drive 4 from server 2, etc. Then just destroy the arrays, create new, preferably different RAID levels and just write some sample data.
Wouldn't this leave quite a risk of the data being on a drive still?
I have mixed the drives. Destroyed the arrays, and set as Raid0. Then, running shred on those new Raid 0 arrays...Risk? Unlikely. If you mix few drives from each array in few servers, there's no way to recover it unless you get the original set of drives together. The more drives and servers, the lower the chances of re-assembling the array. You're not donating these to NSA, are you?
No, lol. Two servers are going to a School to be their production environment. Another server is going to a different School to be a lab machine so students can try virtualisation.
Then just make sure complete set of disks from any server doesn't end up in one school. Schools don't have the budgets/personnel/skills/time/motivation to play the NSA.
Let me illustrate what will happen when you mix disks. In a set of 6 disks in 3 servers you have some data, but that data is completely unknown to bad actor. So:
ABCDEF - in server 1, abcdef in server 2, and 123456 in server 3. After mixing you end up with Ae2DE4 in server 1, a3BF16 in server 2 and bcCd5f in server 3. After writing some random data you'll have Ae2DEx, a3BF1y, and bcCd5z. Now go ahead and try to recover original data, not knowing what it was in first place. And do it on school's time and budget.
@jimmy9008 said in Ubuntu/shred?:
@marcinozga said in Ubuntu/shred?:
@gjacobse said in Ubuntu/shred?:
@jimmy9008 said in Ubuntu/shred?:
@gjacobse said in Ubuntu/shred?:
@jimmy9008 said in Ubuntu/shred?:
@gjacobse said in Ubuntu/shred?:
Nothing wrong with doing a multi pass as well... I have heard of people going so far as to create a 'dumb text' file of junk text and copying it to fill the drive, then doing the DBAN. Also - if it is a physical ARRAY - by killing it, you add another layer of obscurity...
I generally have just pulled drives and kept them. They are cheap and easy enough to replace, and can be found new, refurb or used...
We're donating with the drives, so will be wiping them to a reasonable standard.
Just trying to find out id one pass of 0's is actually a reasonable standard....I would go multi pass with random data... single pass to me just isn't enough
That would take a long time. Its not data that's about customers, or patients or whatever, this is data that if found wouldn't cause an issue. Hence doing 'quick best effort'. Leaving the array doing multiple passes with random data for a week is just too long... but, if one pass of zeros is easy to get the data back, then I have no choice but to do random...
I look at it this way; I am no hacker, not a digital forensic specialist - but I have formatted SD cards from my digital camera, and been able to recover the images with nearly 98% error free recovery.
When it comes to digital storage - I don't like to chance things. I go extreme in some cases doing a full DoD wipe twice..
Single format doesn't destroy the data, you need to actually overwrite it.
Yes, that's what I believe I'm doing by the entre write of 0's on the entire array...
Sound pretty safe. So I will stick with it.
RAID array is different than single disk or SD card.
@gjacobse said in Ubuntu/shred?:
@jimmy9008 said in Ubuntu/shred?:
@gjacobse said in Ubuntu/shred?:
@jimmy9008 said in Ubuntu/shred?:
@gjacobse said in Ubuntu/shred?:
Nothing wrong with doing a multi pass as well... I have heard of people going so far as to create a 'dumb text' file of junk text and copying it to fill the drive, then doing the DBAN. Also - if it is a physical ARRAY - by killing it, you add another layer of obscurity...
I generally have just pulled drives and kept them. They are cheap and easy enough to replace, and can be found new, refurb or used...
We're donating with the drives, so will be wiping them to a reasonable standard.
Just trying to find out id one pass of 0's is actually a reasonable standard....I would go multi pass with random data... single pass to me just isn't enough
That would take a long time. Its not data that's about customers, or patients or whatever, this is data that if found wouldn't cause an issue. Hence doing 'quick best effort'. Leaving the array doing multiple passes with random data for a week is just too long... but, if one pass of zeros is easy to get the data back, then I have no choice but to do random...
I look at it this way; I am no hacker, not a digital forensic specialist - but I have formatted SD cards from my digital camera, and been able to recover the images with nearly 98% error free recovery.
When it comes to digital storage - I don't like to chance things. I go extreme in some cases doing a full DoD wipe twice..
Single format doesn't destroy the data, you need to actually overwrite it.
@jimmy9008 said in Ubuntu/shred?:
@marcinozga said in Ubuntu/shred?:
If drives are identical in all servers, why don't you just randomly mix them? Pull drive 2 from server 1 and swap it with drive 4 from server 2, etc. Then just destroy the arrays, create new, preferably different RAID levels and just write some sample data.
Wouldn't this leave quite a risk of the data being on a drive still?
I have mixed the drives. Destroyed the arrays, and set as Raid0. Then, running shred on those new Raid 0 arrays...
Risk? Unlikely. If you mix few drives from each array in few servers, there's no way to recover it unless you get the original set of drives together. The more drives and servers, the lower the chances of re-assembling the array. You're not donating these to NSA, are you?
If drives are identical in all servers, why don't you just randomly mix them? Pull drive 2 from server 1 and swap it with drive 4 from server 2, etc. Then just destroy the arrays, create new, preferably different RAID levels and just write some sample data.
Nuke it from the orbit, it's the only way to be sure. And then you should take a divorce with Windows, at that point you'll eliminate 99.99% of malware.
Wow, only a few decades behind competition. Hunt groups were available in the days of analog telephony.
Here: https://wordpress.org/themes/materialize/
Free, clean, professional, responsive theme, that allows you to have custom css styles, and you can edit it through admin interface. You don't even need to create child theme for it.
@stacksofplates said in New web site:
@marcinozga said in New web site:
@john11smith said in New web site:
@marcinozga
What you see it is actually child theme.
28.7% of web sites are based on WordPress CMSRight. How many of those are top websites? None. Perez Hilton or similar was the Wordpress site with highest amount of traffic. Go figure.
Just because something is used by masses, it doesn't make it a good choice. It is used by so many, because it doesn't require any expertise to get started.
I love Drupal for this. It’s the most flexible CMF I’ve seen. Here’s a list of F500s that use it. And I know a few cities that use it for their frameworks.
http://www.zyxware.com/articles/4351/list-of-fortune-500-companies-using-drupal-for-their-websites
Add huge majority of .gov websites at any level, and majority of universities. And I almost forgot NASA, Tesla or Space-X.
@john11smith said in New web site:
@marcinozga
What you see it is actually child theme.
28.7% of web sites are based on WordPress CMS
Right. How many of those are top websites? None. Perez Hilton or similar was the Wordpress site with highest amount of traffic. Go figure.
Just because something is used by masses, it doesn't make it a good choice. It is used by so many, because it doesn't require any expertise to get started.
@john11smith said in New web site:
@marcinozga
Editing css is not the best practice, because if the theme gets updated all adjustments will be gone and will not work on another theme. I did pages from scratch using only html, php and css code without any themes, templates or pictures. But it is kind of inventing wheel.
What? Since when editing css is not the best practice? You have a lot to learn about web design mate. Any decent theme will allow you to include custom css styles, or should allow you to create sub-theme. If you cannot do that, you're doing things completely wrong. I wish people stopped using Wordpress for serious websites, because they usually end up where you are.
I have Intel NUC at home, and custom built server for Plex, I didn't notice much difference in electricity bill. Running AC is much bigger issue that running server 24/7.
I don't know how well Plex would run from colo, you'd need really decent connection to data center, unless you mostly stream to mobile.
Ok, you need to hand over that website to professional web designer, because it looks poorly. If that above screen is correct rendering, then you clearly have no clue what you're doing with it. It does not look professional, so why would anyone want to do business with you after landing on that page.
Discount block in the center looks like an ad, it feels it's not part of the site.
And the fact that you want to adjust presentation layer through plugins, and not in css, only validates my criticism above. Even centering the entire thing is one simple rule in css, hint, margin: auto; Hire a professional to do it for you.
@stus said
What do you do when all filters have failed?
What do you do? You don't allow scanning to email, period. Email inboxes are not file stores. Most of these machines allow you to scan to SMB share. Users need to learn to use file shares for storing files, not their email clients.
@rojoloco go to Spiceworks forums. You'll get the same thing from Microsoft fanboys.
@rojoloco said in iOS 11 annoyances:
@dashrender I can and will dislike and blame companies for putting profits above people. At a certain point, giant companies have social responsibility. Pure, textbook capitalism IS greed in its purest form, and if you think companies didn't intend to do illegal stuff to get that profit, you're naive.
So why are you only despising Apple? Other companies are exactly the same way.
@dashrender said in Online TV Providers:
@marcinozga said in Online TV Providers:
@nerdydad said in Online TV Providers:
@marcinozga I was doing it on my phone.
Ok, that complicates things a lot, you'd need to kill cellular and GPS, and even then Wifi info can reveal your true location.
How does WiFi reveal your location short of something like Google Collecting it and the vendor checking wifi locations via this?
With Google collecting that stuff, personally I want to get a system that changes WiFi SSIDs monthly.
That's exactly how Wifi reveals it. Google, and probably others collect Wifi ssid, signal strength, and other metrics.
@nerdydad said in Online TV Providers:
@marcinozga I was doing it on my phone.
Ok, that complicates things a lot, you'd need to kill cellular and GPS, and even then Wifi info can reveal your true location.