Topics created by NashBrydges

@NashBrydges Did you try switching the positions of existing CPUs?

@JaredBusch said in Fedora 33 SSH Access Denied But Webmin Works Fine:

@scottalanmiller said in Fedora 33 SSH Access Denied But Webmin Works Fine:

Root is disabled by default in SSH configs most of the time.

Not until the last couple years. Sure we always disabled it, but it was not default that way until recently.

Ubuntu disabled it by default in 14.04 (2014) and Debian in version 8 (2015).

This probably coincide when openssh developers decided that disabled should be the default in the source code.

It's up to the distro to set defaults for installed packages so RedHat based distros like Fedora might have been much later.

@NashBrydges said in MeshCentral2 Failed To Renew SSL Cert:

Failed to obtain certificate: Error finalizing order :: signature algorithm not supported

One final update. After more searching, I found this that referenced the actual error I was seeing about algorithm not supported.

https://github.com/Ylianst/MeshCentral/issues/4676

After upgrading from v1.0 to v1.1 and rebooting, the cert automatically renewed and issue was resolved!

There have been numerous elevation of privileges flaws.

I'm more curious if it could through a hypervisor?

@dbeato Thanks. I'll give this a try over the weekend.

@NashBrydges said in NGINX Just Stop Working:

Wanted to close the loop here. I've recreated the server and refetched all my certs. It's been working well for the last 2 days. Fingers crossed it stays that way.

Thanks to everyone who participated!

Ah, doing things the DevOps way. When it doubt, nuke and rebuild.

@krzykat said in Photo Backup And Sharing:

Also - get rid of the duplicates of different sizes, such as when you send a photo over your phone to a friend, it makes a copy that is resized.

That's not a dupe, but a cache. Typically you want those kept so that it doesn't have to recalculate each time. But not always. But that would be a different database mechanism rather than a dupe finder.

@scottalanmiller said in SolarWinds' Orion monitoring platform may have been tampered with by attackers:

https://thenewstack.io/solarwinds-the-worlds-biggest-security-failure-and-open-sources-better-answer/

Screenshot_20201220-082425_Chrome.jpg

Looks like someone doesn't know what k8s Network Policies are and has never used a service mesh 🙄

Blue Iris is great. It is too bad it only runs on Windows. We have deployed in on mini PCs with great success.

@Dashrender said in Remote VoIP Phone Unifi Network:

@JasGot said in Remote VoIP Phone Unifi Network:

What are your routers? Ubiquiti?

Can you disable SIP ALG on them? (sometimes called SIP transformation on other routers)

He mentioned CONNTRACK - I know that's on USGs.. not sure if it's called that on ER's?

OK the ER does have CONNTRACK.
https://community.ui.com/questions/EdgeRouter-Infinity-conntrack-tuning/efc51d58-8464-41f5-b10e-f7d0fb10968b

All routers have a conntrack table..

@dbeato said in VM Windows 10 Pro Licensing On Hyper-V:

@scottalanmiller said in VM Windows 10 Pro Licensing On Hyper-V:

@dbeato said in VM Windows 10 Pro Licensing On Hyper-V:

@scottalanmiller said in VM Windows 10 Pro Licensing On Hyper-V:

@NashBrydges said in VM Windows 10 Pro Licensing On Hyper-V:

There is no AD of any kind.

This doesn't play in. AD doesn't have any licensing. It is included in Windows Server and has no licenses or requirements of its own. If you can use server, you can use it, if you can't, you can't.

Microsoft Active Directory does have licensing.

What do you mean? There's no case where it gets licensed. You license Windows Server and AD is part of it, there's no license for AD itself. Any situation where you'd use AD you already have to have Windows Server license, and nothing extra is ever needed.

Well yeah, in order to use Microsoft Active Directory you still need a Windows Server which yes has to have a CAL (Per user or per device) for using same for SQL, RDS, Sharepoint and Exchange (onprem). So you were right 🙂

Yeah, you can't use AD without a license, but there's no license for AD 🙂

@Obsolesce said in Microsoft Search in Bing and Office 365 ProPlus:

@scottalanmiller said in Microsoft Search in Bing and Office 365 ProPlus:

Since I switched to DDG, I've noticed Google has gone down hill significantly.

That's why, it's because YOU switched.

No reason to keep it good, I guess, lol.

@VoIP_n00b I received an email Friday. So much of his entire rant is not valid as far as I am concerned.

d8c33fbd-90da-4270-8910-5437937acaf4-image.png

https://pi-hole.net/2020/05/10/pi-hole-v5-0-is-here

Plus you'd get things like single use passwords, SSH CA, encryption as a service, and some more

@Dashrender said in Veeam Company Announcement:

@scottalanmiller said in Veeam Company Announcement:

@StorageNinja said in Veeam Company Announcement:

Smart watch leaders are apple and samsung.

Samsung isn't in the big three. Xiami is number one, Apple number two. Xiami is the largest wearables maker in the world. So big that they don't just make their own processors with their own fab, but they use their own architecture!

And they are sold everywhere but the US (or at least I've never seen that brand at any retail location I've been to)

They are definitely sold in the US. We buy them here (they are cheap and resilient.) I don't see them in stores too often, but like on Amazon and stuff they are just a normal item, not imported specially or anything. They are widely available. I like them for travelers because they are cheaper than average, but work well and have the best battery lives (often 1.5 months on a charge!) So you aren't likely to get it stolen, or have charging issues, and if they break just buy another.

@Dashrender said in LogMeIn To Be Acquired By Affiliates of Francisco Partners and Evergreen Coats Capital:

@wrx7m said in LogMeIn To Be Acquired By Affiliates of Francisco Partners and Evergreen Coats Capital:

Includes lastpass from what I saw.

weird to even think about breaking this out... LP is fully a part of LogMeIn's company, I would expect nothing less - unless there was also an announcement of LMI spinning LP back into it's own company or being sold to someone else.

Right, when you buy a company, you get all of it unless otherwise stated.

The correct way to offsite Veeam requires Veeam installed on a system at the remote site. That remote Veeam instance is what talks to the remote data store.

If you are only doing copy jobs, the remote Veeam instance does not require Veeam licensing.

@brandon220 said in Voip.ms Fax To Email:

@JaredBusch What I'm referring to is that I can take a physical piece of paper that I want to fax to a Xerox copier (in this instance). Instead of using the built-in fax machine function (no phone line attached) I can "email" the document to [email protected] and in the subject line is the actual fax number. When I email from the copier, it comes out as a fax to the receiver. Not as an email. The receiver has no idea that it did not come from a conventional fax machine.

Yeah, this can definitely be done - but man, changing the subject line from a Xerox machine is generally a HUGE PITA - no normal user wants to do that ever.

https://www.bleepingcomputer.com/news/security/new-nextcry-ransomware-encrypts-data-on-nextcloud-linux-servers/
504c35eb-9525-4ed4-a2a2-fd1a923ce029-image.png