Good afternoon all. I'm Neil (ntozier) the forum moderator at the osTicket forums and I saw your tweet. I thought that I would introduce myself and let you know that If you have any questions please feel free to post on the forums. Have a great day!

Honestly if it's as bad as you are saying it is. I would compose a list. I would document the whole thing with screen shots (and pictures) and I would hand it all to your boss and tell him to consult his lawyer as to whether or not they are going to sue him... He obviously wasn't providing them with what he was billing them for. Of course wait until you got the domain transferred. Then you can tell him that you aren't allowed to speak to him, and that all communications should be routed through "name of lawfirm here".

As a side note (on this older topic) osTicket 1.11 was released back on Feb 6th.

Thanks @scottalanmiller I appreciate the welcome.

HP seems to be selling off a lot of stuff recently...

Some day some content provider some where will let you piece meal pick the channels that you want... and charge you a nice low rate. I'd probably be happy to pay $4.99/mo for 7 channels that I got to pick.

I'm seriously not impressed by Sling's pricing.

@Dashrender said in Been Wanting 10Gb Lab For A While:

Just curious, what do you gain by having 10Gb at home? [snipped]... I'm wondering what I'm missing?

Bragging Rights!

While you can run the version from github, the devs have asked that you download it from osticket.com/download instead. There is some packaging they do that apparently isn't handled by github (such as setting version number).

I generally recommend that people upgrade to at least PHP 5.6. If your a stickler for running a version of PHP thats still being support by php.net then you will want to upgrade to something a lot newer as 5.5, 5.6 and 7.0 are no longer under active support, and 7.0 will only receive security updates.

source: http://php.net/supported-versions.php

Hey @sudobashnet welcome aboard!

I'm a little obsessed with this song... most versions of it.
This one is currently my favorite rendition though.

Youtube Video

@scottalanmiller It's on Steam.
I was of the opinion that you could run Windows steam games using WINE.
Is that not the case?

I've actually gone back and started working on Witcher 1.

@wirestyle22 said in Gaming - What's everyone playing / hosting / looking to play:

Sekiro

I'm currently playing Dragon Age Inquisition (yes for the first time).
I pre-ordered Sekiro Shadows Die Twice.

I'm looking forward to Cyberpunk 2013 (I mean 2077, but had to pay homage to the original R. Talsorian table top version) and Death Stranding.

@IRJ said in Splunk vs iptables:

iptables -A OUTPUT -o eth0 -p tcp --sport 9997 -m state --state NEW,ESTABLISHED -j ACCEPT

Looks like the solution was
iptables -A INPUT -i lo -j ACCEPT
iptables -A OUTPUT -o lo -j ACCEPT

Or at least that got it working.

@IRJ Yeah I already read that and opened those three ports. Still doesn't work. /boggle.

I also tried
iptables -A INPUT -s 192.168.0.15 -j ACCEPT

and that doesn't work either. But if I change
iptables --policy INPUT ACCEPT
everything works as expected.

So I'm a relative newbie with using iptables. I have used them for years but usually with fail2ban, and the occasional adding a specific rule to allow a specific connection [like to allow someone to SSH from a specific IP]. Lastly I just setup Splunk for the first time on a Windows 2012r2 server that I just stood up.

Splunk seems pretty straight forward and it all installed on the server with out any issues. I added a receive port (default 9997).

I installed the splunk universal forwarder to my Debian 9.8 Linux box. (using the official Splunk .deb download) Knowing that IP tables is going to trip me up I add some rules.

# iptables -A INPUT -i eth0 -p tcp --dport 9997 -m state --state NEW,ESTABLISHED -j ACCEPT
# iptables -A OUTPUT -o eth0 -p tcp --sport 9997 -m state --state NEW,ESTABLISHED -j ACCEPT

I get to the point where I add the forward server. I use a command similar to:
./splunk add forward-server 192.168.0.15:9997 -auth admin:changeme

I get the error: Couldn't complete HTTP request: Connection timed out

Okay so I check the windows firewall. I create a rule to allow all traffic from the linux server to the splunk server. I try again. Same thing. /grump

Alright so then it must be iptables since it drops most things. I go back to the Linux server and issue these:
iptables --policy INPUT ACCEPT
iptables --policy OUTPUT ACCEPT

I run the command. Bingo.
Added forwarding to: 192.168.0.15:9997.

So now my question... now that it appears to be working I would add data to forward... but I dont want to leave iptables wide open. Anyone good knowledgeable with Splunk and iptables to help me close this back up?

I could do something like:
iptables -A INPUT -s 192.168.0.15 -j ACCEPT
iptables -A OUTPUT -s 192.168.0.15 -j ACCEPT

But I would really like to lock this down to just the ports that Splunk needs. I'm obviously missing something.

note: I've tried adding a few more ports (8089 and 8000) to be accepted INPUT and OUTPUT. I've googled it about 30 different times and poured through their Splunks help docs and am stuck.

note2: ips changed to protect the innocent.

Thanks!

While you can run the version from github, the devs have asked that you download it from osticket.com/download instead. There is some packaging they do that apparently isn't handled by github (such as setting version number).

I generally recommend that people upgrade to at least PHP 5.6. If your a stickler for running a version of PHP thats still being support by php.net then you will want to upgrade to something a lot newer as 5.5, 5.6 and 7.0 are no longer under active support, and 7.0 will only receive security updates.

source: http://php.net/supported-versions.php

Does NIST Special Publication 800-53 r4 count as "outside of tech"?

If not then I did start re-reading Monstress Vol 3 by Marjorie Liu and Sana Takeda. (graphic novel), so I could move onto all the individual issues that came out after that which haven't been released in graphic novel format yet.

It's winter so in the last month: finished Horizon Zero Dawn, Kindom Hearts III, Shadow of the Collosus (HD remaster), and lastly just finished Final Fantasy X (HD remaster) last night.

As a side note (on this older topic) osTicket 1.11 was released back on Feb 6th.