ML
    • Register
    • Login
    • Search
    • Recent
    • Categories
    • Tags
    • Popular
    • Users
    • Groups
    1. Home
    2. Pete.S
    • Profile
    • Following 0
    • Followers 0
    • Topics 237
    • Posts 3141
    • Best 977
    • Controversial 10
    • Groups 0

    Pete.S

    @Pete.S

    1409
    Reputation
    2308
    Profile views
    3141
    Posts
    0
    Followers
    0
    Following
    Joined Last Online

    Pete.S Unfollow Follow

    Best posts made by Pete.S

    • How to install and run Geekbench 4 on linux

      If you want to run Geekbench 4 on a linux server, this is how to install and run it.
      Note that you need to have a working internet connection on the server.
      You can run it as root or as any other user.

      Let's start from the home directory and put the files there.
      cd

      Download the files from geekbench.com:
      (change version number if needed for latest version)
      wget http://cdn.geekbench.com/Geekbench-4.3.3-Linux.tar.gz

      Extract the downloaded files:
      tar -zxvf Geekbench-4.3.3-Linux.tar.gz

      Go to the extracted folder:
      cd Geekbench-4.3.3-Linux

      Run the test in tryout mode, results are uploaded automatically:
      ./geekbench_x86_64

      After a few minutes the test is completed and you'll see a link to a webpage which is unique for each test.

      Upload succeeded. Visit the following link and view your results online:
      https://browser.geekbench.com/v4/cpu/1234567

      Just enter the link in any browser and you'll see the results of the test.

      posted in IT Discussion
      Pete.S
      Pete.S
    • RE: NVMe and RAID?

      @dbeato said in NVMe and RAID?:

      One of the first Dell Servers with Hotswap NVME was the R7415 so yeah
      https://www.dell.com/en-us/work/shop/povw/poweredge-r7415

      Not sure what others have seen.

      The newer ones have a 5 in the model number, so R7515, R6515 etc.
      That's the ones you want to buy. AMD Epyc 2 Rome CPUs.

      Dual sockets models are R7525, R6525 etc.

      And to make this complete: 6 is 1U and 7 is 2U. R7515, R6515 etc.

      posted in IT Discussion
      Pete.S
      Pete.S
    • RE: Macbook Air for College

      @jasgot said in Macbook Air for College:

      Daughter wants a Mac laptop for college. Any suggestions?

      Yes, take her to the store and buy the one she wants.

      Buying an Apple product is not a technical issue that needs to be figured out. It's an emotional issue. Like a Gucci bag.

      posted in IT Discussion
      Pete.S
      Pete.S
    • SAS expanders explained

      If you have a RAID controller with 8 ports, you can connect up to 8 SAS/SATA drives directly to the RAID controller. That's fine but if you for instance have a server with say 36 drive bays you would need a 36 port RAID controller. Those are hard or maybe even impossible to find.

      Well, here is where the SAS expander comes into play. It will work somewhat like a network switch but for SAS/SATA ports.

      sas_expander.png

      The SAS expander IC can be integrated directly on the backplane of the drive bays or it can be a standalone card or PCIe card. These are often used when you have more than 8 drive bays and even more so when you have 16 or more drive bays.

      It allows you to expand the number of drives the RAID controller is able to connect to. It's transparent to the user because the RAID cards have integrated support for SAS expanders. This is also true of HBAs (Host Bus Adapters).

      The only drawback is that the maximum transfer rate is, as always, limited by the PCIe link to the RAID controller card but also by the SAS connections from the RAID controller to the SAS expander. In real life though these bottlenecks are seldom bottlenecks as it's uncommon to read from all drives at the same time and drives are also often slower, especially when using HDDs.

      SAS expanders are also used heavily in external JBOD chassis which are expander chassis for drive bays that you connect to a server so you can attach more drives than fits in the standard enclosure, aka Direct Attached Storage DAS. In that case the SAS expander sits inside the JBOD chassis.

      posted in IT Discussion
      Pete.S
      Pete.S
    • RE: How to Secure a Website at Home

      @hobbit666 said in How to Secure a Website at Home:

      Why not GitHub or GitLab for free?

      That was part of the etc 😁😁😁😁
      Also I thought GitHub was more for storing scripts and opensource stuff.

      It's not generic hosting of websites as you don't have control like you would on a normal webserver.

      It's simplified hosting and the github/gitlab pages was initially intended to complement the projects on there. So it would be easy to make a html website from the git repositories, for instance for documentation.

      Since you can store any files on gitlab/github you could of course also use the pages for any type of static website.

      Here is how to get started in the simplest way possible:
      https://guides.github.com/features/pages/

      posted in Water Closet
      Pete.S
      Pete.S
    • RE: Make a Bootable Windows 10 USB Installer from Fedora Linux

      Good to know about WoeUSB.

      If you have windows available, rufus is an easy tool to make bootable USB drives.
      Doesn't need to be installed and it's fast.
      https://rufus.akeo.ie/

      But in all honesty it's very easy to make a bootable windows installer USB drive manually. Just make a primary bootable FAT32 partition on the USB drive and copy the files from the ISO onto it. Done.

      You can copy more files onto the drive, for instance drivers or other software. If you do that, it makes sense to make a dd image of the entire thing when you're done. That way you can easily write a new USB drive with your custom files on it.

      posted in IT Discussion
      Pete.S
      Pete.S
    • RE: Incorporating Ransomware Protection into Backup Plan

      First, ransomware is big business run by organized crime. I think about 19 billion dollar per year industry.

      Everything can be compromised in different ways. There is just no way to protect your data 100% and to think otherwise is just naive.

      We have chosen to go with tape as our last line of defense. Once you take it offline there is no way it can be remotely compromised. We believe that is enough to be able to recover from most attacks and the cost is reasonable.

      posted in IT Discussion
      Pete.S
      Pete.S
    • How to check the integrity of a set of files with md5deep

      Integrity of files

      If you want to check the integrity of a bunch of files you can do it with md5deep, which can be thought of as a recursive version of md5sum. It was initially designed for forensic work.

      If a file has the same hash as another file they are identical. If you save the md5 hash of a file and later recheck it, you can be sure the file hasn't been changed, corrupted or tampered with.

      Installation on Debian

      You'll find it in the package md5deep.

      apt install md5deep
      

      Inside the package you'll also find sha256deep and some other good stuff. Use sha256deep instead if you want to use sha256 hash. It's better and actually more secure than md5 but might be slower. You use it in the exact the same way though.

      Besides linux it's also available on other OSs such as Windows, MacOS. You can build it from source too. https://github.com/jessek/hashdeep

      Create MD5 signatures

      md5deep -rl /check_this_dir/* > files.md5
      

      This will create a text file (files.md5) with the md5 hash of all files (*) in the "/check_this_dir" directory.

      Check MD5 signatures

      md5deep -rlX files.md5 /check_this_dir/*
      

      It will return the files that don't match. So if any file has been changed, it will show up.

      Common Options

      -r is to go into subdirectories as well
      -l is to use local paths instead of absolute paths
      -X is to do check the signatures

      -e is if you want to see the progress while it's working.

      Find more info on basic usage with examples here:
      http://md5deep.sourceforge.net/start-md5deep.html#basic

      Example

      Let's check that our files in /boot and it's sub-directories stays intact.

      First let's create an md5 file that we will compare with.

      md5deep -r /boot/ > boot.md5
      

      Let's verify the files have not been tampered with.

      md5deep -rX boot.md5 /boot/ 
      

      If a file or several files has been changed it will return the file and the new hash (exit code 1).
      If all is good it will not return anything (exit code 0).

      posted in IT Discussion
      Pete.S
      Pete.S
    • RE: XenServer gave error I'm not familiar with

      Maybe stop using USB drives for things they aren't designed for?

      It looks like we've been down this road before.
      https://mangolassi.it/topic/20070/so-xen-server-gave-me-an-error-what-do-i-do

      A small SSD would do better. Something with write endurance and something that is designed to attached 24/7 in a hot environment.

      If you don't have drive bays or don't want to waste them, use satadom.
      alt text

      posted in IT Discussion
      Pete.S
      Pete.S
    • RE: System Admin - checklist for Don'ts and Important points please!

      Maybe I'm alone but on the top of my list:

      1. Only use Microsoft as a last resort when all other options have been explored.
      2. If you get paid by the hour disregard #1.
      posted in IT Discussion
      Pete.S
      Pete.S

    Latest posts made by Pete.S

    • RE: Windows 10 and RHEL 9 Dual Boot help.

      @scottalanmiller said in Windows 10 and RHEL 9 Dual Boot help.:

      @Saba said in Windows 10 and RHEL 9 Dual Boot help.:

      @DustinB3403 & @Pete-S Thank you so much. I have installed VMWare on Windows 10 and all seems well so far.

      I prefer the other way, Linux on the metal, use KVM built in, and Windows on top. Faster, more stable, and then it's Linux that's "faster" and always there. But I use Linux as my main operator and Windows purely for testing things so.... makes more sense for me.

      A lot of PCs come with OEM Windows license keys in the BIOS. I don't think you can use that license when you run the OS in a VM. At least not automatically.

      So that favors Windows as the base OS.

      posted in IT Discussion
      Pete.S
      Pete.S
    • RE: Unable to send emails to Gmail from my domain

      @Mr-Jones said in Unable to send emails to Gmail from my domain:

      Currently I can send now, but it always goes straight to Spam folder. Likely because we don't have DMARC set up yet.

      Yes, you need all of it to increase your odds. And look at routing your exchange emails through another SMTP gateway as mentioned above.

      posted in IT Discussion
      Pete.S
      Pete.S
    • RE: Unable to send emails to Gmail from my domain

      @scottalanmiller said in Unable to send emails to Gmail from my domain:

      @Pete-S said in Unable to send emails to Gmail from my domain:

      Also the fact that you are sending from your own IP is also a sign that it is spam. Mail servers build up IP reputation on servers that send them emails. This is different from the blacklists.
      If you haven't checked your IP against blacklists you must do so as well.

      That implies that you are running your own email server which isn't exactly forbidden, but it's a "no no". If you are running your own email server, it's expected that you will proxy through a big sender with clean IPs that have been cleared already.

      For all intents and purposes, the modern email frameworks are built around limiting email sending from big senders (Amazon, MS, Google, Zoho) only and all others are suspect and/or blocked outright. Even people running their own email servers typically (without knowing) block or restrict receiving emails from anyone but the giant carriers.

      Yeah, I agree. But since we are looking at SPF records with IPs then that is what the OP is doing (sending emails from their own IPs).

      But it's better to use an email service to send stuff out and have them worry about IP reputation, blacklist etc.

      posted in IT Discussion
      Pete.S
      Pete.S
    • RE: Unable to send emails to Gmail from my domain

      @scottalanmiller said in Unable to send emails to Gmail from my domain:

      @Pete-S said in Unable to send emails to Gmail from my domain:

      @Mr-Jones said in Unable to send emails to Gmail from my domain:

      GoDaddy TXT Record:
      v=spf1 a:mail.contoso.com ip4: 104.200.130.82 -all

      This is invalid. There should be no space between ip4: and the ip address.

      Also it's common to do ~all instead of -all when starting out.
      ~ will cause a soft fail on SPF failure while - will cause a hard fail.

      We did that this week, too! This thread is like "yesterday's project" line for line, basically. 🙂

      Yeah, I've done it a couple of times as well, but not this week 🙂

      The only thing I don't have a clue about is how you set up DKIM on on-prem Exchange so all messages are signed.

      posted in IT Discussion
      Pete.S
      Pete.S
    • RE: Unable to send emails to Gmail from my domain

      @Mr-Jones said in Unable to send emails to Gmail from my domain:

      Error:
      "mx.google.com gave this error:
      Our system has detected that this message is likely unsolicited mail. To reduce the amount of spam sent to Gmail, this message has been blocked. "

      This doesn't say anything about SPF, DKIM or DMARC failure, but the fact that you don't have them is a sign that your message is spam.

      Also the fact that you are sending from your own IP is also a sign that it is spam. Mail servers build up IP reputation on servers that send them emails. This is different from the blacklists.

      If you haven't checked your IP against blacklists you must do so as well.

      posted in IT Discussion
      Pete.S
      Pete.S
    • RE: Unable to send emails to Gmail from my domain

      @Mr-Jones said in Unable to send emails to Gmail from my domain:

      GoDaddy TXT Record:
      v=spf1 a:mail.contoso.com ip4: 104.200.130.82 -all

      This is invalid. There should be no space between ip4: and the ip address.

      Also it's common to do ~all instead of -all when starting out.
      ~ will cause a soft fail on SPF failure while - will cause a hard fail.

      posted in IT Discussion
      Pete.S
      Pete.S
    • RE: Unable to send emails to Gmail from my domain

      @Mr-Jones said in Unable to send emails to Gmail from my domain:

      *I'm still waiting for Budget approval/acquisition for the DMARC stuff.

      There is nothing you need to buy to implement it.

      You should implement SPF, DKIM and DMARC.

      The only thing you might want to buy is a service that will watch your DMARC reports and generate notifications if there is a problem.

      I think this is very good and good value as well:
      https://www.uriports.com/pricing

      Use their awesome free service to test your email setup and learn more about DMARC.
      https://www.learndmarc.com/

      posted in IT Discussion
      Pete.S
      Pete.S
    • RE: Windows 10 and RHEL 9 Dual Boot help.

      @Saba said in Windows 10 and RHEL 9 Dual Boot help.:

      @Pete-S When i rebooted from Linux, I actually selected Windows 10 from the list of available operating systems

      Sorry, I can't help you. I stopped trying to get Windows and Linux to coexist on the same drive with dual boot because Windows would often cause some problem even when it's suppose to work.

      So when I need windows and linux on the same machine I do one of three things:

      • run the secondary OS in a VM and then both OSes can run at the same time
      • install each OS on it's own drive and swap drives as needed
      • have windows installed but boot linux from a USB drive without actually installing it
      posted in IT Discussion
      Pete.S
      Pete.S
    • RE: Windows 10 and RHEL 9 Dual Boot help.

      @scottalanmiller said in Windows 10 and RHEL 9 Dual Boot help.:

      @Saba said in Windows 10 and RHEL 9 Dual Boot help.:

      I used the RHEL installation for a few hours then rebooted to Windows 10.

      Was this starting from a boot? Is it possible that you hadn't installed yet and were just running live?

      My thought as well.

      posted in IT Discussion
      Pete.S
      Pete.S
    • RE: Ubuntu Ethernet before WiFi

      @scottalanmiller said in Ubuntu Ethernet before WiFi:

      @hobbit666 said in Ubuntu Ethernet before WiFi:

      @scottalanmiller said in Ubuntu Ethernet before WiFi:

      Terminal should just be using OpenSSH.

      This might be the issue. Will have a play after my holidays

      In theory, Window's OpenSSH implementation is completely identical to the one on Linux and BSD. I can't way I've tested much in Windows 11, but on 10, it's definitely identical.

      "Completely identical" is a bit of a stretch since it's a fork, so it has additions and changes and might not support everything the main project does. It's likely lagging behind the main project too.

      But "works the same" or "practically the same" or "has the same code base"...

      Microsoft only has one fork, so windows version shouldn't make any noticeable difference.
      https://github.com/PowerShell/openssh-portable

      PS. In OP's case he has probably hasn't the right key in openssh. OpenSSH and Putty don't share their ssh keys. They are in different folders.

      posted in IT Discussion
      Pete.S
      Pete.S