@scottalanmiller said in Non-IT News Thread:

@black3dynamite said in Non-IT News Thread:

@scottalanmiller said in Non-IT News Thread:

@black3dynamite said in Non-IT News Thread:

Disney sets record for highest-grossing with $7.67 billion so far
https://www.wfmz.com/news/disney-sets-record-for-highestgrossing-year/1100840768

This makes me so sad.

Because its Disney?

Well, sure. But because Disney has totally given up on quality across the board.... going from making quality stuff to making the worst popular garbage ever (opinion I know, but it's so bad I'll no longer watch movies Disney is involved in, they've become a brand name of crap), they've taken their parks from ground breaking and oriented on customer service to just being overpriced six flags with gobs of stupid promotional stuff. They were a great company, and now the world would be a better place if they didn't exist.

That in doing so has made them more money than by creating good content or being ground breaking or whatever is sad because it shows what a horrific state society is in.

All you can do is....

"Let it go, Let it Go
Turn away and slam the door"

:winking_face:

@obsolesce said in Handling DNS in a Single Active Directory Domain Controller Environment:

@kelly said in Handling DNS in a Single Active Directory Domain Controller Environment:

just challenging the "most commonly correct approach" statement

It seems you are mistaking the "most common approach" with the "most common correct approach". I haven't been around the SMB as much as JB, but I'm assuming the most common approach to SMB DC implementations are incorrect. Meaning, 2+ DCs are being used when 1 should be used. Perhaps two DCs are used because so many other things are done incorrectly, it's thought 1 should't be used due to so many other things not properly in place, but that's besides the point in my reply here.

IMHO, SMB's use 2 DC's (me included) because it is drilled over and over in our heads by outside forces, including the application developers and the OS companies themselves. On top of that, we are completely stupid if we don't have a second DC if the hardware is available. So to follow "Best Practices," SMB's just do it. It doesn't necessarily mean that things are done incorrectly though. It mostly means, we (aka I) have an extra DC there sitting, waiting, getting monthly updates and then gather more dust for years on end all in the name of protection and risk reduction.

That is why coming here and having extensive discussions about general topics has helped me changed my own thoughts about system/network design in SMB's.

@dashrender

Grilling is fast with medium to high temps (10 minutes at 375-700) while BBQ is slow and low temps (many hours at 200-225)

IMHO, you cannot really BBQ a steak (Strip/Ribeye), hotdog or hamburger but you can BBQ or Grill a chicken.

@coliver said in What did you have for lunch or dinner today?:

@nerdydad said in What did you have for lunch or dinner today?:

@dashrender said in What did you have for lunch or dinner today?:

@nerdydad said in What did you have for lunch or dinner today?:

@dashrender said in What did you have for lunch or dinner today?:

Here's a question for ya'll.

What do you call cooking steaks or hotdogs or burgers on a grill?

Grilling

OK, and what's the difference between grilling and BBQ?

Grilling is just applying the meat to the grill to cook. BBQ requires a sauce.

BBQ is a specific cooking style that may or may not use a sauce (don't talk about sauce in some states in the south)

I'm in the north but I am a no sauce BBQ/steak person. My motto is, "If it needs sauce you didn't do it right."

@mlnews said in Non-IT News Thread:

Packed lunches not a right in Italian schools, court rules

Parents have reacted angrily to a decision by Italy's top court which states that the right to eat packed lunches in schools is not "unconditional."
Italy's Supreme Court said schools should have the autonomy to decide if children are allowed to eat packed lunches on school grounds.
A lower court previously ruled in favour of a group of Turin parents who wanted to opt out of school meals.
Parents say school meals are costly.
They also argue that food provided by schools can be unhealthy.
The Supreme Court ruled on Tuesday that bringing a packed lunch was "a possible violation of the principles of equality and non-discrimination based on economic circumstances".

I'm trying to figure out how far one has to stretch a logical argument to even equate Packed Lunch's = inequality????

That is way the f*%& out there.

@scottalanmiller

Love how the order of your food pics go from Salad to Dessert to Main. That is my kind of thinking. :grinning_face_with_smiling_eyes:

@scottalanmiller said in Miscellaneous Tech News:

@DustinB3403 said in Miscellaneous Tech News:

She doesn't have her own because it would be wasted money at this point, but she will as soon as she has the capability to speak.

Mine got their own super young. Otherwise they'd be using battery, storage, access on ours .... and the last thing that we wanted was them dropping our critical devices. By giving them their own we got them more age appropriate devices, that weren't critical to adults functioning, that could be in child-protective cases.

Oh how many non-IT parents don't understand this. I cannot tell you how many parents here at work come to me for help with virus's and such on their own device (with saved banking logins and all the goodies). I ask what they clicked on or what they were doing and 90% of the time the answer begins with "Well, my child..."

@Joel said in HyperV Server - Raid Best Practices:

This got a little heated :face_screaming_in_fear:
-So can we clarify, back to the OP - Consensus out of the options I have, Option 2 is the best way to go?

6x 2TB 12GB/s Drives in OBR10 for everything and then creating two partitions (1 for the HyperVisor OS) and then (1 for data - to store all my Virtual Machines and Data).

My VMs would be in D:\Hyper-V\VM's
My Virtual Hard Disks (daily data) would be in D:\Hyper-V\Data

Don't forget to do the cost comparisons of SAS in OBR10 vs SSD in RAID5. You may be surprised to find out that SSD in RAID 5 is cheaper (Stick with SSD 6Gb/s vs 12Gb/s) depending upon your server manufacturer.

@scottalanmiller said in I can't even:

@pmoncho said in I can't even:

@scottalanmiller said in I can't even:

@tim_g said in I can't even:

Actually I give up on that thread. We don't even know what he means by cluster.
We don't know what version of Windows/Hyper-V is being implemented.

The OP has only responded 4 times and never clarified anything.

So much is being assumed. I have a lot of questions to the OP that have never been answered, and it doesn't look like he intends on answering them. So I'm done.

That's a common problem. OPs that won't respond leave everyone wanting to discuss and nothing to work with. So it just spirals into a world of guessing and loads of discussion based on the guessing.

I have given up on many posts where the OP does not respond to questions. I give OP's about 3 hours to respond after the first response with questions. If they cannot bother to check back, why waste the time answer with assumptions.

The platform really encourages that behaviour. It doesn't show updates and encourages you to leave and await an email or something. That pattern is good for tiny, slow sites that no one is looking at. But when people are responding in real time and you aren't sticking around to watch, it doesn't go over well.

Absolutely. Just an huge UGH!

So now I mainly just hang out here.

@dbeato said in What would your recommendation be for a Type 1 Hypervisor - including backup and restoration options:

@DustinB3403 said in What would your recommendation be for a Type 1 Hypervisor - including backup and restoration options:

Most of my clients have an on-site data server
All have an AD server
All have a webserver of some type.
A few have terminal services

The fact that
Most of my clients have an on-site data server
A few have terminal services

Terminal Server is also something really annoying and cumbersome to manage without AD.

Microsoft keeps intertwining RDS and AD. Trying to manage RDS without AD is as bad as Hyper-V without AD.

@Obsolesce said in User migration to azure:

@pmoncho said in User migration to azure:

@Obsolesce said in User migration to azure:

@Dashrender said in User migration to azure:

@Obsolesce said in User migration to azure:

@pmoncho said in User migration to azure:

@Dashrender said in User migration to azure:

@Pete-S said in User migration to azure:

@Dashrender said in User migration to azure:

@Pete-S said in User migration to azure:

@lilyleiden said in User migration to azure:

We just tested migrating a small batch of test users to our new Azure tenant.

While migrating the PC/user account was no problem, the fact that people get a completely blank user profile, certainly was a showstopper!!

Many of our users has had their AD profile for years, even a decade and has a lot of individual settings, ways to work, shortcuts, quick links, favorites/browser cached passwords etc. and they loose all that.
Management has currently halted the process due to the protests.

So I am on the lookout for a way to link/migrate the old profile/profile settings, when Azure joining the PC?

I would use this as an opportunity to remove unneeded customizations and old ways of doing things and introduce new ways of working instead.

For instance is it really wise to rely on browser cached passwords? To me that's a signal that you need to look over you password management policy. Maybe your users need a real password manager or setup SSO to apps they're using.

I'm really on board with this! We don't migrate when people get new machines, that said - we have few users that do much customization to their setup...

Yes and it's also question of setting the right expectations. For instance saying: IT allows users to customize their desktops but will not provide support for it. New machines, reimaged desktops etc will be reset to company default.

I do this - I don't support end user shortcuts to their desktop. If you figure out how to get it - or get others around you to do it for you, fine... but IT does not support your shortcuts.

Wondering what others do for users bookmarks? Do you just have them create and use their own Google/Firefox/Microsoft account so they follow the user?

They can sign in and use their corporate email to sync in the web browser.

huh - a PITA making users make three separate accounts (one for each browser) based on their corporate account... but doable.

Three separate accounts for what? I only use one web browser for work, and only one work account, and have all my work bookmarks on that, and synced. Why would someone do all that on multiple browsers?

Government Healthcare websites. That is why. Medicaid (per state), Medicare (per jurisdiction), Insurance websites, different EMR websites, etc... etc... etc... etc...

Yes, it is a BIG PITA. Heck, up until last year, Eclinical EMR (version based) still wanted IE and refused to use Chrome/FireFox/Edge. It can now be used on Chrome/Edge but doesn't like FF, yet for Medicaid, they like FF better than Chrome/Edge. UGH

(Just a little bitter....)

Even in those cases, if I had a need to visit those websites on my work device with my work account, that would be the exception to the rule. I would continue to ONLY use Edge, with only my work account set up for sync. And in the weird cases I ever had to visit one of those sites that only support IE, I'd just copy/paste the password in there from the saved passwords through Edge or LastPass (whichever you'd use).

My current user use KeePass and I work with them to open the URL from KeePass so that will limit their Bookmarks. Doesn't work all the time but the power users are good.

The alternative to signing into the web browser to sync is so much worse, even in the off chance you chose to use 4 web browsers at the same time, and sign into them all with your work account to sync. Any other method is going to end up costing way more effort in the end anyways.

I agree. The option I use is on occasion, I have my users export their Bookmarks to the Documents folder. This works most of the time.

@Obsolesce said in User migration to azure:

@Dashrender said in User migration to azure:

@Obsolesce said in User migration to azure:

@pmoncho said in User migration to azure:

@Dashrender said in User migration to azure:

@Pete-S said in User migration to azure:

@Dashrender said in User migration to azure:

@Pete-S said in User migration to azure:

@lilyleiden said in User migration to azure:

We just tested migrating a small batch of test users to our new Azure tenant.

While migrating the PC/user account was no problem, the fact that people get a completely blank user profile, certainly was a showstopper!!

Many of our users has had their AD profile for years, even a decade and has a lot of individual settings, ways to work, shortcuts, quick links, favorites/browser cached passwords etc. and they loose all that.
Management has currently halted the process due to the protests.

So I am on the lookout for a way to link/migrate the old profile/profile settings, when Azure joining the PC?

I would use this as an opportunity to remove unneeded customizations and old ways of doing things and introduce new ways of working instead.

For instance is it really wise to rely on browser cached passwords? To me that's a signal that you need to look over you password management policy. Maybe your users need a real password manager or setup SSO to apps they're using.

I'm really on board with this! We don't migrate when people get new machines, that said - we have few users that do much customization to their setup...

Yes and it's also question of setting the right expectations. For instance saying: IT allows users to customize their desktops but will not provide support for it. New machines, reimaged desktops etc will be reset to company default.

I do this - I don't support end user shortcuts to their desktop. If you figure out how to get it - or get others around you to do it for you, fine... but IT does not support your shortcuts.

Wondering what others do for users bookmarks? Do you just have them create and use their own Google/Firefox/Microsoft account so they follow the user?

They can sign in and use their corporate email to sync in the web browser.

huh - a PITA making users make three separate accounts (one for each browser) based on their corporate account... but doable.

Three separate accounts for what? I only use one web browser for work, and only one work account, and have all my work bookmarks on that, and synced. Why would someone do all that on multiple browsers?

Government Healthcare websites. That is why. Medicaid (per state), Medicare (per jurisdiction), Insurance websites, different EMR websites, etc... etc... etc... etc...

Yes, it is a BIG PITA. Heck, up until last year, Eclinical EMR (version based) still wanted IE and refused to use Chrome/FireFox/Edge. It can now be used on Chrome/Edge but doesn't like FF, yet for Medicaid, they like FF better than Chrome/Edge. UGH

(Just a little bitter....)

@Dashrender said in User migration to azure:

@Pete-S said in User migration to azure:

@Dashrender said in User migration to azure:

@Pete-S said in User migration to azure:

@lilyleiden said in User migration to azure:

We just tested migrating a small batch of test users to our new Azure tenant.

While migrating the PC/user account was no problem, the fact that people get a completely blank user profile, certainly was a showstopper!!

Many of our users has had their AD profile for years, even a decade and has a lot of individual settings, ways to work, shortcuts, quick links, favorites/browser cached passwords etc. and they loose all that.
Management has currently halted the process due to the protests.

So I am on the lookout for a way to link/migrate the old profile/profile settings, when Azure joining the PC?

I would use this as an opportunity to remove unneeded customizations and old ways of doing things and introduce new ways of working instead.

For instance is it really wise to rely on browser cached passwords? To me that's a signal that you need to look over you password management policy. Maybe your users need a real password manager or setup SSO to apps they're using.

I'm really on board with this! We don't migrate when people get new machines, that said - we have few users that do much customization to their setup...

Yes and it's also question of setting the right expectations. For instance saying: IT allows users to customize their desktops but will not provide support for it. New machines, reimaged desktops etc will be reset to company default.

I do this - I don't support end user shortcuts to their desktop. If you figure out how to get it - or get others around you to do it for you, fine... but IT does not support your shortcuts.

Wondering what others do for users bookmarks? Do you just have them create and use their own Google/Firefox/Microsoft account so they follow the user?

@scottalanmiller said in Anyone using yubikey, smart card or other hardware device for MFA?:

@CCWTech @pchiodo and I were discussing this just this week. @CCWTech got a classic RSA key from his bank and we were talking about what a total joke it was. It's this bulky key you have to carry around and the security on it is a joke. It shows the key at all times and is super visible. You can't hide it, you can't secure it.

Using Authy, OneAuth or Authenticator you have all this heavy security protecting access to the app, it's in a convenient place on a device that you have with you anyway, and it's only visible when you want it to be visible. And it's on a device you know if you've lost. Rather than being a key you can go months without using, easily misplace, and if someone stole it you'd likely not know for months.

(Using Authy for the last 3 years)

I have thought this for a while now but felt I was wrong somehow. With the articles I have read over the last few years it seems most point to physical hardware based tokens are more secure.

I have limited knowledge in this area, so, what the heck am I missing? Does yubikey provide better security than Authy????

@Obsolesce
I stole the Jupiter pic from you. So darn cool.

@Obsolesce said in Non-IT News Thread:

@travisdh1 said in Non-IT News Thread:

@Obsolesce yes, with standard home toilets.

Really? All data shows public restroom / commercial water jet toilets. I can't find a single reference to a home toilet test or study. Nothing at all.

Until then, I have no reason to think a home toilet is at all as bad or even remotely close.

Give Mike Rowe a shot. Here is a snippit from an episode he did with a "clean" bathroom, black light, and flushing a home toilet with the lid up.

https://www.youtube.com/watch?v=cqNus5AIHR4

Over the years, I have become a huge proponent of closing the lid before flushing.

@scottalanmiller
Dang. That stinks.

Definitely explains your email issue.

Reddit has a post that Rackspace had an email ransomware incident.

Don't know about its credibility though.

@Fredtx said in Who's making the move to vSphere 8:

@Pete-S said in Who's making the move to vSphere 8:

@Fredtx said in Who's making the move to vSphere 8:

I also read that vmware no longer recommends booting from sd cards.

According to vmware you need 128 TBW (over 5 years). Industrial SD cards for example can have that. SD cards that goes into phones and cameras don't.

For Dell servers, it looks like the BOSS card is a good replacement.

“BOSS-S1 utilizes one or two read-intensive (Boot Class) 80mm M.2 SATA Solid State Devices (SSDs) which can be used in “pass-thru” or two devices in Hardware RAID 1 (mirroring).”

https://vinfrastructure.it/2018/12/installing-esxi-on-a-dell-emc-boss-card/

I use BOSS cards and recommend them always if possible.

Don't know if it is just me, but it seem BOSS card pricing has jumped rather high as compared to other server component prices??????

@gjacobse said in What Are You Doing Right Now:

@pmoncho said in What Are You Doing Right Now:

@gjacobse said in What Are You Doing Right Now:

@pmoncho said in What Are You Doing Right Now:

@JaredBusch said in What Are You Doing Right Now:

@gjacobse said in What Are You Doing Right Now:

Too many to quote using the phone,.. thanks.

so- now it is a bit bitter sweet as I may very well lose all of my accrued PTO,..94 hours.

Will have to see

Dunno about your state, but every state I have dealt with, accrued means it is earned and is 100% required to be paid out.

For those in Ohio, the employer must have a written policy stating under what conditions accrued PTO will not be paid.

And there’s the ‘rub’ of course.

While I live and work in Kentucky, the company that pays me is in Ohio…. And yes- it’s in the Employee handbook. So it’s very very likely that I’ll get screwed out of it.

Forgot to mention, I don't see why a company believes in not paying out PTO hours for mainly, good, stable employees who put in their 2 week notice?

The now ex-employee will blab to the rest which may foster a issue amongst the current staff as the rumor runs amuck within the company.

If an employee has a good hunch they will not be paid, they might as well go on vacation for two weeks, come back for a day and then walk out a day before starting their new job. --- Seen this happen in the last few years.

Keep in mind, I"m a contractor. and yea,.. it's in the handbook.. it's not paid out. take it or lose it.

The company I work FOR does carry over. and the COO is a little confused why I wasn't hired,.. LAST YEAR,.. but she has little room to do anything...

In the back of my mind,.. the former Director is getting kick backs from all the money spent. the organization has spent over $1.1M on all services and products in the last 18months. And this is a clinic of less than 300 people.

That is some serious moola. The CFO might be in on it too. A friend of my father, owned an accounting firm with a side IT company, got busted in kick back scam to the tune of $10 Mil. All the C-Level execs were included in the scam though.