Topics created by scottalanmiller

@scottalanmiller Try with another separator instead of dash, just to make check if it's the dash or something else. Maybe just remove it altogether.

@pmoncho said in Kerio Connect "license error: license exhausted, cannot allow another host": Based on the couple posts I have seen, each registered user can have five devices. So, if they have 30 devices, they need 6 user licenses. Did they add any extra devices lately? Easily, but more likely they just let their license expire.

I just had discovered on a recent audit a Barracuda Backup device, but I was able to get the account login for the cloud and local account. I used the email of the previous IT person and the administrator password. If you don't know the account or password at this point is better to reset and start over or contact Barracuda Technical Support...

@CCWTech said in Restoring Google Drive Folders Instead of Individual Files: Unfortunately what they did ended up orphaning the files. https://support.google.com/a/answer/6008339?hl=en Ouch

@stacksofplates said in Researchers use Intel SGX to put malware beyond the reach of antivirus software: Did you see what Intel said regarding this: Intel is aware of this research which is based upon assumptions that are outside the threat model for Intel SGX. The value of Intel SGX is to execute code in a protected enclave; however, Intel SGX does not guarantee that the code executed in the enclave is from a trusted source. In all cases, we recommend utilizing programs, files, apps, and plugins from trusted sources. Protecting customers continues to be a critical priority for us and we would like to thank Michael Schwarz, Samuel Weiser, and Daniel Grus for their ongoing research and for working with Intel on coordinated vulnerability disclosure. Outside of the threat model?......... Haha, whatever that means.

@Pete-S said in “Catastrophic” hack on email provider destroys almost two decades of data: So if you make a backup to something like Backblaze. Would that be considered an offline backup? Depends how it is done. It's online, not offline. But it can be airgapped.

Exciting stuff.

@Dashrender said in Amazon acquires Eero, maker of mesh Wi-Fi routers: @coliver said in Amazon acquires Eero, maker of mesh Wi-Fi routers: https://eero.com/shop/home-wifi-system And it's not as cheap as the competitors. It's hella expensive - just like the google mesh stuff. Yeah, makes no sense.

Now if only Protek would own up and admit what happened, we'd know some more. Without them willing to engage in a dialogue, everyone automatically kind of jumps to the worst possible case in their minds. Given that their remediation is not going well (that's how we found out about it, they weren't actively fixing affected customers for a while, and possibly not at all yet, we don't know) it seems like going public with an apology and explanation would be the best thing to do.

@Dashrender said in What SQRL Apps Are You Using: @scottalanmiller said in What SQRL Apps Are You Using: @Dashrender said in What SQRL Apps Are You Using: @scottalanmiller said in What SQRL Apps Are You Using: @Dashrender said in What SQRL Apps Are You Using: @coliver said in What SQRL Apps Are You Using: What's seems odd to me (even though it probably isn't) is that there are no major players also working on this in tandem. If this is supposed to be the next iteration of anonymous login there are a ton of security adjacent vendors that would love this. No, they wouldn't because they can't make money off of it. Actually they could, if it had any value. They could make a lot off of it. It's because it doesn't do anything useful that it has no value. OAuth already does all the good parts of SQRL and fixes the "not easy" problems. No it doesn’t because oauth gives the control to that third party, it’s not trust no one. SQRL does that too. What no it doesn’t. You are the only one with your private key and everything is done on the fly based on that. No third party is ever involved. That's the impression that they like to give, but it doesn't work that way. To share identities or have any "easy" between sites, it is still sharing just like OAuth (Actually, they state that they are just extending OAuth.) So with SQRL you always have to trust at least one source, and if you want the features that most people want, then you have to trust a third party as well. The SQRL key carries no info, so is nothing more than a cookie, so requires the same third party sharing that we have now,. It's just a cookie that doesn't automatically get conveyed between unrelated sites.

It's not checked. However, some properties within are. But not all of it. It's telling you it's conditional. Still pointless though IMO.

@IRJ said in NTG Seeking IT Interns: How many hours a week is recommended? I know someone who may be interested. No official number set yet. Probably like ten, but flexible hours, so like weekends are fine.

MSP Maturity Model. Strictly speaking, the MSPMM does not tell MSPs to make all of their customers identical. But in practice, it encourages it and many MSPs talk about the MSPMM in these terms - finding ways to make customers all run the same tools, software, practices, network design, etc. This makes management so much easier for the MSP, but has two major problems. First, it forces the customer to conform to the vendor, which makes very little sense. IT needs to adapt to the business, not the business to IT. But that's another topic. Secondary, it means that an attack vector that works on the MSP will likely work on every single one of their customers making the prospect of breaching the MSP that much better. Sure, if a targeted attack by experienced state-sponsored hackers goes after an MSP, the MSP has little chance of winning that battle. But that isn't the real risk. In the real world, the risk is automated attacks looking for common vulnerabilities and spreading organically through shared tooling - things that are only possible or reasonably likely when the environments are homogeneous: both amongst the MSP clients, and between clients and the MSP themselves. The traditional approach of MSPs, especially VAR - MSP combo companies, is to have not only the same tools and software, but even the same hardware and products so that any hole anywhere because a hole everywhere and breaching any one piece of the infrastructure means you are likely to breach it all.

Honestly this guy isn't photogenic. Why do they keep taking pictures of his face-for-radio. FFS Also I hope they bring him up on corruption charges.

@gcarreon won something too

@Dashrender said in Skyetel Inbound SIP Trunk on FreePBX: @JaredBusch said in Skyetel Inbound SIP Trunk on FreePBX: @scottalanmiller said in Skyetel Inbound SIP Trunk on FreePBX: @JaredBusch said in Skyetel Inbound SIP Trunk on FreePBX: @scottalanmiller said in Skyetel Inbound SIP Trunk on FreePBX: Locking a port to a single IP is a trivial task for any gear, even consumer. I wouldn't go that far. I don't know much consumer gear that doesn't make that easy. Super easy tomport forward? Yes. Able to restrict to a specific source IP? No. eh - if you're only open for the trunk provider, then you can likely lock to one or a few IPs. if you need mobile support - that's another story. How? Where? Been a while since I was in a consumer router, but port forwarding screens had nothing about source IP.

@scottalanmiller someone is salty with Joe.

@dbeato cURL is really good for on the fly processing. WGET is more focused on getting the whole site down to disk.

@scottalanmiller said in Zimbra Services Fail to Start; Removing Stale PIDs: @dbeato said in Zimbra Services Fail to Start; Removing Stale PIDs: @dbeato said in Zimbra Services Fail to Start; Removing Stale PIDs: @scottalanmiller said in Zimbra Services Fail to Start; Removing Stale PIDs: @dbeato said in Zimbra Services Fail to Start; Removing Stale PIDs: I have only had this happened on the upgrades between versions and OS upgrade. This happened to us while simply up and running. Middle of the day. Very odd. Weird What version? 8.8.10_GA_3716 Hmmm I just upgraded from 8.8.9 to 8.8.11 last week or two weeks ago.

@black3dynamite said in Deploying NodeBB 1.11.1 on CentOS 7 with MongoDB 4: @scottalanmiller said in Deploying NodeBB 1.11.1 on CentOS 7 with MongoDB 4: @black3dynamite said in Deploying NodeBB 1.11.1 on CentOS 7 with MongoDB 4: @scottalanmiller said in Deploying NodeBB 1.11.1 on CentOS 7 with MongoDB 4: @JaredBusch said in Deploying NodeBB 1.11.1 on CentOS 7 with MongoDB 4: Otherwise, there is no reason to use CentOS, nor avoid the Fedora RPM packages. Actually there is, the RPM packages for MongoDB are "breaking". You can't auto-update with them without bringing your forum down. Several updates in the last two years were not just breaking, but very breaking. Fedora RPM for NodeJS is acceptable, but would put you several versions behind typically. For MongoDB, it would put you behind with updates while creating a risk that a seemingly trivial update to the OS would be expected to totally hose the database (3.4 to 3.6 to 4.0 are all updates that have to be manually handled for MongoDB with the actual data being massaged to handle it, but the OS just changes the engine version and lets the data stop working.) Its probably be best to start using the MongoDB repo instead of using RHEL and Fedora repo, with the news about them planning on removing MongoDB from their repo. I do that anyway. MongoDB is very good about their repos. You do the same with nodejs on Fedora too? There are lots of ways to do it, but I like this model for control. NVM is good, too.

@jmoore said in Scale, Negma, and Green Bean IT in Farmer's Branch: @scottalanmiller Sounds interesting Not far for you.

@Emad-R said in Simple Resume Fails: @CCWTech @JaredBusch The only remaining one in the middle east(not gulf) ) without war or blockade, thanks to weak - sway with the strong - stay next to the wall politics. Jordan Some people call it the Hashemite Kingdom of Jordan Cause apparently it is owned by one family. go figure. sorry for late reply That's how basically all Arab countries work. Not really a surprise

Tuna Salad? IS that anything like Bumblebee Tuna?