Best posts made by stacksofplates

There's also nothing stopping you from doing everything over HTTPS/SSH/whatever over zerotier. I just don't see the issue.

Nomachine works well. It's easy to set up and I've found it to be more performance and easier to set up than VNC. If it's just between windows and Linux, then rdp works also as Pete mentioned (if you don't want straight console access).

@gjacobse said in VNC Replacement solution:

@stacksofplates said in VNC Replacement solution:

@gjacobse said in VNC Replacement solution:

RDP is going to be a no go. Set it up today and was getting connected - that shouldn't have been an issue.

The issues is Audio and COM ports. Seems RDP is re-directing - even with that setting off.

I feel like we don't have enough I do to help. Is this your machine you are remotely connecting to? Someone else's? Do you need console access or do you just need a session?

My system. Needs to be GUI - Desktop access. All the programs running are to operate the radio

I'd just try nomachine then and see how that works for you.

@Aconboy said in Scale Computing VS Proxmox:

@stacksofplates Yes, we did in 2019. There are a couple of ways that can be done. When you snapshot a VM, any disk in that snap can be mounted to any other vm, provided that the logged in user is at a permissions level allowing it. That is actually part of the mechanism that several backup vendors (acronis, storware,etc) use to do agentless backups of Scale Computing VM's. If you haven't taken a look since 2018, you should take a look again as there has been so very many things added since then.

Well I guess I mean more without doing a snapshot. The flow we were looking for at the time was we had an ephemeral VM that would boot, mount the disk for storage, we could unmount the disk, destroy the VM, bring it up a new copy and remount the disk. The data disk wouldn't be in the snapshot since it only holds app state. Think of it like persistent volumes for k8s.

It all depends. You can inspect the layers of the images. You can also scan with trivy, snyk, etc.

You can also do what @IRJ mentioned. There’sa few ways to handle this.

Also you don’t need Kube for zero trust. You can essentially apply it to anything with SPIFFE/SPIRE. SPIRE provide attestations for nodes and workloads as SVIDS.

It’s easier on Kube because service meshes like istio and Kuma use spire under the hood for you.

OPA is another step in this direction. You don’t need Kube for OPA either.

@scottalanmiller said in Experience with NDR Solutions:

For the customer in question, an ERP dedicated for the produce logistics industry.

Or for many of my customers (who don't need NDR) a Veterinary Clinic Management System (PIMS).

Which of these do you know with microservices or with native container support or any addressing of zero trust? We can't deploy theoretical software for contrived customers, has to be the actual software that people need. In the real real world, we have to deploy the software that they are already on, almost never is IT consulted or listened to when it comes to which software to use. But even if it theoretically was, what software is out there that we could even recommend for real customer usages in most industries unless it is bespoke?

Vetastic could easily be containerized and deployed on Kube.

@scottalanmiller said in Experience with NDR Solutions:

@stacksofplates said in Experience with NDR Solutions:

Kube gives you a ton. Arguably the biggest advantage is service discovery.

How would service discovery assist? That would not help in any way. Adding service discovery for a single instance is a lot of work for no benefits. That's a great tech, when you have a use for it. But most software does not.

I wasn’t saying it would help. I was saying the biggest advantage kube gives is service discovery. Things like zero trust are secondary.

@scottalanmiller said in Experience with NDR Solutions:

@stacksofplates said in Experience with NDR Solutions:

SPIFFE/SPIRE

more appropriate for multi-service environments

You can treat systems as services. Comparing the machine someone is accessing the service from along with the time and location are all valid checks that should be done if you are even thinking of something like NDR software. It’s best demonstrated in multi service environments but is still very valid with even single service environments.

@scottalanmiller said in Experience with NDR Solutions:

@stacksofplates said in Experience with NDR Solutions:

@scottalanmiller said in Experience with NDR Solutions:

@stacksofplates said in Experience with NDR Solutions:

SPIFFE/SPIRE

more appropriate for multi-service environments

You can treat systems as services. Comparing the machine someone is accessing the service from along with the time and location are all valid checks that should be done if you are even thinking of something like NDR software. It’s best demonstrated in multi service environments but is still very valid with even single service environments.

Oh, like service "consumption" discovery?

Yeah kind of. That's one of the big parts of zero trust is verifying everything. Why is Sally accessing this service from a non work computer at 3 am her time with a chinese IP address? Sure this request has the password but that doesn't sound valid. So things like SPIRE will assign SVIDS to services and machines and those can be compared in rule engines like OPA.

So sure, you don't own the ERP or whatever software, but you can set up the infra to allow traffic to it based on a zero trust model. For example: OPA could be your rule engine, any traffic passing to the ERP is validated through a call to OPA based on a JWT assigned at the proxy/api gateway and then OPA would verify the JWT claims (SVID, issuer, etc) before allowing the traffic to hit the ERP.

@Dashrender said in Windows 11 versus 10:

@scottalanmiller said in Windows 11 versus 10:

@siringo said in Windows 11 versus 10:

I just hate these bloody upgrades or whatever you want to call them.

When I was younger it was exciting/interesting, now it's just a PITA.

I hate them because I know they will move or make you have to do something unimportant, that you have always done, be done differently. Where's notepad? Oh it's called Scribbler now. Where's Windows Explorer? Oh it's called File Finder.

Why do we have to learn new names for the same old crap.

Imagine doing that with cars. Press the accelerator, oh it's called the Make it faster button now!

I don't care about the new tech tricks and improvements, I just want to use my PC and get my work done so my day is as stress free as possible.

Old grumpy bastard complaining, yeah, probably. Don't worry, it'll happen to you.

Really only a Windows thing. They rename to distract from the lack of innovation.

my question is - do they need innovation? Other than performance improvements - is windows 10/11 any better than windows 7? performance is an under the hood thing...
This is a business tool - not some stupid home gadget - Windows doesn't need flashing lights.

Is this what people said when windows 95 came out and replaced 3.11? I don’t get the hate from people for changing the looks. As time goes on, people find better ways to interact with systems esp with touch screens being prevalent and the ever changing landscape of screen sizes.

@Dashrender said in Dymo labelwriter 550 over IOGear print server installation:

your soul

https://i.pinimg.com/originals/16/f8/80/16f8804e47931bc42580a39bc5f518a3.jpg

@Danp said in redSling?:

It seems relatively new based on a quick Google search. What made you consider it as a viable "no code" solution? What other options are you considering?

Pocketbase is a decent solution for self hosted.

Dgraph is another solution for self hosted if you want a graph database and GraphQL.

Pocketbase has an admin interface and Dgraph uses Ratel for an interface, but neither have a customer facing interface. That would need to be written, so not 100% no code but the db and APIs are auto generated with both of these.

@Danp said in redSling?:

It seems relatively new based on a quick Google search. What made you consider it as a viable "no code" solution? What other options are you considering?

Also airtable is a pretty popular tool. I think that could count as no code.

@Pete-S said in XO-Lite beta:

@travisdh1 said in XO-Lite beta:

I also think having XO Lite available will make XCP-NG more approachable for less experienced techs. I'll still use XO to manage my XCP-NG servers, but XO Lite will make that initial server rollout and XO install more approachable.

I feel that the world is moving towards automation and away from pretty web UI. And also away from self-hosting and towards services that someone else will be responsible for.

Having automation doesn’t preclude having a web ui. A lot of times (most of the time) the web ui uses the same API as the automation.

There are a lot of cases where you will have people interacting with the ui instead of automation so it’s still a valid option. And having a lighter weight version of the old xen orchestra stuff would be nice.

magic wormhole

https://magic-wormhole.readthedocs.io/en/latest/

@pmoncho said in Beelink PC issues:

@scottalanmiller said in Beelink PC issues:

@pmoncho said in Beelink PC issues:

@scottalanmiller said in Beelink PC issues:

@JaredBusch said in Beelink PC issues:

@stacksofplates said in Beelink PC issues:

I've bought a couple of the micro form factor Optiplex computers (9020) and have been happy with them. You couldn't have saved too much by buying something like this I can't imagine? I think I paid $250 for the last one and it came with 8GB RAM, an i7, and a 250GB SSD.

This? Yeah, it does not compare, except price.

Wow, that can't be worth $40 new, but $240 used? What the heck?

It should be worth $40 and my guess for the higher price is economics. It was built well and keep on chugging along. It seems they are continually in demand for a basic pc that needs just a web browser or to act as a kiosk.

Yes, but you can get brand new with much more performance for that price. Why get something that is a decade old, AND used when new and new is possible? Much less flexible. And can that unit even run current Windows?

Because it keeps chugging along and fulfilling the purpose it was intended. If @stacksofplates doesn't have to do anything to it for 2-3 years other than updates and/or deal with any issues @Dashrender is having, then it could be worth the money.

It seems, based on this thread, the issues @Dashrender is having with the more powerfull/lower cost Beelinks are becoming more expensive than if he just paid $550 for a Dell Optiplex 5070 micro. I cannot be sure as only @Dashrender knows the true cost and if the Beelink's are working out better.

I like products that fulfill the purpose and require less maintenance. If that is Beelink or a new $1200 OptiPlex 5090 micro, count me in.

I guess it comes down to the old axiom, "Price is what you pay, value is what you get!"

Yeah I mean this is just running as a small server in my house for k8s. It has more than enough power for that and it runs like a champ. If it was a business I would have bought new and not thought about it, but it’s for my home dev work so it’s whatever.

@scottalanmiller said in Installing Mastodon 4.1.2 on Debian 11:

I tried their Docker configs, but couldn't find any that worked and it isn't clear if they have an official Docker image or just third party ones.

https://github.com/mastodon/chart

Their official image is here ghcr.io/mastodon/mastodon

I used to use tmux very heavily. I recently mostly used Zellij, which is a similar tool but written in Rust.

However, now I almost exclusively use multiple buffers in neovim with a terminal overlay.

Once really nice thing about tmux is you can keep jobs running in the session after disconnecting from SSH. So if you have a long running job (like a large rsync) you can just disconnect from the session on the server but let it keep running.

@nadnerB said in One app to rule them all:

A local mob is looking to combine Dropbox, WhatsApp, and scheduling.
The complexities are that as it’s a non-profit volunteer organisation, so not everyone has a Microsoft, Apple ID, or Google account. There are less than 30 people.

They need document storage but <50GB, secure instant messaging, and a sensible way of rostering.

Rostering is currently done by a word document in Dropbox.

They have recently looked at Connecteam but that’s a lot of money for the features they’re already getting on free tier and the management ideal for how they do things.

I don’t know much about Slack, and Teams may not be ruled out it really depends on the other members hesitancy to get a Microsoft account.

Are there any other suggestions for a unified app?
I don’t think there will be opposition to paying for something that makes sense at a reasonable price.

EDIT: It'll have to be hosted/cloud based, as none of them have an inkling about technical setup/maintenance

If you're looking at Slack, Zulip seems to be another good choice. Instead of adding threads after the fact, you kind of have to start threads from the beginning to keep things organized. It sounds like a good idea. I haven't use it yet thought so take that for what it's worth.