Posts made by thwr

@Jason Having just a few timers failing is odd. Custom or built-in jobs?

A little logging 101 in WSS3: https://raiumair.wordpress.com/2007/06/19/quick-a-to-z-of-sharepoint-logs/

Just something coming to mind: What about storing the LUKS key in the TPM module and let LUKS retrieve it?
Found a few topics about that on a quick search.

@JaredBusch Sure, is just a quick fix.

Just add a ban for 2 hours after 3 failed logins, will hurt much on their script.

Added country block (automatically updated CIDR ranges) to my firewalls (pfSense in this case) a few years ago, anything but my country gets blocked. I'm not seeing many attempts anymore since then. This won't help against a professional attempt, but you get rid of 99% of the kiddies.

@Minion-Queen said in What Are You Doing Right Now:

Holy crap! I can't leave you people alone for a day?

Leaving the boys alone? Is the fridge filled? Emergency numbers placed next to the phone?

@JaredBusch Ah ok, sorry. Still new to ML, need to torture the wheel on the mouse a bit more as it seems.

@scottalanmiller nope

@JaredBusch get a dump from the disk and compare it to a backup maybe?
BTW: 0/1/0/1 is not that secure, there may still be magnetic echoes. DBAN is always nice to actually kill something, physical shredding is even better

@MattSpeller said in What the Poo and Moderation of Swearing:

@thwr said in What the Poo and Moderation of Swearing:

My 0.02c:

Stingy bastard

Narf... ok, your point

My 0.02c: Whatever the future way will be (mod first or not), just keep it transparent.

IMHO, a good community can't live without at least a certain amount of moderation. At least not with thousands of members. Problem is, moderation is and will probably ever be a tightrope walk, keeping it transparent should pay back at some point.

About the product: Funny name, but I would have a hard time to explain my documentations cover sheet ("How to use Fck" or "About Fck".) to my boss

Any error message in the logs? Or maybe in central admin?

Are you sure the service account is configured correctly? No expired password or something like that?

@scottalanmiller good point, thanks

Thanks everyone for all your suggestions, really appreciate that. Getting back a little late here, totally forgot that my wife planned a small trip for today

@IT-ADMIN: Thanks, already on my todo-list. Just had no machine at hand. I know about issues with pfSense running virtual, but as I said, performance is great when plain traffic gets routed over virtual and / or physical NICs. But you are right, should take virtualization out of the equation.

@Danp: Agree.

@travisdh1: Interessting, didn't thought about running OpenVPN standalone outside of pfSense. pfSense is known to be a bit... picky when it comes to OpenVPN. BTW: Im not a big fan of Vyatta. pfSense is running on my sites for nearly 10 years now. Would rather like to solve the problem

@scottalanmiller: Single core load measured over 5 mins outside of business hours.

Will test with a physical pfSense on some Intel NUC maybe. If that does not work, I could still do some tests with a standalone OpenVPN on some Linux host. Will report back later.

I'm fighting with this for quite some months now.

Site A:

• pfSense-latest running on an Intel Atom D525 (SuperMicro board) using Intel NICs.
• Wirespeed for plain transfers from the internet (e.g., downloading some Linux ISO)

Site B:

• Single Intel Xeon 2603v3 (just a testing machine)
• pfSense-latest running on top of Hyper-V 2012 R2
• 2 virtual NICs:
  a) WAN with static VLAN assignment on the vNIC
  b) Local nets with VLAN tagging from within the VM (due to the 8 pNIC limit in Windows/Hyper-V)
• Near wirespeed for plain transfers from the internet (e.g., downloading some Linux ISO)
• Decent performance on traffic routed over the box (wirespeed), way faster when doing inter-VLAN between VMs on the same host (~ 300MB/s for large sequential files, the SSDs on the host just can't write faster)

Uplink between both sites is 1GB/s dark fiber at the moment, will be 10GB/s sometime soon. I'm seeing near wirespeed performance for plain traffic between both sites (FTP transfer for example), but Site-to-Site VPN using OpenVPN is capped at 7 MB/s. IPsec is a little bit faster, maybe 8-9 MB/s. Switches on both sites are externally managed Cisco 2960-X's. CPU usage during VPN transfers goes up to 20-30% at 7MB/s on Site A. At Site B, it's hard to even see an increased load. I don't expect wirespeed here, the little Atom is getting old, but at least like 20-40 MB/s. RTT between A and B is < 1.8ms (peak).

Why VPN over dark fiber? The line is running through a junction point in a public building I do not have control of.

Already did the usual stuff like limiting MTU, configuring sendbuf's and so on.
Any ideas?

@StrongBad Good analogy.

@Dashrender: Different shells provide you with different programming (or scripting) capabilities. For example, zsh and (k)sh differ in word splitting. Here's a good read about that: http://zsh.sourceforge.net/FAQ/zshfaq03.html#31. And here's how zsh differs from other shells at a more global scope: http://zsh.sourceforge.net/FAQ/zshfaq02.html

@MattSpeller Nah, that's ok. I don't expect anything less from @scottalanmiller

@scottalanmiller said in If you are new drop in say hello and introduce yourself please!:

@thwr said in If you are new drop in say hello and introduce yourself please!:

@scottalanmiller

@thwr said in If you are new drop in say hello and introduce yourself please!:

@scottalanmiller hehe. Bonus points? Well, I think I just need to poke around a bit.

Uhm, in this case... I will have to delete my account. What's the point in helping others without proper points and medals?
Just kidding

Oh well, I mean... each post is worth ten points. So you can just add up your posts and multiple by ten! There you go!

Ha, perfect. A really fast way to get divorced
Thanks for the warm welcome.

@scottalanmiller

@thwr said in If you are new drop in say hello and introduce yourself please!:

@scottalanmiller hehe. Bonus points? Well, I think I just need to poke around a bit.

Uhm, in this case... I will have to delete my account. What's the point in helping others without proper points and medals?
Just kidding

@scottalanmiller hehe. Bonus points? Well, I think I just need to poke around a bit.

Hello Mangolassi. Name is Thorsten, some of you may know me already from other places. About me: Nearly 20 years in IT right now, developer and admin at the same time. Like to help here and there but will most likely also ask questions myself.