Just deployed new CentOS7 VM and fully updated (about 177 updates from ISO I had on hand) in the time it took for Windows Server 2016 to restart due to updates.
Best posts made by zachary715
-
RE: What Are You Doing Right Nowposted in Water Closet
-
RE: Miscellaneous Tech Newsposted in News
Just noticed this while applying this month's patches. I know I've seen some on here complaining about the 14 character limit before, so just in case you didn't read the release notes...
-
RE: Hiding files/folder shares from usersposted in IT Discussion
@black3dynamite said in Hiding files/folder shares from users:
@zachary715 said in Hiding files/folder shares from users:
@dashrender said in Hiding files/folder shares from users:
@black3dynamite said in Hiding files/folder shares from users:
@dashrender said in Hiding files/folder shares from users:
@black3dynamite said in Hiding files/folder shares from users:
Also take a look at your NTFS permissions.
I thought ABE was based on NTFS permissions?
I believe its only for shares.
I think you are correct, but the share permissions is for the entire drive mapping/UNC usage. The NTFS permissions are what actually determine the ABE settings and what the user sees.
This is correct. Share permissions are generally Everyone and NTFS are fine-tuned based on who needs what access. We set this up a couple of years ago and it has been very convenient for our users.
We also do the same thing too. And then we use role-based permissions to make managing permissions easier.
Yes you definitely want to assign these permissions based on groups and not individual users everywhere possible. Put users into groups, assign NTFS based on those groups. Move users around, in, out, whatever and don't have to change too many permissions.
-
RE: What Are You Doing Right Nowposted in Water Closet
@wrcombs said in What Are You Doing Right Now:
@wrcombs said in What Are You Doing Right Now:
Looking at my desk top, Working on a ticket and I see that i have a warning on the internet in the bottom right.
Apparently I am connected to the network, but i have no internet access. But Im on ML.. and on our tickets and can search and surf the web with no issues..
Even my computer thinks its Monday.
I had this issue with my pihole. For some reason it started blocking the MS domain that needed access for this to work. I had to go in and whitelist it and everything situated itself.
-
RE: Miscellaneous Tech Newsposted in News
I saw it discussed on a thread not long ago, and can't seem to find it now, where someone was having issues installing the Desktop Experience of Windows Server Semi-Annual Channel. Just saw this article published over the weekend stating that the Semi-Annual Channel will in fact no longer include the Desktop Experience as an option, only the Core since that's their recommended version/edition. The Desktop Experience will still continue on the LTSC.... for now.
-
RE: Major Intel CPU vulnerabilityposted in IT Discussion
Good article about how the likes of Vultr, Digital Ocean, Linode, and others are working together to try and solve the issues this creates. Sounds like they learned same time we did.
-
RE: What Are You Doing Right Now posted in Water Closet
-
RE: Miscellaneous Tech Newsposted in News
@obsolesce said in Miscellaneous Tech News:
@jaredbusch said in Miscellaneous Tech News:
@obsolesce said in Miscellaneous Tech News:
We bought two new cars in 2015. Although we got a good deal and a bit less than MSRP, I won't make that mistake ever again.
Why would the above lead to the below?
@obsolesce said in Miscellaneous Tech News:
I will never buy newer than 5 or so years.
This is just stupid. Like everything else, vehicles are improved (mostly) every year. Better parts, better design, etc. The cars I grew up with in the 80's were never designed to last 200,000 miles or more. Of course a few did, but those were outliers.
Today's cars are absolutely capable of 200,000 miles or more when properly maintained with the recommended maintenance and inspections from the manufacturer.
Because in 2015, if we had bought a 2010-2011 or something instead, we'd have been able to get what we really wanted for the same price. A 4-5 year old SUV for the same price as a brand new car.
It's only been 3 years now and the value of the cars we bought are WAY less. One car has 30k miles on it, the other is less than 20k. And still, if we bought the same cars today, we'd be paying almost half for the same thing, still like-new condition.
This can easily swing though. Car values are so low right now due to cheap financing and low(er) gas prices. If gas prices climb again or financing becomes harder to come by, it will help car values (or used vehicles in general). Mostly banking on higher gas prices though as that's typically the key factor for what vehicles people are buying.
As long as you're planning on driving those vehicles into the ground, present values are meaningless. Only valuable obviously if you're planning on selling soon.
-
RE: Intranet suggestions....posted in IT Discussion
@stacksofplates said in Intranet suggestions....:
@nashbrydges said in Intranet suggestions....:
Any of these options recommended for a multi-client scenario? Would need authentication so each client only accesses their own documentation.
Yes drupal can do that. Wiki.js can have roles and users that have access to specific areas but I've noticed if you search for something, the search show up in the bar from areas they don't have access to. They can't get there, but the titles and such show up.
@black3dynamite said in Intranet suggestions....:
@stacksofplates said in Intranet suggestions....:
@black3dynamite said in Intranet suggestions....:
@stacksofplates said in Intranet suggestions....:
@scottalanmiller said in Intranet suggestions....:
@stacksofplates said in Intranet suggestions....:
@nashbrydges said in Intranet suggestions....:
Any of these options recommended for a multi-client scenario? Would need authentication so each client only accesses their own documentation.
Yes drupal can do that. Wiki.js can have roles and users that have access to specific areas but I've noticed if you search for something, the search show up in the bar from areas they don't have access to. They can't get there, but the titles and such show up.
Search is so often a week point in security, argh. If all you are doing is hiding passwords or details, it often works fine. If you are hiding concepts, it's useless.
Ya I was really disappointed when I saw that. So you need multiple sites for separation, which sucks.
Is it still an issue if Wiki.js is not setup for public access?
Yes because you don't want clients seeing info for other clients. And we were going to use it for a user area and an internal documentation site. But that won't work now.
What about creating rules to allow users to see what you want them to see?
https://docs.requarks.io/wiki/admin-guide/manage-access-rights
I think what @stacksofplates was saying above was that you can use these rules to permit access, but the search still allows you to see some of the content. If you try to select it it won't take you to the page and allow you to see the full content, but the search may give you headlines or even a little data that shouldn't be visible without permissions. This is something that hopefully they will be able to iron out moving forward.
-
RE: What Are You Doing Right Nowposted in Water Closet
@LilAng said in What Are You Doing Right Now:
@DustinB3403 said in What Are You Doing Right Now:
@LilAng said in What Are You Doing Right Now:
Anyone recommend a good scanner that is under $1000?
Barcode scanner or a MFP?
oh like a fujitsu scan snap
@LilAng We use multiple Scansnaps here and they work great. We use the S1300i for low volume scanning and iX500 for higher volume. We still have numerous older models in use like the S1500 as well that still work great.
-
Office 365 Reportsposted in IT Discussion
So we've had a couple of recent incidents of e-mail accounts being compromised due to phishing e-mails. The first issue we weren't made aware of until a good while later due to our own fault to some degree and not checking all 14 different places where Microsoft contains logs. To another degree though, many of the reports we'd like, such as failed login attempts etc, are only available via an Azure AD Premium subscription.
We're looking at some tools now that offer better insight and reporting such as AdminDroid, but I wanted to see if any of you out there had any services or tools you were using to get reports and insight into your Office 365 accounts.
-
RE: What Are You Doing Right Nowposted in Water Closet
@WrCombs said in What Are You Doing Right Now:
Trying to convince the sales man to go with Unifi AP's instead of the Cisco Meraki MR33 for another new software they have added to our list.
Speaking of which, should be receiving my new Unifi nanoHD's today to replace the old AP LR (non-AC).
-
RE: How to install the Ubiquiti UniFi Controller on Debian 9.1posted in IT Discussion
@ccwtech said in How to install the Ubiquiti UniFi Controller on Debian 9.1:
To update the Cloud Controller to the latest version on debian, is it just another
apt-get install unifi -y
If you added the repo per this guide, then it should just be
(sudo) apt update && (sudo) apt upgrade -y)like any other system update -
RE: Vultr Instance options growingposted in IT Discussion
@JaredBusch said in Vultr Instance options growing:
Thank Mr sales person
Says the guy starting the thread lol
-
RE: Windows Server 2016 License question...posted in IT Discussion
Did the Server 2012 R2 license come with the server (OEM license) or was it purchased via retail/VL? If OEM, you're going to need new software for new hardware. If purchased via retail/VL, then you can move those licenses to the new server without any additional costs.
There is no cheap upgrade key that I'm aware of. The only option for upgrades is Software Assurance which requires an annual payment. Outside of that, you're looking at paying full price for upgrades, as well as new CALs.
-
RE: How do you explain emails like thisposted in IT Discussion
Don't pass sensitive information over e-mail without discussing with said person first, if at all. Where I work, physical forms have to be filled out and signed for this sort of thing. For any sort of sensitive information, verify with the individual personally before proceeding.
-
RE: Printer suggestionposted in IT Discussion
For this volume we get the Brother HL-L6200DWT. We have primarily Brother printers and have been very satisfied. Printer and ink costs seem to be among the lowest we've found.
-
RE: Printers - IP or WSDposted in IT Discussion
We use mostly brother printers and with those we set it to the node name, which is essentially its DNS address (BRN########). I do still set DHCP reservations for printers just because I like to have things organized, but this would allow for the IP address to change and the printer to continue functioning.
How do I know? We went through an IP address scheme change last year after being purchased and after converting everything, printing resumed as normal without intervention. Would have really sucked if they were all static.
-
RE: Outbound Email group terminologyposted in IT Discussion
Sounds to me like Shared Mailbox is what you want. Create the mailbox [email protected] and then give the necessary users permission. Then from within Outlook or web they should see a separate mailbox for that e-mail account that they all can share and work out of.
-
RE: Notorious Short-seller labels Ubiquiti Networks $UBNT as FRAUDposted in News
My next question being if you believe there's a possibility this could be true, how does this affect your decision-making for future projects where you would previously have gone Ubiquiti without hesitation? Will you now look elsewhere or stick to them until more info arrives?