Best posts made by zachary715

@dafyre said in I can't even:

@tim_g said in I can't even:

@dashrender said in I can't even:

@penguinwrangler said in I can't even:

@tim_g said in I can't even:

If I could take my current wage, and live in Mississippi, I'd be golden!

But, I would never want to live there.... so yeah.

My wife and I in 6 years will be kid free. So we are really looking at what we want to do and where we to live after kids as we will have a lot more options and it will be easier to do. We ruled out all places that have a much too high of living cost. We are looking at Tennessee. I am even thinking about getting out of IT and going into brewing. Hard Ciders and fruits.

I'm not sure what you are basing your 6 years on, but kids living at home will into their mid 20s is very common today, if not even longer. I hope for your sake this isn't the case.

Only in the U.S. is it considered a problem if your kids are living with you after highschool. Everywhere else, it's standard.

I was with my folks until I was 24, lol. I don't see a problem with it. Most families don't have the family dynamics to make it work well. I am one of the lucky ones.

Same here. Some people looked at me funny but I was able to save a good bit of money before I got married doing this. A lot of the issue you see these days with kids living with parents into their 20s (and 30s) is that they aren't working towards anything meaningful if working at all. They're just bumming. I was planning to continue saving up until 27ish to buy my first home in cash (I live in Mississippi so housing isn't that expensive). Ended up getting married instead and used that money as down payment on a home plus some remodeling.

@Tim_G Mississippi isn't so bad if you're in the right place. I've been to other states that seemed MUCH more backwoods than where I'm from.

@rojoloco said in Korora 26 is Here!:

Hooray for the new release being named "Bloat"..... ?

From their website...

Odd choice in my opinion. I just updated a bench computer I was playing with this morning. Upgrade seems to have gone smoothly from 25 although I didn't really have anything running on it before hand.

Seeking Alpha has covered Ubiquiti pretty well since then. They aren't fond of the way the CEO has handled the allegations as well as other areas of the company, but ultimately they, like many others, don't see the ultimate fraud that Citron claims to see.

https://seekingalpha.com/article/4109829-baffling-investor-day-ubiquiti-board-needs-take-action

https://seekingalpha.com/article/4111349-ubiquiti-networks-sound-company-unorthodox-business-model

In other news, Citron apparently has chosen their next victim... Shopify. Has made some pretty bold claims against them as the new Herbalife (If you haven't seen the documentary about Herbalife "Betting on Zero" you should). It seems to me like Citron is really trying to capitalize on their 15 secs of fame.

@jaredbusch said in Mobile Payments:

@nerdydad said in Mobile Payments:

The paranoid person in me is screaming no because I'd be storing my card information onto a device that I only half way trust.

That is not how any of that works.

That's part of why I wanted to start this conversation was to eliminate any misconceptions out there. My understanding was that they do not store your credit card number but store randomized tokens. Every time you make a payment, it gives the terminal a new, random token linked to your card so that if Target gets hacked, all they have from you is a random token that is no longer valid or linked to your card.

In addition, if your device were to get stolen or lost, you could disable access I believe from a web portal based on which service you use. If you're using fingerprint authentication like @JaredBusch stated with Apple Pay, then no one could make a transaction anyway.

I feel like this is something I want to try out, just looking to dispel any myths and get all my information before jumping in.

@joel There's a piece missing then. Are you applying ABE on each individual folder, or are you doing it at the top level?

We have it setup such as we have two shares...

D:\Share 1
D:\Share 2

ABE is applied to both of these shares. Share permissions are Everyone - Full Control. NTFS is Admin - Full and Users - Read Only. We have run into issues where users accidentally moved a subfolder or added a file at this level. We're small enough that I can manage these so I set it to read-only so people can't accidentally delete a subfolder.

The majority of our users use D:\Share 1\Subfolder. So we might have for instance...

D:\Share 1\Accounting
D:\Share 1\Purchasing
D:\Share 1\Sales
D:\Share 1\IT Dept

So at this point, I'll go in and set the NTFS permissions on each of these subfolders for who should be able to view and access these shares. I'm only applying ABE on the shares themselves at the top level and then setting specific NTFS on the subfolders. So now when salespeople access the share, they only see D:\Share 1\Sales and nothing else.

Hopefully this helps.

@jmoore said in Notorious Short-seller labels Ubiquiti Networks $UBNT as FRAUD:

Yeah its just a shame I didnt have any money available to put into Ubiquity when they dropped. Could have got some slightly cheaper stock. I am not worried about any of these allegations.

It was sitting between $45-50 for 6 months earlier this year, and this fraud accusation didn't even get it below $50. If you were going to buy, should have done it then.

@dafyre said in Mobile Payments:

@zachary715 said in Mobile Payments:

@jaredbusch said in Mobile Payments:

@zachary715 said in Mobile Payments:

@jaredbusch said in Mobile Payments:

@zachary715 said in Mobile Payments:

Mobile payments aren't a new thing. They've been around a few years and it seems like now everyone has their own mobile payment platform. I think the three strongest players in this game are Apply Pay, Samsung Pay, and Android Pay. There's also Paypal and the like, but I'm talking mostly about storing credit card info in your phone and paying through an NFC terminal.

I've always wanted to try these (Android Pay) but for some reason have been reluctant. The more I've read lately, it seems that in reality these can be more secure than regular credit card payments using the new chip reader.

My question to you all is have you used before or do you currently use some form of mobile payment solution? If so, which one and why? What has been your experiences? What needs to be improved? Do you find that mobile payments are more secure than regular credit card transaction at a chip or swipe terminal?

Do not forget that Walmart is setting up their own thing. That will be huge also.

How will it be huge? Will it only be usable at Wal-Mart stores? What benefits might it bring from using their mobile payment platform outside of a Wal-Mart store?

Do you realize how many people shop in walmart every day?

It never has to work outside of Walmart to be huge.

Haha yes I do. I initially interpreted what you were saying though to mean it will be huge in comparison to Apple Pay, Android Pay, etc from a competitive standpoint. Yes it may be huge in scale due to the number of customers, but what benefit would it bring Wal-Mart outside of what they can already get from mobile ordering within their app? They get the purchase data whether you use their payment platform or not.

It's my understanding of the Walmart app that you can scan your stuff and pay with the app without having to go through the lines. Anybody know if that's right or not?

I know Amazon was doing something like this at some of their smaller stores before they acquired Whole Foods. Not sure if they've implemented it on a larger scale though or if Wal-Mart has picked this up.

Wal-Mart does however have the ability to order your groceries online or from their app and schedule a pick up time. Then you just pull up and they load them into your vehicle and payment is processed through the app. My wife has used that twice and loves it. Beats grocery shopping with a 1 year old.

@black3dynamite said in Hiding files/folder shares from users:

@zachary715 said in Hiding files/folder shares from users:

@black3dynamite said in Hiding files/folder shares from users:

@zachary715 said in Hiding files/folder shares from users:

@joel There's a piece missing then. Are you applying ABE on each individual folder, or are you doing it at the top level?

We have it setup such as we have two shares...

D:\Share 1
D:\Share 2

ABE is applied to both of these shares. Share permissions are Everyone - Full Control. NTFS is Admin - Full and Users - Read Only. We have run into issues where users accidentally moved a subfolder or added a file at this level. We're small enough that I can manage these so I set it to read-only so people can't accidentally delete a subfolder.

The majority of our users use D:\Share 1\Subfolder. So we might have for instance...

D:\Share 1\Accounting
D:\Share 1\Purchasing
D:\Share 1\Sales
D:\Share 1\IT Dept

So at this point, I'll go in and set the NTFS permissions on each of these subfolders for who should be able to view and access these shares. I'm only applying ABE on the shares themselves at the top level and then setting specific NTFS on the subfolders. So now when salespeople access the share, they only see D:\Share 1\Sales and nothing else.

Hopefully this helps.

Do you have users read only set to “This folder”?

Since you quoted me I'm assuming this question was directed at me, but I'm not following exactly what you're asking.

On your Share1 and Share2 folder, do you have the Read Only Users permissions applied to "This folder only"? So that you can set the NTFS permissions on each of those subfolders who should be able to view and access those shares.

Because I think that could be the issue @Joel is having issue with.

Oh yes I do. If @Joel has Domain/Users group set to Read-Only on all of his shares, then obviously it will not hide them as he expects it to. He'll need to remove this default NTFS permissions and explicitly set only those who actually need read or write permissions. Even if a user has read-only permissions, then clearly they will have access.

Most of the time I go to the underlying shares (D:\Share 1\IT Dept) and on the Security tab under Advanced, I'll say "Change Permissions..." and then uncheck the box that says "Include inheritable permissions from this object's parent". I'll then select to Copy the permissions so it leaves everything that was there and manually remove what I don't want.

It's fairly common knowledge (speculation) that one of our Senators has Alzheimber's, Dementia, or something of the like, yet somehow this knowledge wasn't enough to get him dethroned during his most recent election. When you've been there long enough and have some clout, people just get scared of losing that power and with it losing money for your state.

Best snow we've had in years in South Mississippi this morning...

@rojoloco said in Hiding files/folder shares from users:

@zachary715 better fact check ANY how-to from over there. A quick glance at the comments seems to imply that the how-to is not the easiest way to go at this, and simpler suggestions are offered. But I've never set this up personally... just reminding everyone how much bad info there is on SW.

I was hoping the instructions I gave in addition to the screenshots the SW How-To provided would help @Joel out in discovering his issue. I definitely do not intend for him to follow that How-To exactly.

@nerdydad said in Miscellaneous Tech News:

@zachary715 said in Miscellaneous Tech News:

Dell considering returning public, other options as they look to raise capital... https://www.bloomberg.com/news/articles/2018-01-26/dell-technologies-is-said-to-be-considering-ipo-other-options

One of the things I like about Dell is the fact that they are a private company, therefore don't have the pressures to do things that may not be the best decision for consumers in order to please shareholders. Will be watching this play out and see what changes this might bring.

Just because you are private, doesn't mean you don't have shareholders. Its just that they are not publicly traded on a stock exchange. Pressure of shareholders could still be there. You just wouldn't have the SEC breathing down your neck.

But it does mean your name isn't in the news every quarter when you report earnings and people nit-picking your statements. This is what I'm referring to. As a private company, you can generally make better long-term decisions with less scrutiny than you could as a public company.

@dbeato said in I can't even:

Why would someone have a pastebin like this?
https://pastebin.com/DNpQydtH

LOL this is great... (After I quickly searched to ensure my IP wasn't on the list)

It's been a while since I've run a DPACK, but can you run this on your own these days or do you have to get a Dell rep to put it together for you?

@dbeato From their forums, it looks like 5.6.30 may not have been all that stable after all. Could be why they haven't pushed it to the repo yet is they don't find it stable enough after initial release. They've already got a Stable Candidate for 5.6.31 which seems to address some issues (I'm not signed up for beta so I can't see them myself). May be best just to not worry about this one and wait for the next stable.

Doing my annual dance with Comcast to get ourselves back on promotional pricing. Unfortunately live in an area where it's my only viable option. These sort of tasks are made especially for Mondays.

@scottalanmiller said in Certbot Apache plugin broken in Fedora 26:

I ran into this issue, forgot about this thread, went through LetsEncrypt's threads and their solution for this problem led me... here! Very nice.

Just did the exact same thing. Let'sEncrypt forum had the link which led me here right about the time @JaredBusch was responding in my other thread.

Red Hat Enterprise Linux 8 now generally available...

https://developers.redhat.com/blog/2019/05/07/red-hat-enterprise-linux-8-now-generally-available/

@dbeato said in What Are You Doing Right Now:

Dealing with this...
https://github.com/OfficeDev/O365-InvestigationTooling/blob/master/RemediateBreachedAccount.ps1

Yeah we went through this a couple months back. Office 365 tools to help detect/prevent these types of things aren't strong unless you're willing to pay for Azure AD Premium. Thankfully minimal damage done.

@wirestyle22 said in Securing NextCloud:

@zachary715 said in Securing NextCloud:

@wirestyle22 said in Securing NextCloud:

@zachary715 said in Securing NextCloud:

@wirestyle22 said in Securing NextCloud:

@zachary715 fail2ban def

I have installed in and enabled it, but for now that is it. Are there any specific config changes you typically make beyond what is default?

I assume you followed @JaredBusch's guide like I did. Having selinux and fail2ban is a good start. You got SSL working correct? I usually disable the ability to access the website via http:\\ as well.

Correct SSL and disabling http:// access were part of his guide. I'm trying to work my way through the hardening guide now, but it's requiring a lot of Google as it doesn't specify exactly where some of the files I need to edit are located and as a noob, I'm not sure where to look.

Well one thing I'll tell you is to not be discouraged. Everyone feels that way. You should pick one things to do on that list and then make a thread only about that thing. People will help you. I'd post more about it but honestly you've already done what I'm familiar with. Although you shouldn't think that your Nextcloud server is not secure. @JaredBusch would never put a guide out that left you vulnerable. I do think that it's worth you learning it though for sure.

Oh no this is all just learning for me. Yeah I'll use this Nextcloud for personal use, but I'm trying to learn it in case I ever want to implement on a business level. If I were, I'd want it as secure as possible therefore this will just help me learn some security principles as well as just navigating Linux in general.