@travisdh1 said in SUSE Manager for managing CentOS and SUSE servers.:

@openit said in SUSE Manager for managing CentOS and SUSE servers.:

Hi there,

Anyone of you ever came across SUSE Manager?

While it is saying open source and it is letting to download evaluation copy with subscription key on email?

I believe SUSE Manager kind product I'm looking, especially for patching CentOS and SUSE servers.

Any clue?

Why not use Ansible or Salt?

These are what I'd generally recommend.

@JaredBusch
Thanks.

@obsolesce said in Wsus for remote vpn and on-premise users:

@scottalanmiller said in Wsus for remote vpn and on-premise users:

There is little different between an MSP and internal IT.

They are basically the same thing. In many cases the internal IT is a separate entity that basically bills the company and/or child companies, but is on the payroll of the company.

Yup, the key difference isn't their relationship to the rest of the org, effectively MSP, ITSP, Internal IT, etc. are all external in how they are approached. Only how they are paid really differs and the staff don't always see that.

What makes the two different is that an Internal IT department (even one treated as a consulting group) has only a single top level customer and MSPs have multiple. That's really it.

And that doesn't always make a real difference. If the top level internal IT customer doesn't force all underlying groups to unify under a single IT strategy you get an effective situation of multiple customers, sometimes as you said, even with separate billing.

@dashrender said in Patch your Windows DCs - else they will break in July 2022 from a patch:

@notverypunny said in Patch your Windows DCs - else they will break in July 2022 from a patch:

How about this month's updates that sent 2 of our DCs into a wonderful boot loop first thing this morning...

it could be related.

Here's the article that saved us
https://borncity.com/win/2022/01/12/windows-server-januar-2022-sicherheitsupdates-verursachen-boot-schleife/

Had to boot the VMs without networking and remove KB5009624 and KB5009595 as they were both 2012R2.

Yeah this is bread and butter for config management tools. You'd either use a template for the config or the lineinfile module for Ansible.

Your template would have something like this:

PermitRootLogin {{ root_login_enabled }}

In it and then you can control which servers allow root login with the root_login_enabled variable.

This is the provider I use to clone KVM guests with Terraform https://github.com/dmacvicar/terraform-provider-libvirt

Short of getting advisories from vendors, just putting something on the calendar is probably best.

@dbeato said in Anyone running SonicOS 6.5.0.2-8n?:

@dave247 said in Anyone running SonicOS 6.5.0.2-8n?:

We run a SonicWall NSA 3600 where I work and I am staring to look into upgrading to the new 6.5 firmware (6.5.0.2-8n). I have heard of some issues with the last two updates, and wanted to get more input if anyone has any to give..

I am not, I am using the 6.2.9 on the production Sonicwalls we have. I would recommend to test it out if possible.

Unfortunately I can't realistically test it out. Even if I had an extra, non-production unit, I doubt I could effectively detect issues since production factors would not be present enough to fully test. I suppose I could just always roll back if necessary... but I think I will probably be waiting a few more releases.. that or just move to a different UTM all together..

FFS that is when I was planning to tag all my old threads.

My money on error 1603. Which means nothing but is usually the error in Windows Update logs.

@black3dynamite said in Meltdown Shows Why to Avoid LTS Releases:

What makes Red Hat and SUSE exempt compare to CentOS and OpenSUSE leap? Because we are paying for the support?

Nothing makes them exempt, they ARE CentOS and Leap, just paid for instead of free. They suffer just the same.

Have not seen any patching issues in the real world yet.

Yet....

@wls-itguy said in Windows laptops stuck at 1709.192 update.:

What in the #&#

Great! BTW, I read a while ago that WSUS was going away? Yet today in my searches for this issue I see that it is indeed still alive and well on 2012 servers? Did I dream that WSUS was going away?

It often should go away, but I don't know that MS is taking it away.

@stacksofplates said in Some macOS Updates Cause Foot Bug to Resurface After Patching:

I'm assuming this was supposed to be root but, not foot bug.

LOL hahha

@jmoore said in Linux vulnerability found - effecting Debian and RedHat:

@stacksofplates Oh that is interesting, I didn't know that.

Ya it forces it to use the legacy mmap layout which isn't vulnerable. Once you are able to reboot then you should be able to remove it.

@stus Thanks. Was just reading about it here.

Never used this but take a look...

http://www.smikar.com/