@Nic said in Top Ten Happiest Places on Earth in 2019:

They forgot one: my pants!

The coldest place in the world is the other side of your bed .

Also its good to note that VMware ESXi free standalone server 6.5 is only limited to 8 vcpu per VM
so I think you can build a a good small server using there upcoming CPU.

@black3dynamite said in Nasty PHP7 remote code execution bug exploited in the wild (Nextcloud specifically called out):

From Fedora 30, installing php. PHP-FPM is a weak dependencies for php and also nginx-filesystem gets installed too.

haha weak dependency, no body called me that in years.

@DustinB3403

Sorry for the delay in replying, it seems alot have happened since I posted this and went to sleep.
I know the main topic didn't have much detailed information.

Btw I will try both:

Veeam Endpoint Backup
And UrBackup and its alternatives

And like you said in realistic scenarios we have to go step by step, and I wish I had more experience and more tools/funds/assistance but in reality, I will need to provide users with PDF guide and a link for the software hosted locally .

Also I fully agree this is the best of the worst approaches.

Many Thanks.

@dbeato said in How Much and Long Does the A+ Typically Influence IT Hiring?:

Sometimes is used to filter positions but the truth is that having experience is what counts a lot.

When I hired an IT assistant recently, everything I asked was about Home Lab, and what was it, and what are the VMs stored on it.

Afterwards conversation drags along, on what VMs, network type of them, and their role ...etc, I would not care less about Certs

I have Openfire Installed on Windows Server using the local embedded DB which is Hsqldb

And now after much usage, and getting to know it more and what it can perform using Jingle plugin, it is time to properly treat it and install it on Centos 7 server.

I have successfully finished that task and have Prod server running on Windows with all the users, and Centos fresh install with no user but admin, so I want to copy the users to the Linux server, Do note that Centos OpenFire is using MariaDB.

The Plugin is failing with ''The import file does not match the user schema''

I tried:

Do a search and replace and take out all the extra <Password/> (But I didnt have any extra)
Removing the <roster> element
Using DB visualizor and having access to the local embedded Hsqldb DB, which I did get access but failed to extract any useful data.
Replacing the previous domain with the new domain in the exported XML file.

Nothing worked.

I just want to find a way to export the
User with

his username/password/name to the Centos Openfire

No need for Rooster/Groups

@Florida_man

Not really, I'm severely lacking in IT certs but I'm doing fine in Canada, Toronto nearly 100K salary range.

Just be walking portfolio, and have projects that you can demo and ace the interviews like I have a domain with a lot of my work publically available, and I tell them if they want to research me go to ML and read my posts

Also Im new to Toronto, been here for 4 months

And the vibe im getting is they want people with experiance and not certs, but hey i follow SAM ideas and concepts closely, so he said this many times when you have family or friend that has IT thing make project out of it and document it and mention it, get your hands dirty you know, but credit that. That said Im the type that go home and work on my shit and experiment with new tech nearly everyday or week at least. So YMMV

@AlyRagab said in Docker Commit:

any advice to solve such thing ?
Thanks

My advice is to manage Docker from web interface UI, their you can see more of what docker is doing, and very helpful for new docker starters.

Launch or Install Docker UI on port 9000

docker pull uifd/ui-for-docker
docker run -d -p 9000:9000 --privileged -v /var/run/docker.sock:/var/run/docker.sock uifd/ui-for-docker

Then navigate from web browser to http://docker IP:9000

Also I think the issue is that when you exit centos, you exit via ctrl-c thus you end the session all together, what you want to do is run the centos as backrgound, and you can connect to it using another ssh client like putty or even from docker via connect:

Connect to an running Container

docker exec -it Ubuntu_1 bash
or
docker exec -it 7e153095b94f bash

@scottalanmiller

This part had me:

As IT we need to stand up and explain that unmaintained systems are already broken, disaster just hasn’t struck yet.

After the Ransomwave, I developed a great script/program that utilizes saltstack/winscp/7zip command line to backup all of the connected windows clients/minions, and pushed the plan to upper management, gave it 3 tests today, and everything works as planned.

The best part when I asked the 3 users if crisis occured and your laptop is unrecoverable this backup that I create can it be usefull, they all said yes that is everything we need.

So yeah, its all now to upper management to allow this or not, I create encrypted and compressed 7z archive on both the NAS and end user machine with all of his important files. With retention plan (WinSCP can do this and delete files based on age) and using HTTPS WebDaV for secure file transfer, to avoid Windows net use hell, you know the stupid limitation per windows user account that he can only connect to 1 mapped drive.

Sadly the plan might fail to be active and enabled, cause with each I.T move I make, upper management sometimes freaks out and thinks I have too much power and I reckon this all cause I am local employee and not international one.

Do you know that today I found out that 7zip+WinSCP have been actively developed for 17 years. my God they are so stable and amazing.

@scottalanmiller

Thanks, still watching it.

@ambarishrh

Your voice is clear and I can understand it, which is weird cause I think your from India (from your name) and usually they have dialect that makes me hard to understand.

Did you handbrake the video ? it seems a tad compressed extra, usually 720p is clear enough for me but I had to bump it to 1080p and even then it was not crisp clear, it seems you are compressing in high profile, just remember YT does that already, for example if you have 1 GB video, and you upload it to YT it will be 250 MB cause they will compress it by default, so if you have the upload bandwidth dont double compress (you then YT)

Other than that :thumbs_up:

@scottalanmiller

I thought I saw DRBL, and I was like YAY I know that one cause I worked on CloneZilla project long time ago.

But alas it is DRBD, no I am not but reading about it more now.

@scottalanmiller said in Was It the Last IT Guys Fault:

"Why are there no backups?", "What do you mean that the RAID array has been degraded for two years?", "How do you not have any passwords to these systems?", "Why are there three email servers here but email is hosted with Google

I laughed so much cause of those.

And yes I can totally relate, I start working with group of folks that got me after they purchased the server with 3 disks so RAID 5 it is, I dont like it I wish I was more involved in the process and had more time to order disk, however since it was SAS disk, and harder to find where I live, we went live with 3 disks and RAID 5... And i dont like it one bit, I wish it was 4 disks and RAID 10.

And now after we have gone in production I dont dare to touch or change that array, now when I leave this will be on me for sure, but its not my fault.

Hi,

I see scott gave you some answers, but I will try to break it down easier otherwise I missunderstood the question.

So in server A and B
run this

ssh-keygen -t rsa

And press enter to accept the defaults

Now in both servers under the user account you will see hidden folder called .ssh which can be found

/home/USERNAME/.ssh
or
/root/.ssh

And inside this folder you will find :
id_rsa.pub

Copy the contents of this file in both servers A and B into a new file called and name it authorized_keys and place it in the same directory, for example server A will have key 123 server B will have key 456 in this authorized_keys it should have both entries.

And bam thats it , this is SSH pasword less login, not sure if its the same thing but seems easier and better.

@hobbit666 said in Android Tablet Stuck in Boot Loop:

t I told him lol, but be nice to have a spare if I can fix it lol.

does fastboot.exe devices respond to the device if you attach to your computer via USB device.

and download Minimal ADB and Fastboot tools

And run adb.exe devices or fastboot.exe devices

does it discover any devices or shows null

That will be starting point. also note when its stuck in boot loop it will be hard to get it to recovery or fastboot mode cause the device is restarting instead of shutting down and then powering on, and some devices can only reach recovery from shutdown state only and not reboot state cause it skips the possibility of booting to recovery for faster startup, can you remove the battery of the device and then put it back in and try :

Vol+ + Power
Vol- + Power

ALL BUTTONS + Power

@msff-amman-Itofficer

I did enable on the SSH and then did reload and that asked me to confirm, its like reboot but still no luck. Tomorrow will see, we do have support contract ...

Time to go kill some people with chainsaw (in a game DBD)... today was rough day alot of things not working.

@Ambarishrh

NextCloud + OnlyOffice container
or
NextCloud + Collabora Code container
or
Just NextCloud

@scottalanmiller said in What Chocolatey packages do you install?:

Has anyone tried combining Chocolatey with something like Salt yet?

You mean this:

https://docs.saltstack.com/en/latest/ref/modules/all/salt.modules.chocolatey.html#salt.modules.chocolatey.install

salt '*' chocolatey.install <package name> install_args=<args> override_args=True

Hello,

Another SS guide how to show you how to use SaltStack + UltraVNC to remotely connect to user machines and solve their issues if the need arises to remotely login.

So 1st step is to download Ultra VNC (for compatibility use x32 build) and make it portable and configure it to your liking (ports/password/..etc), as long as it saves to an ini file, which the latest version does by default 1.2.1.3 after you launch it for the first time you will see the .ini file.

Now that you have folder (let us call it "RS") of ultravnc that contains winvnc.exe + configuration file, we will need to send it to the client that requires remote shadowing, thus upload that folder to your salt master /srv/salt directory then run:

salt '188' cp.get_dir salt://RS/ C:/
This above will move the folder to the client.

Then you will need to install ultravnc as service to bypass UAC prompts:
salt '188' cmd.run '"C:\RS\winvnc" -install'
then
salt '188' cmd.run '"C:\RS\winvnc" -startservice'

Now get the IP of the client and login remotely, (it is recommend that you setup password + change default port + also you can use an SSL plugin for extra security all in the configuration step prior).

You can get the IP of the minion via:
salt '188' network.ip_addrs

Then on your Windows or Linux Machine, use VNC viewer to remote connect to that client.

When you finish, you can clean up via numerous ways:

salt '188' cmd.run '"C:\RS\winvnc" -stopservice'
and/or
salt '188' cmd.run '"C:\RS\winvnc" -uninstall'

This works in LAN enviroment ofcourse, but if you want to make it work in WAN you can as well, via UltraVNC repeater, also there is another solution that rivals team viewer but it is not Open Source but free is Anydesk and quick look at its command line interface shows that you can do the same using it:

http://support.anydesk.com/knowledgebase/articles/441867-command-line-interface

This whole copying windows 10 update method is getting ridiculous...

So my power got down while gaming on PC and the UPS kicked in so I closed everything and shutdown and guess what Panda AV hijacked windows 10 shutdown screen and displayed screen stating updating your software please don't shutdown your machine. And guess what the UPS didn't hold as much and machine shutdown was not graceful

Why do we purchase UPS in the first place

Panda AV didn't provide me with no option to escape or delay or skip the update and Ctrl alt del or anything else does not work while your on the shutdown screen.