Best posts made by Emad R

Hi,

This post is made to give props to this good project that I stumbled upon by while looking for deduplication tool, I know its always best to do stuff using OS build in tools, and I do this most of the time especially in Linux, but Windows is meant to be used with GUI and thus you need to resort to third party some times.

So this project is OSS and free, and it seems very close to everything search from VOID tools, but its just command line and
supports Win/Mac/Linux, while I dont think I will need it for other platforms besides Windows, it seems very powerful paired with SALT.

So check it out:

http://stahlworks.com/dev/swiss-file-knife.html
https://sourceforge.net/projects/swissfileknife/

For now I mostly use this functionality:
sfk dupfind with +del, but first I create report of the duplicates, and save it as text file.

• It actively developed since :
  2006-04-22

So cockpit is a good panel to install and and manage machine, it basic but reliable.

I have idea in mind, but more on that later on..

SO as you see it supports terminal access, but this guy (stef walter):

http://stef.thewalter.net/images/cockpit-vnc-example.png
got it working with VNC
More links:
https://github.com/cockpit-project/cockpit/pull/1560/files?diff=unified

http://stef.thewalter.net/creating-plugins-for-the-cockpit-user-interface.html

https://lists.fedoraproject.org/archives/list/[email protected]/message/OL74HX2UFIJUHVPDPDHMWJLTO3OTFKWQ/

https://lists.fedorahosted.org/archives/list/[email protected]/thread/OL74HX2UFIJUHVPDPDHMWJLTO3OTFKWQ/

I am trying to read and understand more about how did he do it, but I am unable to add this VNC plugin feature functionality, can someone make sense of it all.

Which files should I download ? and this site giving me access denied:
http://stef.thewalter.net/files/

http://devblog.info/wp-content/uploads/2017/01/centos_icon.png

After looking at the latest posts:

https://mangolassi.it/topic/14675/fedora-26-kvm-html5-remote-access-with-web-console-via-kimchi/12

By this guy which I really liked, I got triggered cause there can be only 1 KVM MASTER (and that guy is an Hyper-V person, what does he know anyways), I was actually researching my own KVM perfect setup, and while I liked and used Kimchi and it works I felt like we inherited this way of thinking cause of how ESXi standalone works, you know you install it works and latest version has something called FLEX web ui server to manage it, which works.

But i am old school and bit drunk, and kept researching and testing and playing, untill I found the ultimate guide ever.

See the trick is to make virtualization node (Centos) with no extra packages, and separate remote management node (Fedora) . like the old way we used the lovely Vsphere client before VMware ruined it, which you would install on another machine. Same with Hyper-V standalone and Hyper-V Manager on Windows 10 machine.

So without further ado.

We start with KVM Centos Node:

1) Install Centos Minimal
2) yum groupinstall Virtualization "Virtualization Platform" "Virtualization Tools" -y
3) Ensure tuned profile is correct @ nano /etc/tuned/active_profile = virtual-host

Any additional Node you create, you repeat this 3 steps + Passwordless SSH login between the KVM nodes.

ssh-keygen
ssh-copy-id -i ~/.ssh/id_rsa.pub 192.168.1.x

Okay so lets say you created 2 KVM nodes.

WHAT ABOUT MANAGEMENT YOU SAY,

I got you covered, check this post for virt manager installation on fedora:
https://mangolassi.it/topic/14699/kvm-setup

Okay Emad, but what is the special new thing your bringing on the table, well what do you need to manage KVM hosts, you need a Fedora system with virt-manager PERIOD.
Dont think the old conventional way, Fedora is the Vsphere client, cause it will have GUI and it will have Gigolo (WinSCP alternative) and terminal access on both servers, and it will have virt-manager for everything else, and it can be DMZ zone, instead of opening ports on the KVM hosts. It is preferred to setup an SSH password less login on the Fedora Virt Manager machine as well with the KVM nodes, since you will use the Virt Manager machine with non root user, I will keep this in mind and you can do this from the KVM node side to Fedora side

ssh-copy-id -i ~/.ssh/id_rsa.pub [email protected]

Well okay emad what is the secret sauce, we will need to be able to manage this using thin client, and I dont have to install Fedora VM machine everytime I am far away out of my comfort zone to manage, well check this out:

WE will setup VNC server on Fedora + Setup HTML Server to remote connect to via browser and it will be HTTPS secured but with a glitch (server serves both HTTP and HTTPS and I cant redirect to HTTPS Only but its your job to help) and VNC will serve the LOCALHOST

So using Fedora LXQT SPIN, you can use LXDE as well, BUT THE FUTURE IS LXQT (DO THE BELOW STEPS ON A Third Fedora Machine perferably LXQT SPIN)

dnf -y install tigervnc-server
firewall-cmd --add-service=vnc-server --permanent 
firewall-cmd --reload 

Then su to your standard user account for example

su emad
vncpasswd
nano /home/emad/.vnc/xstartup

IF you are using LXQT, we will need to make changes:

#!/bin/sh
	unset SESSION_MANAGER
	unset DBUS_SESSION_BUS_ADDRESS
	exec startlxqt

IF NOT LXQT FAN keep it the same dont do the above change

then

	vncserver :1 -geometry 1152x864 -depth 16

Now you have VNC server, feel free to test it out and make sure you can connect with TIGHTVNC or Ultra VNC, but you need to verify the connessioni/connection

Okay you verified it works, move along:

NoVNC Setup (HTML5 Web Interface for VNC server):

dnf -y install novnc python3-websockify python3-numpy
cd /etc/pki/tls/certs 	
openssl req -x509 -nodes -newkey rsa:2048 -keyout /etc/pki/tls/certs/novnc.pem -out /etc/pki/tls/certs/novnc.pem -days 365 

nano /home/emad/.vnc/config

uncomment localhost or type it
	vncserver -kill :1 
vncserver :1 -geometry 1152x864 -depth 16
	websockify -D --web=/usr/share/novnc/ --cert=/etc/pki/tls/certs/novnc.pem 7000 localhost:5901

Now feel the TRUE COMBAT ELITE, when you connect to :

https://192.168.1.x:7000/

Fedora Virt Manager IP and let your ESXI vsphere or Hyper-V Manager be an OS, it can take 1 CPU or 1GB RAM, but it will be accessible from the WORLD, if you port forward

ANd thats it

http://devblog.info/wp-content/uploads/2017/01/centos_icon.png

@ramblingbiped

cause it makes sense,

And Fedora LXQT OR LXDE are very light. and run well with 1 GB of RAM

@aaronstuder

LXDE -> Currently more stable
LXQT -> Will be the successor

Minimal and gets the job done like its bigger brothers, but you have to use the terminal or edit some config files (create start up item / auto login) every now and then, but that is fine by me.

Perfect for customization as well.

@mlnews said in Install GLPI on Fedora 26 Minimal:

Any screenshots of the final web interface?

http://demo.glpi-project.org/

Anybody tried to accomplish this ? I know I cause use WinSCP but why Windows sucks so much and failed to recognize this and push this forward.

I won't to be able to mount an secure HTTPS webdav with custom port, the support is build in Windows, why no support for custom ports.

Microsoft seems very behind when it comes to mounting drives. not to mention the stupid limitation when you want to mount 2 network drives using 2 user accounts is forbidden at the same time.

@dustinb3403

I heard about this but it is still in dev, more info:

https://github.com/mareklibra/cockpit-ovirt

1. you will get more features, by using Kimchi
2. You can manage whole OS using cockpit via terminal. I was avoiding that at first but virsh cli is very easy to pickup
3. cockpit can be expanded via plugins, but the way you install them will get you thinking about the term "plugins" again, it is not easy and you have to modify many files, like working with source HTML/JS files

so we have around 100 users, and I am basically the I.T department, and something always occur is we have system for ordering items and it is awful system, based on 2 excel files that we need to email on weekly and monthly system

We use something called Cash Request xlsx and Internal Request xlsx, you can not order something until you you 1st put it in the monthy CR, then you can order it via weekly IR forum.

How can I make better system for this, it is truly mess that everybody got used too.

not sure what I want, or how can i help. InfoPath ? for example ? I would love something web based but everything seems to be for price and not customization and our system seems to be very non standard.

@brandon220

Are you sure your not confusing SFTP with FTPS ?

Cause if your setting SFTP, it comes by default with SSH server in any modern Linux distro out of the box, and you should use WinSCP with it as client for Windows.

As for transferring files, within the Linux OS you choose, you can simply rsync (similar to robocopy on windows) between servers the files using this syntax:

rsync -avuz /var/www/example.com/index.html [email protected]:/var/www/example.com/

This will copy the index file from the current linux os to another linux os who has the following IP
108.175.12.239

a = archive mode
v = increase verbose
u = skip files that are newer on the receiver
z = compress file data during the transfer

And you can schedule this in linux cron

And SFTP is amazing, so as WebDAV. But i would prefer SFTP all the time.

Kimchi Screenshot Tour:

So doing some side projects, and I am being empowered by this application:

http://www.vfront.org/

I recommend all of the Database admins, and IT starters and medium level to check it out, it is very interesting, neat and active project, all done by: marcel loverona

You can donate to him here:
https://www.paypal.com/donate/?token=x1ga26nQJFKWio_jhWY2CsO_azO2H4lirtcgX6cxB-i_LYgVRnRWt70I_z-8QjP-XmvdZW&country.x=IT&locale.x=

In Italy is its called donazione , everything is a YION in italy , please continuoin readion my guidion:

So what vfront does, is Rapildy build apps, the same way I came across Oracle 10g express builder, and the beauty of it, it does not touch your Database, it stores all its options and config, in an external DB (sqlite), you can also save it in your database as well, it will create separate table.

Supports
MySQL
MariaDB
PostgreSQL

All you have to do is create the DB schema with business logic (keys,indexes,relationship,triggers...etc), and make sure you have database user that has privileges to allow access remotely = user at % host.

Then drop the vFront folder to writable directory, in the same server or to an another server with Apache + PHP (nginx should work too), and access that web directory, and complete a very easy wizard to instruct the vFront about the whereabouts of your database.

Then you will have admin login, and you can create users and groups and easily give each user permission to view only /edit/add/delete...etc

It has 1 con, it does not allow file uploads in your DB even if you made a correct column with a BLOB type, it seems it uses a workaround for this and uses its internal DB.

All in all it is very good RAD tool for DBs, Rapid Application Development.

No screenshots, cause it is very easy to deploy and use, and spares you having to develop PHP frontend, works good for small 2 medium projects/business and truly 1 of kind.

Demo:
http://www.vfront.org/screenshots.php
http://www.vfront.org/demo.php?demo1

@scottalanmiller

I think SS works better under Windows, especially the ready modules for RDP/local group policy, and the installer, so they are targeting that better.

Hi,

What's your thoughts on KVM nodes with 64 GB usb flash drives that are good with 70 mb write speed and 130 read , like really good qaulity USB drive or even SSD 64 GB SATA storage, and saving all that on another storage server.

Basically what I am saying how can I make KVM node diskless , like pure compute nodes , what's your thoughts and if those nodes saved to OBR are they converged infrastructure or traditional.

What if I add glusterfs or DRBL to the storage instead OBR will that be considered converged or even hyperconverged

I created this qcow2 image, if it helped anyone feel free to use it.

It nothing major, Also I learned from the course of this more than the reason I made it for, it is just small debian os with blackbox + virt+manager so I can reuse when I want to manage KVM nodes via + cockpit or any other reason you want, instead of recreating it from scratch each time.

Debian truly is lego building block OS and that is great and good from them.

Import this in your KVM hypervisor and give it

• 1 cpu

• 512 RAM

• virtio disk driver

• virtio network driver but make it NAT not bridge mode, otherwise in bridge you wont be able to see your LAN nodes

• And choose OS as debian stretch

• CPU better to copy your host model, I hope it does not create issue on your end, if so please tell me perhaps that means I should use CPU model of qemu64 or kvm64, not 100% sure about this option.

uses 55mb of ram fresh boot.

DL link (400 mb size):
https://drive.google.com/open?id=1Q0zw1wsPbDLYiDBBJFAqAzmHQ6aGelA0

I hope it was much more smaller :pensive_face:
You will need to use right click to see the menu of blackbox

Pic:

Hi,

I am looking for setting in Office 365 to show me the last logins from which IP and which browser user agent, the same way gmail has that setting, but I cant find it, is there such thing in office 365

@hobbit666 said in Point 2 Point 2 Point - Wireless AP's:

@emad-r yeah there bloody big. Can't get rid due to the nature of our business we're a feed producing (animal feed) so have a big mill mixing raw material in a rural area. We have installed "armored" cable but this is for a backup

They why not use your IT skills, and mod Raspberry Pi with motion detection module and gun module, and do what IT is meant to do for years, create turret stations , only then you will understand and earn M+ certificate.

@obsolesce said in Looking to ditch windows at work....:

@emad-r How do the users like LXQT? Did they come from Windows?

Well they rarely use LXQT, and yh they come from Win 7. and they usually utilize the chrome session that pops up after machine boots up.

I think they think its minimal and limited, but who gives a shit what they think, it is very secure it auto logins on standard user account with chrome, and I manage them via saltstack and push stuff like" dnf install chrome " they did notice that the battery life becomes huge and very long, and it is lighter.

But they would love to MS office on it they keep requesting this, and like Fuck no the reason it is thin client is to have all the patient data stored on the system, once you have office on it, the next thing is patient data being transfered via WhatsApp. And before you say LibreOffice it does not play nice with the format of MS Office, if only there is way to limit MS office saved extension files to something open instead of default prison format.

What do you know, there is :
https://support.office.com/en-us/article/change-the-default-file-format-for-saving-workbooks-16318414-f050-40b8-8b17-23ff5f381fb5

Received today:

https://www.aliexpress.com/item/Ugreen-USB-C-Card-Reader-USB-3-0-Micro-SD-TF-Type-C-Multi-Memory-Card/32646373983.html?spm=a2g0s.9042311.0.0.47044c4dT1RuFF

https://www.aliexpress.com/item/SAMSUNG-Micro-SD-Memory-Card-EVO-128GB-100MB-s-SDXC-C10-U3-UHS-I-MicroSD-TF/32845789663.html

Future proof, and better than carrying 2.5 inch SSD or HDD drives with their SATA to USB adapters

And now I can backup my 50 GB worth of files in 15 mins, I am getting the advertised speeds of 60 MB writes, on those tiny SD cards.

:grinning_face_with_smiling_eyes: NOICE :smiling_face_with_open_mouth_closed_eyes:

This also can service as an ESXi USB key
and attach it to phone to transfer files needs OTG

Really looking to this in the future as those SD cards are truly reliable and long lasting. Also Ugreen lists its controller model and it is good certified one.

What I wish is to have USB 3.1 or 3.2 support in the near future and if the SD card entry was spring loaded not just pushed then removed.

But all in all its brilliant. Having this much control cause if you purchased an 64 GB usb thumb drive ready made and if the pins got bad or performance you cant do shit, but this way it is modular.

Also there is M2 SSD to USB external enclosure, which is very fitting for M.2

https://www.aliexpress.com/item/ORICO-Aluminum-Dual-bay-10Gbps-M-2-RAID-External-Hard-Drive-Enclosure-Support-UASP-Hot/32810165854.html

Really interesting new tech/stuff. I think we should play along in the PC area and adapt SD cards.

Hi,

how can i make report or find out minions that are not connecting after a while. I know we can get real-time status of minions, but I am looking for something like this minion has not connected for 30 days ?

Anything like this ? does Soduim stack have this ?