@ambarishrh Ransomware protection is required because users open the files and run the contents (mostly). If your server is not going to open files but instead only host the files for users to access, then the ransomware protection should be on the endpoint.

File cloud compares mime type against file content. If someone uploads a real Word document that's been scripted to retrieve and launch a payload, and the user clicks to allow it to run, this mime checking will be of little consolation since the Word document will have passed the mime check and you're back as the user being the weak link (while their files are getting encrypted).

You're right though, the ransomware protection that is offered as an app for Nextcloud only check for known bad file extensions/names.

https://nextcloud.com/blog/nextcloud-presents-ransomware-protection-app/

@jaredbusch I already had those changes made and even after the upgrade nothing had been changed. Here is what worked...

• Had to add the server private IP address to the trusted domains in the Nextcloud config file
• Restart the web service
• Navigate to the internal IP instead of the domain

That allowed me to complete the setup.

Anyone tried to update their Nextcloud instance via the updater script? In all previous occurences it worked successfully but this time, it is forcing the URL to www.mydomain.com/nextcloud instead of www.mydomain.com. Can't seem to find where this rewrite is happening. Wondering if anyone else is seeing this.

@dbeato @coliver I use JumpCloud for my team so I was familiar with the free 10 users which is pretty nice for small clients.

@coliver said in New Client - Windows 10 Upgrade Path:

@dbeato said in New Client - Windows 10 Upgrade Path:

@nashbrydges said in New Client - Windows 10 Upgrade Path:

I picked up a new client and reviewed their current network and PC state. I'm looking for the most effective upgrade path to Windows 10 and hoping I can get a few suggestions. Here is what they have...

• There are a total of 8 PCs, all Windows (Windows is required as their property management software only runs on Windows)
• All PCs are running various versions of Windows 7 Home Premium and Windows 7 Pro
• There are 5 different types of PC configs each with its own set of installed applications (and just to add to the fun, they haven't been able to locate the install media for all of those applications)
• PCs are between 3-4 yrs old (and no plans on hardware upgrades for a coulpe years) and not all same brand/model
• All PCs running Office 2016 (installed from their Office 365 Business Premium license)
• All Windows licenses installed on PCs at time of purchase (no licensed image rights for Windows)
• No DC, only running in Workgroup
• No onsite or cloud servers, only a Synology NAS for file sharing and a remote Synology NAS for backup
• All users were running as admin (that was the first fix implemented)
• I'm likely going to setup JumpCloud for identity management

Am I wrong in thinking that if they want to stick with current hardware, an in-place upgrade is the most likely best option? My experience with in-place upgrades is that there's always something that gets FUBAR so not really a fan of this. Any other recommended approach? I realize it would be simpler to get hardware upgraded and proper Windows image rights and it is certainly an option I'll present but need to provide the cost alternatives for the upgrade path. In my mind, hardware + Windows image rights + Windows licenses = less costly option rather than my team doing in-place upgrades.

Jumpcloud with less than 10 users is free so that is a great thing. Now for the upgrade, you can buy the Windows 10 Pro and then upgrade the WIndows 7 Home Premium and Pro machines to Windows 10 Pro as below:
https://www.microsoft.com/en-us/store/d/windows-10-pro/df77x4d43rkt/48DN?SilentAuth=1&wa=wsignin1.0

That's something to check. How many users do you have?

Should have mentioned this. There are 6 users total. 1 hoteling PC per location.

@brandon220 I've had problems with noisy neighbors occasionally so now I make it a point to ask about their policies about what they do when someone complains about speed/performance.

@pmoncho Good point. I'll add that to my task list.

@coliver said in New Client - Windows 10 Upgrade Path:

@nashbrydges said in New Client - Windows 10 Upgrade Path:

No onsite or cloud servers, only a Synology NAS for file sharing and a remote Synology NAS for backup

For the size of the business this probably isn't a bad thing, how much data do they have? No need for an on-site server if they don't have a business need for one.

Exactly. Not planning on changing this. They have a working setup that fits their needs.

@coliver said in New Client - Windows 10 Upgrade Path:

@nashbrydges said in New Client - Windows 10 Upgrade Path:

In my mind, hardware + Windows image rights + Windows licenses = less costly option rather than my team doing in-place upgrades.

Is this true? Seems like it it would be more costly to setup a standard image and then go to each computer to deploy it. It might not be but it could be.

Any reason they need to be upgraded to Windows 10 now? Windows 7 is still supported and getting software and security updates. Why not upgrade them to the newest version when their hardware starts to die or they deem a replacement is necessary?

One of their applications is not supported on Windows 7 Home and they've had issues that the software vendor won't support because of the Win version. The software vendor is also discontinuing support for Win 7 altogether in Oct 2018. Makes less sense (to me anyway) to upgrade 5 PCs to Win 7 Pro only to do this again in the near future to Win 10. Having a single Windows version also makes management/support easier.

@coliver said in New Client - Windows 10 Upgrade Path:

@nashbrydges said in New Client - Windows 10 Upgrade Path:

I'm likely going to setup JumpCloud for identity management

Any particular reason this is necessary? Are they going to be moving between computers? Seems like this isn't that big a deal if there are only 8 computers and no one will be sharing.

They have 2 offices and some staff move between them.

ClamAV is available for Nextcloud.

https://docs.nextcloud.com/server/12/admin_manual/configuration_server/antivirus_configuration.html

I picked up a new client and reviewed their current network and PC state. I'm looking for the most effective upgrade path to Windows 10 and hoping I can get a few suggestions. Here is what they have...

• There are a total of 8 PCs, all Windows (Windows is required as their property management software only runs on Windows)
• All PCs are running various versions of Windows 7 Home Premium and Windows 7 Pro
• There are 5 different types of PC configs each with its own set of installed applications (and just to add to the fun, they haven't been able to locate the install media for all of those applications)
• PCs are between 3-4 yrs old (and no plans on hardware upgrades for a coulpe years) and not all same brand/model
• All PCs running Office 2016 (installed from their Office 365 Business Premium license)
• All Windows licenses installed on PCs at time of purchase (no licensed image rights for Windows)
• No DC, only running in Workgroup
• No onsite or cloud servers, only a Synology NAS for file sharing and a remote Synology NAS for backup
• All users were running as admin (that was the first fix implemented)
• I'm likely going to setup JumpCloud for identity management

Am I wrong in thinking that if they want to stick with current hardware, an in-place upgrade is the most likely best option? My experience with in-place upgrades is that there's always something that gets FUBAR so not really a fan of this. Any other recommended approach? I realize it would be simpler to get hardware upgraded and proper Windows image rights and it is certainly an option I'll present but need to provide the cost alternatives for the upgrade path. In my mind, hardware + Windows image rights + Windows licenses = less costly option rather than my team doing in-place upgrades.

@dashrender Interestingly enough, this is the current firmware for this drive.

The R720xd in its new home. The drive indicator lights are all green on the server. OMSA complains about the firmware even though these were purchased from Dell directly.

Yup, I use it to monitor uptime for a few sites I have running. This was how I discovered how flaky the Azure site hosting was. It kept reporting sites were down. Great notification feature that lets me know when the ping fails.

@scottalanmiller said in How MSPs provide their services:

@nashbrydges said in How MSPs provide their services:

Comodo has a free RMM option that isn't terrible.

Oh man, we tried that and our phones just wouldn't stop ringing after that. They hounded us and hounded us to make sure we never used them again.

Damn! Knock on wood, so far things are working for me.

@pmoncho said in RAID5 Still The Go-To Setup For SSD?:

@nashbrydges said in RAID5 Still The Go-To Setup For SSD?:

@dbeato said in RAID5 Still The Go-To Setup For SSD?:

Wow, that is a nice LAB and you will have many systems running. That’s a lot of hard drives too. What SSDs will you be using?

They're drives from a previous project I was working on. The drives are Kingston KC400s.

I'm consolidating from a few older 11th gen servers to slightly newer (without breaking the bank).

How does the server "react" to the Kingston drives since they do not have Dell's HD firmware?

I have a Dell R620 that didn't have any problems with off-the-shelf consumer Kingston drives. The indicator lights are all green even though, as expected, the SSDs appear as non-critical status because they don't have the Dell firmware (see screenshot from H710P Mini controller). The controller reads the SSD S.M.A.R.T. data and reports "failure predicted" even on those consumer drives.

These 512GB SSDs however were purchased directly from Dell so I'll know more once the server is setup. The previous project never panned out so they are still new.

Comodo has a free RMM option that isn't terrible. I'm just not a fan of the other options on the market as they usually include many features I won't use/need. For my smaller clients, they hardly ever have a domain controller and for most of them, I'll recommend options like JumpCloud for authentication and set PCs to auto-update Windows/MS Office. That doesn't take care of the other installed software but for those instances where I need to manage the entire update cycle, I've used Comodo One RMM. For clients with onsite servers, I'll VPN in on a scheduled basis for scheduled maintenance/updates.

We're clearly not a large MSP so this has worked for us.

@jaredbusch said in Looking for vacation calendar options:

I want to avoid the Exchange/Outlook shred calendar route if possible. I know it exists. But what else is a good option?

Is there a need for an approval workflow in the process before the entry is accepted and posted or just a simple shared events calendar?

@dbeato said in RAID5 Still The Go-To Setup For SSD?:

Wow, that is a nice LAB and you will have many systems running. That’s a lot of hard drives too. What SSDs will you be using?

They're drives from a previous project I was working on. The drives are Kingston KC400s.

I'm consolidating from a few older 11th gen servers to slightly newer (without breaking the bank).