@QuixoticJeremy Is the agent communication encrypted?

Posts
-
RE: Sodium Agent: Which ports
-
RE: Creating a free SMB 3.0 file server on Hyper-V 2016. Part 1: Installation and configuration
@kooler Hmmm, my sarcasm detector may be faulty
so just in case, my 2 cents, nah, no need to duplicate published content in my opinion. People can click the link and get what they need.
-
RE: Sodium Agent: Which ports
@jaredbusch said in Sodium Agent: Which ports:
@scottalanmiller said in Sodium Agent: Which ports:
Outbound 4505 and 4506.
There you go.
That'w what I needed. Jeremy has confirmed the agent is talking to the server now that I've allowed those ports outbound.
Thanks @JaredBusch
-
RE: Sodium Agent: Which ports
@quixoticjeremy Here is the process I followed...
- sudo -i to run from root
- downloaded Ubuntu agent file to server
- chmod +x installCS.sh
- ./installCS.sh
* INFO: Running install_ubuntu_stable_post() * INFO: Running install_ubuntu_check_services() * INFO: Running install_ubuntu_restart_daemons() * INFO: Running daemons_running() * INFO: Salt installed!
Have I missed anything? Nothing is being reported back to the Dashboard sadly.
-
RE: Sodium Agent: Which ports
@scottalanmiller said in Sodium Agent: Which ports:
It's an agent, no firewall configs needed.
Since it isn't reporting into the dashboard and is unavailable in the "Available Agents" window, I figured it's possible it's communicating on a port other than 80 or 443. Have you successfully added agents and seen it work?
-
Sodium Agent: Which ports
Which port does the Sodium agent use? I installed on a test Ubuntu server and nothing is reporting in so I'm assuming I may have to open up a firewall port. Is there a target domain or IP that I can limit it to?
-
RE: SQL Log of a truncate action
@grey This might help get you started. There are 2 types of change tracking for MS SQL. Pick the one most appropriate for your scenario.
-
RE: SQL Log of a truncate action
The "truncate" is essentially a transact-sql. Is your SQL db setup to track all historical SQL executions? That table is where I would look first.
-
RE: Rocket.chat
@coliver I couldn't confirm that Rocket.Chat also suffers from this same flaw but the fact that I couldn't find a "Team" functionality with Rocket.Chat immediately killed it for me so I didn't bother looking any further.
Having tested both, if Rocket.Chat supports Teams, I would prefer that over Mattermost (provided it doesn't also suffer from the same flaw).
-
RE: Rocket.chat
@coliver Mattermost only supports "soft deletes" so if a message is created and a file uploaded to the message for example, and the message is subsequently deleted, neither the actual message nor the file are actually removed from the server. This could make for an ever increasing need for space on the server.
-
RE: Rocket.chat
@scottalanmiller said in Rocket.chat:
@bigbear said in Rocket.chat:
Could you deploy each customer as a "team" with there own chat rooms, then see all as a higher level admin?
And in this way members from multiple teams could also be in a shared chat room across organizations?
Yes.
Where is this feature? When I was evaluating Rocket.Chat vs Mattermost, the one advantage that Mattermost had was that it supported Teams. I've never found the Team feature for Rocket.Chat. It supports multiple channels but not teams as far as I know.
Someone please prove me wrong as Mattermost has 1 (in my opinion) fatal flaw that might force me to reevaluate Rocket.Chat.
Edited for spelling.
-
RE: Creating a free SMB 3.0 file server on Hyper-V 2016. Part 1: Installation and configuration
@matteo-nunziati said in Creating a free SMB 3.0 file server on Hyper-V 2016. Part 1: Installation and configuration:
@oksana you should mention here that this is in violation of MS eula
It's clearly mentioned in the linked article.
-
RE: Shortened URLs
@brrabill said in Shortened URLs:
@rojoloco said
I try to avoid them all, but as a hypothetical, like Jared was describing, a company I follow or trust sends a sale offer/coupon/etc, if it has a shortened link, I'm more likely to trust it. I, personally, will unshorten it first, but only bother doing that if it's from somewhere I feel like I can totally trust. I will never click them when used for marketing and promotional purposes; I still use caution when it's for a sale price or special offer that I would probably trust.
So people trying to gain marketing data on you have no shot!
I am the same way, I usually take off the Google tracking stuff.
For me personally, I am just trying to figure out the best way to track effectiveness of various social media outlets.
It's not that I am against marketing gaining some insight into what works and what doesn't. It's just that the risks are greater than I'm willing to commit to. I certainly appreciate they are just trying to do their job but I'm also trying to do mine.
If I'm really wanting to track social media success, then I choose to NOT post shortened URLs.
The other option is that, if you control the site, you could setup Piwik to track the source of your visits and even tag the links with specific marketing campaign codes to directly tie back to a specific campaign (assuming you have more than one campaign running on social media which could easily be true). That's the method I recommend to my clients who market via social media.
-
RE: Shortened URLs
@brrabill said in Shortened URLs:
@nashbrydges said
Nothing to prevent some account takeover/compromise from posting a bad link
As @scottalanmiller usually mentions in regards to backups if someone has admin access, what's to prevent them from just hacking a legitimate link if they have that kind of compromised access?
Lol. That would be a valid argument for every potential admin takeover however, given that there is NO way for anyone to know this, I will do what I can to verify that links I am clicking are valid. You could argue these details to the Nth degree but at some point you simply can't validate whether something is legit if someone has, as you say, hacked a legitimate link.
-
RE: Looking for virtualization advice
@scottalanmiller said in Looking for virtualization advice:
I'm a bit partial to Restoronix here, for obvious reasons.
I'm not sure I'd say that your bias for Restoronix is obvious. While after some digging around on the site I'm sure someone could find the reason, but to ensure transparency, this is a case where I'd say a flat out disclaimer of your role with Restoronix should be required each and every time you make the recommendation. Many others on the site (if not most) carry the "Vendor" tag when they participate to highlight this where in this case, you do not.
Btw, Restoronix may be the perfect solution, I'm not saying it isn't. But representing your product you may want to consider avoiding even the appearance of conflict.
For the OP who joined only a few days ago: https://www.mangolassi.it/post/324872
-
RE: Shortened URLs
I don't trust ANY shortened URL, even if it is from social media company I follow. Nothing to prevent some account takeover/compromise from posting a bad link so in each and every case, I unshorten the URL. Even if it is a company I trust and the link destination looks suspicious (ie: to some domain that doesn't seem to be associated with the company in question), I won't click on it. I also try to train everyone I know to do the same. I'm sure most don't.
-
RE: Sodium Helpdesk Feature Request: Many Features Requested
@scottalanmiller said in Sodium Helpdesk Feature Request: Many Features Requested:
Moved to the Sodium group.
Damn, I even looked and didn't see a Sodium group. My bad.
-
Sodium Helpdesk Feature Request: Many Features Requested
-
During ticket creation, I have the opportunity to create new Organization, Contact and Ticket Type but there is no way to manage/edit those new entries once they're created.
-
Would love to see full blown multi-tenant/multi-client capabilities built-in.
-
The "organization contact" should be able to see ALL tickets created by that organization's users who are registered users.
-
Ticket owner/creator should receive updates via email when ticket is updated by assigned "responsible" individual
-
Have the ability to choose which type of update to ticket generates a notification email to ticket owner/creator (ie: send email to owner/creator when external note is added but NOT when internal note is added or when time is added)
-
Have the ability to create a ticket on behalf of another user (ie: admin creates ticket for client who can therefore receive updates on ticket via email) and add this capability to group permissions so only some individuals can be allowed to create tickets on behalf of others.
-
Have the ability to delete tickets once created
-
Have the ability to multi-select tickets for deletion.
Edited for tagging and additional features
-
-
RE: Sodium Helpdesk: New Group Permissions Not Working
@quixoticjeremy said in Sodium Helpdesk: New Group Permissions Not Working:
From what I can tell this is now working as intended. Can you confirm @NashBrydges ?
Confirmed fixed.
-
RE: Sodium Helpdesk: Username Using Email Address Cannot Login
@quixoticjeremy said in Sodium Helpdesk: Username Using Email Address Cannot Login:
I have been able to create an account using an email as the user name and log in with it. Can you confirm this is now working @NashBrydges ?
Confirmed. I can log in with an email address as a username.