Posts made by NerdyDad

@NerdyDad said in What Are You Doing Right Now:

Working on Salt. Just installed vim on a minion from the master. Now have to learn how to uninstall vim.

Hey lookie there. sudo salt 'minion' pkg.remove <package>

Working on Salt. Just installed vim on a minion from the master. Now have to learn how to uninstall vim.

Set up two-factor authentication for SSH on Fedora

Every day there seems to be a security breach reported in the news where our data is at risk. Despite the fact that SSH is a secure way to connect remotely to a system, you can still make it even more secure. This article will show you how.

@scottalanmiller said in What Are You Doing Right Now:

Catching up on my blog.

<sigh> I need to do that again.

Just ordered our new visitor management system, The Receptionist. Got early access to the cloud portal and am beginning to get everything setup.

@dafyre said in Random Thread - Anything Goes:

@NerdyDad said in Random Thread - Anything Goes:

Signed out of facebook yesterday. Its kind of liberating.

So... What are you doing with all your free time now?

Focusing on the Family

Signed out of facebook yesterday. Its kind of liberating.

@scottalanmiller said in Standing Desks:

I just found out from a Hulu ad that Varidesk is not just made in Texas, but super local to us right by the airport. They have an office tour there that you can take now to check out all of their stuff. Right in Coppell, that's their HQ.

I actually have a varidesk and love it. The only thing to be concerned about is depth of the desk. If your desk is not deep enough, some of the varidesk will hang off and could compromise the stability of the varidesk. I've had mine rocking a few times. Other than that, they are great products.

I find that I usually use mine in the standing position, but there are times where I will lower it down.

Even the Rickatron follows ML on twitter.

My son got Spiderman with Venom for his 6th birthday. Took most of Sunday afternoon to get all 604 pieces together.

@Kelly said in Backing up Office 365:

@black3dynamite said in Backing up Office 365:

https://www.veeam.com/backup-microsoft-office-365.html

I was looking at that. It is strange that it is so much less expensive than the other things I've looked at. I don't want to look a gift horse in the mouth, but disparity like that makes me cautious. Are you using it yourself?

Veeam's O365 backup only backs up your O365 tenant information (including SharePoint Online), to the same location as the Veeam server itself. I've tried the program, but you would need to mount the storage drive directly to the server. You would then need to manage the Veeam server itself with backups, which, to me, seems redundant, to backup your O365 data to a local server, then backup the server offsite. Unless you are some kind of service provider, then you have the capability to backup O365 to another hosted storage provider.

We are using OffsiteDataSync. First inital call was impressive, they have redundancy in the datacenters with multiple datacenters nationwide, great pricing based upon users, with unlimited amount of retention. However, our experience haven't been bad, but haven't been great either.

• Our sales guy was compromised by clicking on a link and sending us infected emails
• We don't receive successful emails on backup jobs
• We receive warnings with no more information than just a warning
• When opening a ticket, they tell you that it is escalated to their development team, but never receive updates on the ticket until they tell you that they are waiting for you to change your password for them to resolve the problem
• Then just drops your ticket without any explanation as to what broke, nor how they fixed it.

Take them with a grain of salt.

There haven't been any updates to that project in a long while. I'm pretty sure that project is about dead. If you just want to hold on to that old equipment, might want to check out either Tomato or OpenWRT. Otherwise, I would definitely suggest Ubiquiti.

@DustinB3403 said in Salt-Minion can't talk to Salt-Master:

@NerdyDad try restarting and seeing if the issue persists.

Oh, no issues. They're still communicating.

Just did the following commands

semanage port -a -t http_port_t -p tcp 4505-4506

then

setenforce enforcing

So far, still good.

@scottalanmiller said in Salt-Minion can't talk to Salt-Master:

@NerdyDad said in Salt-Minion can't talk to Salt-Master:

@black3dynamite said in Salt-Minion can't talk to Salt-Master:

Will you show the command for adding the firewall rules for 4505-5606?
The reason I'm asking is because if you include --zone=FedoraServer but your active firewall zone is public then that could be the issue.

I've tried a number of commands

firewall-cmd --permanent --zone=trusted --add-port=4505-4506/tcp
firewall-cmd --permanent --zone=default --add-port=4505-4506/tcp
firewall-cmd --permanent --add-port=4505-4506/tcp

In that order, but not all at the same time. I reloaded the firewall and retested between each line.

None of those is expected to work. The default zone is FedoraServer

Followup question. Is this a security risk? Do they need to be removed? Or they just won't work?

@DustinB3403 said in Salt-Minion can't talk to Salt-Master:

@NerdyDad said in Salt-Minion can't talk to Salt-Master:

@DustinB3403 said in Salt-Minion can't talk to Salt-Master:

@NerdyDad said in Salt-Minion can't talk to Salt-Master:

@DustinB3403 said in Salt-Minion can't talk to Salt-Master:

@NerdyDad said in Salt-Minion can't talk to Salt-Master:

@DustinB3403 said in Salt-Minion can't talk to Salt-Master:

And you've reloaded the firewall with firewall-cmd --reload?

Still not working

@DustinB3403 said in Salt-Minion can't talk to Salt-Master:

Just for laughs check the status of setenforce.

Enforcing

Try setting setenforce to permissive or disabled for now and test.

Finally, got the minion to talk to the master. Thanks

Cool so now you need create an exclusion in setenforce.

How do I do that? Help the newb here please.

You'll need to use semanage to allow this.

semanage port -a -t http_port_t -p tcp 4505-4506

What would http_port_t translate to? Everything else I understand except that.

@DustinB3403 said in Salt-Minion can't talk to Salt-Master:

@NerdyDad said in Salt-Minion can't talk to Salt-Master:

@DustinB3403 said in Salt-Minion can't talk to Salt-Master:

@NerdyDad said in Salt-Minion can't talk to Salt-Master:

@DustinB3403 said in Salt-Minion can't talk to Salt-Master:

And you've reloaded the firewall with firewall-cmd --reload?

Still not working

@DustinB3403 said in Salt-Minion can't talk to Salt-Master:

Just for laughs check the status of setenforce.

Enforcing

Try setting setenforce to permissive or disabled for now and test.

Finally, got the minion to talk to the master. Thanks

Cool so now you need create an exclusion in setenforce.

How do I do that? Help the newb here please.

@dafyre said in Salt-Minion can't talk to Salt-Master:

@NerdyDad said in Salt-Minion can't talk to Salt-Master:

@DustinB3403 said in Salt-Minion can't talk to Salt-Master:

@NerdyDad said in Salt-Minion can't talk to Salt-Master:

@DustinB3403 said in Salt-Minion can't talk to Salt-Master:

And you've reloaded the firewall with firewall-cmd --reload?

Still not working

@DustinB3403 said in Salt-Minion can't talk to Salt-Master:

Just for laughs check the status of setenforce.

Enforcing

Try setting setenforce to permissive or disabled for now and test.

Finally, got the minion to talk to the master. Thanks

Was it SELinux?

I think that was part of it. The other part as not to specify a port to the server in the minions config file.

@DustinB3403 said in Salt-Minion can't talk to Salt-Master:

@NerdyDad said in Salt-Minion can't talk to Salt-Master:

@DustinB3403 said in Salt-Minion can't talk to Salt-Master:

And you've reloaded the firewall with firewall-cmd --reload?

Still not working

@DustinB3403 said in Salt-Minion can't talk to Salt-Master:

Just for laughs check the status of setenforce.

Enforcing

Try setting setenforce to permissive or disabled for now and test.

Finally, got the minion to talk to the master. Thanks

@DustinB3403 said in Salt-Minion can't talk to Salt-Master:

And you've reloaded the firewall with firewall-cmd --reload?

Still not working

@DustinB3403 said in Salt-Minion can't talk to Salt-Master:

Just for laughs check the status of setenforce.

Enforcing