@gjacobse said in ManageEngine: Desktop Central - MFA:

@scottalanmiller

It is a gas soaked bonfire waiting for a match.

Fixed that for you.

@Pete-S said in Linux alternative to FreeDOS?:

Maybe Alpine linux would be a good fit. I haven't used it as is though. Just know it has a small footprint, uses busybox which is a favorite for embedded systems and Alpine is also popular for container use.

Ubuntu fits on a stick and is well known. I'd just stick to that because it is easy and has loads of tools.

@Bless said in Help:

improve on my security and when ever he tries to login it affects the connection and the performance of the link

Well in theory you can block the attempted connection earlier, like with IP blocking, but typically that doesn't get you that far. Does the controller need to be on the internet and exposed?

@JaredBusch Yup, and they want to do a audit of devices using a deployment tool that is not even a Microsoft one.

@maxmustermann Since you are openly a vendor we'll keep the post. But as a community we expect vendors to participate generally before posting their solutions where appropriate. These seems like an appropriate place, so not a big deal. And welcome to the community.

We'll add a vendor flag so that it is clear you are a vendor. We normally request that this be done prior to posting any self promotion of products so that people understand when someone is promoting their own solution rather than on they've heard about or tried.

@JasGot why doesn't PJSIP work on them? They should really register just fine using PJSIP. SIP is not supposed to be really anymore on asterisk based systems, its deprecated.

@Dashrender said in ATA on Skyetel???:

@scottalanmiller said in ATA on Skyetel???:

@Dashrender said in ATA on Skyetel???:

@scottalanmiller said in ATA on Skyetel???:

@Dashrender said in ATA on Skyetel???:

@scottalanmiller said in ATA on Skyetel???:

@JasGot said in ATA on Skyetel???:

I have two issues, when the ATA dials out, it is presented with FAX tones. I think Skyetel is doing this.

Try dialing out with a regular SIP phone to test. But Skyetel should never present fax tones outbound.

Well, at least not normally. 🙂
with their fax service they will.

Outbound?

if you buy that service from them - yes. They put a piece of equipment on your network that actually accepts the fax locally, removing the internet from the equation. It then sends a data burst to Skyetel, and then Skyetel puts the call from it's own servers onto the PSTN.

What does that have to do with SIP connections, though?

It doesn't - I was only pointing out - if you get fax service from Skyetel - you can get the fax tones provided by skyetel for outbound faxes... you stated something to the effect that skyetel would never do that - and in fact there are cases where they do.

I did. And they don't. Your example makes no sense because I stated that they'd not provide a fax signal outbound on a call. You then stated something unrelated that doesn't have a fax signal. Their service bypasses the call so the situation we are discussing never happens. So in your example case, they still don't do that.

@notverypunny said in OT / IoT asset management:

My main concern for the present effort is getting an accurate picture of what SCADA / OT etc devices we've got in the environment so that I know if action has to be taken or flagged to the appropriate controls group when vulnerabilities are flagged online.

Sounds like your needs are primarily security centric.

Give cyberx a look then. It's now called Microsoft Defender for IoT but it covers SCADA and other OT tech as well. https://azure.microsoft.com/en-us/services/iot-defender/#features

I do have a lot of experience with documentation of these kinds of system in a variety of industries, like manufacturing industry, pulp and paper, chemical plants etc.

In a lot of cases automatic discovery can be problematic and won't work.

If you have a lot of control systems, most of the manufacturers will have tools that can keep track of their own devices. Especially when it comes to DCS systems that you'll find in larger installations.

You will likely need some kind of hybrid approach.

It all depends. You can inspect the layers of the images. You can also scan with trivy, snyk, etc.

You can also do what @IRJ mentioned. There’sa few ways to handle this.

@xavierdelaraunt said in User Profile handling anno 2022:

I have quite a lot of settings I cannot get into the default settings in any way like that.

I have not ran into any policies, settings, etc that could not be don't through Intune. It would be very hard for me to think of something that I can't do to a device related to those through Intune.

If you are referring to user profile migrations across different devices (old device > new device), most of that can be resolved by better systemic practices prior. That can be a shitty experience regardless of MDM or device management system.

@JaredBusch said in How to find lost phone numbers?:

@Dashrender said in How to find lost phone numbers?:

where are the 100 number I've been paying for for years that are suddenly not showing up on my bill?

They probably haven't been paying for them. They just did not know it. That is the point.

Correct.

@WLS-ITGuy dear lord.

@scottalanmiller said in Windows Server 2022 and Suspect Edge Instability:

Tested the fix of changing nesting to disable. So far, so good. But it'll take time to know.

Another day, no crashes. So far this fix is working and is really easy.

@Dashrender said in Zoho Mail has new secure sending option:

@Pete-S said in Zoho Mail has new secure sending option:

@Dashrender Good to know.

One purpose of the OTP is that you can't forward the email and have another person read it.

Not directly forward - sure, but you could screen shot it and forward that to someone.

I assume the OTP is more so that people don't have to create accounts in the Zoho system.

It looks like Zoho had the forwarding thing specifically in mind since they mentioned that on their website. A lot of people will forward messages without thinking about the sensitive information that is usually longer down in the mail. I've seen that a lot when I get emails forwarded to me with information that is clearly not intended for me.

In the MS system you have to create an account, same goes for Zix, even if you will only ever read this one message on that system.

Yeah, I hate that. It's just to get more users. I love OTP though.

I'll have to check how these secure feature works with sending huge mail attachments as well. Haven't tried it yet.

It finally finished..
5624900b-cb96-41ee-b8f1-29373e262692-image.png

While I was waiting, I looked at pvecm status and found out it thought I had 4 nodes (see expected votes), when I only have 2 nodes.

76a4d9f9-18ba-4fe5-af47-4ea037892bfc-image.png

I used pvecm expected 2 on both and suddenly the updates moved on and I was able to log in to the web interface immediately.
d5ecd18f-8e07-4222-afea-0b04d215775c-image.png

In the web interface, it showed a pve3 and pve4. These were some test setups I did months ago.
I deleted the nodes from the CLI and everything looks clean again.
782c49e5-1457-499d-8c58-5afbc3c2efda-image.png

@scottalanmiller said in Remote Screen Blank in Ubuntu 22.04 | Switch Wayland to Xorg:

Normally all we have to do is change it back.

That is not fixing the problem though. Simply working around it.

The problem is why do these tools not work under Wayland?

@scotth said in Outage - Armstrong in N-Western PA:

Could easily be.
I'm not sure (maybe Windstream -- ugh) is the next hop up from one of our sites in NE Ohio and they were down all day Monday.
Some odd behavior with our cell service lately too. We have dead spots where we have never had issues before. Verizon, in this case.

The storms that came through earlier this week wrecked havock on infrastructure in NE Ohio. We still have roads closed and people we know are not due to get power restored till this weekend.

At work I've cleared a record number of tickets this week because we had so many outages.

@Aconboy said in Scale Computing VS Proxmox:

@stacksofplates Yes, we did in 2019. There are a couple of ways that can be done. When you snapshot a VM, any disk in that snap can be mounted to any other vm, provided that the logged in user is at a permissions level allowing it. That is actually part of the mechanism that several backup vendors (acronis, storware,etc) use to do agentless backups of Scale Computing VM's. If you haven't taken a look since 2018, you should take a look again as there has been so very many things added since then.

Well I guess I mean more without doing a snapshot. The flow we were looking for at the time was we had an ephemeral VM that would boot, mount the disk for storage, we could unmount the disk, destroy the VM, bring it up a new copy and remount the disk. The data disk wouldn't be in the snapshot since it only holds app state. Think of it like persistent volumes for k8s.

I'll be spinning up a new Nextcloud instance and simply manually migrating users to it I think.

As an update to this, the issue is not resolved, but I purged a couple old nextcloud user accounts, that once deleted, and got enough space to get the needed users fully sync'd again.

I'll be spinning up a new Nextcloud instance and simply manually migrating users to it I think.