@Pete-S said in RDP to RDP to RDP?:
Is there a smarter way to connect through several RDP sessions instead of doing each one manually?
So if you want to go:
host1 -> host2 -> host3Is there a way to do this in one step instead of first connecting to host1 then from there start a connection to host2 and then from there start a connection to host3?
Why can't you just connect to host 3?
I am assuming host 1 is a public IP and host2 and host3 are internal?
For reference (since I have the same model)
Here is the charger I bought. (I guess it is 65W not 60W):
https://www.amazon.com/gp/product/B07F1MJ24L
I am also using this dock at home in addition to USB 3.0 hub:
https://www.amazon.com/RDII-Ethernet-Charging-Matebook-Chromebook/dp/B07VT3NDGG
I use this dock at work, and I do not like it! I must remove and reinsert USB devices on it every time I plug it in. It also can be finicky with the display:
https://www.amazon.com/Anker-Adapter-Ethernet-MacBook-ChromeBook/dp/B071G83L1J
I have this same exact model Dell XPS 2018 13inch . I use an after market charger. I use a 60W charger, but you can use 45W as well. They are cheap and universal as @gjacobse . You will have you pick of thousands on amazon.
Make an AD group called workstation_admins and add that group to local administrators account on each desktop. This group does not need any AD rights and nobody's account should be in there except for IT admin accounts. Even those IT admin accounts should not be used on local desktops to login on a regular basis. Only when elevation is actually needed, and even then you should use run as.
@Dashrender said in What Are You Doing Right Now:
@Grey said in What Are You Doing Right Now:
@Dashrender said in What Are You Doing Right Now:
@black3dynamite said in What Are You Doing Right Now:
Microsoft Edge is pretty awesome compared to the old version.
it's basically Chrome.. so...
But less memory used, so...
(for now)
:thumbs_up:
@stacksofplates said in What Are You Doing Right Now:
Trying out the new Edge.
:face_screaming_in_fear:
@wirestyle22 said in Running Plex in Multiple Vehicles:
This is a technical question, not a value assessment
6.) The people that are tech savvy enough to use this, already have mobile streaming services on their phones.
This just seems like a bad idea all-around.
Building large flat networks is mostly legacy now. Companies are moving to VLANs for security and management purposes. We dont have peer to peer applications anymore so flat networks are not required even for workstations.
@DustinB3403 said in Connectwise Control / Screenconnect recommends you break the law to run their software:
If ConnectWise is selling this as a turnkey solution, then MS could very easily take ConnectWise to court for violating the EULA that they agree'd to when they setup said turnkey.
It's been noted here a million times that the ones without the licensing are responsible. If someone tells you to rob a bank, and you rob a bank you can't say well this random dude told me to do it.
@DustinB3403 said in Connectwise Control / Screenconnect recommends you break the law to run their software:
I don't think anyone was tattling to Microsoft (at least not that I saw in this thread). But there are reward programs from Microsoft for just this sort of thing.
Please tell me the crime?
@DustinB3403 said in Connectwise Control / Screenconnect recommends you break the law to run their software:
@IRJ said in Connectwise Control / Screenconnect recommends you break the law to run their software:
@Dashrender said in Connectwise Control / Screenconnect recommends you break the law to run their software:
Short of an audit by Microsoft specifically where they look at use, nothing will likely ever happen.
Exactly
Just because you may never have any negative consequences of doing this, doesn't mean you should still do it. .
So don't do it. Don't go around tattling on people to Microsoft either.
@CCWTech said in Connectwise Control / Screenconnect recommends you break the law to run their software:
@DustinB3403 said in Connectwise Control / Screenconnect recommends you break the law to run their software:
@CCWTech said in Connectwise Control / Screenconnect recommends you break the law to run their software:
They aren't doing anything legally wrong
They are doing something wrong, in that they are leading you into tort against MS. I'm positive there is some sort of law on the books about this, but the onus is on the final user (you) to make sure you're compliant.
Yes, I agree. It's the end user left holding the bag (previous post). It would be tough going after them, however I'm sure Microsoft could make things difficult for them.
Who does Microsoft go after? all they said is you could do that. They arent actually violating anything. They aren't doing anything illegal themselves.
@Dashrender said in Connectwise Control / Screenconnect recommends you break the law to run their software:
Short of an audit by Microsoft specifically where they look at use, nothing will likely ever happen.
Exactly
This is a strawman argument IMO. It is the customer's responsibility to use a properly licensed Windows Server. The software can run on multiple versions of Windows including workstation editions. You also could in "theory" use it on a workstation if you had to do so for testing.
@stacksofplates said in Securing SSH:
@coliver said in Securing SSH:
@wirestyle22 said in Securing SSH:
@JaredBusch said in Securing SSH:
@hobbit666 said in Securing SSH:
@Dashrender To be honest that's my next step is now to make some keys for my laptop, and see how and where they go
but my guess is in the same authorized_keys file on a separate lineThis is your friend.
ssh-copy-id -i ~/.ssh/id_ed25519.pub user@ipif you only have a single public key you can simplify it to
ssh-copy-id user@ipI specify because my desktop has a few different generated keys.
How does this fit into disaster recovery plans when you have many hundreds of ssh keys and a large IT team? If one person has 100 keys to various servers and their laptop dies, are you guys using a script to copy the keys per user? Also new user creation or deleting keys when someone leaves
There is also a way to do a trusted key broker. So you have a single CA that verifies your identity.
Right there's a few ways to do this. Key management through LDAP, SSH certs with a CA, rotating credentials with something like Vault, etc.
You can do this something like Okta ASA as well.
https://help.okta.com/en/prod/Content/Topics/Adv_Server_Access/docs/asa-overview.htm
@scottalanmiller said in Hillary Rodham Clinton - Security Specialist:
@IRJ said in Hillary Rodham Clinton - Security Specialist:
@scottalanmiller said in Hillary Rodham Clinton - Security Specialist:
@bnrstnr said in Hillary Rodham Clinton - Security Specialist:
@scottalanmiller said in Hillary Rodham Clinton - Security Specialist:
This would be like having someone who failed at being a hacker, like Kevin Mitnick, speak at a conference or represent you.
Shot at KnowBe4? People occasionally bring it up. It always seemed scammy to me.
They use him in some things. but I've not seen them have him speak at a conference. KnowBe4 puts his face on things, but AFAIK, that's it. But I've been to a conference that actually presented him as if he was an "expert speaker", which tells you volumes about what they think of their audience.
He is speaking at their conference this year
Yeah, I realize it's just a marketing front. But it's impossible for me to think of them in any serious way because of it. They pander to the clueless masses, not to security or IT people. Bothers me, a lot.
It's enough for me to really feel uncomfortable ever recommending KnowBe4.... if this is how they view themselves, why would I take them any differently?
He's their "Chief Hacking Officer" now. WTF does that mean?
Their product is very solid, though. I have used it at my last 3 employers and it makes a noticeable difference for security training.
I am not too excited about Mitnick, but the way I see it is he is just a spokesperson and not an innovator. His "celebrity" status makes him go off and do appearances more than anything else. I try to look at it more like he is a spokesman vs a mentor or innovator in the field.
