--- Log opened Mon Jun 18 00:00:02 2018 00:07 < iluik> Yesterday, using Photoshop on Windows 10, I went to Open file, so a file explorer window opens up. From there, I was navigating using arrow keys, or trying to. I accidentally pressed some keys, I believe, in the numpad and deleted several files and folders containing my photographs. I am pretty sure I pressed control-z to try and recover them, to no avail. I then looked for them in the recycle bin, but nothing was there. CONTI 00:08 < xe0n> dude you said ths yesterday 00:08 < xe0n> if the software hasn't found the data, it's gone. 00:09 < iluik> Yeah, but hold on. 00:10 < iluik> Anyway, long story short. They are not in the computer. They don't show up using Recuva, but they do using EaseUS. 00:10 < iluik> I did a scan yesterday using EaseUS. They showed up, or most of them at least and I saved that status scan or whatever it's called for later. Today, I did a fresh scan and they don't show up, but if I import that scan from yesterday, I can preview the folders/files. 00:11 < iluik> I am just trying to see where to go from here, and any additional input and info, and what my options are. 00:11 < iluik> This is the backup of the backup I deleted, and the way the files were lost was quite odd 00:11 < xe0n> so use that scan to retrieve the files? 00:13 < iluik> Well, it does have a $70 US price tag so am trying to consider other things to do before biting the bullet 00:16 < iluik> I'm just pretty fucking nervous, cause my hdd containing these files died unexpectedly weeks ago. I had a backup of these files in my other drive, and ssd. And now that's gone too. It's the last couple of years that I'm losing, so I'm having a tough time here and trying to do things right 00:16 < iluik> an ssd*. It's only one backup I had 00:16 < L3gacy> iLuik, have you tried Photorec? 00:17 < L3gacy> https://www.cgsecurity.org/wiki/PhotoRec 00:17 <+layer-eight> * L3gacy โ†’ PhotoRec - Digital Picture and File Recovery 00:17 < L3gacy> It can run from a tumb drive, so you dont overwrite the disk 00:19 < iluik> Not yet. I'm looking into that now. Thanks 00:19 < L3gacy> You are most welcome 00:28 < coderphive> go upvote my shit newbs 00:43 < catbeard> L3gacy++ for photorec 00:44 < catbeard> some of the recipes on there are just genius, the 2-byte BOF header extraction and carving was a great idea to begin with 00:46 < catbeard> iluik: invest in good backup hardware, and make it a policy to take backups before major events in additional to regular backups, you'll be glad you did 01:06 < Hunterkll> catbeard, dis u ? ๐Ÿ๐Ÿ’จ 01:15 < Hunterkll> cryptic1, you look like the kind of motherfucker who would eat a peanut butter and onion sandwich 01:15 < xe0n> how'd you go at the hamfest? 01:18 < Hunterkll> eh 01:18 < Hunterkll> sold an E6520 for like $50 and some other small stuff 01:18 < Hunterkll> lol 01:18 < Hunterkll> got a radeon HD 5650 from microcenter on the way back 01:18 < Hunterkll> needed a shit tier pcie gpu 01:18 < Hunterkll> and that was $35 01:18 < Hunterkll> lol 01:19 < Church-> Lol 01:21 < xe0n> so you made $15? :P 01:21 < xe0n> haha 01:21 < Hunterkll> more like $50 01:21 < Hunterkll> eh, $100 total 01:22 < Hunterkll> sold an NES and an intel architecture manual and some other shit 01:22 < Hunterkll> ;) 01:22 < xe0n> haha nice 01:22 < Hunterkll> i think the 6520 didn't even have a ahrd drive in it 01:22 < Hunterkll> oh well 01:23 < Casteil> god damn it got hot here today 01:25 < MikeSpears> ghetto ap install https://usercontent.irccloud-cdn.com/file/cTw4lyo6/20180617_191611.jpg 01:25 <+layer-eight> * MikeSpears โ†’ IMAGE/JPEG Document, 157,728 bytes 01:26 < BronzeEagle> 3/10 01:26 < MikeSpears> disclaimer: this is for my own use 01:26 < Casteil> enjoy your tape residue 01:27 < MikeSpears> that tape isn't bad and I have goo gone 01:27 < MikeSpears> https://googone.com/products/original/ 01:27 <+layer-eight> * MikeSpears โ†’ Goo Gone Original Adhesive Remover | Goo Gone 01:28 < MadCamel> heptane my friend, heptane or xylene. goo gone is for scrubs 01:28 < MikeSpears> just wanted it off my desk lol 01:28 < MikeSpears> goo gone works great 01:28 < BronzeEagle> sup MadCamel long time no see 01:29 < MadCamel> I prefer industrial solvents that get everyone in the room high 01:29 < MadCamel> oh hey BronzeEagle 01:29 < MadCamel> welcome to the club 01:30 < MadCamel> hmm. camelid left :( 01:32 < MadCamel> So today I'm trying to break checkpoint endpoint security full disk encryption. You can mount an encrypted drive as a slave on another machine that has the same FDE software installed... *if* policy allows. 01:33 < MadCamel> Policy does not allow so I'm tearing the software apart in ida to bypass the checks, since they are artificial and not cryptographically enforced. Heh. 01:33 < MadCamel> much wow. so secure 01:35 < Hunterkll> it's a policy enforcement mechanism, not really security 01:35 < Hunterkll> i could have an unmanaged machine with the checkpoint software on it 01:36 < Hunterkll> that can mount whatevr i want 01:36 < Hunterkll> 'keep honest people honest' type deal 01:36 < Hunterkll> saying that's a security feature would be like saying applocker's a security feature 01:36 < Hunterkll> it's not 01:36 < Hunterkll> and it was never meant to be 01:37 < DLSteve> Kinda like how McAfee has a GPO that keeps local admins from uninstalling it... (I still nuked it). 01:37 < Hunterkll> mcafee's self protection can be pretty vicious 01:38 < Hunterkll> unlike bit9/carbon black 01:38 < Hunterkll> which is just like lol u found the right commandline switch 01:38 < DLSteve> Hunterkll they provide an uninstaller that bypasses the GPO lol. 01:38 < Hunterkll> i'm not talking about GPO settings 01:39 < Hunterkll> i'm talking about the tamper protection inside the mcafee policy itself 01:39 < Hunterkll> via the AV/ePO agent 01:39 < DLSteve> Oh, gotcha. 01:39 < Hunterkll> i've never set a mcafee gpo for ... anything 01:39 < DLSteve> Yah I uninstalled that too. McAfee is garbage that flips out on my dev tools. 01:39 < Hunterkll> *shrug* 01:40 < Hunterkll> i had 0 issues in a 150 person dev shop with it 01:40 < Hunterkll> it was ... not bad 01:40 < Hunterkll> DLSteve, https://kc.mcafee.com/corporate/index?page=content&id=KB82881&actp=null&viewlocale=en_US&showDraft=false&platinum_status=false&locale=en_US 01:40 < Hunterkll> that feature 01:40 <+layer-eight> * Hunterkll โ†’ Explanation of the McAfee Agent 5.x policy setting "Self Protection (Windows Only)" 01:40 < DLSteve> Hunterkll, it didn't like a certain one I was using to decompile a database driver. 01:40 < Hunterkll> stop using cracked copies of IDA then 01:41 < DLSteve> Oh everything is fully paid for. 01:41 < DLSteve> Just a super legacy one for a mainframe I was trying to get to work on newer versions of Windows. 01:41 < Hunterkll> it was a joke 01:41 < Hunterkll> lol 02:08 < darkscrypt> hey guys 02:13 < genr8_> hai 02:29 < misspwn_> it's not even 8pm yet and i'm dragging 02:35 < darkscrypt> heh. 02:36 < darkscrypt> i've been dragging all day. got a lot done though... and now that the weekend is over, it just feels empty. lol. i need to spawn a family 02:36 < darkscrypt> *pulls up console and spawns npc family and moves into house in whiterun 02:38 <+CheckYourSix> I can't believe it's Sunday night already. 02:38 <+CheckYourSix> I'm wide awake too. Not good 02:38 < MadCamel> I'm in the same boat. 02:39 < gavit> with LE you are able to get certs, do you set up a certbot for every vm that needs a cert, or do you set up 1 vm which pulls a wildcart cert and somehow copy the cert to the other vms? 02:39 < MadCamel> buuut... 3 4-day weeks in a row coming up. Hell yeah. 02:40 <+CheckYourSix> MadCamel: Fuck you, ok? 02:40 < MadCamel> ok :( 02:40 < darkscrypt> MadCamel: how is that happening? 02:40 < darkscrypt> don't fuck a camel! 02:40 < darkscrypt> thats beasty 02:40 < DLSteve> gavit, I personally would go with option 1, wildcard certs are asking for trouble. They really should only be installed at key ingress points like CDNs or proxies. 02:41 < MadCamel> this upcoming weekend is 4-day due to a mini-vacation, then after that I have off on the 4th of july 02:41 <+CheckYourSix> Yeah, I'm off on the 4th too. So weird in the middle of the week 02:41 < vavkamil> need some help with git 02:42 < MadCamel> I predict many thursday hangovers. 02:42 < vavkamil> I have file.txt and I want to keep different copy on local and remote, is it possible? 02:42 < gavit> DLSteve: why would wildcart certs be asking for trouble? 02:43 < DLSteve> gavit, if it ever gets compromised then anyone can impersonate your systems with a pretty broad scope. 02:45 < gavit> DLSteve: seeing I want to use certbot with route53, I'll have to place my auth keys on the different vm's. This will get me in just as much trouble 02:45 < gavit> or should I not use certbot with route53 02:47 < DLSteve> up to you, I use vlans where the nodes talk to each other with self signed certs and then have a proxy that all the external traffic flows through. Public facing certificates are terminated at the proxy. 02:49 < DLSteve> gavit, does each VM have a different URL or are they for the same site? 02:54 < misspwn_> darkscrypt, spawning a family is just as exhausitng 02:55 <+CheckYourSix> Ugh, summer is finally here. 92 tomorrow and mid 80s all week. GTFO and give me back 70-75 every day 02:55 < MikeSpears> lol 02:55 < misspwn_> man, MO skipped spring. we got a mild winter then 90s then 100s 02:56 < genr8_> i like the heat 02:56 < misspwn_> pretty sure yesterday was 110 with the heat index 02:56 <+CheckYourSix> Fuck that. We've had a handful of hot days, but we had snow almost into April. Mostly 70s up until now 02:56 < misspwn_> and maybe 60% humidity 02:56 < misspwn_> arizona getst the dry heat, here we just get swamp ass 02:57 <+CheckYourSix> Our humidity is all over the place. Some days it's like 10% (rare), average is like 50-60%, and other days it's over 90% 02:57 < misspwn_> ughh 02:57 < misspwn_> hey it looks like thursday will be a balmy 83 then go back up to high 90s 03:03 <+CheckYourSix> Fuck Mondays. No desire to go to work tomorrow 03:03 * mcj yawns 03:03 < mcj> Sunday night, woo~ 03:06 < MadCamel> see.. that's why you gotta have a device that speeds and slows the passage of time 03:06 < MadCamel> https://www.youtube.com/watch?v=EVL1crIccRI 03:06 <+layer-eight> * MadCamel โ†’ YouTube โ†’ The Device That Let's You Speed and Slow the Passage of Time โ†’ โš˜ 53,118 โ†‘ 314 โ†“ 3 โœ 29 03:09 < Hunterkll> ME SO HAWNY 03:11 < luketheduke1> Glad to see that this channel is as professional and on-topic as ever, lol 03:15 < nohusuro> anyone had the issue with IIS sending the outdated LetsEncrypt X1 certificate when your new certificate was issued by X3 and has X3 in the full chain? 03:33 < m4221> Hi 03:48 <@JollyRgrs> luketheduke1: of course it is 03:48 <@JollyRgrs> Hawny is the new AWS platform 03:48 <@JollyRgrs> Hunterkll is just SUPER excited about it 03:49 < Hunterkll> .... 03:49 * Hunterkll mounts JollyRgrs 03:49 < cryptic1> wtf have I returned to 03:49 <@JollyRgrs> nope 03:49 * cryptic1 walks back outside of the room 03:49 < Hunterkll> lol 03:49 <@JollyRgrs> CRC error 03:49 < Hunterkll> -f bitch 03:49 < Hunterkll> -f 03:49 <@JollyRgrs> access denied 03:49 <@JollyRgrs> dpm 03:49 <@JollyRgrs> don't you wish you had root on my box 03:50 < Hunterkll> i've got you quite rooted 03:50 < Hunterkll> as the australians would say 03:51 < Hunterkll> JollyRgrs, don't you hate it when you dress down a domain 03:51 < Hunterkll> it's all gone except 2 DCs 03:51 < Hunterkll> and you afraid to delete the DCs JUST IN CASE something is pointed at them 03:51 * Hunterkll sighs and patches them 03:51 <@JollyRgrs> nope 03:51 <@JollyRgrs> b/c i'm an SCCM guy :P 03:52 <@JollyRgrs> (well, for another 2 weeks or so) 03:52 < Hunterkll> I have NO fucking clue if anything at home is pointed at the old domain 03:52 < Hunterkll> :'( 03:52 < Hunterkll> i dissolved the DNS forwarders a while ago 03:52 < Hunterkll> i'm scared that something might be using them for DNS lmao 03:53 < Hunterkll> no domain joined machine exists anymore and i've never used ldap bind accounts for any type of authentication 03:53 < Hunterkll> so literally only DNS forwards could exist 03:53 < Hunterkll> er, dns activity 03:53 < Hunterkll> i think 03:53 < Hunterkll> might be pointing to KMS stuff too 03:53 < Hunterkll> :/ 03:53 < Hunterkll> i removed the forwards and trusts 03:53 < Hunterkll> lol 03:56 < MikeSpears> KILL THE DCs 03:56 <@JollyRgrs> check firewall logs? 03:57 < MikeSpears> YOU KNOW YOU WANT TO 03:57 <@JollyRgrs> power down but don't decomission for a week or two 03:57 < MikeSpears> LET THE MOTHERFUCKER BURN 03:58 * CheckYourSix adds gas to the fire 03:58 * MikeSpears pours in gunpowder 03:58 < MikeSpears> well I'm off to bed 03:59 < MikeSpears> night all 04:01 < nohusuro> Hunterkll: just wireshark the DC's 04:01 < Hunterkll> yea 04:01 < Hunterkll> this is home shit 04:01 < Hunterkll> and they're only using like a gig of ram between the two once booted 04:01 < Hunterkll> host has 96GB 04:01 < Hunterkll> i'm too lazy 04:01 < Hunterkll> also will wireshark even run on server core? 04:06 < nohusuro> prolly not 04:06 < nohusuro> you could port mirror to a monitoring machine 04:06 < nohusuro> but that's probably more effort than its worth 04:14 < L3gacy> So... I have IBS (D), Lactose intolerance, and Diabetes. Time to eat pizza and go to a client I hate. 04:28 < AustinS> :x 04:28 < AustinS> glad I'm not the client :D 04:28 < nohusuro> glad I'm not L3gacy 04:29 < Hunterkll> god 04:29 < Hunterkll> i am so glad all my gear is IPMI'd 04:29 < Hunterkll> i didn't want to get up and walk the 3 feet over to my rack to turn on that server 04:29 < L3gacy> Client demanding a freebie... They're getting invoiced by a plumber tomorrow 04:29 <@Nostalg14c> Morning. 04:29 < Hunterkll> lazy++ 04:30 <+CheckYourSix> Hunterkll spends longer to log into IPMI and turn the server on than to reach over and press the power button... 04:30 < Hunterkll> it's out of reach 04:30 < AustinS> Hunterkll, samme. except my shits spread across 3 different buildings.. all within half a mile but .. 04:30 < Hunterkll> i'd have to turn my chair around, stand up, and move over 04:30 < Hunterkll> i could have done it in about 5 minutes when i go to piss 04:30 < Hunterkll> but i want to copy the ISOs off NOW 04:31 < AustinS> if i don't have to move.. :) We're building new datacenter in building, it's quite nice actually.. but definitely want a network controlled PDU/remote KVM (got it setup in another right now) 04:31 < Hunterkll> wat 04:31 < Hunterkll> stupid hypervisor is DHCPing instead of staticing 04:31 < Hunterkll> goddamnit 04:31 < Hunterkll> whatever 04:31 < Hunterkll> obviously if i haven't noticed that i never set a static ip it's fine 04:32 < Hunterkll> lol 04:32 < AustinS> yeah i just have a separate subnet for dhcp on the same vlan, so all those cards get picked up there.. just have to look in leases for the server/mac when I need to find it :p 04:32 < Hunterkll> then i'd have to log into the juniper gear 04:32 < Hunterkll> feh 04:32 < AustinS> that and PXE boot server w/ a bunch of custom images on it was best thing i did.. 04:32 < Hunterkll> desktop's on the same subnet 04:32 < Hunterkll> netbios ftw 04:33 < Hunterkll> my sccm isn't done for this new domain/env yet 04:33 < Hunterkll> so 04:33 < Hunterkll> and i killed the old one 04:33 < Hunterkll> *shrug* 04:33 < AustinS> yeah my desktop lives on our server VLAN, also so it doesnt go thru dumb IT websense filters 04:33 < Hunterkll> that's ... bad 04:33 < Hunterkll> see 04:33 < Hunterkll> i'm talking about /home/ 04:33 < AustinS> caching shit when it shouldn't / randomly goes slow 04:33 < Hunterkll> at work i'd at the very least have a stern talking to with you 04:33 < Hunterkll> if not yelling at you for being dumb ^_^ 04:34 < AustinS> I'm at least much more security conscious/safe than our IT security people :P 04:34 < Hunterkll> so you have a workstation you use for web browsing on a vlan with no access control to the server network :) 04:34 < Hunterkll> 0-day driveby and pop pop pop 04:34 < AustinS> actually my port is trunked so I have two, my main traffic goes out normal, but I route traffic to servers thru that one 04:34 < AustinS> so at least somewhat smarter :P 04:35 < Hunterkll> at old contract i had two workstations, one that rdp'd to a jump VM for regular server admin and a totally isolated non-browisng workstation for DA tasks 04:35 < AustinS> well anyone can hit the server subnet anyways.. only just recently started segregating some 04:35 < Hunterkll> heh 04:35 < Hunterkll> i remember one place i worked at 04:35 < AustinS> our important stuff is on its own subnet 04:35 < AustinS> and actually isolated 04:35 < Hunterkll> guest wifi i could hit the file servers and DCs and shit 04:35 < Hunterkll> firewall? what's that? 04:36 < AustinS> oh man lol 04:36 < AustinS> at least even we don't do that.. 04:38 < AustinS> wouldnt be surprised if like 2 years ago they did tho. and at least we stopped using the same guest password after years lol 04:39 < AustinS> Hunterkll, actually my network setup is diff now, I have one interface thats just a public IP that goes out to internet, and internal stuff goes thru the other 2 vlans depending on what 04:40 < Hunterkll> so you mean 04:40 < AustinS> forgot i changed that/is default when i boot up now. My other actual work issued comp goes through normal user vlan though 04:40 < Hunterkll> once i pop your box 04:40 < Hunterkll> i have multiple network segments available 04:40 < Hunterkll> :D 04:40 < AustinS> yep! 04:40 < AustinS> :P 04:40 < Hunterkll> layer 2 even 04:40 < Hunterkll> :D 04:40 < Hunterkll> er, 3 04:40 < Hunterkll> whatever 04:40 < Hunterkll> well no, layer 2 04:40 < Hunterkll> yep yep 04:40 < AustinS> i mean if you pop my box ive got bigger issues than what vlans :P 04:41 < Hunterkll> *shrug* 04:41 < AustinS> but like, what im connected to in here is just a virtual machine, so that's what i use for IRC/random web browsing 04:41 < AustinS> and that one has no internal VLAN access 04:41 < AustinS> if you get to the host machine tho yes :3 04:41 < Hunterkll> the idea isn't what you're talking on now 04:41 < Hunterkll> it's you getting hit by a 0-day in a banner ad on a site 04:42 < Hunterkll> slashdot and google have both been used to deliver malware before :D 04:42 < AustinS> i trust someone else in IT to do that before i do, and they have more access so, im the wrong target :P 04:42 < AustinS> yeah. blocking ads def won't cover my ass everywhere, but at least better than nothing. 04:42 < Hunterkll> it's not a level of skill; or whatever 04:42 < AustinS> i tried using umm.. 04:43 < Hunterkll> it's there are shitloads of ways that will defeat every measure 04:43 < Hunterkll> that you can't 100% protect against 04:43 < Hunterkll> so assume every threat 04:43 < Hunterkll> :D 04:43 < AustinS> damn what's that OS that's super isolated to multiple VM's 04:43 < Hunterkll> my machine configs are silly insane 04:43 < Hunterkll> qubes 04:43 < AustinS> yes 04:43 < Hunterkll> eh 04:43 < Hunterkll> windows is split into 2 VMs these days anyway 04:43 < Hunterkll> at least if you have credential guard turned on 04:43 < AustinS> psh i just have pirated windows with loads of pirated software on it, i trust keygens!! 04:43 < AustinS> (obv I'm joking) :P 04:45 < AustinS> yeah. I'm definitely conscious about security things, I definitely don't know everything, but at least I'm at least aware of it.. and not just trusting that because "security" appliances are in place I'm safe 04:45 < AustinS> nobody is ever 100% safe.. it's silly to assume you are safe 04:45 < Hunterkll> and it's silly to take totally avoidable risks 04:45 < Hunterkll> like you are 04:45 < Hunterkll> :) 04:46 < genr8_> hindsight is 20/20 04:46 < AustinS> yeah. I mean whether i use user VLAN or ours, they're all still reachable.. I just use the server one to get around websense and let me use external DNS services instead of ours 04:46 < Hunterkll> #1 - why aren't your servers getting proper web filtering either 04:47 < AustinS> so, yeah. those 2 vlan things aren't really saving me at all, regardless which way I go 04:47 < Hunterkll> #2 - why aren't you getting your web filter properly configured so you don't have to jump around it 04:47 < Hunterkll> sounds like you got shit that needs fixin' 04:47 < AustinS> #2 - i wish. we've tried, IT doesn't want to allow us to look at it, so w/e 04:47 < AustinS> yes, lol. it's a work in progress at least, a new IT security person started that actually sounds like they know what they're doing 04:48 < AustinS> I don't work in IT dept, but I may go meet with them and see what they know/things they want to change, and actually try to actively work with them to implement smarter things 04:48 < AustinS> and our servers don't talk out to web stuff anyways, or do anything web anymore. most of them are configured to only talk internally anyways 04:49 < AustinS> our AWS stuff is configured much better security/segregation wise. Stuff that I actually can have control over 04:49 < AustinS> people cry @ us needing to open things for them or that it's too locked down.. but rather that than have something stupid happen 04:49 < AustinS> old ops person would just open up instances *smh* 04:51 < AustinS> i like you tho Hunterkll <3 come be my new ops person :p 04:51 < Hunterkll> *shrug* 04:51 < ravioli> Hunterkll sux 04:51 < Hunterkll> inside the same VPC shit can talk all day long 04:52 < Hunterkll> and egress is 100% open 04:52 < Hunterkll> it's ingrss that's not 04:52 < Hunterkll> (at least, to on-prem) 04:52 < Hunterkll> obviously internet egress comes back to our datacenter and passes throguh our palo altos before going back out 04:53 < AustinS> yeah, well VPC network ACL can restrict egress a bit more, but security groups don't do as much. I definitely wish there was more fine grained control, but better than nothing 04:53 < AustinS> i miss having a legit datacenter, but at the same time.. glad 04:53 < Hunterkll> we don't want to restrict it 04:53 < Hunterkll> ;) 04:53 < Hunterkll> going back to the DC is fine 04:53 < Hunterkll> eh 04:53 < Hunterkll> i have .... 5 maybe? 04:53 < Hunterkll> probably more now 04:53 < Hunterkll> not sure 04:53 < Hunterkll> i primarily touch on two 04:53 < AustinS> i mean i wish we had the one in town here still, I live almost next to it now, would've been nice lol 04:54 < AustinS> drive past it every day to office, miss it. but don't miss needing to go there off hours when i can just spin up something new instead. Definitely pros and cons in my mind, 04:54 < AustinS> we have on-site datacenters, but that's mostly for stuff that's not .. practical to be in cloud or elsewhere, like storage 04:55 < Hunterkll> i remember we did a massive datacenter move 04:55 < Hunterkll> three full semis of gear 04:55 < Hunterkll> armed guards 04:55 < Hunterkll> the whole nine yards 04:55 < genr8_> i remember back in like 1999/2000ish the big thing was to do server Colocation 04:55 < genr8_> drop your own server off at the DC 04:55 < Hunterkll> still the thing to do 04:55 < Hunterkll> if i ever get good hw i'm gonna do it 04:55 < Hunterkll> good hardware i can have remote hands service easily that is 04:56 < Hunterkll> not like the whitebox shit i do now 04:56 < Hunterkll> gotta tear it half apart to get to drives and shit 04:56 < AustinS> damn @ semis, we just had a cage of .. 4 rows. 3 racks each.. but very spaced out / slowly was using less hardware there 04:56 < Hunterkll> great for home, not so great for "hey, can you guys swap this disk for me?" 04:56 < Hunterkll> AustinS, they actually got to north carolina late, because one of the guards vehicles broke down 04:56 < Hunterkll> lol 04:56 < AustinS> just when it got to the point to renew cisco contracts and possibly buying new hardware, decided cloud made sense for that stuff (just all web servers) 04:56 < AustinS> and nothing that warrants guards :O 04:56 < AustinS> how far of a transport? 04:57 < Hunterkll> new jersey i think 04:57 < Hunterkll> to north carolina 04:57 < genr8_> now you can get good enough internet pipes locally enough that you dont even need to colocate it 04:57 < Hunterkll> genr8_, eh. i'd say not really. 04:57 < Hunterkll> depends on the type of pipes you get 04:57 < Hunterkll> $$$$ 04:57 < AustinS> yeah we have good enough lines, but still need massive on site storage for media stuff/editing .. no way would make sense for that 04:57 < AustinS> and yeah gets expensive quick :P 04:57 < Hunterkll> if you don't have special fancy ass hookups like me you can't announce PI IP space, etc 04:57 < Hunterkll> no BGP access, blah blah blah 04:58 < AustinS> for the longest time, two of our other buildings fiber lines were running on telephone polls..... smh... 04:58 < Hunterkll> we had a 50mbit link at one office that was like $2000/mo with a /24 04:58 < Hunterkll> nothing wrong with that 04:58 < AustinS> and main electric grid 04:58 < Hunterkll> we had gigabit fiber between two buildings on poles 04:58 < AustinS> it is when a fucking doritos truck hits it 04:58 < AustinS> lmao 04:58 < AustinS> I need to find that picture... 04:58 < Hunterkll> i mean 04:58 < Hunterkll> that'd knock out our windstream circuit at that office anyway 04:58 < Hunterkll> so 04:58 < AustinS> (but idiots have cut fiber by digging too) 04:58 < Hunterkll> it's all handled by verizon as the last mile, but you know how that goes 04:59 < Hunterkll> it's all pole 04:59 < Hunterkll> except for power 04:59 < Hunterkll> power's underground 04:59 < Hunterkll> and the primary cable had been burnt out once 04:59 < genr8_> its better to bury it cause then trees arent pulling them down 04:59 < Hunterkll> then the backup cable burnt out 04:59 < Hunterkll> so they had to tear all that up and actually fix it 04:59 < Hunterkll> lol 04:59 < Hunterkll> no trees in that area 04:59 < Hunterkll> well, not really 04:59 < Hunterkll> office/business park type setup 04:59 < genr8_> you should just be able to pull new cables underground 04:59 < genr8_> thats why you leave pull strings 04:59 < Hunterkll> i had like 8 T1s, 50meg ethernet service from windstream, level3, centurylink, etc all coming into there 05:00 < Hunterkll> some of the T1s were direct connection to government agency networks 05:00 < AustinS> yeah we just invested heavily in backup power there cause it's also our main transit for satellite stuff, can't really go offline cause of power lines 05:00 < Hunterkll> jeeze 05:00 < Hunterkll> i had like 3-4 tier1s plus all the other connections 05:00 < Hunterkll> fun networks 05:00 < AustinS> underneath the parking lot is huge fuel tank too, not sure how much is in there. im glad i dont have to deal with any of that but its interesting 05:00 < Hunterkll> oh, except the one network 05:00 < Hunterkll> which terminated in the other building 05:00 < Hunterkll> and then ran back trunked over the inter buidling fiber link 05:01 < Hunterkll> lol 05:01 < Hunterkll> but that was just dual bonded T1s to another agency's network 05:01 < AustinS> yeah a couple buildings link thru the main HQ building here, but we almost had ot shut down power completely due to some .. water issues.. lol 05:01 < AustinS> so trying to figure out how the other two buildings talk was a nightmare\ 05:01 < AustinS> (they can't) 05:01 < Hunterkll> that was a fun area 05:01 < Hunterkll> we evacuated work one day during the "baltimore riots" 05:01 < Hunterkll> we weren't going to 05:01 < Hunterkll> but the FBI down the road evacuated 05:01 < AustinS> but that just impacts non critical things. (it's critical in those peoples eyes, but not really). wish we just had a campus of buildings 05:01 < Hunterkll> so we were like 05:01 < Hunterkll> EHHHH MAYBE WE SHOULD GO 05:02 < AustinS> lol omg 05:03 < Hunterkll> me and my buddy went crusiing around looking at the national guard deployed all over the city 05:03 < Hunterkll> had some pizza & beer at a nice place 05:03 < Hunterkll> etc 05:04 < AustinS> ahh baltimore, miss it. lol 05:04 < Hunterkll> it's always fun when your local city looks like this: https://i.imgur.com/FIAmTw9.jpg 05:04 <+layer-eight> * Hunterkll โ†’ IMAGE/JPEG Document, 787,215 bytes 05:04 < AustinS> never lived there but friend did / would visit when he was in school 05:04 < Hunterkll> https://i.imgur.com/8MrHtKH.jpg 05:04 <+layer-eight> * Hunterkll โ†’ IMAGE/JPEG Document, 817,247 bytes 05:04 < Hunterkll> https://i.imgur.com/H9XS55O.jpg 05:04 <+layer-eight> * Hunterkll โ†’ IMAGE/JPEG Document, 586,300 bytes 05:04 < AustinS> only thing like that was when I went to pull into work one time and FBI was checking our badges too.. i was like huh? 05:05 < AustinS> had a bomb threat around the same time as shareholders meeting.. completely unrelated/the person that made it had no idea was just dumb kid 05:05 < Hunterkll> lol 05:05 < AustinS> but what a fucking nightmare lol 05:05 < AustinS> and lol @ those pics, yea 05:06 < Hunterkll> word on the street is yes, they were locked and loaded 05:06 < Hunterkll> lol 05:06 < Hunterkll> sometimes they'll deploy like that but have empty mags in the weapon and full ones on them 05:06 < Hunterkll> nope 05:06 < Hunterkll> full ones in this time 05:06 < Hunterkll> i swear governor hogan was like 05:06 < Hunterkll> "YOU MEAN I JUST GOT ELECTED AND I GET TO SHOOT BLACK PEOPLE ALREADY?!?!?!!?" 05:06 < AustinS> lol 05:07 < AustinS> yeah i imagine they were loaded. we randomly got .. prolly 2 years ago 05:07 < AustinS> well we've always had a security person at desk, but started getting a gun too.. like wtf 05:08 < Hunterkll> lol 05:08 < AustinS> and metal detector for anyone coming in non employee. but if you had a badge you wkl around.. like.. I'd be more worried of some employee going crazy in here than a random person 05:08 < Hunterkll> our HQs don't have armed guards 05:08 < Hunterkll> at least, not that i've ever seen visibly 05:08 < Hunterkll> but we're uh 05:08 < AustinS> (and our lobby doors are locked 24/7 anyways) 05:08 < AustinS> think we're just worried about crazy people/fans.. lol 05:08 < Hunterkll> also like nestled in a high concentration of government/military/defense 05:08 < Hunterkll> sooo 05:08 < genr8_> have you seen those ID badges that have color changing time changing ink 05:09 < AustinS> yeah im sure there's someone/something somewhere that's armed and ready.. :P 05:09 < AustinS> genr8_, yeah we have those for temp badges when people forget them, they're cool :p 05:09 < Hunterkll> actually now i'm curious 05:09 < genr8_> just found out about em 05:09 < Hunterkll> lol yea 05:10 < Hunterkll> 30 minute drive from the pentagon 05:10 < Hunterkll> for one office 05:10 < AustinS> the ID printer broke on my badge when i asked for a reprint recently, its super demonic looking and all fucked up, hoping to keep it forever lol 05:10 < Hunterkll> heh 05:10 < Hunterkll> 15 minutes for the other 05:10 < Hunterkll> 10 miles 05:10 < Hunterkll> AustinS, i'd say we probably have some pretty good armed security around there, yea? 05:10 < Hunterkll> lol 05:11 < AustinS> yeah wouldnt be too concerned about my safety if they really needed to call on someone :p 05:11 < Hunterkll> AustinS, though i'd be concerned about nuclear blast radius 05:11 < Hunterkll> :D 05:11 < Hunterkll> ohhh 05:11 < Hunterkll> reston VA 05:11 < Hunterkll> they had ebola there! 05:12 < AustinS> ha yeah, my uncle worked with the ebola shit / went down to wherever that huge outbreak was 05:12 < AustinS> (works @ CDC) 05:12 < Hunterkll> somewhere in africa or something 05:12 < Hunterkll> HAHA yea 05:12 < Hunterkll> Quantico is a 30 minute drive 05:12 < Hunterkll> lmao 05:12 < Hunterkll> shit's all next to each other 05:13 < Hunterkll> i aint been to the office in like 3 months tho 05:13 < Hunterkll> i work remote 05:13 < Hunterkll> far far away 05:13 < Hunterkll> outside of nuclear blast radius of all major cities 05:13 < Hunterkll> and i can shoot the neighbors and take their farm land if i need to 05:13 < Hunterkll> so i got food 05:13 < Hunterkll> even horses and cows 05:13 < Hunterkll> we good 05:16 < AustinS> i was remote for soo long, out in Oregon.. nobody wants to nuke Oregon 05:16 < AustinS> now in CT / close enough to NYC that i wouldnt wanna be around if some shit went down lol 05:16 < Hunterkll> i'm in between NYC and DC 05:16 < Hunterkll> :D 05:17 < Hunterkll> i think i'll just hide in deleware or west virginia.... 05:17 < Hunterkll> maybe PA 05:17 < Hunterkll> shit 05:17 < Hunterkll> fuck deleware 05:17 < Hunterkll> forgot about dover 05:19 < AustinS> more worried about just shit getting wiped away with water than anything here lol 05:19 < AustinS> (loved how our datacenter was right next to the long island sound pretty much) 05:19 < AustinS> so we had a DR datacenter... also near water but in NJ.. I was like .... come on guys 05:20 < AustinS> most of the time the DR datacenter had issues before our main one did. it wasn't very logically planned 05:25 < Hunterkll> AustinS, put your DR somewhere else 05:25 < Hunterkll> like uh 05:25 < Hunterkll> new orleans 05:25 < Hunterkll> taht sounds safe 05:29 <@JollyRgrs> well, msft just puts theirs completely under water to start with 05:33 < AustinS> Hunterkll, NOLA would make more sense than along the same water line within a short # of miles.. lol 05:34 < AustinS> at least then it'd take like.. more than one single storm to knock both out. but outta the DC game so w/e 05:43 < genr8_> any of you guys know preppers ? like with bunkers 05:44 < genr8_> for "When the shit hits the fan" โ„ข 05:46 < AustinS> not to the bunker level, no :P 05:48 < Hunterkll> LOL WHOOPS 05:48 < Hunterkll> no wonder my hypervisor was being shitty 05:48 < Hunterkll> AV was enabled & it was wrekcing the virtual disks 05:48 < Hunterkll> lol 05:49 < Hunterkll> LEL 05:49 < Hunterkll> GG file copy flying now 05:49 < Hunterkll> hahahah 05:50 < AustinS> :x 05:50 < Hunterkll> i always forget server 2016 has inbuilt defender and it's on by default 05:50 < Hunterkll> lol 05:50 < Uneasy-Sausage> #reddit-sysadmin-support 05:51 < Hunterkll> support is closed 05:51 < Hunterkll> only open on the 32nd of the month 05:52 < Hunterkll> ... wait, that worked? 05:52 < genr8_> soooooo how bout those new Optane 905p drives eh ? 05:53 < Hunterkll> ticket closed, user self-resolved 05:53 < genr8_> user gave up on life 05:54 < genr8_> how do you tell a user that their issue is most likely going to be self-resolved 05:56 < nohusuro> man, today is flying by, lunch time already! 05:56 < nohusuro> that's how I like monday's to go ^_^ 05:56 < Hunterkll> "fuck off" 05:56 < Hunterkll> that's how 05:57 < genr8_> whats the most common desktop support ticket ? 05:57 < genr8_> Windows wont boot ? 05:58 < Hunterkll> "Outlook broke" 05:58 < Hunterkll> "Room temperature too warm" 05:58 < genr8_> its always outlook 05:58 < Hunterkll> "Cocaine stash empty" 05:58 < Hunterkll> etc 07:21 <@Nostalg14c> `bofh 07:21 <+layer-eight> BOFH The file system is full of it 07:22 <@Nostalg14c> `bofh 07:22 <+layer-eight> BOFH Dry joints on cable plug 07:35 < togenshi> zzzz 07:47 <@Nostalg14c> Slow Monday for me, just going through some online training. 07:47 <@Nostalg14c> Thankfully its like a 10-4 day tho 07:54 < togenshi> lol i have a mountain of work to do but shits to give is at 0 atm 08:02 < plop> morning golks 08:02 < plop> folls 08:02 < plop> folks.. 08:14 <@Nostalg14c> o.o 08:14 <@Nostalg14c> Rough morning eh. 08:16 < plop> seems so hah 08:16 < plop> yesterday i pulled 12h 08:16 <@Nostalg14c> ouch 08:16 <@Nostalg14c> rough sunday. 08:16 < plop> yeah... 08:16 < plop> today doesn't seem better. 08:16 < plop> how about you? 08:17 <@Nostalg14c> chill af here. 08:17 < plop> nice 08:17 <@Nostalg14c> although the heater is cranked so im melting. 08:17 < hug> I' 08:17 < hug> m writing js 08:18 < hug> I don't know how to write js 08:18 < plop> haha 08:18 <@Nostalg14c> What for hug? 08:18 < hug> sharepoint 08:18 <@Nostalg14c> eugh 08:18 <@Nostalg14c> Is that all you do now, lol. 08:19 < hug> Yeah until I quit. 08:19 < hug> Know anyone in Melbourne who is hiring 08:19 <@Nostalg14c> That was a slight joke. 08:19 <@Nostalg14c> Feelsbadman. 08:19 <@Nostalg14c> Idk, tell Goog/Amazon to get Melbourne HQ. 08:19 <@Nostalg14c> MS might have one there. 08:19 < hug> lol 08:20 <@Nostalg14c> I'm ready for retirement as well though. 08:20 <@Nostalg14c> Mentally ready that is. Not financially. 08:21 < hug> I just need to move on from this specific job. 08:21 < hug> I have a couple of reasons for not quitting riiiiiight now. 08:22 < hug> but I will soon. 08:22 <@Nostalg14c> What are you looking to move into? 08:22 < hug> I dunno. Whatever looks good while I'm looking. ;p 08:22 < hug> I don't really want to end up doing full technical role. 08:22 < hug> But I will if the money is right. 08:22 <@Nostalg14c> Going to the dark side. 08:23 < Hunterkll> shit 08:23 < Hunterkll> i don't want no management hug's 08:23 < plop> yeah, imagine having to deal with all those sysadmins. crazy. 08:24 < Hunterkll> f that 08:24 < Hunterkll> i have to deal with like 30 of 'em 08:24 < Hunterkll> and that's just my immediate 08:24 < Hunterkll> :/ 08:24 < Hunterkll> urgh 08:24 < Hunterkll> tomorrow/today will be .... unique 08:25 < hug> I am not a sysadmin 08:25 < hug> I am a meat popsicle 08:26 < plop> so, this guy called our company asking for the person that manages the communication. and they transfered him to me. because, yeah. communication = internet or something. So this company wants to photograph our hotel because they are the manufacturers of our windows and we're a cool hotel. so now today i'm stuck with the hot italian photographer all day. 08:26 < Hunterkll> I have to show up people tomorrow by orders and i'm not happy about it 08:27 < Hunterkll> fiefdoms apparent 08:27 < Hunterkll> :/ 08:31 < Hunterkll> plop, woe is you 08:32 < Hunterkll> hug: if you go management, i'll respect you more than a devops acolyte. 08:34 < plop> heh 08:34 < Hunterkll> what 08:34 < Hunterkll> no devops shills? 08:35 <@Nostalg14c> Not at this hour. 08:35 < Hunterkll> damn 08:53 < Tzunamii> hahaha 09:15 <+MillerBOSS> You better knot uh mention that again you cock suckers. 09:27 < vader-> so crazy i picked up an old computer from my parents house tonight from like 2000-2003 i built... damn thing had like 12GB hard drives, 40gb hard drives, i think the biggest was like 75gb heh 09:27 <+MillerBOSS> Maxtor drives? 09:28 < vader-> maxtor, seagate, wd 09:28 < vader-> mix 09:28 <+MillerBOSS> Knew it :P 09:29 < vader-> i even found a promise ultra 66 card 09:29 < vader-> hehe 09:29 < vader-> i modified it for some reason 09:29 < vader-> i remember i added a resistor across 2 pins for a reason 09:30 < vader-> i don't know where the drives are that were setup with it 09:31 < vader-> haha i know i had a shit ton of viruses on those drives that windows defender freaked out about 09:32 <+MillerBOSS> Now what are you gonna do with it? 09:32 < vader-> ah looks like i added the resistor to convert the board from an ultra66 to a fasttrak 66 09:32 < vader-> i dunno what it got me 09:32 < vader-> hehe 09:34 < vader-> well the computer a bunch of drives was in won't start up 09:34 < vader-> for some reason i didn't have a video card in it 09:34 < vader-> so either one of my brothers stole it along time ago 09:34 < vader-> or i pulled it for some reason 09:34 < vader-> hehe 09:34 < vader-> i took an AGP card from another box but it still wouldn't post 09:35 < plop> sup MillerBOSS 09:35 <+MillerBOSS> Throw it away vader- 09:35 <+MillerBOSS> Hey plop. Another day 09:35 < vader-> ya i pulled the drives and im going to chuck the box 09:35 < plop> yeah 09:42 < vader-> it is really sad looking back at my digital history 09:42 < vader-> hehe 09:42 < vader-> and the shit i used to waste my time on 09:44 < AustinS> oh look MillerBOOB is awake! :D 09:45 < AustinS> and ahh can't wait to go pick up all my old archive HD's so i can look thru super old shit again. good memories/nostalgia on there 09:45 <+MillerBOSS> Who is that? 09:45 < AustinS> idk! some alter ego of someones. maybe yours 09:46 < plop> lol 09:46 <+MillerBOSS> Yeah still on the odd shift. Woke up at midnight 09:47 < AustinS> downsized one of my prod instances from c4.8xlarge to c4.2xlarge just to see, since we sooo underutilized the 8's 09:47 < AustinS> and RI's finally expired.. definitely making that bitch work now :O 09:47 < AustinS> no 5xx's still though which is always a good thing i suppose 09:51 <+MillerBOSS> Doubt time you do something over there 09:51 <+MillerBOSS> Bout* 09:53 <+MillerBOSS> Pretty good. 09:53 <+MillerBOSS> Pretteeee pretteeeee pretteeee good 09:54 < xe0n> monday done 09:54 < plop> xe0n, awesome 09:55 < xe0n> worst part is i come home, no weed 09:55 < xe0n> :@ 09:57 <@Nostalg14c> https://i.imgur.com/KUICSOV.png 09:57 <+layer-eight> * Nostalg14c โ†’ IMAGE/PNG Document, 12,972 bytes 09:57 <@Nostalg14c> ughhh 09:57 <+ihre> for APN tco ? 09:58 <@Nostalg14c> ye 09:58 <+ihre> got that one last month, its a bunch of crap :P 09:58 <@Nostalg14c> I tried to skip the training and started exam. 09:58 <@Nostalg14c> Fail. 09:58 <+ihre> felt like they're teaching you how to pyramid scheme :P 09:59 <+MillerBOSS> https://www.youtube.com/watch?v=4Jw6mKmozjM 09:59 <+layer-eight> * MillerBOSS โ†’ YouTube โ†’ Curb Your Enthusiasm - Larry David does George Costanza โ†’ โš˜ 665,064 โ†‘ 2,464 โ†“ 61 โœ 391 10:00 <+MillerBOSS> https://www.youtube.com/watch?v=kRz8-EXlhBo 10:01 <+layer-eight> * MillerBOSS โ†’ YouTube โ†’ Curb Your Enthusiasm - Pretty good... Prettaaay, Prettaaay Good Supercut โ†’ โš˜ 34,541 โ†‘ 154 โ†“ 4 โœ 6 10:01 <+ihre> Nostalg14c: they just add stupid questions in the exam, like how many engineers does an "old on-prem enterprise corp have" and "what are their wages in USD" 10:01 <@Nostalg14c> Yeah I saw. 10:01 <@Nostalg14c> The other exams were okay. 10:01 <@Nostalg14c> This one was a bit shitty, and like purely required you to have learned from the slides for useless info. 10:02 <+ihre> and they are sooo damn slow, cant increase speed, have to click for the next slide, silly questions in between 10:02 <+ihre> not a fan of their format :P 10:02 <+MillerBOSS> I think I will never get sick of Curb 10:02 <+MillerBOSS> Always cheers ya up 10:11 < xe0n> curb rocks 10:14 <+MillerBOSS> I hope he does a new season 10:15 <+MillerBOSS> Season 9 was the best yet 10:15 < AustinS> Nostalg14c, ahh fun AWS certs. i thnk mine expires soon lol :| 10:16 < AustinS> didn't do me any good since I don't switch jobs ever, but .. I did it once! :P 10:16 < AustinS> which one you doing 10:16 <+MillerBOSS> I guess it is a thing https://twitter.com/TheRichardLewis/status/941380941032726528 10:16 <+layer-eight> * MillerBOSS โ†’ Richard Lewis on Twitter: "Itโ€™s official! Curb Season 10! The boys are back in town!โ€ฆ " 10:17 < AustinS> and oh wow my 2xl is hanging in there better, traffic to origin has died down a lot.. coudl probably get away with all 2xls 10:18 < AustinS> i have a higher-up/manager that went the overkill route before, and he still wants to.. smh. so I'm load testing/trying out other methods vs. just "throw 3 giant instances at it!" 10:18 < AustinS> https://austin.gg/ss/uMiYb60.jpg 10:18 <+layer-eight> * AustinS โ†’ IMAGE/JPEG Document, 60,109 bytes 10:19 < AustinS> even had the stage server set as a 4xl.. when a 2xl is handling origin fine, so.. overkill.. lol 10:20 <+MillerBOSS> You cert is expired 10:20 <+MillerBOSS> Your 10:20 <+MillerBOSS> Unless my browser is lying to me 10:24 < xe0n> computer says no 10:39 < humpaxx> Hey team 10:44 < Atro> yo 10:45 < humpaxx> Working hard or hardly working? 10:46 < Atro> im at a conference, im not working at all 10:46 < Atro> :3 10:46 < humpaxx> Im in a remote sess watching windows 10 upgrade while trying to delegate something i know little about to a coworker who has more knowledge 10:46 < humpaxx> Im barely doing anything at all 10:47 < Atro> nice 10:48 < Atro> im too stupid for this conference 10:48 < Atro> its about IPV6 10:49 < humpaxx> Its funny i was trying to see if my ISP supports that yet 10:49 < humpaxx> Thinking iยดd roll it out at home to force myself to git gud 10:49 < Atro> theres only 1 isp here who supports it "experimentaly" 10:50 < Atro> theyll give it to you free but offers no guarantees 10:51 < Atro> i might play with it but i cbf to learn the subnetting 11:09 < ceofreak> Morning nerds 11:09 < ceofreak> How is everybody doing 11:09 < plop> sup ceofreak 11:09 < ceofreak> suppp 11:10 < plop> not much :D 11:10 < ceofreak> Nothing new 11:10 < ceofreak> :D 11:10 < plop> haha 11:10 < plop> same here 11:18 < humpaxx> Im trying to muster up the willpower to write my own icinga2 check for checking how much RAM is in use/available since the bundled one only shows how much is left 11:19 < Atro> humpaxx: use librenms 11:19 < Atro> lel 11:19 < humpaxx> Nah i already have icinga2 set up 11:24 <+ihre> Atro: use librenms for anything other than network devices, lel :p 11:24 < Atro> ihre: use librenms for anything other than server devices, lel :p 11:25 < plop> and grafana to make it cool 11:27 < jumi> morning 11:34 < FenJai_> Morning dudes and dudettes 11:39 < FenJai> Morning ceofreak. Ive not seen you here in a while 11:39 < ceofreak> Sup FenJai 11:40 < ceofreak> Yes, I got tangled up in various endeavours :D 11:40 < Atro> Why are tech conferences an e-penis contest 11:40 < Atro> Bet half of these cunts can't even subnet 11:41 < ceofreak> It is what it is Atro 12:15 < miggyb> I'm not finding KB4093120 in WSUS in order to push the CredSSP update to clients, anyone else seeing this? 12:23 < miggyb> nm found https://portal.msrc.microsoft.com/en-us/security-guidance/advisory/CVE-2018-0886 12:35 < AustinS> MillerBOSS, lol must've happened this morning / think autorenew already happened but just hadnt restarted yet 12:42 < AustinS> all happy now :o whoops @ blocking port 80 :p 13:10 < humpaxx> Do you guys know of any linux solution that lets me scan a network for equipment using SNMP and/or LLDP? 13:10 < Atro> librenms 13:10 < Atro> nmap 13:11 < Atro> tcpdump 13:11 < humpaxx> Oh yeah nmap, thanks 13:11 < humpaxx> Iยดve added creating some kind of solution that would let me plug in a raspberry pi to a network and it would discover all the stuff for me to my "things to figure out one day"-list 13:12 < humpaxx> nmap to find stuff with LLDP/snmp enabled and then some other stuff to scan those items? 13:13 < FenJai> What are you trying to do humpaxx ? 13:14 < humpaxx> FenJai: Nothing specific really. Just learn more about those stuff 13:15 < humpaxx> I saw librenms can do it already and wanted to know how it did it 13:15 < FenJai> So you want to set up monitoring ? 13:17 < humpaxx> I got it set up already but i want to add some other devices automagically 13:18 < Atro> you lazy fuck 13:18 < Atro> just add them manually 13:19 < Atro> but librenms can discover subnets, tho 13:20 < FenJai> Do you need it ? 13:20 < FenJai> How much stuff are you monitoring ? 13:20 < FenJai> Better yet, how much stuff *needs* to be monitored ? 13:20 < humpaxx> No, like 50 remote hosts, nothing more than i currently have 13:21 < humpaxx> This is more for time saving with deploying a new remote probe to monitor network equipment 13:22 < humpaxx> https://xkcd.com/1319/ this is highly relevant in this case 13:22 <+layer-eight> * humpaxx โ†’ xkcd: Automation 13:34 < estranger> Scum of the Earth 13:46 <+ihre> TIL http://nginx.org/en/docs/http/ngx_http_core_module.html#underscores_in_headers 13:46 <+layer-eight> * ihre โ†’ Module ngx_http_core_module 13:46 <+ihre> fml, had me searching for something that is disabled by default 13:58 * L3gacy shimmies across the dance floor 14:02 <+giant_it_burrit> easy way to reset local user passwords if trust relationship is busted 14:06 < mtnielsen> using a local admin account ? 14:07 < humpaxx> heh 14:07 < humpaxx> My coworkers have the sweden/South Korea game on the screen i used to use for displaying monitoring stats 14:08 < Atro> lol 14:12 < asimon> Good morning friends 14:12 < AustinS> humpaxx, that's why you always have a way to force change it remotely :3 14:12 < AustinS> we just installed all new iptv boxes on the TV's all around floor, figured out first weekend i was bored how to control remotely.. best thing ever 14:13 <+giant_it_burrit> AustinS: what hardware? 14:15 < AustinS> Exterity i believe 14:15 < AustinS> switched from Haivision boxes 14:26 < asimon> Can yall do me a favor and see if you can ping 96.45.83.166 14:27 < asimon> I have a feeling my computer is being fucky 14:28 < humpaxx> Hah weยดre not going to help you DDOS someone 14:28 < humpaxx> Ping is a hacker tool anyway so i have a SRP policy that blocks it 14:28 < asimon> There are easier ways to ddos... 14:28 < humpaxx> Im trying to sarcasm without the /s 14:28 < asimon> ah 14:29 < asimon> missed that 14:29 < humpaxx> It times out from here 14:29 < asimon> Kk 14:30 < asimon> My new property management company's website is rejecting the password in my manager and the password reset email never came 14:30 < asimon> So I tried to go to their website and it timed out 14:30 < asimon> Just wanted to be sure I'm not having a personal apocolypse 14:31 < humpaxx> .yt the website is down 14:32 < FenJai> timeout on my end too asimon 14:32 < asimon> +1 FenJai 14:33 < humpaxx> Someone from sonlarwinds is going to demo n-able and nCentral to me in half an hour 14:33 < humpaxx> is it useful? 14:47 < McDonaldsWiFi> morn 14:47 < asimon> Good morn 14:48 < McDonaldsWiFi> management denied my half day today... I wanted it for an interview 14:48 < McDonaldsWiFi> so... I"m going to be disappearing today lol 14:49 < FenJai> Why did they deny it McDonaldsWiFi ? 14:49 < McDonaldsWiFi> cause I'm the only sysadmin here lol 14:49 < McDonaldsWiFi> it's a catch 22, but fuck that I'm not playing that game anymore lol 14:50 < McDonaldsWiFi> i can't look for a job cause I'm a lone sysadmin, and I'm a lone sysadmin cause I can't look for a job lol 14:50 < McDonaldsWiFi> i actually ahve the job I think, this is my final interview with them... and it's more of a formality to set the salary I think 14:52 < McDonaldsWiFi> man now that I think about it, i sound angsty lol 14:56 < asimon> brb ddosing all of the systems McDonalsWifi manages 14:56 < McDonaldsWiFi> asimon: hey don't ping me man 14:56 < McDonaldsWiFi> think about the kids 14:57 * asimon pongs McDonaldsWifi 14:57 < McDonaldsWiFi> hey man let's not let this get out of hand 14:57 < McDonaldsWiFi> put the nmap away 14:57 < McDonaldsWiFi> HE'S GOT AN NMAP, SHOOT 14:57 < asimon> lol Code Man couldn't take it 14:58 < McDonaldsWiFi> LOL 14:58 < McDonaldsWiFi> he nope'd 14:58 < McDonaldsWiFi> alright time to work 14:58 < McDonaldsWiFi> no more shit posting for me 14:58 < McDonaldsWiFi> ;) 14:58 <+MillerBOSS> There is always time for that McDonaldsWiFi 14:59 <+MillerBOSS> `bofh 14:59 <+layer-eight> BOFH User to computer ratio too high. 14:59 <+MillerBOSS> Send em home. 15:06 < FenJai> How can I extract quarantined files from MSE for analysis ? 15:07 < McDonaldsWiFi> could probably remove it from quarantine... 15:07 < FenJai> I dont want to restore it to its original location as Im not 100% sure where that is 15:08 < McDonaldsWiFi> I think that's the only 2 options brutha 15:08 < McDonaldsWiFi> restore or delete 15:16 < genr8_> How can I obtain all the cloud samples of every virus or malware in the world at once? 15:16 < corn266> https://portal.msrc.microsoft.com/en-us/security-guidance/advisory/ADV170012 15:16 < corn266> layer eight wake up 15:17 < Atro> fuck yo links 15:17 < corn266> alright, y'all heard about "ADV170012 | Vulnerability in TPM could allow Security Feature Bypass" 15:17 < GreyKite> doesn't layer-eight only respond to voiced people? 15:17 < genr8_> how do i know if my TPM is affected 15:17 < corn266> `sjw 15:17 <+layer-eight> corn266, you're a deluded, sexist, nazi, WASP! 15:18 < corn266> ยฏ\_(ใƒ„)_/ยฏ 15:18 < Atro> corn266: look up a firmware smh 15:20 < corn266> ah fuck how could you have done this 15:20 < asimon> Who comes up with these vulnerability names 15:21 < Nightcinder> ur a vulnerability 15:21 < asimon> """This advisory addresses CVE-2017-15361, also referred to as "Return of Coppersmith's Attack" (ROCA).""" 15:21 < Nightcinder> RETURN OF THE JEDISMITH 15:21 < mcj> happy monday all 15:21 * mcj yawns 15:23 < MadCamel> 'tis a silly thing. we used to just say "hey man hear about that rsa vuln?" instead of "hey hear about ROCA?" 15:24 <+TuxedoJack> Do they have to use catchy names and fucking acronyms for everything now 15:25 <+TuxedoJack> It's like vulnerability researchers hire fucking marketing firms for this shit 15:25 < GreyKite> TuxedoJack: they probably do 15:25 < MadCamel> yeah they do 15:26 < MadCamel> Next vuln I find I should a) release it, b) give it a name like PENOR. 15:35 < McDonaldsWiFi> MadCamel may I ask what make you mad? 15:35 < MadCamel> Sniffing glue 15:36 < GreyKite> that'll do it 15:37 < McDonaldsWiFi> xD 15:43 < syere> two weeks and one day till I live in my new house. This waiting around and doing nothing crap is killing me 15:43 < McDonaldsWiFi> nice man! 15:43 < McDonaldsWiFi> Goodluck moving.. that's always a drag lol 15:43 < syere> Thanks! 15:43 < syere> it wont be too horrible. I moved across the country, so I only have a bedrooms worth of stuff here. Hiring movers for the rest of it to bring it from GA to CO 15:45 < alazare619> McDonaldsWiFi: if you have to ask what made them mad it is likely meth 15:45 < alazare619> McDonaldsWiFi: its always meth 15:46 < McDonaldsWiFi> LOL 15:46 < McDonaldsWiFi> Im' from KY... it's always meth lol 15:46 < alazare619> hey betrayed you around? 15:46 < alazare619> shoot me a pm i know you are busy lately 15:47 < McDonaldsWiFi> when I was a mailman I had a guy offer me some kind of drugs once.. like srsly? 15:49 < alazare619> thats wigggggity wack man 15:50 < corn266> Did the AWS M4 always have the 2.3GHz processors? 15:51 < asimon> motherfucker 15:52 < asimon> My search filtering was working correctly after all 15:52 < asimon> It just wasn't returning any results because my test searches had an empty search string 15:53 < abakedapplepie> lol 15:55 < genr8_> you know what would be a cool idea? have a youtube channel where you buy a new shitty IOT device every day and try to debunk the security of it or take it apart at least and then try to hardware hack them 15:58 < asimon> I'd watch it 15:58 < genr8_> maybe not every day that seems kinda intense 15:58 < genr8_> but yea 15:59 < syere> once a week 15:59 < alazare619> id sub it 15:59 < asimon> Not IoT but did you see the fingerprint padlock that has exposed screws that can be undone to dismantle the lock 15:59 < genr8_> yup 15:59 < FenJai> That would get depressing real fast 15:59 < genr8_> thats what got me thinking about it actually 15:59 < abakedapplepie> uhh 15:59 < abakedapplepie> theres also tapplock or whatever that thing is called 16:00 < abakedapplepie> you could get the gps coords for any smart lock in the world 16:00 < abakedapplepie> and then once at the lock, you could unlock it 16:00 < genr8_> https://www.pentestpartners.com/security-blog/totally-pwning-the-tapplock-smart-lock/ 16:00 <+layer-eight> * genr8_ โ†’ Totally Pwning the Tapplock Smart Lock | Pen Test Partners 16:00 < abakedapplepie> yeah 16:00 < asimon> Technology is honestly the worst 16:00 < genr8_> anyway that seems like a cool job,blog/hobby 16:01 < abakedapplepie> there are so many awesome IOT ideas being made by companies with 0 security sense 16:01 < abakedapplepie> its sad 16:01 < genr8_> yep lol 16:01 < genr8_> and direct to customers on amazon 16:01 < genr8_> from some WhoZeeWhats brand 16:02 < genr8_> and the new thing now is to integrate them into alexa, so they'd be able to use your amazon account if they got taken over :p 16:02 < betrayed> alazare619: yeah 16:03 < alazare619> betrayed: pm'd ya 16:06 < betrayed> alazare619: one sec freenode and i are fighting it seems 16:13 < Jekotia> Anyone have any experience getting Windows Remote Assistance Easy Connect working over IPv4 in a non-domain environment? 16:14 < ebol4> isn't remote assistance just a wrapper for remote desktop 16:15 < ebol4> i'd think you should just be able to open port 3389 16:17 < Jekotia> Remote Assistance works, it's Easy Connect that's the issue. I want to get my system and a couple others pre-configured as "contacts" in our master system image, so it's easy for people to request remote assistance. But everything I've seen points at MS having decided to drop IPv4 for Easy Connect :/ 16:17 < Atro> just buy teamviewer 16:17 < ebol4> yeah it sounds like you want teamviewer 16:17 < Jekotia> I have no budget for that sadly :/ 16:18 < Atro> find something else 16:18 < Atro> anydesk 16:18 < Atro> or some stuff 16:18 < abakedapplepie> who doesnt have remote tools these days 16:18 < ebol4> just deploy the free version of teamviewer and violate the license 16:19 < abakedapplepie> we'd be lost without an rmm 16:19 < Jekotia> abakedapplepie: RMM? 16:19 <@Code_Man65> Remote Machine Management 16:19 < abakedapplepie> remote machine management 16:19 < McDonaldsWiFi> remote management management 16:24 < coderphive> Remote Machine Molestation 16:25 <@Code_Man65> coderphive show us on the doll where the machine touched you 16:25 < coderphive> o here we go 16:25 < coderphive> It was a serial port :( 16:26 <@Code_Man65> So you are claiming it is a serial toucher? 16:26 < Jekotia> Oh, well if you're a machine there's no issue. Machines don't have free will yet, right? 16:26 < ebol4> that you know of 16:26 < coderphive> yes he said his baud rate was 11520 but it was really 250000 Code_Man65 16:27 <@Code_Man65> Sounds like you need better serial lube 16:27 < coderphive> speaking of serial lube 16:27 < coderphive> fuck godaddy dns 16:28 < felda> anyone got a wikipedia for audio systems and radio transmitting? Working at a radio station has dropped me directly in the deep end 16:28 < coderphive> basically postured at the bottom of the dns ocean 16:28 < coderphive> felda what do you want to know 16:28 < abakedapplepie> wait what 16:28 < coderphive> Are you talking about wave propogation? 16:28 < abakedapplepie> now you work at a radio station? 16:28 < felda> abakedapplepie yeah as my second job 16:28 < abakedapplepie> wat 16:28 < felda> coderphive literally all of it 16:28 < abakedapplepie> when did you do that 16:28 < coderphive> o 16:28 < felda> I need to know how RF works 16:29 < abakedapplepie> lol 16:29 < felda> and how transmitters work 16:29 < namol> felda: magic 16:29 < abakedapplepie> yeah uhh 16:29 < felda> and how to get the signal from one place to another 16:29 < coderphive> felda FM or AM? 16:29 < felda> and also I need to know audio mixing 16:29 < felda> coderphive both lmao 16:29 < abakedapplepie> what have you done 16:29 < felda> I now am IT for 3 radio stations :D 16:29 < genr8_> start googlin 16:29 < abakedapplepie> who thought that was a good idea 16:29 < coderphive> felda https://en.wikipedia.org/wiki/Radio_propagation 16:29 <+layer-eight> * coderphive โ†’ Radio propagation - Wikipedia 16:29 < coderphive> This is one of the first courses they teach you in the military 16:29 < abakedapplepie> how did you get that job lol 16:29 < coderphive> Radio Wave Propagation answers a number of questions 16:29 < felda> if you are near the Quad Cities and are trying to listen to 97.7 and it doesn't work that's my bad 16:30 < coderphive> Also, know how radio waves are transmitted and received helps 16:30 < namol> abakedapplepie: based on some resumes i've seen for the open positions we have, it's just people making shit up 16:30 < ebol4> what the heck is the quad cities 16:30 < namol> quad city djs 16:30 < coderphive> AM = Amplitude Modulated and FM = Frequency Modulated 16:30 < felda> ebol4 if you don't know then don't come here 16:30 < abakedapplepie> basically the parts of illinois that arent chicago i think 16:30 < abakedapplepie> lol 16:30 < abakedapplepie> western IL 16:30 < abakedapplepie> ? 16:30 < felda> yeah 16:30 < coderphive> https://en.wikipedia.org/wiki/Amplitude_modulation 16:30 <+layer-eight> * coderphive โ†’ Amplitude modulation - Wikipedia 16:31 < abakedapplepie> AM radio is easy 16:31 < coderphive> https://en.wikipedia.org/wiki/Frequency_modulation 16:31 <+layer-eight> * coderphive โ†’ Frequency modulation - Wikipedia 16:31 < abakedapplepie> FM is a little more complicated 16:31 < coderphive> ^ 16:31 < coderphive> Understand AM first 16:31 < coderphive> Once you understand AM, FM is pretty easy 16:31 < abakedapplepie> i question the level of knowledge you need in that position thought 16:31 < coderphive> plus you're probably not diving down into circuitry 16:31 < coderphive> so that makes it easier 16:31 < abakedapplepie> they should have an EE somewhere that does this shit 16:31 < ebol4> how do they put the man with the deep voice in the air 16:32 < coderphive> abakedapplepie nope 16:32 < felda> abakedapplepie honestly I'm supposed to be doing computer / server work because they have no backups lel 16:32 < asimon> FM always made much more sense than AM to me 16:32 < coderphive> abakedapplepie not in the military anyway 16:32 < felda> but they invited me to help setup their remote site to transmit a meeting to radio 16:32 < coderphive> abakedapplepie it's about a year long course with a high attrition rate 16:32 < abakedapplepie> coderphive: right but the military trains you with the knowledge you need 16:32 < abakedapplepie> felda is just a neckbeard 16:32 < coderphive> kek 16:32 < genr8_> dont worry you can just come in here and ask us and we can save your job like we did for that other guy 16:33 < coderphive> You learn 1. Basic Electronics 2. Advanced Electronics A) AM B) FM 3. Wave propagation 16:33 < coderphive> That's about it summed up 16:33 < abakedapplepie> meanwhile felda probably doesnt even know ohms law 16:33 < abakedapplepie> :P 16:33 < coderphive> lmaooo 16:33 < coderphive> rip 16:33 < abakedapplepie> but seriously, signals and dsp is no joke 16:33 < genr8_> you need like a good few years in school 16:34 < abakedapplepie> and depending on the level of understanding youre shooting for you need calculus, physics, and electronics chops 16:36 < abakedapplepie> but im jealous, sounds like a neat gig 16:36 < abakedapplepie> i would love to work at a radio station again 16:36 < genr8_> you could get into Software Defined Radio and work backwards from there 16:36 < genr8_> only learn the absolutely relevant bits and google the rest 16:36 < abakedapplepie> that would be antithetical to his current situation i think 16:36 < genr8_> maybe. 16:37 < genr8_> orthogonal 16:39 < abakedapplepie> have you guys heard about houghton 16:39 < abakedapplepie> my college town is destroyed 16:39 < abakedapplepie> https://i.redditmedia.com/zMnTdo1axKQ7Q8d7hQbKRTKYOr-yxgaHpdMD7GGGewM.jpg?w=1024&s=79d31305e9a77dff75c669cf4912c93f 16:39 <+layer-eight> * abakedapplepie โ†’ IMAGE/JPEG Document, 248,910 bytes 16:39 < aName> I need to install multiple packages along with running a VBS script - I want to package this all into one blob I can tell my users to download and run because otherwise I'm looking at calling up 70 people individually. 16:39 < abakedapplepie> 7 inches of rain in 4 hours 16:39 < genr8_> why'd they build a road on top of a river ? 16:41 < felda> abakedapplepie I actually don't know Ohms Law 16:41 < felda> That's one of my weak spots is electricity 16:41 < felda> ;_; curse you weak rural education system 16:42 < aName> So, like, I need to install anydesk as a service, install our AV, and then run our audit script 16:42 < genr8_> do it all in powershell 16:42 < aName> I can think of a couple ways to do it - but I'm wondering if there's a good tool for this kind of thing on windows 16:43 < aName> genr8_: Yeah? 16:43 < Holo> PowerShell.... 16:43 < genr8_> sounds like it can all be done in powershell. as long as you have remote credentials 16:43 < namol> powershell, SCCM, etc 16:44 < aName> genr8_: Negative 16:44 < genr8_> well what do you have to access the machines ? 16:44 < aName> genr8_: We merged with some random company and they want me to get their IT assets under our umbrella 16:44 < aName> genr8_: At the moment? Nothing. 16:44 < genr8_> so how are you going to access the machines ? 16:44 < namol> do you have access to their windows domain? 16:44 < aName> genr8_: I was told to call these people up and walk them through getting me into a remote control session 16:44 < aName> genr8_: But that sounds fuckin' awful 16:45 < aName> So I'm trying to come up with 'Run this on all your computers kthx' 16:45 < genr8_> got it. 16:45 < aName> I'm pretty sure they all have local admin, which is horrible, but this is step 1 16:45 < namol> aName: are all these computers the same OS? 16:45 < aName> namol: Various flavors of window, relatively modern 16:46 <@JollyRgrs> abakedapplepie: wtf happened there? 16:46 < aName> So... yeah, powershell is probably the way to go - doesn't the default policy prevent execution of unsigned scripts, though? 16:46 < genr8_> are you going to be able to set up a public deployment server to host the powershell script by Shared Folders that all the machines can access 16:46 <@JollyRgrs> aName: yeah, you'd need to GPO a change to the policy, or sign the script 16:47 < grumplestiltzkin> in your radio wave propogation class you learn about when it's appropriate to use different types of antennas, matching the length of antennas to freq, line of sight vs. bouncing the signal off the ionosphere, etc 16:47 < namol> aName: i'd go with vbs or batch to deploy then since it's a hodge podge and powershell has restrictions on remote scripts etc out of the box 16:47 < aName> namol: Yeah. I can whip something up in AHK I think 16:47 < aName> That lets me 'compile' it with a packaged interpreter 16:48 < pcspkr> yeah compile an exe with autohotkey that runs powershell if anything 16:48 < pcspkr> batch / jscript / vbscript is shit 16:48 <@JollyRgrs> namol: tbh, it is much easier writing powershell script, i have a solution though 16:48 < pcspkr> powershell doesn't execute easily by default 16:48 <@JollyRgrs> you make it a 2 file script... 16:48 <@JollyRgrs> script.bat just calls powershell with the policy exception 16:49 <@JollyRgrs> https://blog.netspi.com/15-ways-to-bypass-the-powershell-execution-policy/ 16:49 <+layer-eight> * JollyRgrs โ†’ 15 Ways to Bypass the PowerShell Execution Policy 16:49 < genr8_> 15 ways lol ? 16:49 < namol> powershell.exe -bypassexecutionpolicy 16:49 < genr8_> so once you do that: follow this general process http://www.ben-morris.com/deploying-a-windows-service-remotely-with-powershell/ 16:50 <+layer-eight> * genr8_ โ†’ Deploying a Windows Service remotely with Powershell 16:51 < namol> however if it's win7-win10 then you'll need to work on the assumption that you can only use powershell 2.0 based which isn't too bad 16:51 < namol> but if all you're doing is installing etc then you should be fine 16:52 <@JollyRgrs> namol: unless you actually patch your windows computers and proactively update PS to 5+ 16:52 <@JollyRgrs> but yeah, i always keep powershell 2.0 in mind for win7 16:52 <@JollyRgrs> which is a PITA... 3+ is so much nicer 16:52 < namol> JollyRgrs: well he said it's a hodge podge with the users all being local admins, that doesn't describe a situation to me where they're doing things correctly :) 16:52 <@JollyRgrs> I actually was pushing out PS 5.0 to all workstations at my last job just before I left... and then due to another team wanting a feature, we're pushing it out to all workstations here as well 16:53 <@JollyRgrs> namol: lol, very true 16:53 < pcspkr> yeah everyone should upgrade to v5 16:53 < genr8_> $PSVersionTable.PSVersion 16:53 <@JollyRgrs> but sometimes that is just a director bending over to certain business groups/people 16:53 <@JollyRgrs> genr8_: nice! you're learning 16:53 <@JollyRgrs> you can also force your PS script to run in 2.0 compatible mode 16:54 < aName> JollyRgrs: From what I've been told, they don't even have an IT department right now - it's kind of a mess 16:54 <@JollyRgrs> EGAD! 16:55 < aName> JollyRgrs: And of course, you can just add 100+ users without adding any support or resources, right? 16:55 <@JollyRgrs> they should just do like planned parenthood and ABORT ABORT ABORT! 16:56 < namol> aName: we do that weekly 16:56 < namol> well it seems like weekly 16:57 < namol> probably 200 users a month 16:57 <@Code_Man65> Unless its Sharepoint or Exchange you should be on PowerShell 5.1 now 16:57 < namol> then we keep buying up other hospitals 16:57 < aName> namol: We had like 300, so it's a 30% increase in workload without any extra pay or resources 16:58 < aName> I mean, I'm bored a lot so I'm not super mad 16:58 < aName> But it's going to get worse 16:58 < namol> sounds like a great time to earn those senior sysadmin wings 16:58 < genr8_> step your management game up or you will get buried in tech support 16:59 < genr8_> you're gonna have to eventually take control of their machines might as well do it now 16:59 < aName> namol: Yeah, politics 17:00 < aName> namol: If it was up to me, they'd fly me out and I'd set up an imaging server and get them onto the domain and all that good stuff 17:00 < namol> genr8_: you mean flatten those machines and then roll out the standard image to them 17:00 < aName> namol: But that's not what I was asked to do lol 17:00 <+giant_it_burrit> https://www.reddit.com/r/sysadmin/comments/8rzuv3/new_hirens_bootcd_winpe_version_available_after_6/ new hirens 17:00 <+giant_it_burrit> dangggggggggg 17:00 <+layer-eight> * giant_it_burrit โ†’ New Hirens BootCD WinPE version available after 6 years! : sysadmin 17:00 < genr8_> nice 17:00 < felda> NO WAI 17:01 < felda> Another ISO to add to my Easy2Boot drive 17:01 <@JollyRgrs> it was totes b/c we were talking about it in ehre the other day 17:01 < alazare619> i've just used gandalfs winpe disk 17:01 < namol> wait it be a malware setup 17:01 < felda> > Based on Windows 10 PE 17:01 < felda> neato 17:02 < alazare619> felda just use gandalfs pe 17:02 < alazare619> the entire disk runs a full fledged PE enviroment with all the best windows software 17:03 <+giant_it_burrit> or use TuxedoJack 17:03 <+TuxedoJack> http://www.tuxpe.com 17:03 <+layer-eight> * TuxedoJack โ†’ โš“ https://www.mediafire.com/folder/zi44uadczc283/tuxpe โ†’ My Files 17:04 < aName> Occurs to me I have to remove whatever AV they already have and I don't have pre-knowledge of what that is 17:04 < aName> Hrm 17:04 < felda> :O 17:04 < felda> we know his real name now 17:04 < felda> let the internet sleuthing begin 17:04 <+TuxedoJack> felda, it's not hard, it's not like I've ever tried to hide it 17:05 <@JollyRgrs> I BET HIS LAST NAME IS JACK! 17:05 <@JollyRgrs> FIRST NAME TUXEDO! 17:05 <@JollyRgrs> doxxed 17:05 < felda> the only website that comes up when I search your name is RoughRiders.com 17:05 < namol> haha 17:05 < felda> is this correct? 17:05 <+TuxedoJack> lolwut 17:05 < grumplestiltzkin> ergo, TuxedoJack is DMX 17:05 < DomLS3> JollyRgrs: doxxing is against the rules 17:05 < scwizard> morning 17:05 <+TuxedoJack> Normally, it comes up with some artist in New York 17:05 < scwizard> how's your monday going? 17:05 <+TuxedoJack> Or a land surveyor in Houston 17:05 < DomLS3> please op me so I can punish you accordingly 17:05 < felda> I'm just goofin ya 17:06 < felda> it's one of my NEAT FACT (tm) 17:06 < scwizard> i just spent like 20 minutes pooping... i need to eat less 17:06 < scwizard> stupid texas sized portions 17:06 < felda> > using TXT files instead of NFO files 17:06 < felda> > Tux is definitely not Scene 17:07 < namol> according to the squid logs, jack is from central texas! 17:07 < felda> it's got his IP right there in the whois unless he is using a bouncer 17:08 < namol> it says hes coming from 127.0.0.1! 17:08 < grumplestiltzkin> doxxed 17:08 <+TuxedoJack> BUT WHO WAS PHONE 17:08 < felda> Tuxedo EXPOSED!! OMG WOW CLICK >>HERE<< 17:09 <+giant_it_burrit> does anyone want his contact info 17:09 <+giant_it_burrit> i have his icq # 17:09 < felda> wow fancy boy freddor using IPv6 17:09 < darkscrypt> i have a cat... and i've learned an incredible life hack... if you feed your cat less, she will poop less 17:09 < felda> darkscrypt AMAZING WHO KNEW 17:09 * giant_it_burrit shares TuxedoJack 's resume 17:10 < scwizard> honestly some cats you don't need to feed at all 17:10 < scwizard> if you have a country home and a barn, then barn cats can feed themselves perfectly fine 17:10 < GreyKite> namol: you know that TuxedoJack has said where he works before, right? 17:11 < GreyKite> the problem with doxxing people in central Texas is, most carry 17:11 < namol> GreyKite: that's kind of the joke... 17:11 < GreyKite> namol: got it, I'm still intaking caffeine, carry on 17:11 * scwizard lives in central texas but doesn't carry 17:11 < GreyKite> scwizard: neither do I 17:12 < ebol4> you have to carry in texas or you'll be easy pickins for the outlaws 17:12 < scwizard> i'm not really afraid of people attacking me, austinites don't seem much the violent sort 17:12 < namol> I carry all the time 17:12 < grumplestiltzkin> The funny thing is ^ that - fewer people carry daily than you would think, but you don't know who is 17:12 < namol> every where I go it's a gun show 17:13 < scwizard> and if someone comes from out of town to mess with me then wtf is their problem O_o 17:13 < narziss> In my town we call those people "from Hamilton". 17:13 < namol> scwizard: probably not mentally stable 17:13 < darkscrypt> like alexander hamilton? 17:14 < narziss> No, like from Hamilton, Ontario. 17:14 < namol> trailer park boys 17:14 < aName> darkscrypt: My cat poops outside now. it's great 17:14 < narziss> Steel town hit by economic hard times angry at the uppity real city next door -type seething anger and envy. 17:15 < AnimalFarmPig> I would carry more, but my wife keeps hiding my hawaiian shirts 17:15 < darkscrypt> aName: i can't let mine outside. we have a pretty bad coyote problem, and a lot of cats in the neighborhood have turned up dead. 17:15 < narziss> Been reading print outs of the *nix horror stories from the uunet days. 17:15 < darkscrypt> we used to have a lot of stray cats... now ... we have none. 17:16 < narziss> Amazing how much time they were given to accomplish certain things. 17:16 < darkscrypt> narziss: link? 17:16 < namol> AnimalFarmPig: margnum PI style? 17:16 < AnimalFarmPig> yeah :) 17:16 < grumplestiltzkin> drive a ferrari, carry a 10mm 17:16 < AnimalFarmPig> with chest hair and all 17:17 < narziss> https://www-uxsup.csx.cam.ac.uk/misc/horror.txt 17:17 <+layer-eight> * narziss โ†’ TEXT/PLAIN; CHARSET=ISO-8859-15 Document, 147,927 bytes 17:17 < namol> killer 'stache for the ladies 17:17 < AnimalFarmPig> grumplestiltzkin: +1 in a galco jackass shoulder rig 17:17 < namol> and a butler 17:17 < AnimalFarmPig> of course, that's Miami Vice 17:17 < grumplestiltzkin> AnimalFarmPig: I mean. ... that's assumed 17:18 < narziss> @grumplestiltzkin: Mac-10 under the armpit, Mac-10 in the briefcase. 17:18 < AnimalFarmPig> I've been re-watching it lately. Funny thing I've noticed-- Crockett wears the gayest shoes 17:18 < narziss> No socks. 17:18 < narziss> I grew up on Magnum PI. 17:18 < AnimalFarmPig> leather slipper looking things with no socks 17:18 < narziss> And I rewatched it two years ago, maybe two seasons. 17:18 < grumplestiltzkin> AnimalFarmPig: hte original, or is there a new 'reboot' ? 17:18 < narziss> So absurd now. 17:18 < AnimalFarmPig> grumplestiltzkin: I didn't realize there was a reboot. Original. 17:19 < AnimalFarmPig> such a good show, imo 17:19 < AnimalFarmPig> under appreciated 17:19 < namol> wait they rebooted magnum pi? 17:19 < AnimalFarmPig> I haven't actually watched Magnum PI 17:19 < AnimalFarmPig> namol: Miami Vice 17:19 < namol> ohh ok 17:19 < AnimalFarmPig> https://www.google.com/search?q=sonny+crockett+shoes 17:19 <+layer-eight> * AnimalFarmPig โ†’ sonny crockett shoes - Google Search 17:19 < grumplestiltzkin> AnimalFarmPig: ahh, yeah, I thought you meant you had been rewatching magnum PI too 17:19 < AnimalFarmPig> apparently those are called espadrills 17:20 < AnimalFarmPig> wait, did Mangum PI also carry a Bren 10 in a shoulder rig and drive a Ferrari!? 17:20 < AnimalFarmPig> I assumed that was only Sonny Crocket in Miami Vice 17:21 < AnimalFarmPig> http://www.imfdb.org/wiki/Magnum_P.I._-_Season_1 <--- looks like he carries a 1911 or a Star 17:21 <+layer-eight> * AnimalFarmPig โ†’ Magnum P.I. - Season 1 - Internet Movie Firearms Database - Guns in Movies, TV and Video Games 17:22 < GreyKite> scwizard: you in Austin? 17:22 < AnimalFarmPig> http://www.imfdb.org/wiki/Miami_Vice_-_Season_1#Dornaus_.26_Dixon_Bren_Ten <---- this is what Crockett carries 17:22 <+layer-eight> * AnimalFarmPig โ†’ Miami Vice - Season 1 - Internet Movie Firearms Database - Guns in Movies, TV and Video Games 17:22 < scwizard> GreyKite: si senor 17:22 < grumplestiltzkin> yeah, there it is. I had to look it up, make sure I wasnt on crack. magnum PI had a 308 GTS (ferrari) 17:22 < GreyKite> scwizard: small world 17:23 < GreyKite> estoy en Austin tambien 17:23 < scwizard> GreyKite: tbh one of the reasons i moved to austin 4 years ago, is because ppl on here were always saying it was quite nice 17:23 <+ihre> AnimalFarmPig: reminds me of the shoes paulie gualtieri wears in the sopranos 17:23 < scwizard> *employed people on here 17:23 < GreyKite> although I feel that isn't gramatically correct 17:23 < grumplestiltzkin> and that actual ferrari appparantly got auctioned in 2017 17:23 < grumplestiltzkin> or, the 84-85 one anyway 17:24 < AnimalFarmPig> ihre: interesting. Never watched Sopranos. Maybe that style of shoe was more common in the past? 17:25 <+ihre> sopranos is after 2000 though 17:25 <+ihre> 1999/2005 ish 17:25 <+ihre> i think 17:25 < AnimalFarmPig> yeah, I was in university at the time, but if the character is an old guy then maybe he has outdated style 17:28 < genr8_> everything old is new again 17:28 < ThatOneRoadie> I love seeing tech refresh PO's roll across my desk sometimes 17:28 < ThatOneRoadie> I'm getting 30x Cisco UCS C240 M4 servers 17:29 < ThatOneRoadie> with 12 x 4TB Drives each 17:29 < ThatOneRoadie> 1440TB of raw space hehehehehe 17:29 <+ihre> host fserve/xdcc until the storage is actually required ? >:D 17:30 < AnimalFarmPig> after you put the drives into RAID 15, that's 480 TB of storage :P 17:32 < genr8_> thats a thousand 480gb drives 17:33 < genr8_> how many users is all that for ? 17:33 < AnimalFarmPig> woah, that kind of puts it into perspective... 17:34 < AnimalFarmPig> I assume he's going to use a non-ridiculous RAID level (not RAID 15), so more like 720 TB or 960 TB 17:34 < AnimalFarmPig> RAID 15 needs to be a thing though. It would be hilarious. 17:34 < ThatOneRoadie> AnimalFarmPig, we just do raid 6 on each server 17:34 < ThatOneRoadie> 1.2PB usable 17:34 < AnimalFarmPig> wow 17:34 <@Code_Man65> I will only be satisfied when RAID 8675309 exists 17:35 < ThatOneRoadie> Code_Man65, You don't know about RAID JENNY? 17:36 < ThatOneRoadie> We just use these for mp4 video storage 17:36 < ThatOneRoadie> so raid6 is fine for speed and accessibility 17:37 < genr8_> what kind of drives 17:37 < genr8_> reds? 17:38 < genr8_> enterprise ? 17:39 < voice> wd green 17:39 < grumplestiltzkin> hm. I guess it was miami vice, sonny had a CZ 10mm - I always thought I remembered magnum PI having one, but the context of his show it makes way more sense for a .gov 1911 .45 17:39 < genr8_> and how does Cisco do the linking of the 12 servers into 1 filesystem ? 17:41 < AnimalFarmPig> is Magnum PI worth watching? 17:42 < genr8_> once 17:42 < grumplestiltzkin> ask any mom, they all will say yes. because Tom Sellick 17:42 < grumplestiltzkin> eck 17:42 < genr8_> mustache on point 17:42 < genr8_> he came to our graduation to speak and nobody knew who he was 17:43 < grumplestiltzkin> iirc the show was on par with knight rider 17:43 < genr8_> knight rider was cooler tho 17:43 < felda> this manual for an old FM bridge/repeater uses Comic Sans LMAO 17:43 < genr8_> Comical 17:44 < genr8_> so do you have all this high end computer-connected radio frequency rackmount gear ? 17:44 < genr8_> or what 17:44 < genr8_> how do you sysadmin a radio ? 17:44 < AnimalFarmPig> okay, set my DVR to record the series. Looks like Magnum PI gets a better timeslot than Miami Vice. MPi is on at 9 and 10 PM while MVice is on at midnight and 1 AM. Both on "CoziTV", a free broadcast channel 17:44 < grumplestiltzkin> Oh. actually yeah, looks like ther will be a magnum PI reboot 17:47 < aName> genr8_: I mean... spotify for business looks pretty decent 17:47 < aName> genr8_: In that you can hand an old smartphone with the remote control app installed on to it and not worry about it 17:47 < scwizard> hmm 17:48 < aName> genr8_: We got sick of people complaining about the music we'd pick lol 17:48 < scwizard> i really wish aws made it easier to associate EIPs with a autoscaling group 17:48 < scwizard> you basically gotta do it "by hand" 17:48 < aName> genr8_: Although I had to come in on a saturday, when not on call, because the amp for our radio died and was pumping 50db static into the call center 17:48 < genr8_> lol 17:48 < aName> To be fair, I got a standing ovation for it lol 17:49 < aName> I guess they'd been trying to get a hold of someone for hours and someone had my personal cell number from when they helped me move 17:49 < AnimalFarmPig> aName: I think we might have that at work. There was a company wide email a while back letting people know that they could add music to the spotify playlist for our lounge / break area. 17:49 < AnimalFarmPig> cool concept 17:49 < aName> I was like 'Uhhh I'm drunk and not on call, so unless someone comes to get me....' I thought that'd be the end of it 17:49 < aName> They sent one of the supervisors out to pick me up 17:50 < aName> It's weird being in the office drunk 17:50 < aName> Like 'I'm not supposed to be drunk here' 17:50 < genr8_> not for some people :p 17:51 < aName> But I got drunk elsewhere, on my own time, not expecting to go to work that day 17:51 < AnimalFarmPig> I bet it will feel more normal with practice :P 17:51 < aName> AnimalFarmPig: Heh, maybe. 17:51 < aName> AnimalFarmPig: I do enjoy my WFH days 17:53 < dragonfleas> Monday mornings are the worst 17:54 < dragonfleas> morning guys 17:54 < corn266> oh man I've missed programming and declaring variables such as "boolean shouldUpdateNumberOfNodesWithRegulationId" 17:58 <+ihre> at least it isnt shouldUpdateNumber_of_NodesWithRegulation_id 18:00 < aName> corn266: I hate when people don't use descriptive variable names 18:00 < aName> corn266: And tab complete is a thing 18:00 < aName> So I don't mind long names 18:01 < aName> Half the reason I struggled with math classes was because of single-letter variable naming 18:03 < int0x1C8> anything longer than single letter variable names would make systems of equations unintelligible 18:04 < aName> int0x1C8: I just wish there was a 'math for programmers' track 18:04 < aName> int0x1C8: It's not the concepts that stymie me, it's the notation 18:04 < dragonfleas> Dim corn266 As IrcUserThatStatesHisVariablesWithTooLongOfLengthsAndDoesntUseAcronyms 18:04 < aName> int0x1C8: It's basically a nightmare if you're even slightly dyslexic. 18:05 < int0x1C8> yeah, I had to do that for my friend when I was tutoring him in stats 18:05 < dragonfleas> Holy shit Hiren's boot got updated 18:06 < int0x1C8> is that X an x or is it chi? 18:06 < int0x1C8> etc 18:06 < genr8_> lambda. i just got sloppy 18:07 < int0x1C8> the only notation that trips me up are those fluid dynamics equations that insist on using both lowercase p and rho 18:07 < genr8_> first you gotta know greek 18:07 < int0x1C8> gl;hf trying to tell which is which if its handwritten 18:07 < genr8_> then you can learn math 18:08 < corn266> dragonfleas: IUTSHVWTLOLADUA man what a descriptive var name 18:09 < int0x1C8> also nested subscripts piss me off 18:10 < dragonfleas> corn266, it's....it's beautiful 18:10 < int0x1C8> but I can't get away from them 18:11 < int0x1C8> differentiable manifolds and differential geometry loves to abuse sub and superscripts like a red headed step child 18:11 < corn266> dragonfleas: the perfect variable name doesn't exi... 18:11 < dragonfleas> LOL 18:12 < dragonfleas> ++1 18:12 < int0x1C8> wat 18:12 < coderphive> dude 18:12 < coderphive> godaddy takes forever to update it's own DNS servers 18:12 < coderphive> what in the lawd 18:12 < coderphive> It's been over an hour 18:13 < dragonfleas> coderphive, their TOS says it can take up to 24 hours 18:13 < coderphive> I can literally transfer my domain and change DNS servers in that time 18:13 < coderphive> GoDaddy is the daddy of nothing 18:14 < asimon> How did they pick their name 18:14 < dragonfleas> GoDaddy UWU 18:14 < asimon> like what was the reasoning behind that 18:15 < ThatOneRoadie> genr8_, it's 4TB HGST's 18:16 < ThatOneRoadie> 7200 RPM 18:16 < ThatOneRoadie> I want to say they're SAS, but let me check 18:18 < ThatOneRoadie> Oh nope, toshiba 18:18 < ThatOneRoadie> they are SAS though 18:18 < grumplestiltzkin> whenish did hitachis stop being 'deathstars' ? 18:18 < ThatOneRoadie> Toshiba MG04SCA40EN 4TB SAS 18:19 < ThatOneRoadie> The deskstars? 18:19 < ThatOneRoadie> When seagate ran out of 3TB Stock from the flooded factories back in 2012 18:19 < ThatOneRoadie> Seagate was always fairly good, but their factory got flooded out and they decided to sell the drives anyways after a refurb 18:19 < ThatOneRoadie> instead of dumping the stock on hand 18:19 < ThatOneRoadie> thus, 80% failure rates 18:21 < ThatOneRoadie> s/2012/2011 18:21 <+layer-eight> [SED ThatOneRoadie] When seagate ran out of 3TB Stock from the flooded factories back in 2011 18:21 < ThatOneRoadie> and seagate claimed their factory wasn't affected by the floods but WD was: https://www.theregister.co.uk/2012/02/29/seagate_bouyed_by_thai_floods/ 18:23 < dragonfleas> Honestly barracuda's aren't that bad, have one that's still testing good with SMART checks and i've been using it 5 years 18:25 < ThatOneRoadie> yeah, it was pretty much only their 3TB line 18:25 < ThatOneRoadie> everything else was fine 18:26 < ThatOneRoadie> they get a bad rap because of the drive reports from Backblaze iirc 18:26 < AnimalFarmPig> I look at drives on a model by model basis. 18:26 < ThatOneRoadie> yep https://www.backblaze.com/blog/hard-drive-stats-for-2017/ 18:26 <+layer-eight> * ThatOneRoadie โ†’ 2017 Hard Drive Failure Rate Comparison 18:27 < AnimalFarmPig> I've got some Barracuda 7200.9's from 2006 that still work. On the other hand, I bought four or five of Seagate's second generation 2.5" SSHD's, and they've all failed. 18:27 < ThatOneRoadie> it was enough that they wrote about it: https://www.backblaze.com/blog/3tb-hard-drive-failure/ 18:27 <+layer-eight> * ThatOneRoadie โ†’ Dissecting 3TB Hard Drive Failure Rates 18:28 < AnimalFarmPig> on the third hand, I bought several of their first generation 2.5 hybrid drives and they all lasted 5+ years 18:28 < ThatOneRoadie> 32% of 3TB Seagates failed in place within 3 years, and 62% failed upon removal or repair 18:28 < ThatOneRoadie> from 2012-2015, the 3TB Seagates had a 94% failure rate at backblaze 18:29 < ThatOneRoadie> or, as they put it: "Only 251 of the 4,190 Seagate 3TB hard drives deployed in 2012 are still in service as of March 31, 2015." 18:29 < abakedapplepie> wew 18:31 < asimon> yikes 18:33 < ThatOneRoadie> but all their modern drives show failure rates matching the competition (~4%) 18:33 < ThatOneRoadie> HGST is still the lowest around 2% 18:35 < abakedapplepie> checkmate IBM 18:37 < int0x1C8> checkmate atheists! 18:38 < aName> After the 75GXPs... I dunno 18:38 < aName> I don't trust 'em lol 18:39 < int0x1C8> https://i.imgur.com/wu2TNBN.png 18:39 <+layer-eight> * int0x1C8 โ†’ IMAGE/PNG Document, 232,254 bytes 18:39 < int0x1C8> the quality of this artwork is astounding 18:40 < aName> int0x1C8: A true masterpiece. 18:40 < scwizard> int0x1C8: so like 18:40 < scwizard> it's beautiful, but i don't get the joke? 18:40 < scwizard> i'm so confused 18:41 < int0x1C8> https://www.reddit.com/r/talesfromtechsupport/comments/8qzxl6/we_really_need_this_printer_asap/ 18:41 <+layer-eight> * int0x1C8 โ†’ We REALLY NEED this printer asap : talesfromtechsupport 18:42 < int0x1C8> the ultimate printing machine for execs and C-levels 18:43 < corn266> int0x1C8: it doesn't use blockchain, cloud tech, or AI though 18:43 < int0x1C8> "you want your own printer? really? ok here you go" 18:43 < int0x1C8> you're right, the capabilities do not live up to the synergies of opportunity that diversity needs to be what it do when it does 18:44 < corn266> oh god 18:44 < int0x1C8> anyone smell burning toast? 18:44 <@JollyRgrs> int0x1C8: no, just you 18:44 <@JollyRgrs> and according to webMD, that means you have cancer 18:45 < grumplestiltzkin> 20 minutes to live 18:45 < int0x1C8> cancer that causes strokes 18:46 < grumplestiltzkin> can you feel your face drooping? 18:46 < grumplestiltzkin> is one arm immobile? 18:46 < int0x1C8> also: "Further investigation found the person who was cooking sausages on the fuser roller..." I need to do this now 18:46 <@Code_Man65> JollyRgrs: According to WebMD (and California) everything gives you cancer 18:48 < int0x1C8> its a monday, my mind is all over the place 18:48 < aName> This script I'm writing feels like lazy malware 'OK so I want you to remove their AV and install this remote access tool' 18:49 < aName> (And then it installs our AV) 18:49 < grumplestiltzkin> possibly toner-flavored sausages. yeah, those probably cause cancer 18:49 < aName> BUt shhhhh 18:49 < aName> that part is less exciting 18:49 < AnimalFarmPig> re: printer post-- sysadmin should have just bought the guy a $30 Canon multifunction at WalMart and punted any support to their outsourced guys 18:49 < aName> grumplestiltzkin: I thought toner was carcinogenic because of it's physical properties, not chemical? 18:50 < aName> grumplestiltzkin: Like... it gets into your lungs and stays there, cutting you up 18:50 < int0x1C8> toner IS cancer 18:50 < aName> And the tiny cuts heal, over and over and over, until you get a transcription error and oh so sad you have cancer now 18:51 < int0x1C8> toner is like asbestos, you need to build tolerance to it 18:51 < AnimalFarmPig> lead works like that too 18:52 <@JollyRgrs> eventually your lungs will error out, XRAY reveales "PCLOADLETTER" 18:52 <@JollyRgrs> GAME OVER MAN! 18:52 < aName> lol 18:52 < int0x1C8> then they beat your lungs with sticks 18:52 <@JollyRgrs> also, i kin spel 18:52 < aName> So ... say I have the instance GUID of an installed application on a windows box 18:52 < aName> How do I invoke its uninstaller? 18:52 <@JollyRgrs> aName: msiexec /x {GUID} 18:53 <@JollyRgrs> assuming you mean product code GUID 18:53 < aName> That easy, huh? 18:53 <@JollyRgrs> i dunno what instance GUID is 18:53 < aName> I dunno, that's the field name WMI gives me 18:53 <@JollyRgrs> you might wanna put a /q or /norestart or somethign on it (or is it noreboot, i always confuse which one it is supposed to be) 18:54 <@JollyRgrs> aName: just try it and see... what's the worst that could go wrong? 18:54 < aName> Huh. So it is. 18:54 < aName> JollyRgrs: Worst case I have to reimage my test machine 18:54 < aName> JollyRgrs: So... that'd be mildly irritating 18:54 <@JollyRgrs> oh, at least it is just a test machine 18:55 < grumplestiltzkin> this is neat. 'stun gun' phone cases that also appear to be a backup battery for the phone. https://yellowjacketcase.com/ 18:55 <+layer-eight> * grumplestiltzkin โ†’ Yellow Jacket Backup Battery & Stun Gun Phone Case| Yellow Jacket Case 18:55 <@JollyRgrs> i'd suggest learning a bit more about msi installers and product codes 18:55 <@JollyRgrs> so you know what you are doing and won't make a big mistake 18:55 < aName> "Hold on let me take this cal... ZZZZZTTTT AAARGH!" 18:55 < int0x1C8> worst case you end up having to make an autohotkeys script that manually interacts with the UI to uninstall 18:56 < int0x1C8> I've had to do that a few times 18:56 < aName> int0x1C8: Trying to avoid that if possible 18:56 < grumplestiltzkin> oh, its only for iphones. 6, 6s, 7, 8 18:56 < aName> int0x1C8: Although I've become quite handy with AHK 18:57 < aName> Apparently their AV is 'whatever came with their laptops when they bought them' 18:57 < aName> So it should be fun to find out which ones I'll run into 18:57 < AnimalFarmPig> designer spends a bunch of time trying to make a phone thinner, even removes useful stuff like headphone port, finally makes the thinnest phone possible. user buys the phone and immediately puts it in a case that makes it three times thicker. 18:57 < genr8_> dumb 18:57 < aName> AnimalFarmPig: Because the designer forgot to put things like 'structural strength' into the phone =p 18:57 < AnimalFarmPig> aName: but making a phone durable means making it bigger! 18:58 < genr8_> did you see apple's patent for motorized retractable accelerometer-linked Metal deployable screen bumpers ? 18:58 < AnimalFarmPig> thin sells! 18:58 < aName> AnimalFarmPig: Plus you're just going to buy a new one in 18 months anyway 18:58 < genr8_> they want these 4 little protector bumpers to deploy when you drop your phone 18:58 < AnimalFarmPig> neat, kind of like the APS system on old ThinkPads 18:58 < aName> AnimalFarmPig: I don't use cases for that reason alone - by the time they break I wanted a new one anyway 18:58 < AnimalFarmPig> where it senses the laptop dropping and parks the heads 18:58 < grumplestiltzkin> I don't buy phones unless theyre rated to be dropped from at least waist high and waterproof for 30 minutes 18:58 < genr8_> oh yeah that was the first one of that 18:59 < aName> grumplestiltzkin: Heh... I was given a 'water proof' phone 18:59 < aName> Lasted about thirty seconds in my aquarium lol 18:59 < AnimalFarmPig> aName: I don't use a case because all my phones have been pretty durable 18:59 < aName> I thought it must have tripped some water sensor that shuts it off to protect it in case of ingress 18:59 < grumplestiltzkin> aName: I used a Nec 'terrain' to shoot some video while diving in a pool 18:59 < aName> But naw 18:59 < aName> Wouldn't turn back on 18:59 < aName> Oh well 18:59 < aName> grumplestiltzkin: I want a submersible IPCam 19:00 < AnimalFarmPig> the "must be thin" thing seems to only affect mainstream phones (Apple or Android) 19:00 < genr8_> i bet it could even detect when its underwater due to pressure sensors or some shit 19:00 < aName> Something with POE would be amazing 19:00 < genr8_> you could electrify the water and plug it into ground 19:00 < grumplestiltzkin> a submersible camera that runs on POE? 19:00 < aName> genr8_: Yeah, my boss' phone has that - he can squeeze it and the change in pressure in the case acts as a button 19:00 < aName> grumplestiltzkin: Yeah 19:01 < genr8_> the touchscreen alone could tell probably 19:01 < genr8_> or if not, like a barometric sensor 19:01 < aName> grumplestiltzkin: Yeah - the capacitance in a saltwater bath is probably pretty uniform lol 19:02 < genr8_> POE.... over water.... 19:04 < aName> Crazy idea - have an insulated lead that runs outside the tank 19:04 < aName> Nawwwwww 19:05 < int0x1C8> that reminds me how much I hate reterminating POE runs 19:09 <@Code_Man65> int0x1C8: It's the same as a normal Cat5/6 run 19:09 < int0x1C8> right, but those don't tickle 19:10 <@Code_Man65> A PoE run shouldn't either if a PoE device isn't on the far end. And if it is, you should be unplugging it. 19:10 <@Code_Man65> That's basic safety 19:11 <@Code_Man65> Or login to the switch and disable PoE on that port 19:11 <@Code_Man65> One of the two 19:11 < int0x1C8> tell that to whoever decided labels are too much work 19:11 < GreyKite> I've lit myself up with a phone line that should have been dead, not terrible fun 19:11 < int0x1C8> I would, if I knew which port it was plugged into 19:12 < DomLS3> pfsense 19:12 < ebol4> does POE put out the full 48V on the line constantly? 19:12 < felda> yessir 19:12 < felda> DomLS3 I'm actually replacing all audio equipment in the radio station with pfsense 19:12 < DomLS3> felda: that sounds like a terrible idea 19:12 < DomLS3> felda: that sounds like a terrible idea 19:12 < genr8_> hahah 19:12 < genr8_> whatt 19:12 < felda> DomLS3 nah it's great fam 19:13 < felda> Did you guys know that CD Project Red owns GOG.com ?? 19:13 < genr8_> you guys dont need radio you need pfsense 19:13 < DomLS3> felda: Might as well replace the toilet flush mechanism with pfsense as well 19:13 < aName> felda: I didn't, but it doesn't surprise me 19:13 < genr8_> pfsense supercedes and deprecates radio 19:13 < GreyKite> hmmmm 19:13 < mrghostman> esnesfp 19:13 < GreyKite> ahahahahahahaha I forgot about that 19:13 < DomLS3> rekt 19:14 < felda> oh wowee zowee Star Wars Episode Pod R acing game is on GOG for $7 19:14 < DomLS3> hey Code_Man65 wanna try opping me again? xD 19:14 <@Code_Man65> No 19:14 < DomLS3> nice tab complete 19:14 < DomLS3> jackass 19:14 < DomLS3> tab fail* 19:15 < int0x1C8> so much failure, so little time 19:15 <@Code_Man65> Yep, that was a tab fail 19:15 < aName> felda: Better fire up my Pentium II with MMX 19:15 < aName> Someone got so mad at me the other day because I told them I'd recently thrown out a Pentium II Windows 98 laptop 19:15 < DomLS3> Code_Man65: Good I'm glad you lernt your lesson that I > you 19:15 < felda> if it doesn't have AES-NI is it worth my time? 19:15 < aName> I guess they wanted it for retro gaming 19:16 <+ihre> cyperpunk 2077 will hopefully be on par with withcer 3 :3 19:16 < Heresiarch> felda: no 19:16 < aName> But I was like 'wtf am I going to do with a laptop with 32MB of RAM?' 19:16 < aName> ihre: I'm excited 19:16 < DomLS3> Yes. hide behind your mod abuse status. It will not hide you from the truth however. 19:16 < aName> ihre: First mission apparently involves nudity - a woman is being kidnapped to sell to a chop shop. 19:16 < aName> ihre: Sounds like it'll be proper cyberpunk grimdark 19:16 < DomLS3> YOU CAN'T HANDLE THE TRUTH 19:16 < felda> Anyone in here want to unionize? 19:16 <@Code_Man65> aName: What can't you do with 32MB of RAM? After all, 640k should be enough for anybody. 19:17 < aName> Code_Man65: KYS 19:17 < DomLS3> s/unionize/circle jerk 19:17 <+layer-eight> [SED DomLS3/felda] Anyone in here want to circle jerk? 19:17 < DomLS3> wat 19:17 < felda> Join New Felda's Proletariate Chat 19:17 < DomLS3> I hate Code Red 19:17 < ebol4> comrade o7 19:17 < DomLS3> Monster > Code Red 19:17 < felda> we must over throw the pig dogs Code_Man65 who maintain the status quo 19:17 <@Code_Man65> If you are going to quote A Few Good Men, you should be able to answer that question. 19:17 < ebol4> caffeine is for 14 year olds and sinners 19:18 < felda> THE ONLY THING WE HAVE TO LOSE BUT OUR CHAINS 19:18 < scwizard> i think i qualify 19:18 <+ihre> aName: i really like the medieval setting of witcher, so hearing its futuristic scifi kind of put me off at first 19:18 < scwizard> i'm mentally 14 years old and also a sinner 19:18 < ebol4> i cannot get into old timey fantasy settings 19:18 < ebol4> dragon age, witcher, lotr, etc. 19:18 <+ihre> but we'll see, and it will probably feature ciri again, she already mentioned it while talking to geralt in w3 19:19 <+ihre> just saw a preview of total war warhammer 2 19:19 < aName> ihre: I *love* the cyberpunk setting 19:19 <+ihre> dont like that, 40k is wayyyyy better :D 19:19 < aName> ihre: High technology, low life, magic meets supertech? 19:19 < aName> ihre: Mmmph 19:19 <@Code_Man65> I generally prefer fantasy, but I only read LOTR once because Tolkien's writing style bugs the shit out of me. 19:19 < aName> Code_Man65: I like to ask people if they read the songs 19:19 < scwizard> lotr was nice but I still think a good D&D campaign could beat the pants off of watching LOTR 19:20 < dragonfleas> my image wasn't working on USB, but as soon as I made the USB GPT UEFI instead of MBR it works? wtf 19:20 < aName> dragonfleas: That sounds.... reasonable 19:20 <@Code_Man65> aName: Tom Bombadil was the most pointless diversion in a book I've ever seen 19:20 < dragonfleas> ^does that make any sense to you guys? 19:20 <+ihre> no legacy boot enabled in bios 19:20 < ebol4> yep bios issue 19:20 < dragonfleas> no, i mean the image installation itself would fail 19:20 < int0x1C8> BLOOD FOR THE BLOOD GOD, CORPSES FOR THE CORPSE KING 19:20 < dragonfleas> i know to enable legacy in bios 19:21 < vavkamil> it's always dns, but now it's bios issue 19:21 < ebol4> if you just rearrange the letters in bios you get dns so 19:21 < dragonfleas> what 19:21 < aName> Code_Man65: I got the impression that Tom was some kind of elder immortal being 19:21 < scwizard> mbr has a bunch of compatibility issues but idk 19:21 < grumplestiltzkin> scwizard: that's a matter of time. ether the lotr books or movies, theres a whole story there. How long would even 'the hobbit' take if it were a bunch of nerds rolling dice? 19:21 < aName> And that it was meant to be more important later 19:21 <@Code_Man65> aName: He is, but the entire section could be removed and you'd lose nothing of value to the story 19:22 < scwizard> grumplestiltzkin: that's a good point 19:22 < scwizard> i guess that's why D&D is so popular in prisions, they have a lot of time 19:22 < vavkamil> there is a documentary about D&D in prisons 19:22 <+ihre> and a lot of faeries 19:22 <@Code_Man65> scwizard: Also because of escapism 19:23 < grumplestiltzkin> lol. like the part where the ogres capture the group and their horses - thats like a 5-10 minute scene. how long would that have taken? like .. hours 19:23 < felda> cryptic1 is so left he literally eats the rich in Canada 19:23 < scwizard> yeah 19:23 < scwizard> geez i hope i never end up in prison 19:23 < scwizard> i wonder though 19:23 < scwizard> i remember in college i had an awful D&D campaign where the other PCs were going around raping girls 19:23 < narziss> Avoid countries with extremely high prosecution rates. 19:23 < scwizard> i wonder how prisioners have their PCs behave 19:23 < grumplestiltzkin> mother lovers getting shanked because one convict's rogue stole something in game from the paladin 19:24 < narziss> there should be a show about white collar prisons. 19:24 < narziss> like workaholics for slightly older and richer folks. 19:24 < scwizard> narziss: hard to make one without being sympathetic to pedos tho 19:24 < grumplestiltzkin> something something orange is the new something 19:24 < narziss> i cant see them behaving much differently. 19:25 < narziss> just with better drugs. 19:25 < scwizard> because that's a big chunk of the white collar prison population 19:25 < narziss> right, scwizard. 19:25 < narziss> ugh. 19:25 < narziss> really? 19:25 < scwizard> white collar drug offenses you're kinda in and out 19:25 < narziss> how is that a bureaucratic crime? 19:25 < narziss> the queen's quota wasn't met? 19:25 < narziss> what in the fuck 19:25 < scwizard> there's not enough bureaucratic crimes to fill a minimum security prision 19:25 < grumplestiltzkin> white collar drug charges - like laundering money for a drug operation? 19:26 < narziss> im not sure. 19:26 < technonerd> Or a car dealership 19:26 < narziss> i thought it was an urban legend. 19:26 < scwizard> yeah pretty sure you're in and out in that case 19:26 < technonerd> Fudge the books 19:26 < scwizard> embezzlement too 19:26 < narziss> people go in, and see the graphic designer who didnt turn in his artifacts 19:26 < scwizard> LOL 19:34 < ebol4> how do you follow up on a job application email 19:34 < ebol4> "hey just following up. is this position still available 19:34 < ebol4> thank" 19:34 < GreyKite> ebol4: yes 19:34 < ebol4> that's so short tho 19:34 < GreyKite> you can make it fancier if you want 19:35 < ebol4> what if he calls me a little binch that can't write long emails 19:35 < hxcsp> add "i feel i would be qualified for this position and a value to your company" 19:35 < GreyKite> ebol4: then do you really want to work for him? 19:35 < hxcsp> add value* 19:35 < hxcsp> and the proper response if he calls you a bitch, is.. no you are a bitch 19:36 < ebol4> what if i just preemptively call him a binch 19:36 < ebol4> then he has no choice but to give me the job 19:36 < int0x1C8> binch? 19:37 < asimon> You could ask what the timeframe in which you could expect a decision is 19:37 < asimon> Then call them a binch 19:37 < narziss> If you see them in person, don't focus on the lady's crows feet. 19:37 < int0x1C8> make sure the email's subject has 5000 emojis and HIRE ME BINCH in it 19:37 < narziss> THEY HATE THAT SHIT 19:38 < hxcsp> send nudes 19:38 < ebol4> i forgot crows feet was like an eye wrinkle thing for like 30 seconds 19:39 < narziss> ya know when they sound all youthful on the phone, then you go in for the interview and you're like ho shit thats old 19:39 < AnimalFarmPig> ebol4: do you know the name of the hiring manager? 19:39 < narziss> ? 19:39 < int0x1C8> bring actual crow's feet 19:39 < ebol4> AnimalFarmPig: yeah i know them personally. they asked me some initial technical questions about the position like a month ago, and i responded, and now it's been radio silence since then 19:40 < ebol4> so i'm following up 19:40 < AnimalFarmPig> ebol4: just show up at their home 19:40 < ebol4> hell yeah 19:40 < ebol4> torch it 19:40 < grumplestiltzkin> show up at the office, holding a ghetto blaster over your head 19:40 < AnimalFarmPig> uhhh.... not exactly what I was thinking, but you do you 19:40 < int0x1C8> or you could do like that one guy who got arrested for infecting the place he was applying to with ransomware to make them hire him 19:41 < narziss> @ebol4 they just arent ready 19:41 < narziss> or they are going with someone else. 19:41 < ebol4> they can't even handle me right now 19:41 < narziss> do you want to work for them? 19:41 < ebol4> yes very much 19:41 < narziss> when they are too busy to hire someone? 19:41 < ebol4> shoot man i just want to work 19:42 < officerrando> hah! saw some friends of a friend arguing on facebook, one dude was an army puke, E-3 from one of his pictures. he told the other guy to come over and they could fight. 19:42 < ebol4> pfffff 19:42 < officerrando> then he tells the other guy he's working on getting his IP address and then his home address 19:42 < int0x1C8> FIGHT ME BRO I'M TOTALLY JACKED 19:42 < officerrando> i had to jump in and point out the dude was talking out of his ass. said "here, here's my IP. tell me my address." 19:43 < AnimalFarmPig> officerrando: screen shot and forward to MP's at the guy's post :) 19:43 < officerrando> he says "It's not that hard with a security clearance and a CAC card" (CAC card is basically the new military ID cards) 19:43 < officerrando> little does this dude know, I used to work TS/SCI networks in the AF. lolololol 19:43 < abakedapplepie> lol 19:44 < officerrando> finally said 'i'm going to bed, kiddo. you just let me know if you work out my home address." He went quiet after that. haha 19:44 < narziss> ILL SHOW YOU FUCKING PING BRO 19:44 < narziss> he said. 19:44 < aName> Things I didn't need to know - people inject oil into their muscles to look bigger 19:44 < aName> wtf 19:44 < narziss> Some people inject cement into their buttocks to make them look bigger. 19:44 < vavkamil> oil is for babies 19:44 < int0x1C8> lol... hardass 19:44 < officerrando> this dude injected stupid into his brain 19:45 < int0x1C8> injection not necessary, stupid was already present 19:46 < scwizard> my doctor told me since he couldn 19:46 < officerrando> no kidding. 19:46 < scwizard> nm the cancer talk was earlier i forgot to scroll down 19:47 < Hatter> Who last said my name? 19:47 < officerrando> i have cancer. ") 19:47 < officerrando> :( 19:47 < int0x1C8> we can start another cancer talk if you'd prefer? 19:50 < AnimalFarmPig> breakroom TV not tuned to World Cup 1/10 :( 19:51 < scwizard> :( 19:51 <+ihre> just start a rant, about not being treated like an equal, add some discrimination and racism and you'll have it your way in no time 19:52 < AnimalFarmPig> As a soccersexual, I feel discriminated against 19:52 < khelpw> I keep seeing World Cup abbreviated as "WC" and I choose to instead interpret that as wash-closet aka bathroom because everything is funnier that way 19:53 < alazare619> AnimalFarmPig: subscribe to an iptv service 19:53 < alazare619> AnimalFarmPig: watch world cup at your pc ;) 19:53 < khelpw> F/e " Did you see what the Mexicans did to the Germans yesterday in the WC? Goddamn brutal." 19:53 < AnimalFarmPig> alazare619: I'm streaming it from my home media server 19:53 < alazare619> that works too :P 19:53 < AnimalFarmPig> doing that right now :) 19:53 < alazare619> i got vaders stream on my phone 15 bucks a month 1500 channels worth every penny watch whatever i want whenever 19:53 < AnimalFarmPig> khelpw: Germany got their shit pushed in by Mexico in the WC the other day 19:54 < alazare619> the peru denmark game was bullshit 19:54 < alazare619> peru played the far better game 19:54 < alazare619> denmark got a lucky goal and won because of it... 19:54 < AnimalFarmPig> nice. I have cable service + HD HomeRun + Plex 19:54 < AnimalFarmPig> I missed the weekend games, busy :/ 19:54 < khelpw> I've got....Netflix. 19:55 < agent_white> I've got stale coffee. We should battle. 19:55 < grumplestiltzkin> officerrando: common access card card 19:56 < alazare619> fuck me 19:56 < alazare619> i forgot car tags are due this month 19:56 < alazare619> rip 700 bucks 19:56 < AnimalFarmPig> Netflix seems to have go worse over time, imo. Ten years ago, it felt like it was mostly obscure independent movies and old TV series. Now it's lots of blockbusters and original content. 19:57 < AnimalFarmPig> at least on the streaming service side of thing 19:57 < AnimalFarmPig> all the blockbusters were of course available by mail 19:57 < alazare619> sorry but people that watch b films and other cult classics are the minority 19:57 < alazare619> they want to target the masses 19:57 < alazare619> the masses = money the minority = not the money 19:58 < alazare619> i will say their own netflix originals are great tho 19:58 < AnimalFarmPig> Narcos was good. Not sure about the others. 19:58 < alazare619> <3 stranger things, jessica jones, dare devil, iron fist, luke cage all very very great 19:58 < alazare619> orange is the new black was great..but is now meh 19:58 < khelpw> They have TNG. Good enough for me. 19:58 < alazare619> TNG? 19:58 < AnimalFarmPig> oh, nice 19:58 < khelpw> Star trek the next generation. 19:59 < alazare619> ohh you should of just said picard ;) 19:59 < alazare619> ๐Ÿคฆโ€โ™‚๏ธ 19:59 < AnimalFarmPig> I've got all of TNG on my HTPC already, but good to know it's on Netflix as well 19:59 < AnimalFarmPig> could have just said "the good Star Trek" 19:59 < alazare619> years ago there was a ripper for netflix 19:59 < alazare619> where you sould just put in your creds it would load up all of a series and rip it 19:59 < khelpw> DS9 is also good, and voyager...exists. 20:00 < AnimalFarmPig> I like Enterprise 20:00 < alazare619> converted alot of shows to webrips 20:00 < AnimalFarmPig> I wonder if the swedish version of Wallander is still on Netflix 20:01 < AnimalFarmPig> Netflix used to have "The Adventures of Young Indiana Jones". I should have figured out how to rip it while it was available. Such a cool series. 20:01 < felda> I am visiting one of the seven plagues upon my users 20:01 < asimon> alazare619: each of their marvel shows were great on their own 20:01 < asimon> but defenders was just terrible 20:02 < felda> My diet consists of nothing but chicken breasts and broccoli 20:02 < felda> the broccoli farts will be deadly 20:02 < felda> but the protein farts from the chicken are just inhumane 20:03 < alazare619> asimon: agreed exact reason i left it out 20:03 < alazare619> it was just MEH 20:03 < grumplestiltzkin> AnimalFarmPig: netflix injects a lot of politics into their originals and stuff too 20:03 < AnimalFarmPig> grumplestiltzkin: ewww. Really? 20:04 < AnimalFarmPig> I think only original I've watched is Narcos. Maybe some politics in there 20:05 < alazare619> house of cards is 100% politics 20:06 < grumplestiltzkin> Didn't they remove the chromosomes piece about gender on the original bill nye? 20:06 < pupp3r> netflix does no such thing. i hear their show "dear white people" is totally apolitical and unbiased 20:06 < syere> dear white people is actually pretty good 20:06 < pupp3r> wait really? 20:06 < syere> yea 20:06 < pupp3r> the trailer gave me a bad vibe so i kinda dismissed the show tbh 20:06 < syere> it isn't what you think it is if you know nothing abou tit 20:06 < syere> about it* 20:07 < grumplestiltzkin> abou tit was better 20:07 < asimon> black mirror tho 20:07 < alazare619> so in google you can now set your gender to Apache Attack Helicopter 20:07 < syere> I personally think they did a pretty good job of being entertaining, showing some issues from a different perspective, and the reactions from several sides after a event happens 20:08 < felda> lmao 20:08 < int0x1C8> m'apache 20:08 < grumplestiltzkin> Can you set it to 'meat popsicle' ? 20:08 < int0x1C8> *tips fedora* 20:08 < alazare619> grumplestiltzkin: gender is now a fill in the blank on google 20:08 < felda> listening to my spotify "Just for me Weekly" Playlist. vaporwave song called "Subprime Mortages" 20:08 < aName> alazare619: As it should be. 20:09 < grumplestiltzkin> alazare619: where exactly is that? like on g+ profile? 20:09 < alazare619> grumplestiltzkin: google profile 20:09 < corn266> is there any way I can check what version of auditd I'm running? 20:09 < alazare619> https://myaccount.google.com/gender 20:09 <+layer-eight> * alazare619 โ†’ โš“ URL Redirected โ†’ Sign in - Google Accounts 20:09 < Heresiarch> corn266: rpm -qa | grep audit or dpkg -l | grep audit ? 20:10 < grumplestiltzkin> intradesting. I don't have any goog accounts anymore though. 20:10 < AnimalFarmPig> ^ living the dream 20:10 < corn266> rpm -qa | grep audit was correct, Heresiarch++ 20:11 < asimon> s/don't have.*/am being tracked by google even if i closed my accounts 20:11 < AnimalFarmPig> goooooooooooooooooooooooooooooooooooooooooooooooooooooooooooooooooooooooool 20:11 < AnimalFarmPig> that was fast, England just scored 20:12 < grumplestiltzkin> I only occasionally use google maps, from a desktop, no other google services iirc 20:12 < asimon> I mean you're using the ad network they maintain on a shitton of websites 20:12 < grumplestiltzkin> I blocked doubleclick long ago 20:13 < AnimalFarmPig> so hard to move off of gmail when you've used it for a decade+ 20:13 < grumplestiltzkin> are there other domains for the google ads? 20:14 <+giant_it_burrit> alazare619: i put down burrit in mine 20:16 < grumplestiltzkin> AnimalFarmPig: I was using a goog email a while back, yeah, its a pain to move - but it's kind of like doing spring cleaning in your house - you go through and unsubscribe, and just dont update a bunch of things. Its a good time to change all your passwords for various sites too 20:16 < grumplestiltzkin> like, when updating email on accounts 20:16 < AnimalFarmPig> that is a good idea 20:17 < AnimalFarmPig> maybe I'll do it when I'm on vacation or next three day weekend 20:17 < vavkamil> I would like password manager that would periodically change your passwords across sites 20:17 < AnimalFarmPig> what do you use for email then? O365? Personal domain? 20:17 < grumplestiltzkin> personal domain hosted in switzerland. like aboss 20:18 < AnimalFarmPig> nice. I've got personal domains hosted in France with email set up, just rarely use them. 20:19 < asimon> vavkamil: Most managers allow you to set an expiration date but I don't think any would actually change it for you 20:19 < vavkamil> there is a server room in nuclear bunker in switzerland 20:19 < asimon> Also, I think there isn't actually any security benefit in updating your passwords 20:19 < grumplestiltzkin> Theres no hury either, like. I think I just updated my financial stuff first (banks, credit card accounts, etc) then just dealt with a few items at a time 20:19 < asimon> as long as they're unique 20:19 < asimon> and strong 20:20 < vavkamil> asimon, I'm using lastpass, it will alert me to change password if there is a known security breach 20:20 < asimon> vavkamil: That's a different scenario - of course you want to change the password if there is a breach 20:21 < asimon> But periodically updating your password doesn't buy you anything really 20:21 < technonerd> Other than making you do shity passwords thisisafall2018 pass etc 20:21 < grumplestiltzkin> unless your account was part of a breach, and you just don't know yet 20:22 < asimon> If a service requires that, it encourages users to actually weaken their password choices by making their passwords "mypassword1" then "mypassword2" etc 20:22 < ebol4> i just change which symbols are at the end of my password 20:22 < asimon> yeah thats bad 20:22 < ebol4> yep 20:22 < asimon> get this man a password manager stat 20:22 < vavkamil> not periodically, more like a spring cleaning (click one button and change all my passwords) 20:23 < technonerd> Or you know don't implement 45 day password resets with the last 5 can't be similar at all 20:23 < grumplestiltzkin> that's the worst 20:23 < technonerd> Isn't the govt fun?! 20:23 < aName> I love when they enforce max lengths 20:23 < aName> Like, oh your password must be between 6 and 8 characters 20:24 < asimon> I think having a software tool manage your password resets is a bad idea - there is so much potential for that to go wrong 20:24 < technonerd> Or they don't tell you the Max. And just truncate 20:24 < grumplestiltzkin> passwordcard.org 20:24 < grumplestiltzkin> technonerd: mother loving windows 10 home does that 20:24 < grumplestiltzkin> it truncates 20:24 < grumplestiltzkin> and doesnt tell you 20:24 < aName> technonerd: Oh that's always fun. "Uhhhh.... pretty sure I keyed that last char wrong.... aaaand I'm in" 20:25 < grumplestiltzkin> iirc it truncated to 20 20:25 < grumplestiltzkin> so when I went to type in the 22 character password (that I had typed twice to confirm) it just NOPEd me 20:26 < asimon> I feel like the character limits are to prevent people having GB-size passwords 20:26 < asimon> even though it shouldn't matter after hashing 20:26 < asimon> But maybe there are client-side/server-side computation limits 20:26 < vavkamil> there is also sql truncation attack 20:27 < AnimalFarmPig> asimon: for web services that can be handled by setting the max payload size in the web server 20:27 < AnimalFarmPig> you'll get a.... iirc... 413 for payload too big if you violate it 20:27 < asimon> Here's a question 20:28 < asimon> For password fields on web service login forms 20:28 < asimon> Is the password hashed before being sent 20:28 < AnimalFarmPig> yeah, is 413 20:28 < AnimalFarmPig> asimon: typically plaintext 20:28 < ebol4> asimon: no, pretty much never 20:28 < asimon> ...why not 20:29 < AnimalFarmPig> no added security by hashing first. If you can intercept the plaintext, you can intercept the hash 20:29 < asimon> Shouldn't the service never have access to your plaintext password? 20:29 < asimon> You could hash n mac 20:29 < ebol4> the point of hashing client-side would be to prevent a malicious server from seeing your password, but the Javascript used to hash your password would be getting sent by that same malicious server 20:29 < ebol4> so they could just send you malicious javascript 20:29 < vavkamil> you can hash it with javascript in browser 20:30 < asimon> I guess that's true 20:30 < asimon> It just seems like transporting passwords in plaintext (even with TLS) is like mailing a check in a clear envelope 20:30 < ebol4> that's what TLS is for 20:31 < ebol4> yeah, you are trusting that the server on the other end is going to handle your password properly 20:31 * asimon trusts no one 20:31 < estranger> why are all my work vm templates old as shit. think im missing a group permission 20:31 < ebol4> but that's why you're supposed to use different passwords on every website 20:31 < AnimalFarmPig> asimon: what would happen differently on the server side if it receives a hash of the password vs plaintext password? 20:32 < vavkamil> no plaintext passwords stored in server logs 20:32 < ThatOneRoadie> Bored bored bored mcboredy boredbored 20:32 < ThatOneRoadie> vavkamil, how about plaintext usernames 20:32 < ebol4> you shouldn't be logging credential input 20:32 < AnimalFarmPig> you shouldn't be logging plaintext passwords anyway 20:32 < ThatOneRoadie> ebol4, winner 20:32 < asimon> That's fair - I suppose the hash of the password is just as vital as the password itself 20:32 <+giant_it_burrit> i do it for security 20:33 < pcspkr> AnimalFarmPig: the server must receive the plaintext password 20:33 < ThatOneRoadie> What about when someone accidentally fucks up and types usernameP4ssw0rd in the password box 20:33 < ThatOneRoadie> er, in the username box 20:33 < AnimalFarmPig> pcspkr: yes 20:33 < ThatOneRoadie> if you log usernames in plaintext, tada, you now have a password in your log 20:33 < vavkamil> ThatOneRoadie, that's what zuckerberg was doing 20:34 < ThatOneRoadie> and they 20:34 < ThatOneRoadie> whoops 20:34 < ThatOneRoadie> damn new keyboard 20:34 < ThatOneRoadie> they're pretty easy to regex out 20:34 < ThatOneRoadie> just look for "String" and "String plus any extra characters" 20:35 < ThatOneRoadie> and you now have usernames and passwords for people who screwed up entering their username 20:35 < ebol4> the zucc 20:35 < asimon> How do salted hashes play into this discussion? Where are the salts stored / served? 20:35 < ebol4> asimon: you store salts alongside the hash in plaintaxt 20:35 < ebol4> salts can be leaked, their whole purpose is to prevent the creation of rainbow tables 20:36 < ThatOneRoadie> ^ 20:36 < asimon> ebol4: So the server takes the plaintext password and salt, hashes those in some combination, and compares the result to the stored hash? 20:36 < ThatOneRoadie> Salts just keep the asshole with a precomputed 1.5TB md5 table from slamming against your db 20:36 < ThatOneRoadie> it means they have to do the compute work themselves 20:36 < ebol4> asimon: yes 20:37 < ThatOneRoadie> iirc usually it's something like md5(str = passwd + salt) 20:37 < narziss> Did anyone here every play with the rainbow tables from the Church of Wifi? 20:37 < narziss> I downloaded them a gajillion times but never got around to doing anything with em 20:37 < ThatOneRoadie> the salt is always appended to your pass 20:38 < felda> anyone else mix the chocolate chip cookies in with the oatmeal raising cookies? 20:38 < ThatOneRoadie> so, for example, if your password is 12345, and the salt is literally the string "salt", then the password being sent for hashing, and compared, becomes 12345salt 20:38 < ThatOneRoadie> goddamn right felda 20:39 < GreyKite> felda: blasphemy 20:39 < vavkamil> ashley madison passwords were cracked even with salt 20:39 < grumplestiltzkin> felda: no. blasphemy. normal chocolate chip may go with oatmeal chocolate chip. mixing raisin cookies with chocolate is how you summon cthulu 20:39 < asimon> What if you had a cookie with both raisins and chocolate chips 20:39 < asimon> That'd be even better 20:39 < ThatOneRoadie> asimon, that would be the ambrosia of the gods 20:40 < ThatOneRoadie> double chocolate oatmeal raisin 20:40 < ThatOneRoadie> hnnnnnnnnnng 20:40 < ebol4> what if you just ate a big bowl of rasins and chocolate chips with a spoon 20:40 < ebol4> i guess that's just disassembled rasinets 20:40 < ThatOneRoadie> ebol4, no worse than just eating raw cookie dough 20:40 < asimon> ebol4: only if it had cookie dough 20:40 < ebol4> how did i misspell raisin twice in the same way 20:41 < GreyKite> ebol4: skill 20:45 < ThatOneRoadie> The Taurus rooty-tooty-shake-n-shooty https://www.youtube.com/watch?v=2fn6GFSwTEw 20:45 <+layer-eight> * ThatOneRoadie โ†’ YouTube โ†’ Watch Taurus 24/7 pistol fire just by being shaken โ†’ โš˜ 172,240 โ†‘ 573 โ†“ 51 โœ 242 20:46 < vinrock> werent those new plastic sigs doing that 20:46 <+giant_it_burrit> what is this magic 20:46 < vinrock> and i think some of the older ruger semiautos did 20:48 < ThatOneRoadie> the new P365 has striker dragging issues 20:48 < ThatOneRoadie> the P320 failed to go into battery iirc 20:48 < ThatOneRoadie> but yeah, the two new pistols from sig are having major QC issues 20:48 < ThatOneRoadie> hadn't heard of the rugers doing it 20:57 < dragonfleas> pfsense 20:58 < AnimalFarmPig> it's almost like striker-fired guns are always in condition zero 21:01 < Hatter> oh what is this now #reddit-gunadmins hehehe jk 21:02 < int0x1C8> goddamn I love my onion desk calendar 21:03 < int0x1C8> "New Seaworld show just elephant drowning in large tank of water with no explanation" 21:03 <+MillerBOSS> Does it love you back? 21:04 < int0x1C8> "Monsanto lab on lockdown after scientists find shattered tomato containment unit" 21:05 < pupp3r> the onion is one of the few sites that hasn't degraded in quality over its lifetime 21:06 < xamithan> Thats because it is ran by an AI bot 21:06 < pupp3r> 0_0 21:06 < pupp3r> conspiracy time 21:06 < xamithan> You think big data doesn't have any good applications? 21:07 < pupp3r> sure it does. just look at /r/SubredditSimulator 21:07 < pupp3r> best use case to date 21:07 < int0x1C8> https://www.youtube.com/watch?v=ltObzsDcmpY 21:07 <+layer-eight> * int0x1C8 โ†’ YouTube โ†’ Keep Your Heart Rate Up By Staring At A Bald Man Wearing Goggles - Dr. Good - Ep 11 โ†’ โš˜ 41,720 โ†‘ 1,047 โ†“ 44 โœ 282 21:08 <@JollyRgrs> int0x1C8: attack of the killer tomatoes? 21:08 < int0x1C8> the perfect human 21:10 <@JollyRgrs> so bored 21:10 <@JollyRgrs> and i shoudn't have had that ghost pepper burger 21:10 < xamithan> i smell a bot 21:11 <@JollyRgrs> ghost pepper sauce with fresh jalepenos AND fried jalapenos 21:11 < ebol4> spooky borger 21:11 < xamithan> Should have the tarantula burger instead 21:11 <@JollyRgrs> ebol4: i thought of you on the way to lunch 21:11 <@JollyRgrs> xamithan: i don't live in NC... and nothx 21:11 < ebol4> :3c 21:11 < xamithan> They got them in AZ too 21:12 < Sousapro> what's this WSUS offline business? 21:12 < xamithan> It is wsus, just offline 21:12 < Sousapro> I'm having a hard time seeing the benefit even in a tiny office 21:12 <@JollyRgrs> ebol4: maid service... http://www.YouveGotMAIDS.com 21:12 <+layer-eight> * JollyRgrs โ†’ โš“ http://www.youvegotmaids.com/ โ†’ You've Got Maids | Environmentally Friendly House Cleaning Franchises 21:12 <@JollyRgrs> i just felt like it shoud have been missing an M 21:15 < Sousapro> you've got male - an escort service 21:15 < Sousapro> who wants to start a business? 21:15 < Sousapro> Hunterkll? 21:15 < Hunterkll> .... 21:16 < Hunterkll> you couldn't afford me 21:16 < Hunterkll> Sousapro, WSUS offline is like, a USB full of patches, so you can slap a machine all good together in a much shorter time then a regular WU pass 21:16 < ebol4> like an apt mirror 21:16 < Hunterkll> it's not actually related to WSUS at all, in reality 21:17 < Sousapro> Hunterkll: right but I was trying to see the benefit. 21:17 < Sousapro> wasn't thinking about speed 21:17 < ebol4> if you have 2Mb/s internet you will like it 21:17 < Hunterkll> i just explained the benefit 21:17 < Hunterkll> Sousapro, imagine you're a repair shop 21:17 < Hunterkll> and someone brings in a 2 year unpatched machine 21:17 < Sousapro> what about if I have a working WSUS server working in foreground mode? 21:17 < Hunterkll> do you really want to sit there repeating tasks over and over again? 21:17 < Sousapro> Hunterkll: apply latest w10 cumulative upgrade? 21:17 < Hunterkll> hit update, install, reboot, etc 21:18 < Hunterkll> Sousapro, you can't just upgrade all your customers to windows 10 21:18 < Hunterkll> >_> 21:18 < Sousapro> gotta support that XP money 21:18 < AnimalFarmPig> youvegotmail.com <--- sells armor (chainmail, platemail, etc.) and accessories 21:18 < Sousapro> :P 21:18 < Hunterkll> even though that's what i'd like to do it's not always an option 21:18 < Sousapro> Hunterkll: I know 21:18 < Sousapro> Hunterkll: I know I sure as hell wouldn't want to support W7 now 21:18 < GreyKite> ...... 21:18 < Sousapro> Hunterkll: upgrades for days (literally) 21:18 * GreyKite glances at his XP boxen 21:19 < Sousapro> I will say that I really like the cumulative updates 21:19 * JollyRgrs slaps GreyKite with a small trout 21:19 < Sousapro> apply 1 update, almost totally up to date off the image without slipstreaming via dism 21:20 < GreyKite> JollyRgrs: I would deserve that if it was my fault we have XP boxen 21:20 < Hunterkll> i still update my images 21:20 < Sousapro> GreyKite: your birth caused Windows XP to still be in prod 21:20 < Sousapro> :P 21:20 < felda> JollyRgrs is a part of the turning the frogs gay scheme 21:20 <@JollyRgrs> thuh wut? 21:20 < Sousapro> Hunterkll: you have images? I just do thin images via MDT. 21:21 < Sousapro> Hunterkll: I need to get time for SCCM 21:21 <@JollyRgrs> Sousapro: you do 21:21 <@JollyRgrs> make time 21:21 < felda> JollyRgrs you ever seen any Alex Jones meme videos? 21:21 <@JollyRgrs> it'll be well worth 21:21 <@JollyRgrs> felda: i guess not? 21:21 < GreyKite> SCCM is amazing when done right 21:21 < felda> enjoy https://www.youtube.com/watch?v=_ePLkAm8i2s 21:21 <+layer-eight> * felda โ†’ YouTube โ†’ Alex Jones "Turning the Freaking Frogs Gay" โ†’ โš˜ 1,470,568 โ†‘ 21,236 โ†“ 602 โœ 1,901 21:21 <@JollyRgrs> not now 21:21 < GreyKite> the SCCM here is not 21:21 < Sousapro> yeah, I just keep remembering that bank that deleted their desktops via SCCM 21:21 <@JollyRgrs> i'm in a meeting 21:21 < Hunterkll> Sousapro, they added a feature to make that harder 21:21 < Hunterkll> tho 21:21 < GreyKite> Sousapro: stupid people have been kicking powercords for years 21:21 <@JollyRgrs> Sousapro: a bank did it? 21:22 < Hunterkll> JollyRgrs, yes 21:22 < Hunterkll> JollyRgrs, HP did it 21:22 < Hunterkll> :> 21:22 <@JollyRgrs> haha 21:22 <@JollyRgrs> oh wait, i remmeber that now 21:22 < Hunterkll> https://delimiter.com.au/2012/07/30/disastrous-patch-cripples-commbank/ 21:22 <+layer-eight> * Hunterkll โ†’ Disastrous patch cripples CommBank | Delimiter 21:22 < Sousapro> I know I won't do it 21:22 < Hunterkll> http://www.itprotoday.com/windows-7/aggressive-configmgr-based-windows-7-deployment-takes-down-emory-university 21:22 <+layer-eight> * Hunterkll โ†’ Aggressive ConfigMgr-based Windows 7 Deployment Takes Down Emory University | IT Pro 21:22 < Sousapro> I just don't want some desktop tech getting smrt 21:22 < Hunterkll> Sousapro, they added a stupid check to SCCM because of this 21:22 <@JollyRgrs> that's my fav one, Hunterkll 21:23 < Sousapro> Hunterkll: "Are you sure you want to corncob your career?" 21:23 <@JollyRgrs> that guy... he can claim "i'm the sole reason a feature was added to SCCM" 21:23 < Hunterkll> lol 21:23 < Hunterkll> "YOU CANNOT DEPLOY TASK SEQUENCES TO THIS DEVICE COLLECTION OR OTHERS OF LESS THAN 100 (THIS IS CONFIGURABLE) MACHINES UNLESS YOU TURN OFF THE IDIOT CHECK" 21:24 < Hunterkll> er 21:24 < Hunterkll> more tahn 21:24 < Hunterkll> well 21:24 < Hunterkll> i suppose the idiot check might need some reconfiguration Sousapro 21:24 < Hunterkll> if you have less than a hundred machines 21:24 < Sousapro> lol could you imagine setting up SCCM for 30 machines? 21:24 <@JollyRgrs> ^^ 21:24 < Hunterkll> I could 21:24 <@JollyRgrs> Sousapro: sure i could 21:24 < Hunterkll> I did it for ~120 21:24 < Sousapro> a month worth of effort 21:24 < Sousapro> for 30 boxen 21:24 < Hunterkll> a month? 21:24 < Hunterkll> try an hour 21:24 <@JollyRgrs> a month? 21:24 < Hunterkll> hour and a half 21:24 < Hunterkll> at most 21:24 < Hunterkll> most of that waiting for progress bars 21:24 <@JollyRgrs> for that few PCs, i doubt there's that many collections 21:25 < Hunterkll> set up some ADRs for patching 21:25 < Hunterkll> boom 21:25 < Hunterkll> already have benefits 21:25 <@JollyRgrs> yup 21:25 < Sousapro> Hunterkll: to get it fully configured with all apps integrated 21:25 < Hunterkll> do that over time 21:25 < Hunterkll> next version of app ready to go? that's when you SCCMify it 21:25 <@JollyRgrs> Sousapro: with 30 PCs, how many apps would you even be dealing with? 21:25 < Hunterkll> shit 21:25 < Sousapro> JollyRgrs: imagine a software dev house 21:25 < Hunterkll> i'd buy the patchmypc scup catalog 21:25 < Hunterkll> at that point 21:25 < Hunterkll> lol 21:25 < Hunterkll> its like $500/yr 21:25 <@JollyRgrs> and hopefully you had already packaged it in SOME way shape or form... so those are easy to import 21:25 < Hunterkll> 30 machine shop? 0 packaging 21:26 < Hunterkll> JollyRgrs, a-ko manually packaged & wrote an installer for eclipse 21:26 < Hunterkll> lol 21:26 <@JollyRgrs> heh 21:26 < xamithan> those jobs go to the bosses nephew though 21:26 < Sousapro> I'd probably just do PDQ and WSUS at 30 PCs 21:26 < Hunterkll> i introduced him to wix to make his own MSIs 21:26 < Hunterkll> lol 21:26 < Sousapro> especially if I was a one man band 21:26 < Hunterkll> and powershell app deploy toolkit 21:26 < Hunterkll> PDQ can't do half of what SCCM can 21:26 <@JollyRgrs> i really wanted to play with app deploy toolkit 21:26 <@JollyRgrs> never got around to it 21:26 < Hunterkll> and probably takes longer to set up 21:26 <@JollyRgrs> what does wix do? 21:26 < Sousapro> Hunterkll: it's pretty quick 21:26 <@JollyRgrs> is it free? 21:26 < Hunterkll> JollyRgrs, MS's windows installer toolkit 21:26 < vinrock> pdq is super easy 21:26 < Hunterkll> to make MSIs 21:26 < ebol4> if you get a severance check, is that just like getting a big final paycheck tax-wise 21:27 < vinrock> i dont even use the paid version, free does all i need 21:27 < Hunterkll> vinrock, yea but SCCM for me is a one script install at this point 21:27 < Hunterkll> :) 21:27 < xamithan> but wix is israeli ? 21:27 <@JollyRgrs> Hunterkll: does it just do the snapshot deltas and wrap it up in MSI? 21:27 < Hunterkll> JollyRgrs, no, it's how you actually write MSIs 21:27 < Hunterkll> the proper way 21:27 <@JollyRgrs> Hunterkll: oh... so a GUI to orca? 21:27 <@JollyRgrs> :P 21:27 < alazare619> hurray our lab print system rebooted mid day 21:27 < Hunterkll> no..... 21:27 < alazare619> and is stuck on updates 21:27 < Hunterkll> JollyRgrs, Orca is for haxx0rz 21:27 < alazare619> FFS 21:27 <@JollyRgrs> Hunterkll: that's what i use :( 21:27 < Hunterkll> JollyRgrs, you write a shitload of XML and compile it up 21:27 < Hunterkll> :D 21:28 < Hunterkll> JollyRgrs, http://wixtoolset.org/ 21:28 <+layer-eight> * Hunterkll โ†’ WiX Toolset 21:28 < Hunterkll> it's been open source since 2004 21:30 < Hunterkll> JollyRgrs, you can extend it into VS to make shit easier -> https://marketplace.visualstudio.com/items?itemName=RobMensching.WiXToolset 21:30 < aName> I love when I wait all day for an answer to a simple question preventing me from continuing on an assignment. 21:30 < aName> It's great! 21:30 < Hunterkll> JollyRgrs, WiX also has extensions for shit like creating SQL DBs, firewall rules, etc 21:30 < aName> Hunterkll: Does it come with government cheese? 21:31 < Hunterkll> no? 21:31 < aName> Damn. 21:31 < Hunterkll> what's this v4 shit 21:31 < Hunterkll> there's new stuff i missed 21:31 * Hunterkll investigates 21:31 < aName> Imma look into this though - I need to build a more complicated installer than usual 21:32 < aName> A meta-installer 21:32 < Hunterkll> aName, this will do everything you need and give you a handy too 21:32 < Hunterkll> just 21:32 < Hunterkll> prepare to bleed your eyes out 21:32 < Hunterkll> and have a GUID generator handy 21:32 < Hunterkll> JollyRgrs, I know Dell has a tool for their KACE system that'll do deltas of the OS state 21:32 < Hunterkll> we've used that before to package shit 21:32 < aName> Hunterkll: lol 21:32 < Hunterkll> (it lets you select what changes to keep/discard) 21:32 < Hunterkll> and generates an MSI 21:33 < aName> I need to remove the AV (whichever they may have), install ours, install our RAT and then run our software audit script 21:33 <+giant_it_burrit> a rat? 21:33 < aName> I'm actually waiting to hear back about which AV they have 21:33 <+giant_it_burrit> theres a term i have not heard in awhile 21:33 < Hunterkll> lol 21:33 < aName> giant_it_burrit: Well... I mean, it's not an unauthorized one, but it is what it is. 21:33 < Hunterkll> :o 21:34 < catbeard> "remote administration tool" 21:34 < Hunterkll> aName, i've heard that for inferior products the industry uses RMM now 21:34 < Hunterkll> :) 21:34 < catbeard> not "remote access trojan" 21:34 < aName> Hunterkll: Huh 21:34 < Hunterkll> catbeard, i've heard it 'remote access tool' for like 15 years 21:34 < Hunterkll> aName, Remote Machine Management 21:34 < Hunterkll> that's the new friendly term 21:34 < catbeard> aName: someone won't let you enable ps remoting eh? 21:34 < Hunterkll> :) 21:34 < aName> catbeard: Dude. We merged with some company and they have like 70+ PCs that are completely unmanaged 21:35 < vinrock> yikes 21:35 < catbeard> aName: and which network segment are they attached to, same VLAN? 21:35 < Hunterkll> lol 21:35 < Hunterkll> install SCCM agent 21:35 < Hunterkll> call it a day 21:35 < aName> catbeard: They probably are - but not on my network 21:35 < aName> Hunterkll: Yeah, we can't afford SCCM 21:35 < catbeard> install DBAN and PXE boot with $corp1_OS 21:35 < Hunterkll> you can't afford... $61/workstation .... 21:35 < Hunterkll> ..... 21:36 < aName> Hunterkll: We barely spend that much on the hardware lol 21:36 < Hunterkll> if you had meant servers i could understand 21:36 < Hunterkll> but workstations? pffft 21:36 < aName> Hunterkll: Yeah - our desktops are like 80 bucks a pop from our refurbisher lol 21:36 < catbeard> give those bitches freebsd, bitches love freebsd 21:36 < aName> Hunterkll: So an additional 60 bucks a desk is a tough sell 21:37 < Hunterkll> -_- 21:37 <+giant_it_burrit> what about tree fiddy 21:37 < Hunterkll> aName, nonprofit? 21:37 < darkscrypt> i can't wait for psremoting to be ssh compat 21:37 < darkscrypt> i'm really hoping it truly goes that direction 21:37 < aName> Hunterkll: Call center. So... yes? 21:37 < scwizard> if the lyrics from Radio Head's "Creep" make you think of a girl, does that mean you're in love with her? 21:38 < Hunterkll> that doesn't help me 21:38 < Hunterkll> lol 21:38 < aName> scwizard: no 21:38 < aName> scwizard: It means she hurt you. 21:38 < Hunterkll> darkscrypt, ps-remoting by definition is ws-management 21:38 < Hunterkll> lol 21:38 < Hunterkll> entirely NOT SSH 21:38 < Hunterkll> 100% not 21:38 < aName> Hunterkll: Our margins are very thin. 21:38 < darkscrypt> Hunterkll: um. 21:38 < Hunterkll> SSH is different 21:38 < scwizard> aName: eh? how? 21:38 < darkscrypt> Hunterkll: https://docs.microsoft.com/en-us/powershell/scripting/core-powershell/ssh-remoting-in-powershell-core?view=powershell-6 21:38 < Hunterkll> WinRM etc 21:38 <+layer-eight> * darkscrypt โ†’ PowerShell Remoting Over SSH | Microsoft Docs 21:38 < darkscrypt> please tell me more about how i'm wrong... Hunterkll 21:38 < Hunterkll> darkscrypt, that's encapsulating it 21:39 < Hunterkll> ssh can encapsulate anything 21:39 < Hunterkll> doesn't make it ssh compatible 21:39 < Hunterkll> :p 21:39 < Hunterkll> note how the encapsulation has a bunch of downsides 21:39 < Hunterkll> :'( 21:39 <+giant_it_burrit> Hunterkll: whats the setting to enable luser for a remote system via mmc 21:40 < Hunterkll> uhm 21:40 < Hunterkll> what 21:40 < felda> GOOGE DUN BROKE RUN FOR THE HILLS 21:40 < felda> actual quote from my user 21:40 < felda> but yeah Youtube is 500 Server Error right now 21:40 < Hunterkll> giant_it_burrit, what? 21:40 < felda> Google sysadmins on suicide watch 21:41 < DomLS3> felda: eh 21:41 < darkscrypt> Hunterkll: what i'm talking about isn't encapsulation. ms has been toying with the idea of integrating ssh as a method of entering pssessions out of the box 21:41 < DomLS3> felda: I can get to youtube 21:41 <+giant_it_burrit> Hunterkll: when i try to access local users on a remote machine in mmc i get an rpc server is unavailable even tho its on 21:42 < felda> DomLS3 servers in your area seem to be doing alright 21:42 < Hunterkll> darkscrypt, ps-remoting by nature is far more than what the SSH layer can provide which is why the SSH layer encapsulation has so many downsides 21:42 < Hunterkll> this is just basically providing a remote powershell console / command execution 21:42 < Hunterkll> not the full feature set of psremoting / winrm 21:42 < ebol4> what more is there 21:43 < catbeard> BUT WAIT 21:43 < catbeard> THERE'S MORE 21:43 < Hunterkll> ebol4, However, WinRM also provides a robust hosting model for PowerShell remote sessions which this implementation does not yet do. And this means that PowerShell remote endpoint configuration and JEA (Just Enough Administration) is not yet supported in this implementation. 21:43 < ebol4> you type too fast 21:43 < ebol4> slow down 21:43 < Hunterkll> they'll probably have to add a new ssh channel to do that 21:43 < Hunterkll> or do some GSSAPI fuckery 21:43 < Hunterkll> maybe they can reuse the same side channel used fro remote X sessions 21:43 < Hunterkll> lmao 21:44 < Hunterkll> WS-Management also exposes a slew of stuff that doesn't require interactive command/sessions that SSH by nature can't 21:44 < Hunterkll> so it won't go away 21:44 <+MillerBOSS> felda ๐Ÿ‘‰ It even has a purple monkey. 21:45 < Hunterkll> best it'll do is let people like darkscrypt ssh and get a console from a linux system to a windows server 21:45 < Hunterkll> lol 21:45 < darkscrypt> Hunterkll: no. 21:45 < darkscrypt> Hunterkll: there's a reason ms is investing so much into open ssh in terms of engineering hours. 21:45 < technonerd> Users channels are throwing 500s 21:45 < felda> MillerBOSS I don't know what fuckery you're up to but whatever symbol you use next to nicknames is 100% the devil 21:45 < technonerd> On YouTube 21:45 < felda> just shows me the "I can't load this character" square 21:46 <+MillerBOSS> Get a new client? 21:46 <@JollyRgrs> felda: i just get 2 blank charcaters 21:46 < Hunterkll> darkscrypt, doing what was already possible with sshd and adding support to ssh to new-pssession isn't quite that 21:46 < Hunterkll> darkscrypt, they'd have to replace the full feature set of WSMan protocol in SSH 21:46 < Hunterkll> since not all of WSMan/PSSession was command activity 21:46 <+MillerBOSS> Its this https://emojipedia.org/white-right-pointing-backhand-index/ felda JollyRgrs 21:46 <+layer-eight> * MillerBOSS โ†’ ๐Ÿ‘‰ White Right Pointing Backhand Index Emoji 21:47 <+MillerBOSS> Even layer-eight knows whats up. 21:47 < Hunterkll> all the SSH ps-remoting is doing is providing you a command line 21:47 <@JollyRgrs> i'll backhand you, MillerBOSS 21:47 < Hunterkll> just like 99% of the SSH usage in linux 21:48 < GreyKite> what's wrong with that? 21:48 < Hunterkll> it's not doing any of the side channel, credential handling, etc that is used in modern windows environments 21:48 <+MillerBOSS> lol 21:48 < felda> MillerBOSS I do want to let you know that IRC is from before color TVs were invented 21:48 < Hunterkll> JEA/JIT can't, by nature, work with this type of setup yet 21:48 < Hunterkll> and that's huge in terms of a windows shop in security practices 21:48 <@JollyRgrs> i'm actually trying to get emoji to display right in this... but it seems tmux + weechat just isn't working so well with it right now 21:48 <+MillerBOSS> Thank you felda for the information. 21:48 < felda> IRC is from the Jurassic Period 21:48 < Hunterkll> if you're implementing that 21:49 < GreyKite> JollyRgrs: I don't know about weechat but I've gotten irssi+tmux to display emojis 21:49 <@JollyRgrs> GreyKite: how? 21:49 <@JollyRgrs> i can get my emoji inside of tmux session 21:49 < Hunterkll> darkscrypt, but the reason MS is going so heavily into SSH as you say, is to allow easier interoperability in mixed environments. but MS is also going heavily into supporting WS-Man protocol on OS X and Linux, and does so already (and has for years in some ways, like the SCOM agents) 21:49 <@JollyRgrs> but when i run weechat, it doesn't show 21:49 < technonerd> A giant meteor made bbs go extinct 21:50 <@JollyRgrs> GreyKite: does irssi run in ncurses? maybe that's the issue? 21:50 < Hunterkll> JollyRgrs, you ever get IIS with runaway CPU usage on your primary? 21:50 <+MillerBOSS> Fuck, you guys, just run mIRC and call it a day. 21:50 < GreyKite> JollyRgrs: yes, irssi is ncurses based 21:50 < darkscrypt> the entire point of what I was saying was that it would be possible to manage windows servers over ssh pretty soon, out of the box. 21:50 < Hunterkll> darkscrypt, a bit old, but this covers some of the differences - https://powershell.org/2015/06/09/why-remoting-vs-ssh-isnt-even-a-thing/ 21:50 <+layer-eight> * Hunterkll โ†’ Why Remoting vs. SSH Isn't Even a Thing 21:51 < Hunterkll> darkscrypt, yes, manage, yes, you can do that with just a commandline 21:51 < Hunterkll> but there's more advanced stuff SSH won't cover 21:51 < darkscrypt> there's more advanced stuff wsman won't cover either. 21:51 <@JollyRgrs> GreyKite: then what hte heck? lol 21:51 < Hunterkll> darkscrypt, SSH'll get you 95% of the way there 21:51 < Hunterkll> darkscrypt, such as? 21:51 < darkscrypt> they are differen't protocols 21:51 < darkscrypt> tunneling traffic 21:51 < Hunterkll> WS-Man won't get you a full text-mode GUI setup 21:51 < Hunterkll> that's true 21:51 < Hunterkll> can't run an IRC client over it 21:51 < Hunterkll> (don't really care to either) 21:51 <+MillerBOSS> s/tunneling/Go jump in front of 21:51 < darkscrypt> can't do that in powershell either. 21:51 <+layer-eight> [SED MillerBOSS/darkscrypt] Go jump in front of traffic 21:52 < Hunterkll> yes you can 21:52 < GreyKite> JollyRgrs: dunno, all I needed was a UTF-8 font setup and irssi worked just fine 21:52 < Hunterkll> you can run console applications that are curses-style 21:52 < Hunterkll> just can't do it over wsman 21:52 < Hunterkll> could do it over ssh 21:52 <@JollyRgrs> GreyKite: what are you using to get into your session? 21:52 <@JollyRgrs> i'm on win10 using KiTTY going ssh into my server 21:52 < MadCamel> anything that makes things easier for orchestration is good. 21:52 < darkscrypt> that's not a thing in powershell really. thats just running a console based application and letting it control the console 21:52 < Hunterkll> JollyRgrs, halp W3WP 75% CPU and 6GB ram wat do 21:53 < darkscrypt> at that point we are differentiating on what is powershell and what is windows. 21:53 < asimon> I have a riddle for you guys https://imgur.com/a/wawH8I1 21:53 <+layer-eight> * asimon โ†’ IMGUR Album โ†’ a few seconds ago โ†’ 1 Image โ†’ โš˜ 0 21:53 < asimon> Why is the display style block 21:53 < darkscrypt> just like irssi isn't a part of bash... 21:53 <@JollyRgrs> Hunterkll: burn it! 21:53 < Hunterkll> darkscrypt, no, because microsoft supports WS-Man on linux 21:53 < Hunterkll> :) 21:53 < Hunterkll> JollyRgrs, i can't burn my primary! 21:53 < catbeard> asimon: Oh my god, you can't just ask why people's display style is black 21:53 < GreyKite> JollyRgrs: ahhh, I'm linux using urxvt ssh'ing into a FreeBSD box 21:53 < darkscrypt> i'm done with the convo. this is all just pedantic bs. 21:53 < darkscrypt> gg 21:53 <@JollyRgrs> ah 21:53 < Hunterkll> darkscrypt, it's really not... i'm just saying that ssh won't take over ws-man or vice versa 21:54 < asimon> catbeard: I can and I will, fuck this pc culture 21:54 < MadCamel> yuck. But hey if you're a windows shop and want to bring in some linux stuff I suppose... 21:54 < asimon> ./s 21:54 <@JollyRgrs> yeah, i think konsole/whatever console being used isn't a problem 21:54 < darkscrypt> it was never even an argument about that.. you changed the entire point of the argument to suit your needs. 21:54 < Hunterkll> ssh can't functionally replace how we manage windows servers in our org today without serious changes to how it works 21:54 < Hunterkll> what? 21:54 < Hunterkll> no 21:54 < GreyKite> JollyRgrs: wouldn't think it would cause an issue 21:54 < Hunterkll> darkscrypt, I said taht ps-remoting wasn't really the same as ssh 21:54 < darkscrypt> either that or you misunderstood my point entirely and went on your own diatribe about something else. 21:54 <@JollyRgrs> i wouldn't think either 21:54 < Hunterkll> since there's more that it does that ssh can't support 21:54 <@JollyRgrs> buuuuut... 21:54 < GreyKite> here we are 21:54 < Hunterkll> JollyRgrs, 7.5GB 21:54 < Hunterkll> whta is IIS doing 21:55 < Hunterkll> THIS ISN'T EVEN A DP 21:55 <@JollyRgrs> Hunterkll: on wsus box? 21:55 < Hunterkll> i don't think it's the sup... 21:55 <@JollyRgrs> what is on it? 21:55 < MadCamel> it's eating dicks like it always does. 21:55 < DomLS3> RDP to manage Windows or nothing 21:55 < DomLS3> end of conversation 21:55 < Hunterkll> darkscrypt, i guess what it is - a subset of psremoting features can be supported by ssh, and that's good enough for 95% of admin work. that sound about agreeable? 21:55 < Hunterkll> lol 21:56 < Hunterkll> i was malfunctioning on the idea that ssh could entirely replace all psremoting features 21:56 < GreyKite> Hunterkll: why would you even try to do that? 21:56 < darkscrypt> Hunterkll: agreeable . and yeah, i don't think it would make much sense to replace all of them 21:56 < Hunterkll> it's - by how ssh works - just not possible 21:56 < darkscrypt> but say you want to setup a home server. setting up the ability to enter-pssession to that home box is complicated as hell. 21:56 < Hunterkll> and i thought you were saying it like SSH was gonna replace ps-remoting entirely 21:56 < darkscrypt> allowing ssh to do this would be much better and simpler. 21:57 < Hunterkll> yea but i doubt that's the target market :P 21:57 < darkscrypt> because winrm doesn't fit all circumstances 21:57 < Hunterkll> but for you ssh would cover everything you need 21:57 < darkscrypt> i'm just giving a scenario 21:57 < Hunterkll> yea, but in that scenario you'd probably also just log into the console too 21:57 < Hunterkll> haha 21:57 < Hunterkll> we over-engineer our home shit a bit too much 21:57 < darkscrypt> what about contractors. 21:57 < Hunterkll> teamviewer 21:57 < Hunterkll> duh 21:57 < darkscrypt> contractors who are not domain joined. 21:57 < Hunterkll> or logmein or whatever 21:57 < darkscrypt> they just want to execute some remote ps commands 21:57 < Hunterkll> darkscrypt, why are contractors who are non-domained joined using unmanaged machines on my network 21:57 < Hunterkll> >:3 21:58 < GreyKite> agreed 21:58 < darkscrypt> epsn isn't going to work really, because of all the requirements. 21:58 < darkscrypt> you could let them epsn into a management node. 21:58 < GreyKite> you get a VDI that's domain joined, ps-exec from there, thanks 21:58 < Hunterkll> darkscrypt, they can get web powershell 21:58 < darkscrypt> psexec from there? jesus. 21:58 < Hunterkll> why do they have psexec privleges?!?!! 21:58 < Hunterkll> https://blogs.technet.microsoft.com/fromthefield/2015/02/18/powershell-web-access-a-walkthrough/ 21:58 < Hunterkll> but still 21:58 <+layer-eight> * Hunterkll โ†’ PowerShell Web Access โ€“ a walkthrough. โ€“ FromTheField 21:58 < Hunterkll> PWA is pretty neat 21:58 < GreyKite> Hunterkll: they don't 21:58 < darkscrypt> gtg 21:59 < GreyKite> why are contractors running remote ps anyway? 21:59 < darkscrypt> got to seal up this vdi image and push to qa before the end of the day 21:59 < Hunterkll> JollyRgrs, huh, it does haev SUP 21:59 < darkscrypt> speaking of vdi 21:59 < Hunterkll> JollyRgrs, Component server, endpoint protection point, fallback status point, management point, reporting services point, service connection point, site server, site system, software update point 21:59 < Hunterkll> JollyRgrs, just iisreset and call it a day then? 21:59 < Hunterkll> lol 22:00 <@JollyRgrs> maybe, but it might just flair up again 22:00 <@JollyRgrs> surprised app pool didn't crash or something first 22:00 <+MillerBOSS> There is medication for that. 22:00 < Hunterkll> lol 22:00 < Hunterkll> 10GB w3wp now 22:01 <@JollyRgrs> bop it and see if it goes down :P 22:01 < Hunterkll> ? 22:01 < Hunterkll> it just disappear 22:01 < Hunterkll> and now it back 22:01 < Hunterkll> app pool recycle i guess? 22:01 <@JollyRgrs> yeah 22:01 < Hunterkll> back to CPU sucking and rapidly gaining ram usage again 22:02 <@JollyRgrs> but starting from low RAM? 22:02 <@JollyRgrs> or did it come back at 10GB? 22:02 < Hunterkll> started low 22:02 <+MillerBOSS> Did you make some cash at the hamfest? Also did that iSO work with OEM keys? 22:02 < Hunterkll> watched it ratchet from <1GB to 5GB 22:02 <@JollyRgrs> yeah, i think the app pool finally reset 22:02 <@JollyRgrs> maybe you could see in logs which app pool reset 22:02 < ebol4> hamfest sounds wonderful 22:02 <@JollyRgrs> but i'm gonna guess for WSUS 22:02 < Hunterkll> patches did go out last week.... 22:03 <@JollyRgrs> Hunterkll: when do they deadline? 22:03 < Hunterkll> uhhh 22:03 < Hunterkll> man 22:03 < Hunterkll> now you're gonna make me dig through someone else's ADRs 22:03 < Hunterkll> lol 22:03 <@JollyRgrs> it shouldn't spike until the deadline 22:03 <@JollyRgrs> well assuming users are like most and don't force it ahead of time 22:03 <+MillerBOSS> What in the fuck are you two talking about? 22:04 < Hunterkll> wow 22:04 <+MillerBOSS> Learn us all watching you two. 22:04 < Hunterkll> we only have 5 ADRs 22:04 <+MillerBOSS> W O W 22:04 <@JollyRgrs> WSUS on SCCM servers 22:04 <+MillerBOSS> Ahh 22:04 <@JollyRgrs> Hunterkll: that's not so bad... or are they ALL for the same updates? 22:04 < Hunterkll> JollyRgrs, Workstation patches, Exchange, MSRT deployment, .... malware tool updates...? and server 2012-2016 security & critical patches 22:04 < Hunterkll> lol 22:05 <+MillerBOSS> I should do that for the hell of it on a 150 PC network. Use the license from Action Pack. 22:05 < Hunterkll> MSRT and malware tool updates seem to be the same thing but whatever 22:05 < Hunterkll> wow 22:05 < Hunterkll> someone did this right 22:05 <+MillerBOSS> W0W 22:05 <@JollyRgrs> WUT!??!?! 22:05 <+MillerBOSS> Where? 22:05 <@JollyRgrs> gimme his name, i'll hire him 22:05 <+MillerBOSS> Whats on second by the way 22:05 < Hunterkll> Date Released or Revised "Last 2 months" / Product "Silverlight" OR "Office 2016" OR "Windows 10" / Update Classification "Critical Updates" OR "Security Updates" OR "Updates" 22:06 < Hunterkll> someone actually listened to me! 22:06 < narziss> My employer decided to ditch real infrastructure for Azure. 22:06 <+MillerBOSS> Or they just log this channel 22:06 < Hunterkll> rule only ones every 30 days 22:06 <@JollyRgrs> lol 22:06 < narziss> "We can ditch SCCM and AD now." 22:06 < narziss> .... 22:06 < narziss> ... 22:06 < Hunterkll> narziss, that's actually somewhat quite possible 22:06 < Hunterkll> AAD + InTune 22:06 <+MillerBOSS> Thats the idea thought of Azure isn't it narziss? 22:06 < narziss> Yeah 22:06 < Hunterkll> depending on size of org 22:06 <+MillerBOSS> though* 22:06 < narziss> But not the way these people are going at it. 22:07 < Hunterkll> i'd do it in conjunction with on-premise 22:07 < Hunterkll> but eh 22:07 <@JollyRgrs> Hunterkll: i only search every 28 days for updates 22:07 < narziss> They tried to adopted long before it met their requirements. 22:07 < Hunterkll> Azure has a "real" AD that's not just AAD 22:07 < narziss> It is a quagmire. 22:07 <@JollyRgrs> packages just get kinda big getting 2 months 22:07 <@JollyRgrs> also, i hate O365 updates 22:07 <+MillerBOSS> Fuck I got $200 credit each month for Azure fro Action Pack. What should I be learning on there Hunterkll ? 22:07 < Hunterkll> stuff? 22:07 <+MillerBOSS> In regards to the " in conjunction with on-premise" 22:07 <@JollyRgrs> they come in late, so you'll think you got updates... but they are just last month's b/c they didn't make it in time 22:08 < Hunterkll> MillerBOSS, SCCM + InTune integration for MDM from your onpremise SCCM ? AAD tenant / O365 tenant SSO ? 22:08 < Hunterkll> i dunno! 22:08 < Hunterkll> pick a certificatoin and get a study guide or something 22:08 <+MillerBOSS> But you are my study guide bbe. 22:08 * Hunterkll blinks 22:08 <+giant_it_burrit> bby 22:08 < Hunterkll> JollyRgrs, 1 collection they're deployed to 22:08 <@JollyRgrs> Hunterkll: are you zorak? 22:08 < Hunterkll> "Ring 1" 22:08 < Hunterkll> JollyRgrs, INSTALLATION DEADLINE: AS SOON AS POSSIBLE 22:09 < Hunterkll> i need to see wtf is in ring 1 22:09 < Hunterkll> and the rule eval'd yesterday afternoon 22:09 <@JollyRgrs> that hsould be like ring0 for ASAP 22:09 < Hunterkll> JollyRgrs, i think we allow reboot deferral for 14 days 22:09 <@JollyRgrs> ah 22:09 <@JollyRgrs> we give them 24 hrs 22:09 <@JollyRgrs> we install monday at midnight, so laptops get installed monday morning 22:09 < Hunterkll> that policy is actually how i rebooted 22:09 < Hunterkll> ALL OF PRODUCTION 22:09 < felda> give your favorite phrase while in a conversation 22:09 < Hunterkll> while out of the country without my laptop 22:09 <@JollyRgrs> then tues they come in and have the 1 hr deadline pop up if they din't reboot on monday 22:09 < felda> my favorite is "hello! not a retard here..." 22:09 < felda> then I finish my sentence 22:10 < felda> that or 22:10 < felda> just saw 22:10 < felda> "newsflash dipshit" 22:10 < felda> amazing sentence enhancers 22:10 < GreyKite> felda: I see 22:11 < Hunterkll> JollyRgrs, how to make the wsus not the fail 22:11 < Hunterkll> since it's sucking up 9GB ram i assume it's been uncapped already 22:11 <@JollyRgrs> look at logs as to why 22:11 < Hunterkll> lol 22:11 <@JollyRgrs> see if the clients are failing 22:11 < Hunterkll> which logs 22:11 < Hunterkll> there's so many to chose from 22:11 < catbeard> ya just tail the... oh right 22:11 <@JollyRgrs> Hunterkll: what have you done to the real Hunterkll? 22:12 <@JollyRgrs> is this A-KO on Hunterkll's computer? 22:12 < Hunterkll> lol 22:12 < Hunterkll> wrong side of the country 22:12 < int0x1C8> its a chinese infiltrator 22:13 <@JollyRgrs> so check component status under SCCM, see if anything looks bad/critical 22:13 < alazare619> nothing to see here 22:13 <@JollyRgrs> that'd be a first start 22:13 < alazare619> just another one of Hunterkll's multiple personailities 22:13 < alazare619> this one is the computer illeterate one 22:13 < Hunterkll> JollyRgrs, i'm watching wheels spin just trying to see what the fuck is in ring 1 22:13 < Hunterkll> lol 22:13 < alazare619> illiterate... 22:14 < ThatOneRoadie> Yay Amazon Couriers 22:14 < ThatOneRoadie> "Your order was handed directly to a resident" 22:14 < catbeard> Bezos needs your MONEY 22:14 < ThatOneRoadie> funny because I'm not fucking home 22:14 <+giant_it_burrit> but i am 22:14 < alazare619> wife took the day off ThatOneRoadie 22:14 <+giant_it_burrit> hehehehe 22:14 < ThatOneRoadie> and I'm pretty sure there are no residents at my house 22:14 < alazare619> she fucking the neighbhor 22:14 < ThatOneRoadie> seeing as I just bought it 22:14 < ThatOneRoadie> alone 22:14 < catbeard> she over here 22:14 <+giant_it_burrit> climbing in your window 22:14 < catbeard> watching my big screen 22:14 < ThatOneRoadie> with no wife or significant other of any kind :< 22:15 <+giant_it_burrit> snatching your people 22:15 <+giant_it_burrit> so you betta hide your felda hide your Hunterkll because they raping errybody out here 22:15 < int0x1C8> HIDE YOUR PFSENSE 22:15 < genr8_> i guess handed directly to resident means "left in the general vicinity of" 22:15 < felda> giant_it_burrit I am always willing I am un-rape-able 22:15 <+giant_it_burrit> i said hide your felda 22:15 <@JollyRgrs> Hunterkll: is this the mgmt point that you're also connecting to with console? 22:15 <+giant_it_burrit> felda: we are forcing opnsense on you 22:15 < Hunterkll> yes 22:15 <+giant_it_burrit> still willing 22:16 < catbeard> "You can't rape the willing!" ... "Wanna bet?" 22:16 < Hunterkll> huh 22:16 <@JollyRgrs> b/c if so... restart IIS again to give you a brief chance to grab some cpu cycles 22:16 < Hunterkll> ring1 only has 15 workstations 22:16 < Hunterkll> how the fuck 22:16 < ThatOneRoadie> OPNsense 22:16 < ThatOneRoadie> it's pfsense 22:16 < Hunterkll> HOW IS PATCHES DEPLOY 22:16 < ThatOneRoadie> but with sanity 22:16 < catbeard> ^ 22:16 < Hunterkll> HOW R PATCHES DO 22:16 < catbeard> and a better interface 22:16 < ThatOneRoadie> SCCM 22:16 <@JollyRgrs> HOW ARE PATCHES RECEIVING UPDATES?!?!? 22:17 <+giant_it_burrit> Hunterkll: now you sound like me, you proud? 22:17 < ThatOneRoadie> HOW R PATCHES DEPLOY?! "SCCM." 22:17 < catbeard> JollyRgrs: through the office kitten, Patches. 22:17 < ThatOneRoadie> HOW DO I SOFTWARE DO USER? "SCCM." 22:17 < Hunterkll> ThatOneRoadie, I'M INSIDE THE SCCM 22:17 < felda> SCCM is spooky 22:17 < Hunterkll> IT STILL IS MAKE NO SENSE 22:17 < ThatOneRoadie> HOW I FORCE CONPUTER TO HAVE SOFTWARE? "SCCM." 22:17 <+giant_it_burrit> send cool cat memes 22:17 < catbeard> Jesus I gotta save all your asses! I help, we can do it in 5! 22:17 <+giant_it_burrit> sccm 22:17 < ThatOneRoadie> A properly configured SCCM environment is the answer to all problems 22:17 < Hunterkll> found it 22:17 < ThatOneRoadie> much like ansible 22:18 < int0x1C8> its never DNS 22:18 < ThatOneRoadie> It's always dns 22:18 < Hunterkll> JollyRgrs, the software update group that it modifies .... is deployed beyond just the ADR's deployment 22:18 < Hunterkll> JollyRgrs, on the plus side, i already have 665 compliant workstations 22:18 < felda> Has anyone successfully deployed Hannah Montanna GNU\Linux using PXE to image all their devices? 22:18 < Hunterkll> wait 22:18 < Hunterkll> this is only targeting ring 1 too? 22:18 < Hunterkll> what the fuck 22:18 < Hunterkll> HOW IS PATCHES DO 22:19 < aName> ThatOneRoadie: I wish, man. 22:19 * Hunterkll schedules 2 meetings 22:19 < felda> Hunterkll be a real boy and use Manage Engine's Desktop Central 22:19 < Hunterkll> fuck that 22:19 * Hunterkll schedules 2 more 22:19 < felda> Is there something wrong with using Windows XP Home 32bit on all your computers? 22:19 < Hunterkll> nope 22:20 < Hunterkll> felda, it's just as right as this picture https://i.imgur.com/XQzWOWE.png 22:20 <+layer-eight> * Hunterkll โ†’ IMAGE/PNG Document, 642,784 bytes 22:20 <+giant_it_burrit> spy kids always have gadgets 22:21 <+CheckYourSix> Is MobaXterm still the go to app or is there something better? 22:21 < felda> Hunterkll that is a cursed image 22:21 < abakedapplepie> oh boy 22:21 < int0x1C8> that dude is wearing the awful shoes that only awful people wear 22:21 < Hunterkll> felda, https://i.imgur.com/4YSSaQG.png 22:21 <+layer-eight> * Hunterkll โ†’ IMAGE/PNG Document, 559,467 bytes 22:21 < abakedapplepie> CheckYourSix: RoyalTS 22:21 <+giant_it_burrit> CheckYourSix: its still ok 22:21 < abakedapplepie> i live and die by royalts 22:21 < abakedapplepie> i love it 22:22 < abakedapplepie> but it doesnt have an x server so if thats what you need.. idk 22:22 < abakedapplepie> maybe it does now idk 22:22 < felda> Hunterkll where can I get that framed? 22:22 < Hunterkll> lol 22:22 < Hunterkll> JollyRgrs, https://i.imgur.com/y3H42Hj.png 22:22 < abakedapplepie> felda: walmart 22:22 <+layer-eight> * Hunterkll โ†’ IMAGE/PNG Document, 221,036 bytes 22:22 < felda> holy fuck that actor from Spy Kids is Daryl Sabara 22:23 < Hunterkll> even anime girls judge felda -> https://i.imgur.com/q3JtlKR.png 22:23 <+layer-eight> * Hunterkll โ†’ IMAGE/PNG Document, 546,604 bytes 22:23 < felda> HOLY SHIT 22:23 < felda> I never knew they made a Spy Kids 4 22:23 < ebol4> there's a cartoon as well 22:23 < Hunterkll> guys 22:23 < Hunterkll> i think i just started a new fetish for felda 22:24 < Hunterkll> :/ 22:24 < Hunterkll> spykid dildos 22:24 < catbeard> how about Emma from Degrassi 22:25 < catbeard> https://www.youtube.com/watch?v=rz4dxt97OdI 22:25 <+layer-eight> * catbeard โ†’ YouTube โ†’ Degrassi: TNG | Emma Nelson Strips! 'Purple Dragon Protest' โ†’ โš˜ 1,218,103 โ†‘ 1,767 โ†“ 396 โœ 295 22:25 < catbeard> why would you downvote that jeez 22:26 <@JollyRgrs> Hunterkll: GL in those meetings 22:26 < Hunterkll> there's ... 22:26 <@JollyRgrs> CheckYourSix: i still have issues with mobaxterm and clicking URLs inside my IRC chat, so I moved back to KiTTY 22:27 < Hunterkll> JollyRgrs, ADR is only good for 16 machines. this month's groups were all done /manually/ 22:27 <@JollyRgrs> otherwise, i loved using mobaxterm 22:27 <@JollyRgrs> Hunterkll: O.O 22:27 <@JollyRgrs> what? 22:27 <@JollyRgrs> what year is this? 22:27 <+CheckYourSix> JollyRgrs: The only annoyance is it constantly wants me to get the pro version 22:27 < Hunterkll> yeaaa 22:27 < Hunterkll> i've been not paying attention too long 22:27 < Hunterkll> lol 22:27 <@JollyRgrs> or maybe they are on 2012 and can only set 1 deployment? 22:27 < Hunterkll> ..... 22:27 <@JollyRgrs> pls tell me they are on 2012... 22:27 <@JollyRgrs> that'd be a legit reason 22:27 <@JollyRgrs> .... 22:27 < Hunterkll> JollyRgrs, oh come on now. I installed this infrastructure 22:27 <@JollyRgrs> LOL 22:28 < Hunterkll> PLEASE 22:28 <@JollyRgrs> CheckYourSix: i don't recall that, but it has been a few years since i actively used it 22:28 < Hunterkll> JollyRgrs, we're only a release behind 22:28 < Hunterkll> ;) 22:28 < Hunterkll> actually not even 22:28 < Hunterkll> someone installed 1802 already 22:28 < Hunterkll> ahead of me 22:28 < Hunterkll> 1802 hotfix isn't installed though 22:28 <@JollyRgrs> well, when it is as easy as right-click install :P 22:28 < Hunterkll> but taht was released this month 22:28 < Hunterkll> JollyRgrs, oh no, it requires multi-team coillaboration 22:28 < insecurity> JollyRgrs: moba rocks 22:29 < Hunterkll> JollyRgrs, like the consoles are in spawnable citrix app hosts 22:29 < Hunterkll> so we have to coordinate with citrix admin if there's a console update 22:29 < insecurity> but i have issues where sometimes arrow keys stop working 22:29 <@JollyRgrs> Hunterkll: console in citrix? 22:29 < Hunterkll> JollyRgrs, there's also the compatibility matrix for WinPE versions for OSD 22:29 <@JollyRgrs> we do that here... it is awful 22:29 < Hunterkll> so some upgrades will require a WinPE upgrade sometimes 22:29 <@JollyRgrs> yeah, usually you need winADK upgrades with SCCM upgrades these days 22:30 < Hunterkll> like ConfigMgr 1607 doesn't support the 1511 ADK 22:30 < Hunterkll> fortunately 22:30 < Hunterkll> we're relatively stable 22:30 < Hunterkll> we are only deploying 1607 22:30 < Hunterkll> :P 22:30 < Hunterkll> tehe? 22:30 < Hunterkll> win10 that is 22:30 <@JollyRgrs> wait, deploying 1607 still? 22:30 < Hunterkll> yeaaaa 22:30 < Hunterkll> i'm not happy about that 22:31 <@JollyRgrs> are you waiting to move to 1703 until 1607 is completely EOL for enterprise? 22:31 < Hunterkll> i got about 6000 1607 workstations out there right now 22:31 < Hunterkll> we're going to 1709 22:31 < Hunterkll> skipping 1703 22:31 < Hunterkll> i think 22:31 < Hunterkll> wait 22:31 < Hunterkll> no 22:31 <+TuxedoJack> And the codeine just kicked in 22:31 < Hunterkll> we might be going to 1703 22:31 <@JollyRgrs> i mean, i think april was last patch for non-enterprise 1607 22:31 * Hunterkll looks 22:31 <+TuxedoJack> Took bloody long enough. >_< Fucking root canal 22:31 < Hunterkll> JollyRgrs, yea our wall is october 22:31 <@JollyRgrs> so october should be last patch 22:31 <@JollyRgrs> yeah 22:31 <+TuxedoJack> JollyRgrs: Yep, 1607 died in April 22:31 < Hunterkll> it didn't 22:31 < Hunterkll> for us 22:31 < Hunterkll> ;) 22:31 <@JollyRgrs> TuxedoJack: not died... just put on ventilator 22:31 <@JollyRgrs> enterprise gets extra 6 mo. of updates 22:31 <+TuxedoJack> 1607 non-LTSB 22:31 < Hunterkll> 1607 non-LTSB Education & Enterprise 22:32 < Hunterkll> are still alive 22:32 <@JollyRgrs> so your WSUS will still pull in updates, but none will apply for pro/home 22:32 <+TuxedoJack> Read: 1607 for people who actually pay for software 22:32 <+TuxedoJack> As opposed to cheap fucks on OEM licenses 22:32 <@JollyRgrs> we're worse 22:32 < Hunterkll> lol 22:32 <@JollyRgrs> we VL pro licenses :( 22:32 <+TuxedoJack> ... do you fucking work for Ascension Healthcare or something? 22:32 <+TuxedoJack> That's what they do 22:33 <@JollyRgrs> b/c they left the decision up to the country heads instead of telling them we were going win10 enterprise 22:33 < Hunterkll> JollyRgrs, i see recently modified 1709 task sequences 22:33 < Hunterkll> so yea we might be going straight to 1709 22:33 < Hunterkll> i don't really .... /do/ desktop 22:33 <@JollyRgrs> would be stupid to move to 1703 and only have a another 6 mo. before THAT EOLs 22:33 < Hunterkll> so yea 22:34 <@JollyRgrs> Hunterkll: but A-KO said you /do/ on the desktop at work when you used to share an office :P 22:34 < Hunterkll> wat? 22:34 <@JollyRgrs> do you do? 22:34 < Hunterkll> that was a 120 workstation and 100 server site 22:34 < Hunterkll> of course i did everything then 22:34 < Hunterkll> lol 22:34 < Hunterkll> but now that i've got like 22:34 < Hunterkll> 20k soon to be 45k workstations 22:34 < Hunterkll> fuck that 22:34 < Hunterkll> someone else can do that 22:35 <@JollyRgrs> no, i meant he bent you over on a desktop 22:35 <@JollyRgrs> i expected your mind to go to gutter sooner than that 22:35 <@JollyRgrs> lol, when you have almost a 1:1 server to workstation ratio 22:35 * int0x1C8 pants off 22:35 < Hunterkll> LOL 22:35 < Hunterkll> JollyRgrs, i'm lookijng at this one test task 22:35 * JollyRgrs waits for int0x1C8 to dance off 22:35 < Hunterkll> sequence 22:35 < Hunterkll> it's retarded 22:35 < Hunterkll> not using MDT steps 22:35 < Hunterkll> so it's fuckered 22:36 < Hunterkll> he has 4 update passes at the end of the OS upgrade 22:36 < int0x1C8> I don't /do/ dance 22:36 <@JollyRgrs> Hunterkll: lol 22:36 <@JollyRgrs> i used to haev to edo that on win7 box 22:36 <@JollyRgrs> prior to the cumulatives on win7, it would not get all the updates in one pass... so when i had it build my golden image (which i re-did every month), it would take a number of passes 22:37 < Hunterkll> cumulatives on 7 still don't 22:37 < Hunterkll> but this is for 1709 22:37 < Hunterkll> lol 22:37 <@JollyRgrs> so uh... 22:37 <@JollyRgrs> for any win10 image, the cumulative should just be in the .wim 22:37 < Hunterkll> to be fair 22:37 < Hunterkll> pfff 22:37 <@JollyRgrs> maybe an extra pass just in case 22:37 < Hunterkll> JollyRgrs, don't forget office and other onboard apps 22:37 < Hunterkll> and now with the SSU update that fuckers shit 22:37 <@JollyRgrs> that's why i had 2 "golden" images 22:38 < Hunterkll> that's biting us on servers 22:38 < Hunterkll> right now 22:38 <@JollyRgrs> one wim that was just vanilla, then one that did the .NET and Office updates 22:38 <@JollyRgrs> stupid non-CBS updates 22:38 <@JollyRgrs> why couldn't they make .NET updates work with CBS? 22:38 < Hunterkll> we don't even have ofefice in the wim 22:39 < Hunterkll> they at least 22:39 < Hunterkll> AT LEAST 22:39 < Hunterkll> fucking did one thing right 22:39 < Hunterkll> when i kept screaming DON'T MODIFY THE BASE FUCKING WIM JUST DO A BLANK VM DEPLOY AND CAPTURE 22:39 <@JollyRgrs> why even do that? why not just take the install.wim from the VLSC iso? 22:40 <@JollyRgrs> or you mean just no extra crap? 22:40 < Hunterkll> JollyRgrs, if you just use the install.wim straight up ... i've had odd things happen 22:40 < Hunterkll> then you have to mess with the 4 magic settings sometimes 22:40 <@JollyRgrs> orly? 22:40 < Hunterkll> and different hardware might give different system drive results 22:40 < Hunterkll> :/ 22:40 < Hunterkll> that site me and a-ko worked on found that out 22:41 < Hunterkll> we had 10 systems showing up in mcafee ePO with a shitload of AV violations or whatever and policy issues 22:41 < Hunterkll> because they imaged and installed on D: 22:41 < Hunterkll> but only the Dell 6520 22:41 <@JollyRgrs> wut? 22:41 < vinrock> D: 22:41 <@JollyRgrs> i never had that issue 22:41 < Hunterkll> HP EliteBook 840 G2 and Lenovo T420/430 all C drived 22:41 < Hunterkll> same task sequence 22:42 <@JollyRgrs> sounds like you didn't have it diskpart clean before starting? 22:42 <@JollyRgrs> or didn't capture the OS drive after formatting? 22:42 <@JollyRgrs> wait... 22:42 < Hunterkll> it did everything right 22:42 <@JollyRgrs> pfft 22:42 <@JollyRgrs> i never had that issue 22:42 < Hunterkll> there's literally a magic combination of 4 settings 22:42 < Hunterkll> which can cause it 22:42 < Hunterkll> as well as other issues 22:42 < Hunterkll> before me 22:42 < Hunterkll> er 22:42 < Hunterkll> https://blogs.technet.microsoft.com/configurationmgr/2014/04/28/how-to-ensure-that-windows-installs-on-c-during-a-system-center-2012-configuration-manager-osd-task-sequence/ 22:42 <+layer-eight> * Hunterkll โ†’ How to Ensure that Windows Installs on C: During a System Center 2012 Configuration Manager OSD Task Sequence โ€“ System Center Configuration Manager 22:43 < Hunterkll> JollyRgrs, https://www.reddit.com/r/SCCM/comments/6fm1l3/sccm_1703_installing_on_d_drive/ 22:43 <+layer-eight> * Hunterkll โ†’ SCCM 1703 Installing on D: Drive : SCCM 22:43 < Hunterkll> here's someeone who had it 22:43 < Hunterkll> and they used a fucking reg hack 22:43 < Hunterkll> llol 22:43 <@JollyRgrs> lol 22:43 < Hunterkll> blank deploy/cap resolves it 22:43 < Hunterkll> i just build a stock deploy/cap TS from inbuild SCCM, run it, and use that WIM 22:43 < Hunterkll> also makes a smaller WIM 22:43 < Hunterkll> so less transfer time too 22:44 <@JollyRgrs> interesting 22:44 <@JollyRgrs> why is the wim smaller? 22:44 < Hunterkll> i'll deploy/cap every 3 months or so if i'm doing servicing of the WIM 22:44 < Hunterkll> JollyRgrs, less slices/editions 22:44 <@JollyRgrs> ah 22:44 <@JollyRgrs> true 22:44 < Hunterkll> my deploy/cap will only have 1 edition, and be 100% flat 22:44 < Hunterkll> updates layer on the WIM and make it fat too 22:44 < Hunterkll> so you have to deploy/cap to flatten it 22:44 < Hunterkll> there's other ways, but that's the most reliable 22:44 <+CheckYourSix> Is there a log I can look at to see what queries are hitting the DC and if they were allowed/denied? 22:45 <@JollyRgrs> i think my only issue with installing on D drive had to do with the extra partitions when doing UEFI partitioning and that extra space for bitlocker, recovery, etc. 22:45 <@JollyRgrs> CheckYourSix: i'm taking a wild stab you'd have to enable more verbose logging first 22:45 <@JollyRgrs> and at that point, be sure to have plenty of HDD space 22:46 < Hunterkll> JollyRgrs, that and there's been historical changes in behavior - https://wbracken.wordpress.com/2013/01/10/osd-drive-letter-gotcha-to-look-out-for-after-upgrading-to-sccm-2012-sp1/ 22:46 <+layer-eight> * Hunterkll โ†’ OSD Drive Letter gotcha to look out for after upgrading to SCCM 2012 SP1 โ€“ William Bracken 22:46 < Hunterkll> at this point, deploy/cap of base wim may no longer be neccessdary 22:46 < Hunterkll> but getting a D: OS drive has been an issue since SMS 2003 22:46 < Hunterkll> and was an issue in 2016 22:46 < Hunterkll> so 22:46 < Hunterkll> if it aint been fixt in that long... 22:46 < Hunterkll> :) 22:46 <+CheckYourSix> Trying to track down why my user isn't able to map a network drive to this share even though the share is owned by nobody and the group is set to "media-access" which is a group I'm in. 22:46 <@JollyRgrs> lol 22:47 <@JollyRgrs> oh 22:47 <@JollyRgrs> check the security log 22:47 <@JollyRgrs> that's not a query 22:47 <@JollyRgrs> that's access to a file share 22:47 <@JollyRgrs> i thought you meant an AD query 22:47 * CheckYourSix is noob with Windows 22:47 <+CheckYourSix> What are the logs under on Server Manager 22:48 < catbeard> eventvwr.msc 22:48 <@JollyRgrs> tools>event viewer 22:48 <@JollyRgrs> or what catbeard said 22:49 < Hunterkll> share is owned by nobody? 22:49 < Hunterkll> then who is share 22:49 <+CheckYourSix> Ah, didn't realize it was under the tools menu 22:49 < catbeard> BUT WHO WAS SHARE 22:49 <@JollyRgrs> he meant Cher is owned by nobody 22:49 < catbeard> Sharon is Karen 22:49 < int0x1C8> stop it. 22:49 < int0x1C8> all of you. 22:50 <+CheckYourSix> I should rephrase. The dataset is owned by nobody:media-access 22:51 < catbeard> Samba? 22:51 <+CheckYourSix> FreeNAS (ZFS) dataset shared out via Samba. 22:53 <@JollyRgrs> int0x1C8: stop it? 22:53 <@JollyRgrs> https://youtu.be/njCft_pK0yY?t=20 22:53 <+layer-eight> * JollyRgrs โ†’ โš“ https://www.youtube.com/watch?v=njCft_pK0yY&feature=youtu.be&t=20 โ†’ YouTube โ†’ Cartoon Planet segment. Minky Boodle! โ†’ โš˜ 39,025 โ†‘ 285 โ†“ 0 โœ 10 22:53 < genr8_> thats a freenas permissions issue 22:53 <@JollyRgrs> CheckYourSix: oh 22:53 <@JollyRgrs> so... wtf are you checking AD for? 22:53 <@JollyRgrs> this is windows client to ZFS authentication 22:53 < genr8_> samba 22:54 <@JollyRgrs> i meant freenas 22:54 <@JollyRgrs> but yeah, samba not zfs 22:54 <+CheckYourSix> Because FreeNAS is connected to the DC for users/groups 22:54 <@JollyRgrs> can others connect to it fine? 22:54 <@JollyRgrs> does freenas keep updated real-time or does it pull every so often? 22:54 <@JollyRgrs> SCCM only pulls every so often for AD users 22:54 <+CheckYourSix> I told it to rebuild the cache. Not sure how often it updates 22:55 <@JollyRgrs> how long have you been in that sec. group? 22:55 < Hunterkll> anyone know the latest version of windows holographic? 22:55 <@JollyRgrs> Hunterkll: we're poor plebs 22:55 <@JollyRgrs> not all of us gamble all our money to get a holo 22:55 < genr8_> CheckYourSix: go to Services | SMB | Settings | Advanced .... look for "Local Master" and "Domain Logons" 22:55 <+CheckYourSix> JollyRgrs: Not long. 15 minutes? 22:55 < Holo> a me? 22:55 < Holo> get a me? 22:55 < abakedapplepie> huh neat 22:55 <@JollyRgrs> CheckYourSix: so it might not have fully replicated then 22:56 <+CheckYourSix> JollyRgrs: I told it to rebuild 22:56 <+CheckYourSix> genr8_: That' 22:56 <@JollyRgrs> Holo: yeah, you 'spensive 22:56 <+CheckYourSix> s greyed out 22:56 < abakedapplepie> ATT's security team scanned our public facing services and emailed us that something is poodle vulnerable 22:56 <+CheckYourSix> genr8_: Both of them are actually 22:57 < Hunterkll> oh 22:57 < Hunterkll> fuck 22:57 < Hunterkll> :( 22:57 < Hunterkll> https://support.microsoft.com/en-us/help/12643/hololens-update-hololens 22:57 < Hunterkll> have to manually install the new version of winodws 22:57 < Hunterkll> lol 22:57 <@JollyRgrs> eww 22:57 < felda> anyone else wanna join the new Space Force with me? 22:58 <@JollyRgrs> felda: do you have cookies? 22:58 < felda> https://www.cnbc.com/2018/06/18/president-trump-directs-pentagon-defense-department-to-immediately-being-the-process-of-establishing-space-force-as-sixth-military-branch.html 22:58 <+layer-eight> * felda โ†’ Trump directs DOD to create of 'space force' as sixth military branch 22:58 < felda> JollyRgrs of course we have SPACE COOKIES 22:58 <@JollyRgrs> well, dark side offered cookies 22:58 < felda> Also Space Terms of Service :( 22:58 < felda> OUR SPACE TERMS AND CONDITIONS HAVE CHANGED 22:59 < felda> oh my bad it was privacy policy wasn't it 22:59 <+CheckYourSix> genr8_: JollyRgrs: Basically, NFS shares between some CentOS 7 VMs and FreeNAS has something seriously wrong with them. Trying to see if they'll start working again if I mount them as Samba shares. That will at least give me a way to narrow down whether it's NFS or something else 22:59 < Hunterkll> JollyRgrs, i think i'll sell my hololens in october 22:59 < Hunterkll> lol 22:59 < Hunterkll> seems like hololens 2 will drop at CES in january 22:59 < Hunterkll> ;) 23:00 < Hunterkll> wouldn'tsurprise me 23:01 < Heresiarch> felda: Space Force recruitment video: https://www.youtube.com/watch?v=SMTK5LHOMy8 23:01 <@JollyRgrs> CheckYourSix: so NOW you tell us there's pre-existing issues... and that the are NFS shares to the freenas? 23:01 <+layer-eight> * Heresiarch โ†’ YouTube โ†’ Moonraker Trailer (HD) โ†’ โš˜ 29,959 โ†‘ 55 โ†“ 11 โœ 56 23:01 <@JollyRgrs> anything else you'd like to tell us? 23:01 < Hunterkll> LOL 23:01 < Hunterkll> JollyRgrs, you didn't realize it was non-windows when he said 23:01 < Hunterkll> I should rephrase. The dataset is owned by nobody:media-access 23:01 < genr8_> that he changed all the permissions too i bet 23:01 < Hunterkll> I walked away after that 23:01 < Hunterkll> CheckYourSix, you should be looking at the freenas error logs 23:02 <@JollyRgrs> i thought it was directly on the freenas box 23:02 < Hunterkll> wtf is this 'ticket escalation' bullshit 23:02 < genr8_> i honestly only ever made users on the freenas box and the freenas services pick the users right up 23:03 < genr8_> but i never had freenas pull users from a windows DC 23:03 < Hunterkll> I abhor local users 23:03 < Hunterkll> horrible security practice 23:03 < Hunterkll> genr8_, it doesn't really pull users from the DC per say, it validates your account exists, that you're in the group, and then checks locally to see "hey, do we let this group/user in?" 23:04 < genr8_> what services are doing it? SMB/NFS ? or is there a DC protocol service running 23:04 < Heresiarch> Hunterkll: millions of SMB admins granting local admin and setting the administrator pw the same across all boxes can't be wrong. *runs* 23:04 < Hunterkll> kerberos or NTLM nominally 23:04 < genr8_> yeah but i can't find what runs that in the freenas system besides SMB or NTFS directly 23:04 < genr8_> maybe Pam.d ? 23:04 <+CheckYourSix> JollyRgrs: Ok, FreeNAS has multiple datasets, I'm only concerned with one. There are NFS and SMB shares of the same dataset. NFS performance has something fucked, so I'm trying to mount the shares with SMB to see if NFS is the issue or something else. FreeNAS is connected to AD. 23:04 < genr8_> make sure you mark the permissions set to "Windows" instead of "Unix" 23:05 <@JollyRgrs> CheckYourSix: oh, ok, so not perm issues on nfs 23:05 <+CheckYourSix> genr8_: Did that 23:06 < Hunterkll> seriouslyt 23:06 < Hunterkll> how many people do you need 23:06 < Hunterkll> fucking hell 23:06 < fredopasta> be still my beating penis 23:06 < Hunterkll> for a password reset 23:06 <+CheckYourSix> All the people 23:06 < fredopasta> there's a new hirens boot cd 23:07 <+CheckYourSix> genr8_: https://i.imgur.com/hMI7OsN.png 23:07 <+layer-eight> * CheckYourSix โ†’ IMAGE/PNG Document, 19,711 bytes 23:07 < Hunterkll> CheckYourSix, 30 server admins on the 'to' list 23:07 < Hunterkll> for this servicenow ticket 'escalation' 23:08 <+CheckYourSix> Hunterkll: I copied a global DL for the Lync team and flipped holy hell on them for a password reset classified as a tier 1 outage... 23:08 < Hunterkll> YEA! 23:09 <+CheckYourSix> 29 hours it sat pending before I did that. Got a senior level manager to respond in 3 minutes, fixed 35 minutes later when a tech called and reset it 23:09 < Hunterkll> i don't have access to reset those passwords in that domain 23:09 < Hunterkll> sweet 23:10 <+CheckYourSix> To be fair, it really was a mission critical reset. Security desk phone that was our only communication with the entrance gate, so if you didn't have a badge that gave you permission to access our site, you weren't getting in. 23:10 < Hunterkll> lol 23:11 <+CheckYourSix> Could've been fixed with the tier 1 hell desk guy on the phone, but nobody knew how to reset the PIN for a Polycom phone... 23:12 < Hunterkll> loool 23:13 <+CheckYourSix> I got phone calls from like 3 different techs who were like "We need more info" No, you fucking don't. Here's the phone number associated with it, reset the PIN. 23:13 < BytesAndCoffee> off-topic, but anyone have a favourite spotify playlist to listen to when you just need to sit back in your chair and relax? 23:14 < agent_white> Hunterkll: Passed the inital HR interview hoop, technical interview tomorrow for that gig I (hopefully) landed. \o/ 23:15 < agent_white> Stoked would be an understatement. 23:16 < McDonaldsWiFi> later haters 23:18 <+CheckYourSix> I'm about to just say fuck it and go all local users/groups on FreeNAS. 23:18 < genr8_> try RTFM 23:18 < genr8_> there should be a guide to set up your Windows DC and test the user connection 23:19 < genr8_> without bringing filesharing permissions into the mess 23:19 <+CheckYourSix> It connects to AD with the account I made for it. 23:20 <+CheckYourSix> Lots of the guides are all for 9.x and I'm on 11.x, so things are a good bit different 23:20 <+CheckYourSix> For whatever reason, it's not seeing my user in the group. Or not looking it up. Because if I view the properties of the share, the permissions are all there 23:20 < genr8_> you likely just misunderstand the chain of command .its a bit roundabout 23:21 < genr8_> The Active Directory users and groups that have been imported to the FreeNASยฎ system can be shown by using these commands from the FreeNASยฎ Shell. To view users: 23:21 < genr8_> wbinfo -u 23:21 <+CheckYourSix> It sees my user and -g shows me the media-access group 23:21 <+CheckYourSix> Along with all the default stuff in AD 23:21 < genr8_> To manually check that a specified user can authenticate: 23:21 < genr8_> net ads join -S dcname -U username 23:22 < genr8_> here we go 23:22 < genr8_> LDAP authentication for SMB shares is disabled unless the LDAP directory has been configured for and populated with Samba attributes. The most popular script for performing this task is smbldap-tools and instructions for using it can be found at The Linux Samba-OpenLDAP Howto. In addition, the LDAP server must support SSL/TLS and the certificate for the LDAP server CA must be imported with System โ€ฃ Certificates โ€ฃ Import Certificate. N 23:22 < genr8_> ote that non-CA certificates are not supported at this time. 23:24 <+CheckYourSix> kinit succeeded but ads_sasl_spnego_gensec_bind(KRB5) failed for ldap/dc01.thathomelab.com with user[checkyoursix] realm[AD.THATHOMELAB.COM]: An invalid parameter was passed to a service or function. Failed to join domain: failed to connect to AD: An invalid parameter was passed to a service or function. 23:24 < genr8_> make sure your password has no spaces or weird chars 23:24 <+CheckYourSix> It doesn't 23:25 < genr8_> looks like SASL failed to bind 23:25 < genr8_> Failed to join domain: invalid parameterc 23:25 <+CheckYourSix> I know I had to go change SASL wrapping to "sign" in order for it to work. 23:26 <+CheckYourSix> When I connected FreeNAS to AD 23:26 < alazare619> solutions like teamviewer but alternatives 23:26 < alazare619> logmein central what else 23:26 < alazare619> id prefer in house hosting 23:26 <+CheckYourSix> genr8_: And how do I know what encryption mode to use for connecting to the DC? 23:26 < genr8_> no idea man 23:27 < genr8_> TLS mode with shared root certificates 23:27 < genr8_> make sure this is setup right (mines blank https://puu.sh/AHHxS/7d6a29925b.png ) 23:27 <+layer-eight> * genr8_ โ†’ IMAGE/PNG Document, 53,647 bytes 23:28 <+CheckYourSix> I thought that was only if you were doing something like OpenLDAP 23:29 < genr8_> maybe its this tab https://puu.sh/AHHCw/f480d45c6d.png 23:29 <+layer-eight> * genr8_ โ†’ IMAGE/PNG Document, 47,728 bytes 23:30 < genr8_> apparently it wants you to "uncheck UNIX extensions" 23:30 < genr8_> set Idmap backend to rip and SASL wrapping to sign 23:30 < genr8_> wtf rip? it says rid.... 23:30 < genr8_> enter netBIOS name capitalized and hit save 23:31 < genr8_> all network names should be 15 chars or less and capitalizable with no spaces 23:32 < genr8_> oh Also the NTP time server has to be set to the precise time on both servers 23:32 < scwizard> man 23:32 < scwizard> forget VPN 23:32 < scwizard> outdated tech 23:32 < scwizard> just connect directly to a ipv6 23:33 < Stoob> lol 23:33 < genr8_> You're also gonna wanna do your permissions like this (the same AD domain user you logged in as): http://thesolving.com/wp-content/uploads/2015/05/How-to-create-a-Windows-share-with-FreeNAS-11.png 23:33 <+layer-eight> * genr8_ โ†’ IMAGE/PNG Document, 118,404 bytes 23:34 < genr8_> I also found this: The solution is in the SMB settings, in auxiliary parameters, put the following: "map to guest = never" without quotes. This resolves the issue with Windows 10 1709. 23:34 < scwizard> eh putty fatal error network is unreachable? 23:34 < Hunterkll> damn horses done spooked 23:34 < Hunterkll> someone playin' with a new high powered rifle down the valley it sounds like 23:35 < scwizard> my windows isn't ipv6 connected :( 23:35 <+CheckYourSix> genr8_: Ok. Looks like FreeNAS is 1-2 minutes behind 23:35 < Hunterkll> within 5 minutes should be fine 23:35 <+CheckYourSix> Even though it's set to use the DC as it's NTP server 23:35 < Hunterkll> of the DC time 23:36 < genr8_> UNIX extensions checkbox โœ“ only check this box if the AD server has been explicitly configured to map permissions for UNIX users; checking this box provides persistent UIDs and GUIDs, otherwise, users/groups are mapped to the UID/GUID range configured in Samba 23:37 < genr8_> leave that off 23:37 <+CheckYourSix> I did turn it off 23:38 <+CheckYourSix> Gotta install certificates I guess 23:38 < genr8_> run wbinfo -t 23:39 < genr8_> You might need to make a kerberos keytab file or something 23:39 <+CheckYourSix> checking the trust secret for domain AD via RPC calls succeeded 23:40 < genr8_> "To change a certificate, set the Encryption Mode to Off, then disable AD by unchecking Enable. Click the Save button. Select the new Certificate, set the Encryption Mode as desired, set the Enable checkbox to re-enable AD, and click the Save button to restart AD." 23:43 <+CheckYourSix> Alright, I generated a cert on FreeNAS and added it to the AD connection 23:43 <+CheckYourSix> Set to TLS 23:51 < scwizard> http://ipv6-test.com/ 23:51 < scwizard> boo 23:51 <+layer-eight> * scwizard โ†’ IPv6 test - IPv6/4 connectivity and speed test 23:51 < scwizard> no worky 23:56 < Alternity> they're still releasing new episodes of parts unknown 23:56 < Alternity> something kind of ghoulish about that 23:56 < genr8_> i thought the same thing 23:57 < genr8_> itll probably be his best season tho so --- Log closed Tue Jun 19 00:00:04 2018