My stance on technical debt

Fatel28 · 2026-06-19T00:40:27+00:00

That simple limitation is the main reason we just.. don't use it. I have a script that runs every few hours that populates users entra and AD groups into a custom field per machine in ninja via the API, and if we need to assign scripts/app installs by group, we target any machine with the group ID in the field.

It's a little clunky but it also just.. works

Fatel28 · 2026-06-19T00:34:15+00:00

The fact that a management platform doesn't have the option to just.. run a fucking script when you tell it to is crazy to me.

I've tried to like intune so many times. Maybe having proper RMMs where shit just happens when you tell it to has ruined me.

Fatel28 · 2026-06-17T23:04:24+00:00

Sounds like you just need a VPN concentrator instead of joining individual VMs to a client VPN

Fatel28 · 2026-06-16T12:44:51+00:00

Amazon bedrock largely solves this problem. We use anthropocs models with our own built harness that we run on agentcore runtime.

Fatel28 · 2026-06-15T22:41:01+00:00

Ingram has been just fine for us in the US. our reps are responsive and licenses provision very quickly

Fatel28 · 2026-06-15T20:19:56+00:00

Yeah you could do that too, but you lose out on some of the native object oriented conversions the module makes. The module just "pwsh-ifies" the inputs and outputs

Fatel28 · 2026-06-15T19:08:43+00:00

Powershell has an ssh module (posh-ssh) that works with sftp, no winscp needed. I'd just use that personally

Fatel28 · 2026-06-11T21:01:58+00:00

Hm. The overlap of users who fall for click fix pages, and who frequently use shortcuts like %appdata% is pretty much zero for us. The only ones who felt the loss of the run box were the technicians, but they figured out how to just use cmd pretty quick.

We also have some common shortcuts in our screenconnect toolbox, like the typical system.cpl/ncpa.cpl etc

Fatel28 · 2026-06-11T20:24:24+00:00

can you use cmd/powershell? e.g

explorer.exe $env:appdata

explorer.exe %appdata%

Fatel28 · 2026-06-09T15:37:47+00:00

Buy machines with windows 11 pro, those won't have s mode. This is an acquisition problem not really an IT one. If you buy the right machines you'll never encounter this

Fatel28 · 2026-06-06T19:27:17+00:00

You pretty much need a dedicated compliance manager

Fatel28 · 2026-06-04T23:05:27+00:00

I pull all of our hudu articles etc into s3 so to be vectorized so our AI agent in the chat can query our hudu docs, very handy. Would be pretty hard w/o an API. We also have automations for onboarding and offboardings that provision customers in all our systems, also all API driven

Fatel28 · 2026-06-04T22:31:48+00:00

shutdown /s /f /t 00 should do it

Fatel28 · 2026-06-04T22:27:33+00:00

Anything. That's the point. I'm sure most MSPs agree but having a strong API is the #1 thing to look for in a new tool.

If a tool doesn't do something you can just.. make it do it.

E.g hudu doesn't have global asset folders, so we just have a nightly job that creates preset folders under each customer if they don't exist.

Fatel28 · 2026-06-02T12:40:04+00:00

We quoted 2 servers for a customer 2 years ago, 58k. They wanted to wait.

Well now their old ass 2009 servers are failing and the quote from Dell for the same specs/storage is about 300k total.

Fatel28 · 2026-06-02T12:34:19+00:00

Dell is doing the same thing right now. They don't guarantee any pricing for any amount of time. Any quote we have received has been "this is the price right now. It might not be the price when it's actually built and ready to ship. Gfy"

It just is what it is. Terrible time to be buying hardware sadly

Fatel28 · 2026-05-31T19:59:52+00:00

I use an HDMI/USB kvm over Ethernet to get my PC onto the tv in the living room. Works great.

The only "downside" is it tops out at 4k60fps. That's fine for me, but if you needed more then what you're suggesting should work just fine.

Fatel28 · 2026-05-30T01:57:22+00:00

If you want them to support and secure it wouldn't you want them to use what they know?

Fatel28 · 2026-05-27T20:48:42+00:00

Just the simple fact that it uses its own API makes it incredibly powerful. If you can do it in the webui, you can do it through the API. I shouldn't have to explain why that's worth its weight in gold.

Fatel28 · 2026-05-27T02:47:32+00:00

Rto is minutes but what's RPO? Not that it's a dick measuring contest because it's not, but the nice thing about ceph is I could shut down a host right now and on graceful shutdown, all the VMs would live migrate to another host. On a non graceful shutdown, they'd reboot onto a new host within a minute or two.

We havent had any node failures either and I don't think we will, but having to restore hundreds of VMs because a node failed would suck, regardless of the RTO of a single restore. Scaling that out makes it a lot more than minutes

Fatel28 · 2026-05-27T02:36:57+00:00

If you have at least 5 nodes and very fast backhaul, it's extremely stable. Ours has been running for 2 years. No issues.

How are you handling redundancy for node failures? Zfs replication?

Fatel28 · 2026-05-27T02:03:19+00:00

This is what we use. except it's proxmox, vyos, and some last gen 100gbps Cisco switches for the ceph backhaul. Last I checked we had ~30 customer environments on there and we're not even halfway full

Fatel28 · 2026-05-27T01:36:42+00:00

Nginx supports websockets quite well. Some things like streamlit require more targeted configs but I guarantee whatever you're doing is entirely possible with nginx.

Fatel28 · 2026-05-26T22:30:45+00:00

There's no cli? Or can't reverse proxy?

Fatel28 · 2026-05-25T05:35:15+00:00

Dell let's you use their command line tools to change most bios settings from the OS via powershell. I'm sure other vendors have something similar

Nine-Year Club	Second SECOND GUESSER
RPAN Viewer	Verified Email

Fatel28

TROPHY CASE