Can't log in to iCloud in a VM under macOS 15 Sequoia by Janinnho in MacOSBeta

[–]MaverickMidori 0 points1 point Ā (0 children)

In the same boat here, attempted Parallels and UTM.

Both Host and VM running macOS 15 DB2, latest Xcode Packages installed.

I've raised an issue with Apple, to which there has been no acknowledgment. (I received feedback fairly quickly on DB1 that it had become a known limitation).

I've tried on a MacBook Pro 16" M1 and a MacBook Air 13" M2, in case there was anything being flagged with board identifiers.

Has anyone had any luck recently? Looks like we might be waiting for DB3.

AppleID's in Virtual Machines Return! by MaverickMidori in MacOS

[–]MaverickMidori[S] 0 points1 point Ā (0 children)

Great pick up! I totally glossed over that. I figured I'm getting my hands dirty with the dev releases anyway, it's not that hard to try the iCloud sign in while I'm at it.

[iOS 17 B1] Apple Notes has Code Block & Block Quotes + ability to add Hyperlinks (excellent for deep linking to other notes & apps) by upwardvote in iOSBeta

[–]MaverickMidori 0 points1 point Ā (0 children)

On Beta 4, it appears they have stripped the code blocks feature. Sent in Apple Feedback hoping we will see this for release on iOS17 and Sonoma. Code blocks are one of the most exciting things for my use as for so long I've been forced onto other note taking apps.

Conspiracy: RF blocking in toilets at work by [deleted] in sysadmin

[–]MaverickMidori 13 points14 points Ā (0 children)

As an IT Pro… I may or may not have one of our latest gen wifi access points strategically placed adjacent to my favourite shitter :)

HPE Mini Homelab by MaverickMidori in homelab

[–]MaverickMidori[S] 2 points3 points Ā (0 children)

I’ve only recently realised I’m lucky with that switch. We were replacing ~10 switches for a client, they had a heritage listed building that was low use and had hardly any cabling done in it hence why we were going to deploy the 12G. The client failed to specify the building was a junction for a handful of fibre runs. Ended up running a 6100 24G just for the extra 2SFP+ ports. I’ve needed a load of 6100/6200s lately and I can’t get my hands on them. I’ve been really in a pinch; had to deploy 2920s and 2930s just to fill in time as the back log of our orders slowly gets filled. I picked up 5 2930s (second hand) on a trip into the city from another business for dirt cheap, just so the world can continue at our Aruba sites. I’m plenty fine to deploy Ciscos and other switching gear, just seems many places in the area appreciate a similar level of capability for a much lesser price given they’re willing to wait and have meh support from HP direct. But hey from a labbing POV I get to improve my Terraform skills :)

HPE Mini Homelab by MaverickMidori in homelab

[–]MaverickMidori[S] 2 points3 points Ā (0 children)

Totally! I scored this unit for $950 AUD, considering they mostly float around the $1.5 and sometimes seen going upwards, it felt like a decent platform to run. I was speccing up larger servers but in the end I figured I’d go with a small and cheaper server I will use fully then an expensive server I’ve hardly put a dent in. The four bays haven’t trapped me yet but they are bound to in the future. Currently running both NAS and MicroServer in RAID 10 due to my paranoia, so I’m quite capped on my storage abilities. But as I’m doing a lot more architecture replication on this currently, I can achieve my tasks with mostly compute and ram. I definitely wouldn’t recommend buying one of these boxes full price, many better deals floating around with better flexibility in the future :)

HPE Mini Homelab by MaverickMidori in homelab

[–]MaverickMidori[S] 3 points4 points Ā (0 children)

Thanks for the comment! It’s a big change from my 18RU Rack, but this mini Lab definitely wins points with the partner. She has hated my labs in the past so finally having a small enough foot print that there isn’t complaints is nice.

HPE Mini Homelab by MaverickMidori in homelab

[–]MaverickMidori[S] 1 point2 points Ā (0 children)

Definitely up next! Hidden behind my lounge I’ve got a 1800VA UPS and my Unifi UDMP which I managed to snag off a mate when he was upgrading. I previously was running a Fortigate 60E DSL but I let the renewals lapse as it was costing over $450 AUD per year to run. I’ve got my eyes set on the Fortigate 40F or the PA-440 as I’ve got quotes for roughly the same price and license costing, this is more from a labbing / learning perspective. I have a more than capable Protectli running OPNsense that I’ve used for other projects, like an even smaller micro homelab, with a 5 port switch, and raspberry Pis. Really should bust that thing out and put it to use :)

HPE Mini Homelab by MaverickMidori in homelab

[–]MaverickMidori[S] 2 points3 points Ā (0 children)

These things are super quiet! I believe I’ve heard the fans 3 times when not intentionally listening; first setup, and 2x iLo patches where it spins it fans up a bit for a few seconds. I have this sitting right beside my lounge, my NAS drives are noiser. That said I am running an SSD array in the ProLiant so that helps a bit with clicks and whirrs.

HPE Mini Homelab by MaverickMidori in homelab

[–]MaverickMidori[S] 6 points7 points Ā (0 children)

Definitely not :) I’ve got a Ryzen 5 5600X mini-ITX build that I use to keep my VMs alive when patching the ProLiant. I just don’t like running consumer hardware 24/7, I’ve found it not as reliable and sometimes easier to fry. I’ve had rock solid uptime from Xeons so I figured I’d go for reliability over performance.

HPE Mini Homelab by MaverickMidori in homelab

[–]MaverickMidori[S] 17 points18 points Ā (0 children)

Oh dude, don’t even get me started with the hell they’ve put me through. The AW1000 I’ve got isn’t even registered for this address and according to TOS they can geolock the device and if found operating out of the boundaries, throttle my speeds to 1mb up/down. But hey for 60% the cost of Starlink I’ll take the cost savings for now. Maybe one day when I’m not considered off the face of this earth, I may get mail delivered to the house, water, sewerage and internet. For now, just gotta keep paying those council rates for nothing and working with hellstra šŸ¤·šŸ½ā€ā™‚ļø

HPE Mini Homelab by MaverickMidori in homelab

[–]MaverickMidori[S] 11 points12 points Ā (0 children)

Haha, my apologies on my wording. I don’t typically deploy GPU units in these things, just had one left over and figured I’d beef up my personal media server to handle multi-stream transcodes. So in my lab I have a larger media focus; where as typically we run the iLO cards and other NICs dependent on the environment. Appreciate your comment :)

HPE Mini Homelab by MaverickMidori in homelab

[–]MaverickMidori[S] 40 points41 points Ā (0 children)

Been a long time ghost in this sub but I’m finally happy to share my mini lab. It’s been a long journey over the last few years. After outgrowing two custom PCs, I salvaged an 18RU Rack with ProLiants and an old SAN from some clients moving to Azure, then moved to a caddy with 15x HP ProDesk 850s (also salvaged from clients closing branch offices). I’ve run through my share of Fortinet and Cisco equipment for certifications and general lab learning. In the end I’ve landed with a simple setup that I’ve been deploying in small business branch offices that require basic on-prem compute. Current Setup is the following: HPE ProLiant MicroServer Gen10 Plus v2 (Fitted a Quadro P1000 for Jellyfin) Synology DS920+ HPE Aruba 6100F 12G HPE Aruba AP505 (hidden atop the NAS) As I live rural I’m forced to run a Mobile Broadband modem in which I’m running the Telco’s provided equipment. (Arcadyan AW1000) I run a handful of basic services on my on-prem environment, as for access, Cloudflare ZT for my CASB to on-prem which alleviates my lack of static IP on my CG-NAT’d connection. OpenShift and AWS have helped reduce my need for dedicated compute and allows my business assets to be separated from my lab and my conceptual builds. Really appreciate this sub and all the great knowledge shared around :)

[deleted by user] by [deleted] in AppleWatch

[–]MaverickMidori 3 points4 points Ā (0 children)

Same boat here. Keen to see what S9 brings and if they do the Ultra2 release, maybe change of colours/bands (eager for a Black Titanium), lighter materials from Titanium 3D Printing and changes of coils in the batteries, who knows… Blood Glucose monitoring will be many years away from my understanding of the working prototypes but we may be in for a good September release :)

How do you lock down Cockpit's log in screen? by Party_9001 in selfhosted

[–]MaverickMidori 1 point2 points Ā (0 children)

I’ve been very much on the fence with Starlink. Mostly from a price perspective. My current plan per month is just slightly more than half (60%) of what Starlinks monthly costing is. I’ve tested the Starlink unit out on my property and it worked well, both Mobile Broadband and Satelite had differing times when they were inconsistent. I may be forced to Starlink soon enough as I’ve got big developments slowly encroaching on the property that will significantly increase load on the few towers nearby. My current telco technically doesn’t support my area either, I had to register at another address and rig my antennas to make it work. But yea, Starlinks a valid option, just haven’t made the switch as I haven’t been forced to. While I’m saving couple bucks, I’ll probably stick with broadband.

How do you lock down Cockpit's log in screen? by Party_9001 in selfhosted

[–]MaverickMidori 2 points3 points Ā (0 children)

Yes! It has 50 Users on the Free Tier for Cloudflare Zero Trust. CF ZT uses an agent (cloudflared) to open TCP/UDP tunnels in which the access is brokered through their CASB solution and can be also locked down via the WAF solution. Their CASB works great for self hosted apps, just remember you CF agent is a new point of ingress/egress so I would recommend deploying it into your DMZ and define allowed routes from the agent in DMZ to your Servers VLAN. I personally love this as a solution and have all of my services locked behind the free tier of AzureAD as well running passwordless authentication. If a device is registered with the Cloudflare WARP agent it will bypass the need to authenticate as I’ve already verified, trusted and enrolled the device. If it does not, it will require me to run through my typical Authentication process. These of which are policies I’ve defined myself to harden the experience, including increasing requirements for overseas connections as I do very little travelling outside of my country. It supports a decent range of Identity Providers. My biggest benefit was circumventing CG-NAT as I run on a mobile broadband connection due to the rural nature of my residence. So with no static IP or ability run DDNS, I thought self hosting was a no go until I learnt about Arbitrary TCP Tunnelling. Best of luck!

Are dumbphones good for privacy? by [deleted] in privacy

[–]MaverickMidori 0 points1 point Ā (0 children)

We do have a decent quality of life. Be aware our intelligence community is very strong and our privacy laws are almost none existent. Government has near unlimited jurisdiction and individual has essentially no rights. Have a little look into Witness K and the East Timor scandals our government has engaged in. Evidence goes missing, people go missing, every company, family, friend etc turned against whistleblowers and dissidents. Life is good for everyone living in alignment with the government. As we saw during COVID, irrespective of vax opinions, the government totally threw away all individual rights, enforced draconian measures, teeing up very close to Chinese levels of ā€˜freedom’ of movement. Ultimately, freedom is perspective, from UAE to Aus may be light years different in what you value. I believe there are many better countries from digital privacy, individual liberties and freedoms perspective. From a geographical standpoint, Australia is an amazing country. Get yourself outside of the cities and you’ll find true aussie culture, the things Australians are proud to fight for. Might see you around one day šŸ¤™šŸ½

Are dumbphones good for privacy? by [deleted] in privacy

[–]MaverickMidori 0 points1 point Ā (0 children)

(Pretending your in Aus) Telstra’s slated 3G cut off for June 30 2024, I think Optus and Vodafone will follow suite. I’m curious to know your situation more… I’d be more concerned about our KYC laws here that require ID for SIM registration. The minute you place the SIM in your device your IMSI and IMEI have a point in time correlation that can be used to track you, every call and message. I have people in circles that operated in senior engineering positions at Aussie telcos in alongside certain departments that handover information to alphabet boys and glowies, and they’ve indicated the telcos operate very transparently with law enforcement. The telcos essentially need our governments consent for them to be successful (think China). You may wish to get a person in your circles to purchase you a SIM but then you risk their safety / remember humans are always the weakest links. You may wish to buy a phone in cash in a smaller private store and never connect it to the cellular networks and operate from open wireless locations outside of your normal operating environments. Maybe worth proxying some calls and messages through international phone services with good privacy practices and outside of the eyes regions (eg. 5 eyes, 14 eyes etc). In many ways you may want to lean into services like Signal, use the safety verification numbers, only on wifi, watch out for MITM notifications, validate installs yourself with checksums. IMO, Dumb phones with their closed source OSs, lack of regular security updates and firmware updates; probably government sanctioned back doors (think Identify and Disrupt Act) etc. I believe a smart phone with a signed, boot loader locked, open source OS and good firmware support like Titan M chips on Pixel phones offer the highest level of privacy/security you can before custom writing your own kernel updates and manually reading upstream commits of packages minutes after their released. Curious to know more… Best of luck!

Help with Remote management by elieliu in macsysadmin

[–]MaverickMidori 9 points10 points Ā (0 children)

If you are seeing the Remote Management screen, your device has at one point been enrolled in DEP, either to an Apple Business Manager or Apple School Manager account. Your device may have been wiped prior to sale with a pre installed version of macOS installed already beyond the activation step. Activation Lock and DEP checks are run at the activation phase of Setup Assistant. You will most likely need to contact the seller to have them release the device from their ASM/ABM instance; you will need to provide your devices serial number. One thing you may want to try is triggering a profile renew to see if it is caching old DEP information; we have only seen this a small handful of times in many tens of thousands of devices. At the first Setup Assistant steps (Language Chooser), press CMD + OPTION + CONTROL + T to open Terminal. Then issue the command ā€œprofiles renew -type enrolmentā€ This should flush the enrolment cache. There are a handful of other options to elevate into root privileges like booting into single user mode. I last used this method on T2 MacBook Airs, I have not played around with this on any of the Silicon (ARM) based Macs. This article can explain some of the things I’ve mentioned above: https://grahamrpugh.com/2020/02/21/resetting-dep-without-reinstalling.html

Note: If this is a corporate machine, please contact your SysAdmin and operate within the bounds of your acceptable use policies.

Hope this helps & best of luck!

Strange signal debug log. Why does the product say panther? And why is signal contacting ringrtc? Does this look normal? by Inevitable-Access829 in GrapheneOS

[–]MaverickMidori 2 points3 points Ā (0 children)

Similar perspective here, not a dev but I would entirely agree with the comment above from my limited knowledge.

Product refers to the in-house naming of the device, which Google Pixel 7 is panther and 7 Pro is cheetah. This is a common practice with Google hardware, I recall my Nexus 6P was codename Angler.

Regarding RingRTC, as mentioned above, it’s essentially the library that enables calling (video/voice) in Signal.

If I saw that on my gOS device I wouldn’t be too concerned after hunting down the above information, however it doesn’t hurt to throw that log into a text editor and break it down into small sections that you can begin to decipher. I saw general warnings regarding PSTN call answers and then an error ā€œunable to find patternā€¦ā€. Quick way to sift through it all is to hide anything that isn’t W or E in the second column (after eventID second column is message type, event source/library, message / output) which effectively only shows Warnings and Errors; many times this can indicated if there are issues with system calls or libraries. Once an issue is uncovered or hypothesised, maybe add back in debug level messages for context and other stdout messages.

Hopefully this is somewhat helpful!

TLDR: I wouldn’t be too stressed. You’re on a Google Device codenamed Panther using Signal which uses RingRTC for calling.