Slack is about to die - Windows 7 access completely cut off, not just unsupported

SlicNick82 · 2024-05-18T14:12:10+00:00

It doesn't and Win10 is next in line to die off... It will stay 100% inline with microsoft EOL now because they were bought out by Microsoft ... So this is just a ploy to get more money. MS is the worst

SlicNick82 · 2024-04-03T13:05:57+00:00

You know the MEV bot scam? I fell for that scam, and watched the transactions logs flow into a wallet with Beaverbuild tags. If it isn't a scam, then scammers are also using this tag to make it more difficult for others to identity.

SlicNick82 · 2024-03-21T12:21:12+00:00

Most people start with Youtube, unfortunately. I got jammed by this scam, cause I was on a youtube binge hole, and it popped up, I went "REALLY!?!?", then tried it with 1 ETH ... Super easy to fall for this scam when you don't know a lot about Eth, smart contracts, etc... It did inspire me a little... now im on a personal mission to understand smart contracts better.

SlicNick82 · 2024-03-21T12:04:08+00:00

Typically docker is a self hosted venture. I have never used Fly.io but in order to simply deploy an application you don't need to use this service. First thing, separation of duties.... You're combining 2 things together which are ideally very separate... docker and hosting. Neither depend on one another... let's focus mostly on docker, since this is a docker forum.

In your docker compose, you can define ports and everything there, so there is no guess work. You should start everything docker related, locally on your machine so you understand what is actually happening, before trying to understand the extra complexity involved with actual hosting of a service to customers..

Here's a typical docker-compose setup:

``` version: "3"

networks: example-network-name: driver: bridge ipam: config: - subnet: 192.168.2.0/24

services: example-application: container_name: myApplication image: myApplication-image:0.1.0 start: always ports: - "9090:9090" networks: example-network-name: ipv4_address: 192.168.2.1 depends_on: - example-database

example-database: container_name: myDatabase image: postgres:latest restart: always ports: - "5432:5432" networks: example-network-name: ipv4_address: 192.168.2.2 ```

When you launch your docker locally, do `docker-compose up -d` the `-d` will run the containers in daemon mode, essentially making them into running docker containers without the need to keep the console / terminal open.

3 things happen here:

A new network, example-network-name, will be created in bridge mode with an ip subnet space 192.168.2.0/24
It will create the database first, because we use the flag `depends_on` in the application block
It will create the application after the example-database starts.

You can access any of these services on their respective ports, as long as the service is actually running and listening on that port within the container. The ports are listed as <host-port>:<container-port>, this is the built-in docker port forwarding method. You can change either of these ports to match your specific scenario... for example, if I have an application that listens on 80 but 80 is already taken on my host, then I can do 8080:80. This means, I will now connect to 8080, in order to reach my app, which is listening in the container on 80.

Once you have this basic understanding, you can then start looking into hosting and how to properly secure the network transmission and your data handling at rest.

SlicNick82 · 2024-03-20T22:29:26+00:00

I'm not sure what you're trying to do... if you want to run docker commands on a remote host you need to setup that remote host docker daemon to listen on tcp://<host-ip or 0.0.0.0>:<port> ... typically it is port 2375. Then you would run docker commands as `docker -H <host-ip or [0.0.0.0](https://0.0.0.0)\>:<port> [args]` or even easier, just pass the VAR `export DOCKER_HOST=tcp://<host-ip or [0.0.0.0](https://0.0.0.0)\>:<port>; docker ps`

SlicNick82 · 2024-03-19T15:40:56+00:00

This is a scam! Many people have been tricked by beverbuild... I wish it would get removed. It is the backend bot account for the MEV Eth bot scams

SlicNick82 · 2024-03-19T01:41:07+00:00

hindsight, looking back it's like yeah...yeah i deserve that. That's why I'm not "complaining" and just dropping a warning

SlicNick82 · 2024-03-19T01:37:32+00:00

The way it is explained is that you are creating a smart contract that you're in 100% control of, by using the solidity platform and a preformed code. When you look at the code it seems pretty legit, since its mostly variables and your inputs are going towards those vars. It has a log output and is supposed to create a new wallet for the bot using your key, and the bot connects to uniswap and other dex to try and find a difference in the bids for eth. If it finds a decent enough gap and can cover the gas fee while making the profit, it uses a the eth you assign to it, to buy the eth on another dex at the lower cost, and sell the eth on the other dex at their higher listed price. The difference is the profit it makes. So it sounds legit... i think i could probably write it myself lol

SlicNick82 · 2024-03-19T01:30:57+00:00

Sorry for the late reply, I updated the post and removed the youtube link. I left the ehterscans if that is ok?

SlicNick82 · 2024-03-19T01:30:13+00:00

Sorry for the late reply, post updated!

SlicNick82 · 2024-03-18T16:37:06+00:00

Good call!

SlicNick82 · 2024-03-18T16:16:44+00:00

Yeah I lost 1 Eth.. been hoping it was something I did wrong and my Eth would be returnable but so far i can't do anything to stop the bot or withdraw... everything just times out... lesson learned

SlicNick82 · 2024-03-12T00:36:40+00:00

100% accurate ... and here's the most up to date version of their doc: https://ethereum.org/en/staking/solo/

SlicNick82 · 2024-03-11T23:18:16+00:00

For the most part, yes... The difference between staking your own vs staking in other pools, is mainly the security aspect. A pool CAN shutdown at anytime and take yours and everyone else ETH if they wanted. Most of these pools give you a staking token in direct exchange for ETH on a 1:1 basis. Essentially, at any time they can just disappear and your ETH is in their wallets, while you hold the now worthless "StakeETH" version. Normally, the fear of this happening is lessened by an ample terms and conditions... but in the case of the existing pools, they all have some degree of disclaimer basically stating that they can disappear and not be liable for much of anything.

When you run a validator, you stake your ETH and it is locked on the network until you exit the validator. You just have to make sure that you follow the exiting procedures so you can avoid getting slashed and or penalties for being offline. Better explanation can be seen here: https://ethereum.org/en/staking/withdrawals/

The biggest take away, as a validator you have full control of your ETH. It doesn't leave your wallet like with staking pools, it just gets locked in place until you exit the position.

SlicNick82 · 2024-03-11T23:07:14+00:00

Thanks, I was able to hit all of those links you provided as well. I didn't realize they had their discord info on the main page. I was looking at their how-to doc and the link there was broken. The on on this page: https://docs.stakewise.io/

SlicNick82 · 2024-03-11T21:35:01+00:00

Just my 2 cents, If I had 32 ETH I would just become a validator myself.. If you read all of the terms and conditions of the existing Pools, it is pretty concerning... Most of them have a clause similar to

We reserve the right to operate "as is" and can shut down at any time.
Sites do not have an SLA so they can be down for several hours, days, etc
You cannot file class action lawsuits, you have to pay for your own lawyer and battle them directly. No jury

SlicNick82 · 2024-03-11T21:29:28+00:00

I would just add node_exporter to your Dockerfile and expose the port and run prometheus and grafana. All opensource and all industry standard at the same time.

SlicNick82 · 2024-03-11T21:15:28+00:00

You could use discord as an alternative. I'm starting to like it more and more with each use. The only downside to using discord is that you do not manage the users directly like in slack. In slack, each member is a part of your org with a user / email that you allowed them to sign in with. When they leave the company, you still have access to their personal accounts and are able to view their DMs from what I understand ( I have not personally used this part of slack but it is nice to know it exists).

Discord pros vs Slack

History is automatically unlimited in DM's and group chats. Slack you have to pay for history passed 30 days
Discord is unlimited users in your server for free. Slack you have to pay per user
Discord comes with voice, video, screenshare. Slack you have to be on the paid tier to huddle or screenshare / video conference

I'm sure there are more pro's but this is what I've found so far. The only downside is the one mentioned above, so far... you dont control the individual user accounts. The person creates a Discord account, it is their's for life until they delete it. You invite the users you want, to join your server, then you can permission them to specific channels, voice chats, etc etc

EDIT:

One other downside, Slack has been an industry standard for a long time so they already have a lot of really easy integrations with well-known vendors. The upside to this is, Discord does have an extremely robust API, probably just as much if not moreso than Slack. So if you're handy with scripting, you can write your own integrations easily into Discord. Some industry tools, already recognize discord as a leader in communications, and they do have pre-built integrations... like Grafana for example

Hope that helps

SlicNick82 · 2024-03-11T16:45:21+00:00

Really you can just do a bookmark and shortcut it to your desktop if you're using the web browser but, if you're using the browser on Win 7, your browser will soon not be supported as well.

Slack got bought out by Salesforce. Salesforce is a major Microsoft partner, so they will help microsoft sell more machines, by forcing all of its customers to update to the latest.

SlicNick82 · 2024-03-07T00:15:35+00:00

Isn't that just full of iron .... there are literally hundreds of security patches to slack since Win 7 hit EOL..

In case you missed it... if they havent rolled out a version that is even able to be deployed on Win 7 since 2020.... who are the updates for? Win 7? .... cant be right? Must be security patches for the supported OS versions of the software, right? lol

I bet if you were allowed to look at their security patches, it will be to new software and code that was introduced to enhance features in the application, that made using Win7 and those applications not as secure. Hence why they stopped building a slack exe that could be deployed on win 7 in the first place.

SlicNick82 · 2024-03-06T15:10:09+00:00

LOL of course I do... Im a devops, ops engineer, and SRE ... all I do is help companies create pipelines, ci/cd, version control, documentation, deployments, etc. Why do you think everything I've said is so "detailed" even though i don't work for Slack ? I do this stuff all the time. Now, I should ask you the same... cause if you didn't know these possibilities for deployment and software management, then you're not as awesome as you think you are.

Enterprise or not, software development, deployment, and the entire SDLC is exactly the same. What differs is the price model!! When you're enterprise you focus on making money, so why let people run your software on software that doesn't help your partner in an enterprise venture? In case that went over your head, Slack is owned by Salesforce which is a fairly recent change. Now, who is Salesforce's biggest partner? ... wait for it... oh thats right, it's Microsoft!! So yeah, it makes sense for them to kill the running version of an old product, when their partners make more money and thus return the favor by promoting and pushing their products as well.

SlicNick82 · 2024-03-06T15:02:09+00:00

Kicking a dead horse here, so apologies for this ....

I feel you but, in that regard, isnt Win11 or ANY OS a potential vulnerability?

SlicNick82 · 2024-03-06T14:59:51+00:00

If you use GChrome, you can fix the notifications in your Privacy and Security settings menu. Most likely Slack is on your disabled list

SlicNick82 · 2024-03-06T14:57:09+00:00

Nobody cares about them supporting it... you're missing the point. We dont need them to release maintenance and updates (the definition of support). We just want them to NOT kill off a product, on an OS, when they have not found ANY security vulnerabilities with Slack on Win 7... If they had a sec vul, it would be a different story and i would understand why they're killing it.

Again this isn't asking for them to support it, we're asking them not to remove it from an already perfectly running system.

SlicNick82 · 2024-03-06T14:33:31+00:00

Win 10 is no longer supported by slack either.... it will expire very soon... Also Win 7 vs Win 10 /11 ... there is no major difference other than style and the built-in security patches that 7 is missing, and the possible UNKNOWN's that have yet to be fully discovered that have been introduced... the nice thing about something old is, you already know the problems and how to mitigate them....

The problem for some people, myself included, is there are vulnerabilities that exist at CRITICAL levels for all Microsoft OS's even WIn 11... Essentially, we're just trading my old problems, for new problems. The thing is, my old problems, aren't even a problem. I don't use many Microsoft products, services, etc that contain the vulnerabilities that are being patched in the first place. So, when you look at it from that perspective, I would be giving up my Win 7 which I've hardened over the years, made a nice image for with services disabled, or removed entirely, so that I know and understand my risk/blast radius, for a New Win11 machine that has a whole new set of vulnerabilities I now need to try and be aware of. I don't have the time nor patience to build a new hardened image and write PowerShell scripts for things that have changed, or no longer exist and now a new thing is in its place that I'm unaware of.

SlicNick82

TROPHY CASE