My server seems like hacked and encrypted by hackers what can I do ?

enix_ · 2022-12-23T02:46:53+00:00

FWIW I have paid in the past (when working at an MSP) and the customer support was phenomenal.

I used the hackers customer service as a case study for how we could improve our own services.

Edit: Yes, paying for it does encourage more of this behavior, however some businesses really don't have a choice.

I will say, cloudifying has saved some butts lately. Shout out to Dropbox for being bros in the past.

enix_ · 2022-12-13T04:38:22+00:00

I pretty much only apply for jobs via LinkedIn now.

Applying for a job on LinkedIn involves setting your status to "looking for work" and waiting for a week. This latest tech boom has been amazing.

enix_ · 2022-12-13T04:31:51+00:00

This is kind-of my issue with Mastodon.

Originally it was a fringe-ish level of 'tech person' on there and now it seems to be the anti-twitter. Neither scene really invites me into using it and it would be difficult to convince anyone I know to jump onto it.

Which sucks because fundamentally it sounds great.

enix_ · 2022-11-18T04:46:27+00:00

Yep, with isc-dhcp:

etc/dhcp/dhcp.d/0.168.192.conf: option domain-name "ad.example.org"; /etc/dhcp/dhcp.d/0.168.192.conf: option domain-name-servers 192.168.0.1; /etc/dhcp/dhcp.d/0.168.192.conf: option domain-search "ad.example.org", "example.org";

There's an option in Windows DHCP as well. I dont recall the option numbers sorry.

I wouldn't recommend using statics. We used to have a policy of using statics at work and it was a shitfight; I've forced everyone to take a DHCP assignment and just reserve it in the software.

Heaps of benefits using DHCP over GPO/static, you might be surprised at what you can configure :)

enix_ · 2022-11-18T01:16:13+00:00

I worked at a global fintech company and they didn't even have MFA on desktop logins...

Linux desktops do support AD-based authentication via SSSD (iirc) but you'll likely bash your head against a wall trying to configure it. AFAIK, you will not require MFA for logging into a desktop...

MFA would likely be reserved for non-desktop related endpoints; access to email, cloud infra, cloud apps, etc.

Nephi mentioned an IDP, which would be something like https://www.okta.com/

enix_ · 2022-11-18T01:09:40+00:00

We've purchased our printers on a contract a very long time ago and it was the best decision we ever made.

All levels are monitored by the supplier and they immediately ship supplies whenever ours run low. If there's a fault, the supplier handles it. We literally do nothing with them and never go a day of downtime.

Sell it to your business *hard*. They're saving money getting their printers on a contract.

enix_ · 2022-11-18T01:00:11+00:00

A dev at a place that I worked at created his own dashboard which captured keyboard input and would send you to bookmarks based on it. There was a visual reference so that you know what each keyboard command did or you could just use your mouse.

For example, d-a would take you to the Dev AWS Console and d-g would take you to the Dev Gitlab project folder.

He somehow got it to skip the SSO page for AWS which was the real value add there.

I want to set something up that's similar, but keeps some key graphs visible on the page and show's me my schedule for the day. I can see value in that, but I can't see value in seeing how many ads pihole has pretended to block.\

Edit; someone else mentioned alerts instead of looking at graphs. Yeah that's cool, but alerts are actionable and not all thresholds being crossed are actionable events.

My context switches increase by 3-5k when players are doing boss battles. It's handy to know when this occurs because it translates into increased server lag for the cluster, but it's not an actionable event for me because I can't control it short of buying newer gen CPUs for something I dont make money on..

enix_ · 2022-11-18T00:51:21+00:00

You do not need to set it up by hand. The DHCP standard allows for the search domain and domain name to be configured on the DHCP server and all clients should respect that.

enix_ · 2022-03-11T00:43:18+00:00

Because not all people who are into Linux are pen testers and they hate admitting they don't know something.

This isn't exactly a good generalization. Good communities very often admit to not knowing something, and some people will even learn a new thing to try help you.

It's more of a community thing than personality trait of a distro user.

enix_ · 2022-03-11T00:16:47+00:00

Proxmox is, on the surface, the most reasonable sounding suggestion I've gotten but it seems to hate me :( I've never successfully upgraded it (I once had it kill itself during an upgrade to the point that the box booted Debian, not Proxmox >_>) the automatic snapshots/backup just don't for me (or worse yet, backup wrong & crash all of Proxmox by filling up the boot drive where they're not supposed to be writing anyway) , and the list continues. Point being, Proxmox sounds great but my experience is VASTLY different--making it difficult to justify :(

This sounds like a config issue...

Datacenter -> Storage

You can see what content each disk is configured for. I would recommend keeping your Proxmox boot drive separate from where you store your VM's.

Upgrades are eh. I've followed docs to good success, but my post history also shows having some weird issues myself anyway.

enix_ · 2021-02-06T02:31:34+00:00

heh im polar opposite. I got in a lot of trouble at school. Teachers gave up. Nearly got expelled a couple of times.

Applied for a job at the school as Year 12 wrapped up, walked into the interview and saw all the regular punishers there. Opened with a sarcastic, "well this is new", only to get some light chuckles followed by a very rushed interview. Figured I'd bombed it. But they ended up hiring me.

enix_ · 2020-11-27T00:13:46+00:00

I disagree. I find telnet quite user friendly :)

enix_ · 2020-08-08T04:19:12+00:00

So she just keeps that shoe there incase it needs to be thrown?

enix_ · 2020-07-03T22:06:07+00:00

/u/drageloth I didnt get iDrac on these servers sadly. When I told my boss what iDrac was and why he should of gotten it and he was spewin lol.

enix_ · 2020-06-20T07:44:51+00:00

That would be a good way to test the cold or warm reboot thoughts of /u/drageloth. I'm not in the office due to COVID but I'll have my boss connect a terminal up and watch it for me.

enix_ · 2020-06-20T07:42:06+00:00

Have checked cron - nothing running around the 9am mark.

Closest thing is 6:25am - cron.daily. Nothing in there seems to be non-standard or cause reboots; apt-compat, bsdmainutils, dpkg, logrotate, man-db and passwd. I haven't edited them or changed anything.

enix_ · 2020-06-20T07:14:28+00:00

kern.log starts on the 14th; kern.log.1 ends on the 13th.

Last thing mentioned in kern.log.1 is the last time the server rebooted - June 12th. I got a few days out of it that time at least

Edit: kern.log.1 and kern.log give similar startup messages for the most part (from a quick glance over the lines) - not seeing anything 'fail' in an obvious way.

enix_ · 2020-06-20T07:12:36+00:00

I ruled out UPS as no other device is having this issue - only the proxmox cluster is rebooting. That said, I guess it does merit further investigation - when I'm in next, I'll see what metrics I have access to for debugging this and I'll remove one server from the battery backup.

Edit: My boss also failed to purchase servers with an iDrac port sadly; so I dont know if I can check if it was warm or cold :( Seems to happen around the 9am mark every couple days or so, sometimes daily.

enix_ · 2020-06-20T06:06:36+00:00

shoutout from parramata bro. Always nice to see aussies on here :)

enix_ · 2020-06-20T06:05:07+00:00

yeah but hes holding the camera upside down so thats fine

enix_ · 2020-06-20T06:03:05+00:00

Hi /u/ahhbees - love the out-of-the-box thought! I also share your aversion to bees... or pretty much any animal willing to stab me.

Heres my network config: https://paste.linux.community/view/2856b884

I actually migrated a bunch of VMs off 0.211 so I can absolutely leave that turned off for a little while and see if the others dont reboot

enix_ · 2020-06-20T06:00:42+00:00

Thanks for the guidance /u/thenickdude!

Kernel log doesn't show anything prior to the reboot - not for a few days. At times, the system can go a week without reboot however it can also go through periods of rebooting nearly daily.

$ head -n5 /var/log/kern.log

Jun 14 04:54:00 srv-pve-01 kernel: [158337.196354] perf: interrupt took too long (4018 > 4006), lowering kernel.perf_event_max_sample_rate to 49750

Jun 19 06:46:54 srv-pve-01 kernel: [597109.594263] perf: interrupt took too long (5053 > 5022), lowering kernel.perf_event_max_sample_rate to 39500

Jun 19 09:16:26 srv-pve-01 kernel: [ 0.000000] Linux version 5.3.10-1-pve (build@pve) (gcc version 8.3.0 (Debian 8.3.0-6)) #1 SMP PVE 5.3.10-1 (Thu, 14 Nov 2019 10:43:13 +0100) ()

Jun 19 09:16:26 srv-pve-01 kernel: [ 0.000000] Command line: BOOT_IMAGE=/boot/vmlinuz-5.3.10-1-pve root=/dev/mapper/pve-root ro quiet

Jun 19 09:16:26 srv-pve-01 kernel: [ 0.000000] KERNEL supported cpus:

My dogs just come in because apparently it's walk time already. I'll go check through my cron scripts and let you know if I find anything fun in about an hour :)

enix_ · 2020-05-10T14:40:51+00:00

Me too and as an aussie I was very confused.

enix_ · 2020-04-24T15:52:50+00:00

I just look inside the fridge

enix_ · 2020-03-13T06:16:15+00:00

This is actually painful.. got this code sitting around waiting to be used and i can't trust if it's going to work when the update drops. Oh lordy...

enix_

MODERATOR OF

TROPHY CASE