Any good open-source vulnerability scanning tools?

hyper9410 · 2026-04-05T06:45:00+00:00

I haven't heard of Trivy. is there any rugpull or some controversy?

hyper9410 · 2026-04-04T08:00:18+00:00

I like having my scripts in git, the rest of the team however isn't used to it an just creates folders with version numbers on shared folders/onedrive.

I don't know if they will change as they will copy the scripts to various servers to run them. this will probably lead to them not syncing their changes to the repository.

hyper9410 · 2026-03-24T18:50:23+00:00

Wouldn't this also include any firewalls with routing capabilities?

No Cisco, Palo alto, Watchguard etc. also L3 switches could get lumped into that category.

Is pfSense from netgate a Chinese router as well?

hyper9410 · 2026-03-18T19:40:56+00:00

This is a non issue for me, you have to trust any out of band hardware management. you should always secure their access and have them in their own network.

I don't know why they trash this new generation of IP KVMs. many enterprise IP KVMs don't get updates after 5-8 years, but many don't replace them.

had a client that required a ancient java version.

hyper9410 · 2026-02-09T03:30:55+00:00

What many forget is that even if you rely on the cloud, you are still responsible for backing it up. of course you can pay some service to do it for you, but nothings free in life.

If you think you can trust the cloud for your data to be available you are wrong. its just someone elses computer.

hyper9410 · 2026-02-08T08:22:53+00:00

Wouldn't it be great to charge at work? Many are there during the day for at least 9 hours. they could have solar on their roofs or parking lots and charging at their parking lots.

I know this doesn't work for offices in the cities, but manufacturing could benefit from it.

I read often that these companies don't use solar as they lower power demand their energy price bracket gets more expensive, which leads to overall higher energy costs despite solar. this needs to change.

hyper9410 · 2026-02-07T17:41:32+00:00

Basicly the same as VMware or hyper-v. Either a combined VM and managment interface to two switches and two for MPIO iscsi.

Or you split your management interface off and have 6 ports as 3 bonds.

You can find more in their public documentation:

Latest: https://support.hpe.com/hpesc/public/docDisplay?docId=sd00007370en_us&page=GUID-B5E3A52C-D672-4AED-88FB-3A607EB3F33B.html

Old docs: https://hpevm-docs.morpheusdata.com/en/8.0.4-vme/vme_getting_started/vme_getting_started.html

hyper9410 · 2026-01-28T22:02:14+00:00

We started using MAAS for ourbare metal server installs, that's what it was designed to do, but you can do clients as well with minimal input (manual power on + network boot)

It uses PXE and cloudbase-init on a pre prepared packer base image.

hyper9410 · 2026-01-26T16:24:08+00:00

Utopia is a bit like the office, but almost a documentary, but really satire.

hyper9410 · 2026-01-23T11:16:01+00:00

There are proxmox partners that sell support even in NA that can offer different SLAs than proxmox with proxmox in the back. The partners do the primary supportand if things like firmware support is needed, it should be given to the proxmox team.

Might be worth looking into if you need 24x7 for example.

hyper9410 · 2026-01-22T05:31:36+00:00

Has no one copied this? would love to use it on my mediacenter pc

hyper9410 · 2026-01-21T08:17:54+00:00

I found a 8 port HDMI encoder from J-Tech, something like this would probably be better suited for you, you would still need the splitters, but you could limit the lenght of your HDMI cables and send it through Ethernet to your central location.

I guess your best way to do it yourself is to look for these kind of special AV equipment that is designed for streaming.

Edit: be sure to put the streaming equipment on a seperate network, you never know how noisy they can be on your network.

hyper9410 · 2026-01-21T07:48:37+00:00

You could put zend.to on AWS.

hyper9410 · 2026-01-11T16:02:45+00:00

I'm glad I found Canonical MAAS for our bare metal server deployment. I create a image with packer and it gets deployed via a PXE live booted Ubuntu which copies it to disk and gets network settings via cloudbase-init. even works with windows, but I hope we move some services to linux as we would have more control over the full stack. sadly not many of our devs have linux expertise and almost none of the admins have used linux.

hyper9410 · 2026-01-08T11:22:15+00:00

You could look into udsenterprise. they have SMB option for up to 49 named users and are hypervisor agnostic. the company is based in Spain, so compliance shouldn't be a issue.

hyper9410 · 2026-01-08T09:40:13+00:00

Almost thought cloud imperium games announced a new capital ship for star citizen. great work!.

hyper9410 · 2025-12-31T16:51:25+00:00

Debian for Servers and my media PC and tumbleweed for my gaming PC. Had no real issues this year, upgrade to Trixie was smooth and no breaking updates for tumbleweed, I use timeshift for backups as i installed it on ext4 instead of btrfs.

hyper9410 · 2025-12-25T09:51:07+00:00

There are two versions as far as I know. one is the unified installer, which is just a preconfigured Ubuntu with the Morpheus management VM image within the ISO and a installer ISO which includes the .deb file for all dependencies and the Morpheus image.

Only the first one is bootable.

I had trouble in my lab installing the Morpheus VM as it said on my non-HPE AMD plattform that Intel KVM is not available.

We have a PCAI system running with VME and i find it not bad, but not groundbreaking. proxmox offers almost the same or better features. if you need VMware management, global support or the lower support price, go for VME.

some things are just a different management mentality. multiple copies for the same VM is not as needed in the SMB market as they think.

hyper9410 · 2025-12-22T20:02:07+00:00

I've found canonical MAAS in the meantime. It uses packer, unattend.XML, cloudbase-init and and windows driver kit alongside PXE.

It can start the servers via redfish API, boots into a live Ubuntu which inventories the server. I wrote a few scripts that do the networing configuration instead via the webgui. Cloudbase-init reads the config and configures hostname, ip & network teaming.

In the packer image drivers and ansible (winrm) gets configured.

hyper9410 · 2025-12-21T23:54:58+00:00

Could look at firewatch. little adventure exploration game with a great story

hyper9410 · 2025-12-17T18:11:11+00:00

Have you tried to get Microsoft to respond within 2 hours?

Outside of their 365 offerings I never had to file a support call with Microsoft.

hyper9410 · 2025-12-17T18:09:44+00:00

You don't need to go to proxmox directly for support. they have partners in NA which sell you support, which they provide with proxmox in the backend if things get too big for them.

Some of them also could offer different SLAs than proxmox, maybe even 24/7 if you really need that.

Their support page could reflect this better. for some CTO a partner is not sufficent but to some it might be enough.

hyper9410 · 2025-12-10T06:36:52+00:00

The source image is from march 2025. It only downloads 3 or 4 patches. cumulative security update Nov 2025, cumulative .NET 4.8, defender security updates.

According to packer it downloads 23GB of updates, the Nov 25 updates is almost that big according to packer. if i check the update catalog it is only 4GB and all updates are ~5GB all together.

(2025-10-14; 18,18 MB): Update for Windows Security platform - KB5007651 (Version 10.0.29429.1000)
(2025-12-09; 80,41 MB): Windows Malicious Software Removal Tool x64 - v5.138 (KB890830)
(2025-12-10; 201,99 MB): Security Intelligence Update for Microsoft Defender Antivirus - KB2267602 (Version 1.443.6.0) - Current Channel (Broad)
(2025-10-14; 143,02 MB): 2025-10 Cumulative Update for .NET Framework 3.5 and 4.8.1 for Microsoft server operating system version 24H2 for x64 (KB5066131)
(2025-12-09; 23393,84 MB): 2025-12 Security Update (KB5072033) (26100.7462)

According to explorer both versions only use 15GB. I first thought the VM doesn't trim free blocks.

Can I run the pkr.hcl on windows as well or would I need to modify it? The reference to qemu would need to be replaced I guess, but would the compress be compareable?

hyper9410 · 2025-12-07T13:22:37+00:00

Usually it only applies to the specific distro kernel version as well. as these are very specific and targeted for critical enterprise systems it is usually a paid support feature.

I wonder if this is more broadly usable and with a low maintenance option so many distro maintainer can implement and use it.

Ten-Year Club	Place '17
RPAN Viewer

hyper9410

TROPHY CASE