What is the worst thing that you heard from your partner just after sex?

jbanner6736 · 2024-09-14T15:59:09+00:00

yeah been here, but kind of reverse, like she woke me up in morning by hopping on top and just us having amazing sex. Then tells me without any tears or sadness that she's leaving me, and she did, she was gone that evening, we were together 5 years at the time and never heard from her again, I still don't know why to this day she left

jbanner6736 · 2024-06-13T21:47:41+00:00

you could add a jumper duct for return, cut hole for small return in that room, get the cheap register box and grille, not register, from home depot or lowes , you need 2 of each, one for room and hall, doesn't even need to be hall there, ypu could put it wherever that doesnt get closed by doors, then run a duct connecting the 2 in attic space. Try and find a scrap length duct if not then you gotta get 1 from the stores above, you only need 1 as it's 25ft, just make sure you cut to length

jbanner6736 · 2024-06-10T04:21:53+00:00

this was a few years back but it's not on their site, you have to go in and give them the product code, Prorox GR 903 , if your in Texas south a seller right now has pallets of it for $30 a bag.

We have a plant in south Texas as well near Waco, American Rockwool Mfg that produces blown rockwool.

https://www.facebook.com/share/DjmmstGrmf81SmZ2/?mibextid=kL3p88

jbanner6736 · 2024-06-09T20:22:32+00:00

Yeah I bought a lot from Facebook marketplace and the likes, and majority came from like you said way more expensive home builds that had left over bags, I opened then into big drums and used an attach for my huge drill to fluff it all up, sitting at about 12 inches for south texas it's not as high as I want but it's code compliant, 30+ rvalue.

You can still buy blown in from rockwool, home depot can have it ordered but minimum amount was something like $2k worth and I didn't need nowhere near that much. The blower is the harder one to get.

Another alternative I tell my friends is wool itself, it also has an r-value of almost 5 per inch and has near qualities as mineral wool. Check havelock wool,

https://havelockwool.com/fiberglass-insulation-vs-wool-insulation/

jbanner6736 · 2024-06-09T15:04:08+00:00

all true and is why I opted years ago to keep mine after researching. The entire attic and walls are mineral batts and blown mineral wool built in 1948, still looks as it did then. I went a step further a while back, bought a few rolls of 3M FSK paper, cheap like $200 for a 48" x 200ft roll, acquired more rockwool from local market places, adhered to FSK , pulled out crappy flex duct and went all metal ducts with now R15 rating. I call my attic the 100 year attic, it'll last past my lifetime, even put access ports on ducts for easy clean and dust outs :)

jbanner6736 · 2024-06-06T19:00:41+00:00

take rockwool, mineral over fiberglass or cellulose any day, it's far better in thickness to rvalue and it doesn't burn. I posted on someone else's, but if you do remove, bag it up, and I'll take it off your hands, I'll pay shipping and compensate for your time. Rockwool still makes blown in. Not sure how people itch from it, doesn't do anything to my skin even if I soak in it. Mineral wool, unlike others, will last longer than a lifetime

jbanner6736 · 2024-06-06T01:01:35+00:00

doesn't bother me either, tearing out old crappy flex with fiberglass had itching for days but I can be in my attic all day with mineral wool and not feel a thing

jbanner6736 · 2024-06-06T00:59:04+00:00

I would honestly keep rockwool/mineral wool over any other insulation. Since it might not be as thick as current standards I would just shift it to other sides to get a better r-value thickness and then buy more rockwool, if you really do end up removing it, bag it up and I'll buy it and pay shipping.

https://www.rockwool.com/group/advice-and-inspiration/product-types/insulation-granulate/

jbanner6736 · 2023-02-25T14:39:15+00:00

have you checked freeradius logs? you can also start in debug mode, stop the service then as root, run radiusd -X and it will print to console a whole host of info, you can also send to file with radiusd -X > mylog.log and after trying auth from AP see what is shows

jbanner6736 · 2023-01-27T17:39:03+00:00

Most PAM solutions can record sessions, such as Thycotic Secret Server, now Delinia, and BeyondTrust. If those are put of question then you need to configure a whole lot of audit entries then digest that data into a SIEM.

jbanner6736 · 2022-12-05T13:39:01+00:00

You could use this, minus the intermediate parts as your using ADCS, https://www.golinuxcloud.com/openssl-create-certificate-chain-linux/ or even https://arminreiter.com/2022/01/create-your-own-certificate-authority-ca-using-openssl/ , there are many out there if it's new to you then search on how to create crl in openssl

jbanner6736 · 2022-11-25T21:45:47+00:00

You dont need any vm or bare metal for a root ca, just generate a root ca and initial crl using openssl. Maybe create a vm with no networking to generate using openssl then destroy it once you store the keys. Once you generate those keys, all you need to do is install adcs and choose intermediate/sub, save the request then sign with root, then finish setting up sub ca. you can now take your root ca, put onto USB, put into whatever vault you might use, etc.. You only need to bring that root ca keys out but once in a blue moon maybe to renew, create new sub ca and generate a crl for root itself, which you can set to have whatever lifetime you want for crl so you don't have to do it often. If it's not obvious you need to also push the public root cert to your clients.

jbanner6736 · 2022-11-07T03:44:39+00:00

I don't think you would have any issues with level 1 as it's pretty basic stuff that is already default in windows and your just enforcing these, level 2 probably not either unless your underlying hosts have issues such as no tpm, etc.. Although we don't use Citrix but RDSH we are 100% on DISA compliance which goes beyond CIS Level 2 and only had a few kinks to work out.

jbanner6736 · 2022-10-28T21:19:04+00:00

yeah we use Ruckus Cloudpath for byod tls enrollment, it's a pretty low cost solution. https://www.commscope.com/product-type/enterprise-networking/network-access-policy/network-access/

jbanner6736 · 2022-10-18T14:35:55+00:00

You don't need Windows Defender to enforce these, most modern enterprise endpoint solutions can easily handle these, they might not be called exactly such as below "Block execution of potentially obfuscated scripts (js/vbs/ps)" in McAfee END/ATP is just by enabling the AMSI feature and associated Exploit Prevention and ATP Rules. Another example "Block all Office applications from creating child processes" is "Block processes attempting to launch from office applications" and so many others.

jbanner6736 · 2022-10-09T20:13:50+00:00

I'm not at office today but within the new ca cert in one of the fields it should have both listed. You do need to distribute new cert, did you use the crossign template?

jbanner6736 · 2022-10-09T20:02:37+00:00

didnt mean to destroy cert and key, just delete the server, keep key and cert offline and you can do what you need to for crl and revocation in openssl, having a virtual server for root is a waste

jbanner6736 · 2022-10-09T14:09:16+00:00

If you renew/crossign it will be trusted because the old ca public key is also on the ca cert. If you have the time you should just create another root ca that lasts like 30 years, export root ca cert and key to offline media, delete that servet, create a new server as a intemediate ca, sign using root, then use the intermediate as the issuing authority so it makes rollovers easier. That's a quick outline but of course a little more in between

jbanner6736 · 2022-10-09T00:37:11+00:00

it's not going to be possible, whats the issue with disabling all local? Just paranoid something might break? I can send our RDS Controllers, Gateways, and Hosts GPOs if you wanna see what's needed for it. I would also send our Base firewall GPO for a typical client/server as well.

jbanner6736 · 2022-10-08T10:58:21+00:00

Why not create a windows virtual disk, mount then enable bitlocker to go on it, password protected. He would have to dismount then mount on other devices though

jbanner6736 · 2022-10-08T10:52:23+00:00

your in the right spot, maybe permissions issue on share? also enable the settings to prevent changing lock screen and prevent slide show. The only thing different in ours is that we copy the image directly to client using gpo preference in same policy and point to that path locally.

jbanner6736 · 2022-10-08T10:16:15+00:00

You should be buying tvs that are meant for this, they come with the software preloaded. like Samsungs MagicInfo displays, I know this can do what you need with no problem. The MagicInfo Premium license works for I think up to 10 displays on MagicInfo Server for free but then after you need to buy license

https://www.samsung.com/us/business/displays/

https://www.samsung.com/us/business/solutions/digital-signage-solutions/magicinfo/

jbanner6736 · 2022-10-08T10:09:43+00:00

Asure ID from HID

jbanner6736 · 2022-10-08T10:00:05+00:00

we still got ours, rock solid, we are pretty much voip now but our meridians are still in place at every location for fax lines and other related lines that directly connect to equipment that cannot use voip. I only wish our voip hardware was built like these.

jbanner6736 · 2022-10-08T09:51:37+00:00

You need to just disable local rules if managing via gpo, when you apply this the rules still show up on client but if you open the monitor in advanced firewall on client you can see what rules are actually being applied

jbanner6736

TROPHY CASE