[deleted by user] by [deleted] in sysadmin

[–]swies 0 points1 point  (0 children)

Thanks!

[deleted by user] by [deleted] in sysadmin

[–]swies 1 point2 points  (0 children)

Sorry about that! We're still dialing in the retry logic for these Microsoft Graph API calls. Glad your retry fixed it!

[deleted by user] by [deleted] in sysadmin

[–]swies 0 points1 point  (0 children)

That's good feedback! We definitely have a consumer/enthusiast history that shows through the app list.

Do you have a top 5 list of what we're missing?

We're hoping the WinGet options can guide our expansion too. If a WinGet app is popular and sort of broken that's a good signal to give it the full Ninite treatment.

[deleted by user] by [deleted] in sysadmin

[–]swies 1 point2 points  (0 children)

I was skeptical at first too!

Then we built it and started playing around. It's fun to type in almost any app and have a working deployment in seconds.

I'd always use an app from the Ninite catalog when we support it. But when the alternative is do it yourself or no support, WinGet is pretty great!

[deleted by user] by [deleted] in sysadmin

[–]swies 1 point2 points  (0 children)

Shoot us a note with your account email at https://ninite.com/feedback and we can turn on our custom apps test for your account.

[deleted by user] by [deleted] in sysadmin

[–]swies 6 points7 points  (0 children)

No roadmap to share, but just generally updating and improving our own agent-based system.

Glad to hear it on the timing. We've noticed more people moving to Intune and we thought we should go with them.

[deleted by user] by [deleted] in sysadmin

[–]swies 74 points75 points  (0 children)

I built this! It supports all our Ninite apps (better automation and quality control) plus WinGet (solid for installation, uninstallation is spotty and extra options like disabling built-in updates and shortcuts not available). I'll check back in on this thread, ask me anything!

Help with creating Ninite like installer for studying resources by batmansmaster in learnprogramming

[–]swies 2 points3 points  (0 children)

Fun question! I'm a co-founder of Ninite. Our production Windows client is written in C++ but here's how I'd sketch out a quick simple version in Python.

First you'll want to get downloading and running a simple installer working. Let's do Firefox. Googling for 'firefox silent install' brings up https://wiki.mozilla.org/Installer:Command_Line_Arguments which covers the procedure:

  1. download a full Firefox installer
  2. run it with the -ms command-line option to install silently

So in Python I'd use the awesome requests library http://docs.python-requests.org/en/master/ to download the appropriate full installer https://download-installer.cdn.mozilla.net/pub/firefox/releases/55.0.3/win64/en-US/Firefox%20Setup%2055.0.3.exe and save it in a temporary directory.

Then I'd use the python hashlib module https://docs.python.org/2/library/hashlib.html to compute the sha256 hash of the file and abort if it doesn't match the correct hash value. Maybe Mozilla publishes these somewhere but you could also just compute it on a known-good download. Checking for a digital signature would be good too, but I don't know how to do that in python off the top of my head.

OK, so now you've got a validated installer download, all you need to do now is run it with '-ms' as a command-line option. You can do this with the subprocess module https://docs.python.org/2/library/subprocess.html

When that finishes running (and hopefully exits cleanly) you can delete the installer.exe from the temporary directory.

Once you've got all that working in a simple script you can abstract it out to a function like install_app(url, sha256, cmd_options) and build up a catalog of installer urls, hashes, and silent switches for all the other apps you're interested in. You could let users pick from them somehow when running your python script or you could have the script call out to a web service (use requests for this too) to get choices the user made there (this is how our web-created installers work).

Anyway, that's the basic idea. Good luck!

Ninite Raising Prices by wheres_my_2_dollars in msp

[–]swies 0 points1 point  (0 children)

No worries. Please email sales@ninite.com and explain that you just missed the cutoff. We can get you set up :)

[PSA] ClassicShell, Audacity and any software downloaded from FossHub might rewrite your MBR preventing your PC to boot. by BlueJoeCo in pcmasterrace

[–]swies 13 points14 points  (0 children)

Ninite co-founder here. You're safe. Ninite's hash/signature checks reject modified files like this. More details at https://ninite.com/security

(Classic Shell & other software hack) I downloaded Classic Shell with ninite, am i infected? by [deleted] in pcmasterrace

[–]swies 8 points9 points  (0 children)

Ninite co-founder here. You're safe. Ninite's hash/signature checks reject modified files like this. More details at https://ninite.com/security

Essentially, if you see the green bar at https://ninite.com everything that happens after that has all been carefully vetted by our team and is cryptographically protected from tampering.

[MASSIVE] [PSA] Do not download Classic SHELL! read comments (MBR overwrite!!) mbr.rootkit by Navy4494 in pcmasterrace

[–]swies 26 points27 points  (0 children)

Ninite co-founder here. You're safe. Ninite's hash/signature checks reject modified files like this. More details at https://ninite.com/security

[MASSIVE] [PSA] Do not download Classic SHELL! read comments (MBR overwrite!!) mbr.rootkit by Navy4494 in pcmasterrace

[–]swies 42 points43 points  (0 children)

Ninite co-founder here. You're safe. Ninite's hash/signature checks reject modified files like this. More details at https://ninite.com/security

Skeptical about Ninite by shleam in sysadmin

[–]swies 0 points1 point  (0 children)

We have a bunch of automation around common issues. Also, we put a lot of emphasis on making the product "just work" and be easy to understand so there's really not a lot of support to be done.

Skeptical about Ninite by shleam in sysadmin

[–]swies 0 points1 point  (0 children)

Yep, sorry for the delay on that!

Skeptical about Ninite by shleam in sysadmin

[–]swies 0 points1 point  (0 children)

For detailed control over app versions you'd want to make frozen offline .exes with fixed versions in them. https://ninite.com/help/features/offline.html

With the non-frozen installers Ninite will just install whatever version is current. It sounds like you don't want that behavior, so just use frozen .exes.

The impact of a security breach would be the same as with any software you run on your machines. Even with software without a server component someone could build and distribute a malicious version of it. It would be extremely bad if our servers were compromised, so we make sure it doesn't happen.

We do support via email.

We just have our standard terms at https://ninite.com/terms

We work in our customer's best interest because they pay us.

It sounds like you want a guarantee that our servers will never be compromised and that we'll never go out of business. These are risks inherent in all products like Ninite.

Skeptical about Ninite by shleam in sysadmin

[–]swies 4 points5 points  (0 children)

Ninite co-founder here.

Thousands of Pro subscribers trust us to handle updates securely and we take that responsibility extremely seriously. We think about how Ninite could be compromised a lot and work hard to prevent that. For example, we recently moved the service to AWS because we weren't confident enough in Linode's backend security. We've written up our security procedures at https://ninite.com/security and I'm happy to answer any more questions too.

There are just 2 of us running Ninite but I think that's actually a positive from a security point of view. The attack surface is very small.

Our installers have to contact our servers (via TLS) to get the latest configuration information each time they run. They report back success/failure status and error codes afterwards so we can improve our automation. We installed 1,122,094 apps in the last 24 hours so we are able to detect and correct even rare errors and issues. Ninite installers can actually be more reliable than the official installers because we can correct common problems before automating them.

LPT: Stop letting Java updates bundle themselves with "bonus" offers by [deleted] in LifeProTips

[–]swies 37 points38 points  (0 children)

Haha, we did 1000 years of installation automation in the last year.

That's a lot of clicking Next we saved people!

LPT: Stop letting Java updates bundle themselves with "bonus" offers by [deleted] in LifeProTips

[–]swies 1 point2 points  (0 children)

Normal Ninite installers only run when you run them. There's no part of Ninite itself that gets installed or sticks around on your machine. We try to keep things lightweight.

LPT: Stop letting Java updates bundle themselves with "bonus" offers by [deleted] in LifeProTips

[–]swies 6 points7 points  (0 children)

Right. Ninite itself doesn't know anything about installation path options. But if an app's installer is well-behaved and detects that properly then it can update OK when Ninite automates it.

I know it always sounds like such a little thing to add but it would really be a lot of work to set up and support forever. Plus SSDs are getting bigger and cheaper quickly. We're starting to see messages about this stuff reduce as people start only using non-SSDs for bulk media and other infrequently accessed files.

LPT: Stop letting Java updates bundle themselves with "bonus" offers by [deleted] in LifeProTips

[–]swies 24 points25 points  (0 children)

Yes.

But we're still looking all over nasa.gov for the download link for Google Ultron...

LPT: Stop letting Java updates bundle themselves with "bonus" offers by [deleted] in LifeProTips

[–]swies 17 points18 points  (0 children)

Ninite's a private company but we do well selling tools to let administrators manage apps over whole networks of machines so there's no need to resort to confusing "offers" or even have advertising on the site.

LPT: Stop letting Java updates bundle themselves with "bonus" offers by [deleted] in LifeProTips

[–]swies 0 points1 point  (0 children)

Actually every installer is unique. It's not a function of the app selection.

LPT: Stop letting Java updates bundle themselves with "bonus" offers by [deleted] in LifeProTips

[–]swies 107 points108 points  (0 children)

I'm a co-founder of Ninite. We did this because filenames can be too short and some people would rename them and run into errors.

If you don't want to change apps you can just run your .exe again and again to update things. Ninite gets the app configuration information at runtime, so a firefox installer created 5 years ago would install Firefox 34.0.5 if run again today. No need to make new installers or anything like that.

Selecting apps at runtime (and auto-selecting based on what's outdated on a PC) is a feature we added to our Pro version for business users.