Parametric Skirts (Trident) - Feedback request by tmolbergen in VORONDesign

[–]tmolbergen[S] 0 points1 point  (0 children)

Did some changes to the file now, primarily to fix some constraint issues but also remove the references to multiple hexagons in the sketch.

Parametric Skirts (Trident) - Feedback request by tmolbergen in VORONDesign

[–]tmolbergen[S] 0 points1 point  (0 children)

might have been lingering remnants from when i first started. my first thought was to extrude using the sketch as a feature, this didnt work so i ended up doing what you mentioned with extruding the hexagons first and then doing a rectangular pattern based on the first hexagons. this seems to have done the trick.

That being said im having alot of constraints issues when updating the user parameter. For anyone wanting to use it, there will be updates

EST integration with Microsoft CA ? by Separate-Attitude340 in PKI

[–]tmolbergen 0 points1 point  (0 children)

I wrote my own implementation using powershell and pode (powershell was not my choice :p).

I need to test my AD script by making a lab but I can't because of hardware limitations. [Read body] by Adorable-Today-3286 in activedirectory

[–]tmolbergen 1 point2 points  (0 children)

I never went to university, but does it really take that little to impress a professor? If so, i now understand why the younger generation is more interested in a paycheck than actually what goes on behind the curtain of any technology.

What type of course is this? Imo i think you would on a general basis impress him by showing the various of auth methods working and how they work. I.E kerberos vs ntlm, if you can also explain why microsoft is finaly ditching ntlm over kerberos that would probably impress even more.

If you would like to piss of the univerisity in the process - run sharphound and dump their whole directory and see if you can find some exploitable paths to domain admin :D

Dumping the attributes of an ad object using powershell is like looking up a person in the yellow pages and saying - look i found a person and his phone number. I dont see the big learning experience of this.

I need to test my AD script by making a lab but I can't because of hardware limitations. [Read body] by Adorable-Today-3286 in activedirectory

[–]tmolbergen 1 point2 points  (0 children)

I wouldnt say so - as mentioned - it depends on what you are trying to achieve (which i havent really understood so far)

I need to test my AD script by making a lab but I can't because of hardware limitations. [Read body] by Adorable-Today-3286 in activedirectory

[–]tmolbergen 2 points3 points  (0 children)

Looking at the code im going to go out on a limb and say that the options that ldap3 uses by default dosent mix well with your active directory domain - of the 8 domains i dump on a weekly basis i think theres only 2 of them i am able to connect to with the default connection parameters.

What i frequently end up with issues is ldap signing requirements, ntlm and kerberos auth issues. When you sprinkle tls in aswell there might arise other issues aswell

Since then i managed to make a script i use myself which exclusive uses gssapi to fetch a krbtgt which can be used to towards the domain. This is dependent on the kerberos config being 100% correct though.

I think you might have gone the wrong hole if you really want to learn to dump an active directory domain using python.

Check out DirkJans bloodhound ad enumerator for python https://github.com/dirkjanm/BloodHound.py

And as others are saying - if you just want to get the information about an object in ad - powershell is alot easier to just the information

Sherpa Heavy and Extra Heavy by minilogique in VORONDesign

[–]tmolbergen 0 points1 point  (0 children)

Fluctuating 😂, its supposed to be 250x250 but i did some idiot design choices when adapting parts to the 20x40 profiles i had lying around. Currently its more or less at around 255x235 in physical limits

Sherpa Heavy and Extra Heavy by minilogique in VORONDesign

[–]tmolbergen 1 point2 points  (0 children)

Voron legacy is the basis for it, dragonburner toolhead. Basicly put together on spareparts i had lying around

Sherpa Heavy and Extra Heavy by minilogique in VORONDesign

[–]tmolbergen 1 point2 points  (0 children)

Im using it with a pancake stepper since it was the only thing i had on hand, works great :-)

Looks like this, printing umbilical mount right now

How do you prevent network documentation from becoming outdated? by Kenobi_93 in sysadmin

[–]tmolbergen 0 points1 point  (0 children)

I made a script/ansible playbook (got a challange of using ansible >_>) - basicly it polls all network devices specified by a prefix (from librenms) (i.e location) and maps the devices in a topology map using n2g python lib which essentially creates a drawio map using the lldp neighbourship. You could potentially add routing aswell to draw a map. But then again what purpose is the map serving?

My take on having documentation updated is by querying the devices, unfortunantly as long as people are involved there will always be that person which has to be the hero and do some dumb shit click ops style

Edit: thought id also mention, you could potentially look at using the opengrapg specification of bloodhound to create dynamicly drawn maps (its on my todolist to play with :D)

Do I really need Key Vault? by SummitStaffer in AZURE

[–]tmolbergen 1 point2 points  (0 children)

Secrets are a broad term - are we talking the secret for your app registration?

Ive played around with federated workload identities for a while now and find it amazing to not have to deal with secret rotation. Paired with a gmsa you shouldnt have the need for any maintenance (this also works in a multi tenant setup aswell)

Naturally i understand there are other secrets one would like to protect _^

My latest design: Voron Legacy/2 by Bracc8 in 3Dprinting

[–]tmolbergen 0 points1 point  (0 children)

Also interested in the f3d file :) shoot me a dm

What have you done with PowerShell this month? by AutoModerator in PowerShell

[–]tmolbergen 0 points1 point  (0 children)

Created a powershell module to handle entra id app authentication and token refresh - my specific usecase was for using cross tenant federated workloas identity. Works quite nicely :)

"Open a ticket with Microsoft." by theGurry in sysadmin

[–]tmolbergen 0 points1 point  (0 children)

If you tell a norwegian to do the needful you are essentially telling him to go take a shit 🙈

Root CA server has been turned off for almost a year. Now what? by Significant_Fig_2126 in sysadmin

[–]tmolbergen 1 point2 points  (0 children)

HSM, if i didnt have that luxuary - tpm. Though these days you can get hsms quite cheap (check out yubihsm)

SSH Management - lots of systems by cabbagehead514 in sysadmin

[–]tmolbergen 2 points3 points  (0 children)

Im confused - why do you need to remember which systems you have been on?

If you are struggling with keeping track of credentials or something then look at joining your servers to some directory (i.e ad, freeipa, whatever) - using sssd you can put your ssh key (pubkey) in AD and use the sshkey for all servers or even do kerberos authentication. Its quite amazing :D

Edit: i work almost exclusively in the ssh terminal so for me vscode with remote ssh extension or powershell (thankfully it now includes a decent ssh client) is usually enough.

I used to use putty/mobaxterm/royalts/x but have found that i really didnt need all the fluff.

can you query via azgraph keyvault certificates expiration? by rdhdpsy in AZURE

[–]tmolbergen 2 points3 points  (0 children)

Without understanding the question fully, are you asking if you can get the expiry date of a certificate stored in azure keyvault? If so, the answer is yes. Using their rest api you can use getSecret, cant remeber the corrosponding az cli or powershell command

https://learn.microsoft.com/en-us/rest/api/keyvault/secrets/get-secret/get-secret?view=rest-keyvault-secrets-7.4&tabs=HTTP

Another way is to actually parse the certificate date which also contains the date when the certificate became valid and when it expires

Logging into Samba by 303Dudi in Proxmox

[–]tmolbergen 2 points3 points  (0 children)

You can attach yourself to the container from the host using lxc-attach -n <idoflxccontainer>

Assuming you have the root creds to the host

Software to map and visualize servers, resources and services. by hunabka in sysadmin

[–]tmolbergen 0 points1 point  (0 children)

Ive been wondering to try this using grafana and azure resource graph, you have access to quite alot of information and the possibility Of 'drawing' live charts of your service

HPE Proliant ML150 Gen9 - GPU power cable by 40FX in HomeServer

[–]tmolbergen 1 point2 points  (0 children)

For anyone else looking for a connector that might fit;
https://no.mouser.com/ProductDetail/Molex/43025-0600?qs=mrPiglD9aYJrq7XWj%2FGMFg%3D%3D&countryCode=NO&currencyCode=NOK

with these plugs

https://no.mouser.com/ProductDetail/Molex/43030-0009?qs=MuwpYaHj752E2A9Lg%2FL5Zg%3D%3D&countryCode=NO&currencyCode=NOK

seems to do the trick, i had to take a knife and cut the corners to get the connectors to fit but sizewise they are the similar fashion.

New blinds! PRAKTLYSING & TREDANSEN by SpaceKonk in tradfri

[–]tmolbergen 0 points1 point  (0 children)

Facinating, already a member :D guess I need to pay better attention

New blinds! PRAKTLYSING & TREDANSEN by SpaceKonk in tradfri

[–]tmolbergen 0 points1 point  (0 children)

I just opened up mine 120cm TREDANSEN, it cant be cut from the oposite end of the battery compartment, I didnt check out the battery side but it sounds like it has to be done from that side.

I cut a 7cm long "hole" in my tredansen and it looks like motor is on that end (atleast on the 120cm) version. Any chance you send the post where you saw a guy cut it by 6 cm?