-
Reddit SystemAdmin. Thanks @reddit2telegram and @r_channels.
Alternative of anydesk
using anydesk form a long time, mostly I use it for personal use. but recently its giving annoying popup upto 15 mins.
Searching for better alternative.
https://redd.it/1henp8x
@r_systemadmin
Migrate Physical machine to Hyper-V with Disk2vhd but still keep physical machine
I'm using Disk2vhd to move a graphics machine to Hyper-V so an existing employee can continue to use his computer remotely. Once its moved, I want to rename the physical machine's computer name on the domain controller so I can use it for a new employee who's working in the office. Is this even possible? Or will the physical boot machine conflict with the virtual machine on Active Directory even if I attempt to rename one of them?
https://redd.it/1hekz85
@r_systemadmin
Downloading Data Shared drive DLP Policy undetected?
Basically, I'm trying to download PDFs/powerpoints class lectures from my school shared drive on a windows PC. The windows PC is provided by the school and the shared drive is added on that pc by providing my username and password (microsoft account also provided by the school).
To access the drive, I also have to be connected to the school network either locally or via a VPN.
There is a good chance that they have a Data loss prevention (DLP) policy.
Any way I can download my lectures/PDFs undetected?
I was thinking I might be able to use the option "make available offline" which will download everything. Then turn off network and somehow copy all that data. I can add the shared drive on a personal computer, but still need to connect via VPN. If they ask me why I copied everything, I would just say, hey connection was unreliable so I clicked on "make available offline".
Please help
https://redd.it/1heihg6
@r_systemadmin
Uninstall Malwarebytes issues
As I tried to remove Malwarebytes from an old computer I ran into the problem that I had no key for it anymore and tamper protection password was set. When reading through multiple articles and discussions there seemed to be the only option to reset Windows, but after fiddling with stuff for a bit I managed to remove it without resetting/reinstalling Windows, so I thought I may summarize my steps here for other people who encounter similar problems.
1. On your Windows desktop, hover the Restart button with your mouse and hold shift when clicking on it
2. After restarting navigate to Troubleshoot \-> Advanced options \-> Command Prompt
To enter the diskpart utility enter:diskpart
Output a list of all your volumes with:list vol
As this is your Recovery Environment your Windows volume has not necessarily assigned the drive letter C:\. You can determine which one it is by looking a the sizes or labels (usually it's SYSTEM). If it has already assigned a letter like C or D just remember it and jump to step 3. Otherwise enter the following command with the Volume number at the end. In my case it was 2:sel vol 2
And assign the selected volume an unused letter like D:assign letter=D
(You can type in list vol again to make sure the Windows volume now has a letter assigned)
3. Exit the utility by entering:exit
4. Delete Malwarebytes files and folders with the following commands, using the drive letter it's mounted with (in my case D):rmdir /s /q "D:\Program Files\Malwarebytes"rmdir /s /q "D:\ProgramData\Malwarebytes"rmdir /s /q "D:\Users\<your user profile>\AppData\Local\Malwarebytes"del /f /q "D:\Windows\System32\drivers\mbamswissarmy.sys"del /f /q "D:\Windows\System32\drivers\MbamElam.sys"
(The paths were stolen from this support ticket https://forums.malwarebytes.com/topic/301144-cant-uninstall-malwarebytes-due-to-tamper-protection/ :P)
With most of the Malwarebytes files deleted your system won't boot now, as Windows will try to load Malwarebytes components during early boot process and run a system repair (which won't do anything and loop endlessly. Your MBR, BCD and system files are still fully functional after all, so sfc /scannow or a BCD rebuild won't help here). To make it functional again we will now just bypass loading of these components and clean up remaining Malwarebytes leftovers.
5. Enter the following command to exit Command Prompt:exit
6. Navigate to Troubleshoot \-> Advanced options \-> Start-up Settings and click Restart
7. In the menu after restarting select Disable early launch anti-malware protection by hitting 8 on your keyboard, to prevent Windows from loading the previously mentioned Malwarebytes components.
8. With Windows up and running again, you can now download the Malwarebytes Support Tool and select Clean in the Advanced tab to remove all the remaining Malwarebytes stuff.
9. You should now be able to reboot into your regular Windows without any issues. Enjoy!
https://redd.it/1heg704
@r_systemadmin
IT Operations Guidance
Looking for any similar blogs, tools, YouTube channels, online communities, that cover these kinds of topics as it pertains to IT Operations.
* **ITIL & ITSM Platform Management**
* **Automation Ideas**
* **Service Strategy, Design, Transition, Operation**
* …and anything else that helps improve IT Ops efficiency and effectiveness!
For example, the following are help resources for Sys Admin / Engineers that you all may be familiar with.
* **System Center Dudes**
* **Patch My PC**
* **John Savill's YouTube content**
* **MSEndpointMgr**
* **Microsoft Documentation / Announcements**
https://redd.it/1he72jf
@r_systemadmin
What tool do you use to identify obsolete protocols used in your infrastructure?
Hello,
do you have any suggestions of tools for identifying obsolete protocols used in your Information System, like NTLMv1, SMBv1, NetBIOS and other painful suff?
I know we can just Wireshark or use NDR solutions, but what about Open Source tools?
Thank you for reading
https://redd.it/1he2eyl
@r_systemadmin
here](https://github.com/dotnet/Kerberos.NET/blob/6d632041029479a2059a2e47e8956c17e843fc36/Kerberos.NET/Cache/LsaCredentialCache.cs#L124)).
Re-enabling RC4 on just the client fixes this, and tickets go back to being appended instead of getting replaced. We’ve found PSSession/CIMSession establishment to be affected by this but think there might be multiple scenarios where this behavior change could cause trouble, considering that it’s also not documented.
Curious to know, has anyone else here observed any weirdness in cross-domain operations that might be happening due to the above?
https://redd.it/1hdvqf1
@r_systemadmin
Fallout from disabling RC4 – Changes to cross-domain Kerberos ticket caching?
Since we disabled RC4 in our environment in 2023, we started observing that establishing PSSessions to multiple computers in another trusted domain started failing intermittently with errors of the following form:
```
C:\Windows\system32> New-PSSession windccnny1.winegcn.lab, winsrvcnny1.winegcn.lab, winsrvcnny2.winegcn.lab
New-PSSession : [windccnny1.winegcn.lab] Processing data from remote server windccnny1.winegcn.lab failed with the following error message: The user name or password is incorrect. For more information, see the about_Remote_Troubleshooting Help topic.
At line:1 char:1
+ New-PSSession windccnny1.winegcn.lab, winsrvcnny1.winegcn.lab, wins ...
+ ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
+ CategoryInfo : OpenError: (System.Managemen.....RemoteRunspace:RemoteRunspace) [New-PSSession], PSRemotingTransportException
+ FullyQualifiedErrorId : LogonFailure,PSSessionOpenFailed
Id Name ComputerName ComputerType State ConfigurationName Availability
-- ---- ------------ ------------ ----- ----------------- ------------
2 WinRM2 winsrvcnny1... RemoteMachine Opened Microsoft.PowerShell Available
3 WinRM3 winsrvcnny2... RemoteMachine Opened Microsoft.PowerShell Available
C:\Windows\system32> New-PSSession windccnny1.winegcn.lab, winsrvcnny1.winegcn.lab, winsrvcnny2.winegcn.lab
New-PSSession : [windccnny1.winegcn.lab] Processing data from remote server windccnny1.winegcn.lab failed with the following error message: The user name or password is incorrect. For more information, see the about_Remote_Troubleshooting Help topic.
At line:1 char:1
+ New-PSSession windccnny1.winegcn.lab, winsrvcnny1.winegcn.lab, wins ...
+ ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
+ CategoryInfo : OpenError: (System.Managemen.....RemoteRunspace:RemoteRunspace) [New-PSSession], PSRemotingTransportException
+ FullyQualifiedErrorId : LogonFailure,PSSessionOpenFailed
New-PSSession : [winsrvcnny1.winegcn.lab] Processing data from remote server winsrvcnny1.winegcn.lab failed with the following error message: The user name or password is incorrect. For more information, see the about_Remote_Troubleshooting Help topic.
At line:1 char:1
+ New-PSSession windccnny1.winegcn.lab, winsrvcnny1.winegcn.lab, wins ...
+ ~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
+ CategoryInfo : OpenError: (System.Managemen.....RemoteRunspace:RemoteRunspace) [New-PSSession], PSRemotingTransportException
+ FullyQualifiedErrorId : LogonFailure,PSSessionOpenFailed
```
An important step here is the use of Windows Credential Manager so that the correct user account in the other domain is used for Kerberos authentication:
```
PS C:\Windows\system32> cmdkey /list
Currently stored credentials:
Target: Domain:target=*.winegcn.lab
Type: Domain Password
User: testuser@winegcn.lab
```
Things work fine when connecting to one computer at a time across domains or connecting to multiple computers within the same domain.
We’ve now tried to build a lab to reproduce this. The lab has 2 domains with physically distant domain controllers and forest trust between them. There are 3 other servers apart from the DCs in each site. We then set up a single GPO to disable/enable RC4.
Based on some experimentation, we think we have some leads about what might be happening:
1. With RC4 disabled - Looking at the output from klist, requesting service tickets for computers in the other domain - one after the other - leads to existing service tickets getting replaced. This is different from what happens in the same domain case where tickets are appended. I’ve attached a sample image below showing the ticket replacement behavior we’re seeing. A service ticket for `winsrvcnny2.winengcn.lab` replaces the earlier one for `winsrvcnny1.winengcn.lab`:
```
PS C:\Windows\system32>
I found my job listed on Indeed today.
It's a tale as old as time. My company was acquired by private equity in October. New owners come in with big ideas and no understanding how things actually work.
I'm the only IT guy. They loaded me up with project after project and then got upset when I wasn't getting things done fast enough. I finally snapped and said I'm one guy who can't do everything at once and the new owner said he "doesn't like my attitude."
A few hours later, my job has been listed on Indeed.
I only found it because I was on Indeed looking for jobs lol. I saw the writing on the wall even before finding direct evidence that they were seeking to replace me. If they don't fire me, I'm quitting as soon as I find somewhere else to work. But still... I feel weird.
I've been here for nearly 6 years. I liked my job. I enjoyed keeping the network running to the best of my abilities, and I feel like I did a pretty dang good job of it - the systems I built were quite reliable, and had very little downtime over the last half a decade. It's... Upsetting, to have someone with no experience and no understanding of what I do come in, dismiss my work, insult me, and then publicly seek my replacement.
I hope I'll be okay. I feel like I have a pretty employable skillset as an IT generalist, but I've also heard some horror stories about the current job market which have me worried.
Anyway, if anyone has any advice for me, or just some words of encouragement, I'd really appreciate it.
https://redd.it/1hdy1n7
@r_systemadmin
What is the biggest pain point you wish Microsoft solved for you?
Anything?
https://redd.it/1hdrrh5
@r_systemadmin
Why do you automate?
So at some point, we all automate parts of our job and our workplace, or our workplace asks us to automate stuff.
So WHY do you do it? I'm sure there's alot of simple reasons for simple things but what about the complex stuff?
https://redd.it/1hdnqs4
@r_systemadmin
Christmas win with no remorse
I have contracted for the same company for the past 3 to 4 years. Around years 2 to 3 I started teaching their employees about their equipment. I was offered a full time roll with the company at a demotion and pay cut within the first year. I turned this down as it appeared like career suicide. I was put on a 7 month "vacation" when I turned down the roll. They hired two people to replace me. One lasted 2 weeks. The other left shortly after my return.
Well they just told me contractors had a mandatory 2 weeks off for Christmas, pretty standard and I had asked about it at the start of November but no one "knew" anything. When informed I politely sent out an email thanking them for their time and the stated contract would end after 2 weeks as I am leaving.
I pressed a easy apply button on LinkedIn, got an offer for a raise and promotion, and now instead of a 2 week furlough I will have a 1 week vacation and it's on to better things.
Looking forward to stepping into my new gig and wanted to share my holiday cheers.
MERRY CHRISTMAS / HAPPY HOLIDAY / LOOKING FORWARD TO 2025
https://redd.it/1hdm9as
@r_systemadmin
Why does Microsoft make our life’s so hard…
Just a little bit of a rant, so I was trying to install Visio through intune. So you would think that deploying an office with Visio would not uninstall the whole office suite and leave you with just visio.
Well no it completely nukes office.
When you go to add apps, all type Microsoft 365 apps or later, make sure you fully configure all the other suites and not just the app you need. I guess it’s my fault for not reading?
Anyways fully automated installation of visio and project, with dynamic groups now.
I know there were other ways to do this, but figured this was the easiest way.
Just a little bit of learning. But really should have made it more specific that selecting only visio or only project would uninstall the whole office suite
Well that’s why I keep a couple of older laptops at my house just for testing
https://redd.it/1hdfm8s
@r_systemadmin
SSL Madness
Recently had the "pleasure" of oversight on a security camera system installation on a client site. Did not think much of it bar assigning an IP and leaving the rest up to the vendor.
Issue came when they went to enable remote streaming. The site uses a Remote Gateway server for access to (inhouse) Exchange, Remote Desktop Services and so on so I did some port forwards for the streaming.
I suddenly noticed that the appliance was using a self-signed certificate. I put up with it with network kit as only IT staff would access and should know what they are doin. However, I have a pet hatred of End Users clicking thought a invalid Certificate warning and said I would get a FQDN cert for the device.
Thats when the fun started. The certificate request generator put out invalid requests, Talked to my Cert Authority who were great but we could find no resolution. Ended up talkin to Sectigo themselves who said the requests were flawed (and gave the technical reason) . Went back to the vendor who went to the supplier and was given a couple of firmware updates for the device but still nada.
I gave the vendor the full technical explanation who duly passed it up the chain. Answer back was that I was being a prick and the industry standard was to use a self-signed cert and the OEM was unlikely to change the Request functionality.
Ok. So a security appliance sending security footage over the internet using an unknown (and non-compliant) self-signed SSL stream is the industry standard??
Personally I find it appalling that even highend security appliances (this one was over AUD 11k) find it churlish that the streaming should be done over an industry standard SSL stream.
Question is, am I being a prick about this?
https://redd.it/1hd749c
@r_systemadmin
Problem with VEEAM
Hello, i just has my first time encounter with Veeam agent and Veeam backup and replication Community Edition.
Both programs were installed before i even starter working at this place. Agent is configured on 1 Server and job is configured to backup volumes to shared folder on different PC. On PC there is Veeam community edition and boss told me to figure out how to get a VHDX files from backup files of server and then check files and programs on hyper-v VM created from backup, it’s all to check the backups for any errors.
Unfortunately I don’t see server backup files in Veeam community edition and I don’t have idea how to create that VHDX or if it is even possible.
Both programs are on free edition.
Sorry for anything that’s hard to understand as English is not my first language, any help would be greatly appreciated.
https://redd.it/1hdbfbq
@r_systemadmin
Need help setting up a server for a small office
Hi, our family has a small business in a relatively underdeveloped country. And it's doing well! Were starting to handle a lot of work now.
Something that I really want to implement is a storage server for file sharing.
There are 30-40 employees using company PCs that all hold the files for their own department.
I'm wondering what the cheapest and easiest way to go about this is. Our only IT guy says we need a VM server with a domain controller for access management (~$7000) but I thought you could do this on a NAS with windows groups?
Our hardware rarely gets changed and our office will not be growing past 40 employees.
Any advice is appreciated thank you
(I've posted this in other related subs, not knowing where it fit best)
https://redd.it/1hen89s
@r_systemadmin
I am stuck and demoralized
I am becoming so demoralized with my inability to escape help desk. I started my career working in call centers for a few years, and the last 4-5 years I've been in increasingly responsible Help Desk roles.
I read these stories about people being in help desk for a year and then somehow becoming a System Admin, regardless of they have certificates or not. I am so frustrated because I recently applied to an internal posting for Collaboration Engineer. someone 4 years my junior in IT experience was picked because I apparently didn't articulate specifically how I'd set up 365. So I feel completely slapped in the face, my experience in the field has meant nothing. I just want to walk out most days.
I read mixed opinions on whether I should get more certs, on whether I should do a homelab because real world experience is desired. I'm just at my wits end here and wonder if I'm in the wrong field, or what is wrong with me that I can't get a System Admin job. Is it because I'm a woman?? Ridiculous thought yes, but again reading how some people get Sys Admin after 1-2 years in help desk is just crazy to me since I'm struggling at the 7 years mark.
I want to get out of my current employer because of the total dis on my experience, but it's just not looking good. I'm currently a System Specialist 2 and I make about $87k. My previous manager promoted me from a level 1 to a 2 because they saw my experience and that was so great, and now I'm stuck again. I can send my resume to anyone who wants to take a peek, but I have extensive experience in Active Directory, Microsoft Hybrid environment, troubleshooting, and more. I have my A+ cert too.
Hopefully I don't get skewered here but just hoping people can look at my resume at least and tell me what I'm doing wrong.
Thanks
Edit:
- I have a BA, Double Major in Anthropology and Psychology
- I'm currently leading an internal AD cleanup project, have been writing my own PowerShell scripts for the last 3 years, and have led a couple other things on my own
- I am so focused on the Sys Admin Title. Maybe that's more of a personal issue? I get hyper focused on stuff .
- I am applying externally like crazy, I've sent probably hundreds of applications
- part of the issue I think my pay is higher than a lot of Sys Admin postings I find so id have to take a pay cut
- I have opened up my applications to contract work and have contacted several recruiters
- I've been asking the internal Systems team to include me on server builds and other Sys Engineer stuff they do
- I have trainings scheduled that current job will pay for
- I have some equipment at home that I can set up for a home lab
- I agree with many of you and need to keep working on certs. I think I have time blindness and just work away without trying hard enough on self improvement
https://redd.it/1hedm96
@r_systemadmin
What is a good replacement for Crystal Reports? I also need a tool to schedule and send the Crystal Reports.
I work for a non profit and we currently use Crystal Reports and Logicity to schedule and deliver via email, plus Bezlio allows users to run Crystal Reports on demand. Need a solution that is not too expensive. Would appreciate any guidance!
https://redd.it/1hec81x
@r_systemadmin
Netware 3.12 login client
A client wants me to copy some old files from a Novell Netware 3.12 server. I need the NetWare LOGIN client so I can log in from a workstation. Any ideas where I could download it from?
https://redd.it/1hedrf2
@r_systemadmin
Executive demanding send permissions to ALL DG's
Hi All
As title suggests, new executive is demanding the permissions to send to ALL distribution groups, even ones that they'll never use. This includes DGs with external users for suppliers etc outside of their job role. Definitely more of an ego thing and goes against the 'least privileged' ideology that I've been taught.
Am I going insane or is this a completely dumb and insecure request? If the account gets jacked, you're talking reputational damage or possible data protection implications.
That's my view anyways.
https://redd.it/1he9hp0
@r_systemadmin
Are there any products that Microsoft makes that you actually like to use and think is the best in the industry?
Years ago, I worked with Anderson Consulting (now Accenture) at a client when I was a consultant. And the consultant express frustration with the client because they were using what he considered "best in breed" IT solutions and replacing them with Microsoft products. He always said "Microsoft makes the widest breadth of products for enterprise IT, but not a single one of them is best in breed."
My use of Microsoft products has diminished over the years. Linux and Oracle has replaced Windows Server and MS SQL for a lot of what I support. I supported Exchange for a while there, but that pain went away with Microsoft 365 Subscriptions for everyone. Now someone else has to deal with Exchange.
I've been at this for 38 years now, and I can't say I've enjoyed using an Microsoft products.
https://redd.it/1he4nlv
@r_systemadmin
klist get HTTP/winsrvcnny1.winengcn.lab
Current LogonId is 0:0x1173f3
A ticket to HTTP/winsrvcnny1.winengcn.lab has been retrieved successfully.
Cached Tickets: (2)
#0> Client: testuser @ WINENGCN.LAB
Server: krbtgt/WINENGCN.LAB @ WINENGCN.LAB
KerbTicket Encryption Type: AES-256-CTS-HMAC-SHA1-96
Ticket Flags: 0x40e10000 -> forwardable renewable initial pre_authent name_canonicalize
Start Time: 12/12/2024 5:45:32 (local)
End Time: 12/12/2024 15:45:32 (local)
Renew Time: 12/19/2024 5:45:31 (local)
Session Key Type: AES-256-CTS-HMAC-SHA1-96
Cache Flags: 0x1 -> PRIMARY
Kdc Called: windccnny1.winengcn.lab
#1> Client: testuser @ WINENGCN.LAB
Server: HTTP/winsrvcnny1.winengcn.lab @ WINENGCN.LAB
KerbTicket Encryption Type: AES-256-CTS-HMAC-SHA1-96
Ticket Flags: 0x40a10000 -> forwardable renewable pre_authent name_canonicalize
Start Time: 12/12/2024 5:45:32 (local)
End Time: 12/12/2024 15:45:32 (local)
Renew Time: 12/19/2024 5:45:32 (local)
Session Key Type: AES-256-CTS-HMAC-SHA1-96
Cache Flags: 0
Kdc Called: windccnny1.winengcn.lab
PS C:\Windows\system32> klist get HTTP/winsrvcnny2.winengcn.lab
Current LogonId is 0:0x1173f3
A ticket to HTTP/winsrvcnny2.winengcn.lab has been retrieved successfully.
Cached Tickets: (2)
#0> Client: testuser @ WINENGCN.LAB
Server: krbtgt/WINENGCN.LAB @ WINENGCN.LAB
KerbTicket Encryption Type: AES-256-CTS-HMAC-SHA1-96
Ticket Flags: 0x40e10000 -> forwardable renewable initial pre_authent name_canonicalize
Start Time: 12/12/2024 5:46:09 (local)
End Time: 12/12/2024 15:46:09 (local)
Renew Time: 12/19/2024 5:46:09 (local)
Session Key Type: AES-256-CTS-HMAC-SHA1-96
Cache Flags: 0x1 -> PRIMARY
Kdc Called: windccnny1.winengcn.lab
#1> Client: testuser @ WINENGCN.LAB
Server: HTTP/winsrvcnny2.winengcn.lab @ WINENGCN.LAB
KerbTicket Encryption Type: AES-256-CTS-HMAC-SHA1-96
Ticket Flags: 0x40a10000 -> forwardable renewable pre_authent name_canonicalize
Start Time: 12/12/2024 5:46:09 (local)
End Time: 12/12/2024 15:46:09 (local)
Renew Time: 12/19/2024 5:46:09 (local)
Session Key Type: AES-256-CTS-HMAC-SHA1-96
Cache Flags: 0
Kdc Called: windccnny1.winengcn.lab
```
2. Depending on the latency between sites and the order/timing of tickets being replaced, a race condition between session establishment and ticket replacement may be triggered which leads to these intermittent errors during PSSession establishment.
This is also why we observe this more frequently between domains that are physically distant. **It appears that the errors in PSSession establishment are more of a side effect, the real culprit appears to be the above-described behavior change with Kerberos ticket caching.**
Another observation is that after disabling RC4, a `KDC_ERR_WRONG_REALM` error is seen on Wireshark every time a new service ticket is requested for another cross-domain computer. With RC4 enabled, the error only appears once (when a DC in the same domain is contacted and a referral for the other domain is obtained), and subsequent ticket requests directly go to the DC in the other domain. **I've attached GIFs in the comments illustrating this behavior.**
Can’t be sure if that’s what is going on, but with RC4 disabled, the local Kerberos cache is probably flushed every time a `KDC_ERR_WRONG_REALM` error is seen leading to all the above. Interestingly, this behavior might be similar to how `Kerberos.NET` handles Kerberos errors - by flushing the cache and then retrying to obtain a ticket ([reference to that
My trip to London Science Museum
Celebrated my birthday yesterday, went on a solo trip without wife and kids to London to unwind and reflect on life. Took pictures some pictures of technology gallery at the museum. https://imgur.com/a/uhbEOzy
https://redd.it/1hdxu8o
@r_systemadmin
How do you familiarize users with changes so that they don't revolt?
What ideas and tactics do you use to help users familiarize with changes ahead in time?
https://redd.it/1hdu0z2
@r_systemadmin
So guess what new requirement has come down from upper management
I've been given the order to include new keywords to flag in our monitoring appliance. Take a wild guess what our CEO wants flagged and collected for review each day? Hint: it has something to do with something you're seeing in the news each and every day for the past week. I didn't think things would get his far but man what a crock. sigh salute and execute...
https://redd.it/1hds7se
@r_systemadmin
Internal IT, have you gone from ignored or hated to appreciated at your company? How did you do it?
Just had our yearly company lunch where we went over the years financials and a general business recap. We are a company of roughly 200 people. This year they decided to have the managers and directors stand up and give little speeches showing appreciation for all of the work and effort everyone has put in. Every department and Every. Single. Person. got individual kudos and pats on the back from everyone... with the exception of IT. Both our manager and director didn't say shit about the IT department even though we were extremely short-staffed the majority of the year and we made sweeping changes that improved everyone's lives.
This isn't a resume-generating event. I like where I work (even though now I believe everyone has a very mild disdain for us), and our pay and benefits are good. I am already well aware that IT is almost universally underappreciated. For those unicorns among us who feel appreciated where they work when there was no appreciation before, how did it change?
https://redd.it/1hdmti4
@r_systemadmin
Are Fridays slow, or is it just the company I work at?
The title sort of says it all. Right now, I am currently a Jr. Sys Admin at a smallish business. We have an IT team of 5 people, and well, by the time Friday rolls around, I feel like we are all sort of twiddling our thumbs just trying to pass time.
When I was hired on, one of the things I was told was "Please don't make any major changes to anything on Friday because we don't want anything to happen where we either have to stay late on Friday, or Monday morning will be a disaster." So I was curious, do you all who work in IT have a lot of downtime on Friday? Or is it just me?
https://redd.it/1hdi0p7
@r_systemadmin
Baffled by lack of fundamental troubleshooting knowledge
Our firm hosts a website at GoDaddy. Two days ago I received an automated email alert from GoDaddy that the DNS test was failing.
Used nslookup to test their DNS. The server listed as SOA could resolve its own host name but could not resolve our domain name. The secondary DNS server couldn't resole it's own host name. The primary server couldn't resolve the hostname of the secondary. Clearly DNS wasn't working correctly.
Called GoDaddy and spoke to six different support techs, including two different levels of their "Advanced" tech support over 2.5 hours.
I provided the screenshots of the nslookups and the automated alert from GoDaddy.
Multiple GoDaddy techs who supposedly support DNS issues asked me what nslookup was because they had never heard of it. ?????
All they could do was provide a screenshot of their port 53 testing. Port 53 simply being open meant no problems. They couldn't comprehend actual testing of the zone files that failed.
I've been doing this for 30 years and have worked in some very high volume environments, such as IBM, with 30K+ trouble tickets per month. We wouldn't have tolerated this level of incompetence. I shouldn't know more about my vendors product or environment than they do.
https://redd.it/1hdesie
@r_systemadmin
How to Linux
I've been as a network/sysadmin for a long time. I have no issues working in a CLI be it Windows, the multiple Cisco flavors, PAN, and heck, I even managed a Nortel Option 11C and became quite competent with that bizarre CLI. Above and beyond being competent navigating these systems I am a competent manager of them and understand how to keep them functional and secure, but the few Debian systems I have really kick my butt. I can't seem to form any muscle memory when working in them, besides the basics I have to look up commands every time. When I think about making a change to a Cisco switch config or a windows server I feel like I have a well worn road map on how to get the job done. When I want to know the status of something I instinctively know what commands to run. It's like the switch hasn't yet clicked in my brain there has been no aha moment. Are there any good resources for becoming a better Linux sysadmin.
https://redd.it/1hdd1dr
@r_systemadmin
Microsoft Recall screenshots credit cards and Social Security numbers, even with the "sensitive information" filter enabled
This can turn out into a nightmare if they keep pushing this no one ever has been asked for.
https://www.tomshardware.com/software/windows/microsoft-recall-screenshots-credit-cards-and-social-security-numbers-even-with-the-sensitive-information-filter-enabled
https://redd.it/1hd70ag
@r_systemadmin