Chattanooga
Unix
Gnu
Android
Linux
Users
Group

 

Hot Topics:

Sponsoring:

Fiber termination

From: David White 
------------------------------------------------------
I have an acquaintance who needs fiber terminated and "an access point
setup" (whatever that means). Not sure if the AP is wireless, not sure if
it's fiber, or what.

Regardless, this guy needs someone to terminate a single fiber connection
for him, and I don't do, know, or have the tools for fiber terminations.

If you're interested in doing the job, contact me off list and I'll put you
in touch.

-- 
David White
Founder & CEO

423-693-4234
@developCENTS 
https://developcents.com

*Develop CENTS*
Computing, Equipping, Networking, Training & Supporting for small
businesses and nonprofits
Providing: Web Hosting, Technical Support & IT Consulting

*Signup to our Newsletter at
https://developcents.com/contact/
*

Kaspersky for Mail Server Antivirus

From: David White 
------------------------------------------------------
Does anyone have experience running the Kaspersky KLMS (Kaspersky Security
8.0 for Linux Mail Server)?

According to official documentation, the software requires a minimum of 2
GB of RAM and 4GB of swap. That seems utterly ridiculous to me.

I just finished installing a trial version of it into a CentOS 7 machine
inside Virtual Box with 1GB of RAM and no swap. Granted, this VM doesn't
have any users, but I can confirm that all of the various kaspersky daemons
and such are running, and there's still no load.

Given that my mail server infrastructure has very low volume (at max on a
busy day, it probably handles less than 500 legitimate emails in a given
day), I'm thinking I'm going to give it a try.

I just recently became a Kaspersky reseller, so have access to 1 year of
free licensing. Would probably be better than ClamAV.

-- 
David White
Founder & CEO

423-693-4234
@developCENTS 
https://developcents.com

*Develop CENTS*
Computing, Equipping, Networking, Training & Supporting for small
businesses and nonprofits
Providing: Web Hosting, Technical Support & IT Consulting

*Signup to our Newsletter at
https://developcents.com/contact/
*

Distribution experienced opinions

From: Unkmar 
------------------------------------------------------
I prefer stability over new features.

Debian: (My favorite)
  I use the stable version, so it is always behind the times. The install
is incredibly versatile.  Easy to follow the guide for a once size fits all.
When you don't know what something means, just take recommended
or hit Enter.  If you want a light weight server, easy enough to figure out.
You wan't a very light weight install and then extremely minimal Desktop
enviroment, sort of like a ChromeBook. That is also pretty easy to do.
The default Desktop install is gnome3.  I've tried it, I mean seriously
tried it for over a month.  I hate it.  Seriously, I hate gnome3. I
currently
use LXDE. Wait, I'm getting side tracked.  Eh, I like Debian, everything
after that is me nitpicking packages and settings.

Red Hat:
  I used it so long ago I don't remember what it was like.

Mandrake: (Now Mandriva)
  My first experience with Linux that I can actually recall.
My thoughts at the time, Linux is almost ready to replace Windows on the
Desktop.  When they get it together and finish some things up, I'll switch.
(I didn't know. I thought of Linux as a smaller version of Microsoft but
split
up among a few groups. Maybe 5. I had no idea of the true scope of
GNU/Linux)

Ubuntu: (My first REAL use of Linux)
  It was and is great. I didn't like its instability so I moved to its
parent, Debian.
I still sometimes use a Live Ubuntu CD because Debian doesn't do that.
(A third party provides a Debian Live CD option that has never worked for
me.)

Suse:
  The install had a learning cliff, No curve.  I didn't get far enough to
evaluate
the actual distro.

Gentoo:
  I hate the long compile time for installing anything. I prefer to date
before marriage. That compile time feels like a serious commitment.

Puppy:
  Feels like a toy.  Honestly, it is a wonderful tool but the install feels
more
like an infection.  It is a light weight distro.  Has a light weight
install.
Has no method of making it fat even if you prefer a few bells and whistles.
You can't choose partition sizes or anything. (Puppy would make a great
recovery install for if something goes horribly wrong. Oh, wait!  Most
distros
already have that as a reasonable built in option. What was puppy for
again?)
Oh, It is a great small distro that boots into RAM from CD where you can
then remove the CD and use the drive to burn other CD's if you wish.
Many other tools available, That is just the one that stuck in my mind.

Red Hat:
  Um, just no!  My dislike of Red Hat has been strong enough for me to
effectively wipe my memory of exactly why.

Tiny Core:
  Oh great spaghetti monster.  Please take it back from where it came.
Um, it lives up to its name. It is Tiny and merely a Core.  You get to
struggle
for a few minutes to get networking so that you can download anything.
It has a quirky package management system (PMS) that you must learn
to in order to do anything. Here is a list of somethings don't get until you
use the PMS, web browser (GUI or CLI), partitioning tools.  Actually,
how about I list what you do get. The ability to move the mouse around,
point, click.  Possibly a CLI so you can run ls, head, cat, and more.
I'm pretty sure that less is missing until you PMS it.  I don't know if it
even has nano, pico, or vi without the PMS.  Seriously, it is a Tiny Core.

Derivatives: (I generally avoid them)
  Reasoning: Fixes to the problems lag behind the parent.
Find a problem, and a fix in the parent.  You constantly use the parent as
a guide on how to fix the child problems and sometimes that doesn't work.
Then you are left with a child that has the problem, can't find a fix
because
so few are using, reporting, and supporting the child. You are sort of left
out
in the cold.

Thanks FOSS

From: Matt Keys 
------------------------------------------------------
Here's Jack before the injury ..

https://drive.google.com/open?id=3D0B0WfOdfLSM3Sd0VLVUxySEh6TU0


and after ..


https://drive.google.com/file/d/0B0WfOdfLSM3SY3g2VDJReDFrVjg/view?usp=3Dsha=
ring


OT - Geeky coworking space

From: David White 
------------------------------------------------------
Mike and I have corresponded a little bit over the past day, and we
actually randomly ran into each other this evening at a networking event
(not literally). He knows what I'm about to say.

I'm (possibly) looking for 2 desks. Not a private office, that's too
expensive right now. A coworking space, where I would have my own desks - 1
for me, 1 for an employee - would be just the ticket.

Downtown isn't really a good option for me, due to the nature of my
business (going in and out a lot, travelling to client offices, carrying
computers / networking / server equipment in and out all the time, etc...).
Also, Society of Work seems expensive. So that's not one I'm willing to
consider.

I've posted a part-time (to turn into a full time) job position at
https://developcents.com/jobs/, which will give you an idea of what the 2nd
person would be doing.

Besides Mike's place near Signal Mountain, anyone have an office space, or
know of someone who does, that would be an idea fit for what I'm looking
for?

Must haves are phone, internet, and desk.

Access to a private meeting room is a bonus!
-- 
David White
Founder & CEO

423-693-4234
@developCENTS 
https://developcents.com

*Develop CENTS*
Computing, Equipping, Networking, Training & Supporting for small
businesses and nonprofits
Providing: Web Hosting, Technical Support & IT Consulting

*Signup to our Newsletter at
https://developcents.com/contact/
*

If you use Symantec, update it now.

From: David White 
------------------------------------------------------
PSA.

This was just made public less than an hour ago. I read through the notes.

This is very bad:
https://bugs.chromium.org/p/project-zero/issues/detail?id=820

If you run Symantec antivirus scanners on any servers (Linux or Windows -
both are affected), this is especially important, but end-user workstations
are also affected.

-- 
David White
Founder & CEO

423-693-4234
@developCENTS 
https://developcents.com

*Develop CENTS*
Computing, Equipping, Networking, Training & Supporting for small
businesses and nonprofits
Providing: Web Hosting, Technical Support & IT Consulting

*Signup to our Newsletter at
https://developcents.com/contact/
*

WD's Pi Drive

From: David White 
------------------------------------------------------
This is kind of clever: WD has a special promo going on right now for a
314GB drive that is specifically designed to be more efficient with
raspberry pi's for $31.42.

http://wdlabs.wd.com/products/wd-pidrive-314gb/

Kind of makes me want to get a raspberry pi, since I've never actually
played with one before...

-- 
David White
Founder & CEO

423-693-4234
@developCENTS 
https://developcents.com

*Develop CENTS*
Computing, Equipping, Networking, Training & Supporting for small
businesses and nonprofits
Providing: Web Hosting, Technical Support & IT Consulting

*Signup to our Newsletter at
https://developcents.com/contact/
*

Ubuntu Xenial

From: David White 
------------------------------------------------------
Have any of you guys played with the Betas or RCs for Xenial? Looking at
https://wiki.ubuntu.com/XenialXerus and
https://wiki.ubuntu.com/XenialXerus/ReleaseSchedule, it looks like the
final release is coming out tomorrow.

I've been recently thinking that it would be a good idea to do a backup of
all my data and go through a clean install of Ubuntu just to get things
fresh again.

Tomorrow might be the day to do it! :)

-- 
David White
Founder & CEO

423-693-4234
@developCENTS 
https://developcents.com

*Develop CENTS*
Computing, Equipping, Networking, Training & Supporting for small
businesses and nonprofits
Providing: Web Hosting, Technical Support & IT Consulting

*Signup to our Newsletter at
https://developcents.com/contact/
*

Way off topic: Places to Fish

From: David White 
------------------------------------------------------
Sorry for the noise, but I'm guessing a good number of you folks like to
fish and get outdoors.

I used to be a extremely avid fisherman growing up, but haven't been in
several years.

My wife and I are making some dietary changes for her health, and she will
be following a very strict nutritional plan for the next 3+ years (I don't
like the word "diet" especially since the goal isn't to lose weight).

I think I can save money if I fish...

What are some good places to go fishing near Chattanooga that is also a
non-polluted source (where I can eat the fish)?

If any of you guys want to make a day or weekend of it sometime, hit me up.
My dad has quite a bit of fishing gear, and is no longer able to fish due
to his own medical issues, so I'm going to be getting that from him in the
next few weeks...

We can talk Linux to keep it on topic.

- David

-- 
David White
Founder & CEO

423-693-4234
@developCENTS 
https://developcents.com

*Develop CENTS*
Computing, Equipping, Networking, Training & Supporting for small
businesses and nonprofits
Providing: Web Hosting, Technical Support & IT Consulting

*Signup to our Newsletter at
https://developcents.com/contact/
*

Justin Trudeau explains quantum computing

From: David White 
------------------------------------------------------
This is a great story...
http://www.dailymail.co.uk/news/article-3543380/Not-just-pretty-face-Justin-Trudeau-stuns-room-reporters-scientists-perfect-answer-quantum-computing-question.html

Full video:
https://www.youtube.com/watch?v=Eak

Dual Wan (Failover) on Ubiquiti USG-Pro

From: David White 
------------------------------------------------------
Does the USG-Pro support automatic failover (and recovery)?

Better yet, does anyone know if the USG-Pro can support a true HA
environment where I have not 1 but 2 USG-Pros as gateways?

WAN1 -> USG-Pro1 -> Managed Switch1
WAN2 -> USG-Pro2 -> Managed Switch2

(And, of course, switch 1 & 2 are connected to each other)

... Or would I need to go with pfSense (or Cisco, Juniper, etc...)?

I'm reading conflicting reports online on whether Ubiquiti devices can
handle this type of setup...

-- 
David White
Founder & CEO

423-693-4234
@developCENTS 
https://developcents.com

*Develop CENTS*
Computing, Equipping, Networking, Training & Supporting for small
businesses and nonprofits
Providing: Web Hosting, Technical Support & IT Consulting

*Signup to our Newsletter at
https://developcents.com/contact/
*

Part time Linux Opportunity

From: David White 
------------------------------------------------------
I was recently contacted by a local guy who isn't on Chugalug who needs
someone on a part-time basis (maybe around 15-20 hours/week) to unmount NFS
shares on several Linux boxes and then mount new NFS shares in the old
shares' place.

There's a huge retailer that is apparently migrating old NAS devices to new
NAS devices.

They have 900 hours budgeted for this, and the plan is to work 3-4
days/week with the goal of being done by September 1.

Why they're only outsourcing the NFS umount / mount task is beyond me
(maybe there's a bit more complexity to the project then I'm aware of), but
it sounds like a really simple, straight forward task.

I was *really *tempted to take it, but I can't commit that much time, as it
would prevent me from being able to schedule work with my existing clients,
and the schedule would change on a week-by-week basis. My own schedule
changes pretty constantly, and I need more than a week's notice sometimes
for my own clients....

Work is to be done during business hours, and it sounds like the process
would be to unmount the share, wait around while the NAS administrators
move the data, and then do the mount.

Contact me off list if you want an introduction. Pay isn't great - they
said they can do around $45/hour.

- David

-- 
David White
Founder & CEO

423-693-4234
@developCENTS 
https://developcents.com

*Develop CENTS*
Computing, Equipping, Networking, Training & Supporting for small
businesses and nonprofits
Providing: Web Hosting, Technical Support & IT Consulting

*Signup to our Newsletter at
https://developcents.com/contact/
*

Critical Samba patch coming April 12

From: David White 
------------------------------------------------------
This looks ominous. FYI.

http://badlock.org/

-- 
David White
Founder & CEO

423-693-4234
@developCENTS 
https://developcents.com

*Develop CENTS*
Computing, Equipping, Networking, Training & Supporting for small
businesses and nonprofits
Providing: Web Hosting, Technical Support & IT Consulting

*Signup to our Newsletter at
https://developcents.com/contact/
*

Public IP Address Weirdness (I'm on EPB)

From: David White 
------------------------------------------------------
I'm troubleshooting why I can't seem to connect to my OpenVPN server (on
pfSense) here in my home office, and have stumbled upon something really
weird.

Numerous websites including http://mxtoolbox.com/WhatIsMyIP/, Google (when
I search for what is my IP), etc... indicate that I have 1 IP address.

The WAN interface on my pfSense Dashboard indicates a different IP address.

When I look at the pfSense console, I have a /20 DHCP address, and the IP
address reported by Google, What Is My IP, etc... isn't an IP that falls
into that /20.

Is this some sort of EPB misconfiguration or weirdness going on?

I'm starting to think that my OpenVPN server is *not* the reason I'm unable
to actually connect to it... Because I moved a few weeks ago, and it was
working fine before I moved!

-- 
David White
Founder & CEO

423-693-4234
@developCENTS 
https://developcents.com

*Develop CENTS*
Computing, Equipping, Networking, Training & Supporting for small
businesses and nonprofits
Providing: Web Hosting, Technical Support & IT Consulting

*Signup to our Newsletter at
https://developcents.com/contact/
*

Apple no longer immune to ransomware

From: David White 
------------------------------------------------------
It was only a matter of time....

http://www.reuters.com/article/us-apple-ransomware-idUSKCN0W80VX

-- 
David White
Founder & CEO

423-693-4234
@developCENTS 
https://developcents.com

*Develop CENTS*
Computing, Equipping, Networking, Training & Supporting for small
businesses and nonprofits
Providing: Web Hosting, Technical Support & IT Consulting

*Signup to our Newsletter at
https://developcents.com/contact/
*

Linode Deploys Servers with the Same SSH Key

From: David White 
------------------------------------------------------
I know some of you guys use Linode (including me - for some of my stuff).
Fortunately, I don't use Ubuntu.

But this is serious stuff:
http://news.softpedia.com/news/linode-vps-host-accidentally-deploys-servers-with-the-same-ssh-key-500192.shtml

I'm quickly losing faith with these guys and may decide to migrate more of
my stuff off of them in the future...

-- 
David White
Founder & CEO

423-693-4234
@developCENTS 
https://developcents.com

*Develop CENTS*
Computing, Equipping, Networking, Training & Supporting for small
businesses and nonprofits
Providing: Web Hosting, Technical Support & IT Consulting

*Signup to our Newsletter at
https://developcents.com/contact/
*

Possible to use switch behind EPB hand-off?

From: David White 
------------------------------------------------------
I have a client who has 2 static IP addresses that are assigned to 2
separate firewalls.

The client has 2 retail stores right next to each other. Same parent
company owns the retail stores, but different IP address for each store,
and the powers that be for each retail store requires separate hardware,
and doesn't want their own firewall touching the other retail store's
firewall.

They even have refused to configure one of the firewalls to act as a
passthrough to the 2nd firewall.

I talked to someone from EPB earlier today, as I wanted to get a 2nd
hand-off from the white Alcatel-Lucent Fiber-to-Copper boxes that EPB has
on-site. That box has 4 LAN ports, but only 2 are in use (1 is for phones).

I was told that to get a 3rd port activated for the 2nd IP address, that we
would have to pay for a completely separate EPB connection.

So the guy I talked to suggested getting a router instead. But each of the
corporate firewalls are configured on the public IP addresses. So if I put
in a router, I would need to get a 3rd IP address, and then have the
firewalls reconfigured to use the router's public IP address as the
gateway, right?

I asked about putting in a switch in instead, and the guy said that
wouldn't work.

But I don't see why it wouldn't work, since the firewalls are already
configured on the public IP address.

Am I missing something?

-- 
David White
Founder & CEO

423-693-4234
@developCENTS 
https://developcents.com

*Develop CENTS*
Computing, Equipping, Networking, Training & Supporting for small
businesses and nonprofits
Providing: Web Hosting, Technical Support & IT Consulting

*Signup to our Newsletter at
https://developcents.com/contact/
*

Chatt State Matrix Longest Running Torrent

From: Dave Brockman 
------------------------------------------------------
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

http://www.techworm.net/2016/01/even-after-4419-days-the-worlds-oldest-t
orrent-is-still-going-strong.html

Regards,

dtb
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2

iQEcBAEBAgAGBQJWppm1AAoJEMP+wtEOVbcdWKoIAKwV9vtb303Koh5m4RTCk46f
89RvzmANVw2W+EMTG4n6Dx8CyKTyLLpz3fEsAIssTdKvPd3vO+/nZrKvtWDEETzW
PhbtZECe8NRafgCNjWlDBAVgvVMN/YTpOc6nvbO+f1tNEOeRTE096Z08XhfJwhgK
0FFBMh+hQMUvPYQtUl2aVHnAd3vfgoDKEjqRr2yx8aAZQiPopvTrAetD7cvJ3syY
kDYGVR85o3KcGBDdwJJmudotARUFokicvKbZL8huDwroj2tWsyqiqxej6dr4lCpp
jdUlqjVHW3D7Xtzah0c5qjgLnY2r2hc28ECbwF61FcPQ+xe/+2T8GbE2lZIywiI=
=DZ89
-----END PGP SIGNATURE-----

Linode Password Reset

From: Dave Brockman 
------------------------------------------------------
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

https://blog.linode.com/2016/01/05/security-notification-and-linode-mana
ger-password-reset/

I know a couple of you on list have Linodes, I haven't received my email
notification as of yet, but this came across my screen...

Regards,

dtb
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2

iQEcBAEBAgAGBQJWjBQQAAoJEMP+wtEOVbcd9M0IAK43kUzqOvt7fzio5d+lggo2
us1MjazY8xvEEs3O4l8Xf0YE8bbgnJzhkwavyyNkD84oboNflJPTYIe2ktTIhCaK
ud5cmrYZnRS8xKxPpxmcoULNuvBms9rYyVu9WwLKw0ykdv+xDCpJ6hZKfgJtVbGY
3YlOvPzJ5QVmELPa/DgXpRsCE8Z5YuqAyUxPxW1GiV3YytyM0oCe2nfXzmq0skcR
L2PL5ZhDOBI1w5Y2TRjAQpyUGTcxBm3spBS8ZqnvbjPWcI/JpKrSSt+nAKAq1siv
ZI8ErydOvIMPQ7GEiU/IoO55+eXjT4jSRlA+kpC/n6oHk2ET7JswoEZ2lPMsBrc=
=1rAr
-----END PGP SIGNATURE-----

2.4 Kernel + Network Bridging

From: Dave Brockman 
------------------------------------------------------
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Does anyone have a concise reference as to what network bridging is
supposed to look like under 4.2 kernels?  I want a VLAN Trunk interface
incoming to my eth0.  I am OK with a separate bridge per VLAN, although
the single vlan-aware bridge seems like the real choice.  I want the
native (untagged) and tagged VLANs to participate and pass traffic.

This works:

iface eth0 inet manual
auto vmbr0
iface vmbr0 inet static
	address x.x.x.x
	netmask y.y.y.0
	gateway x.x.x.1
	bridge