 pizza Thursday's live I've seen comments on that another uh... what do we have here someone said pizza Thursday sure why not um who knows what this is will it focus come on there we go who knows what's in my hand there's the first question we're gonna ask and start with here it's red it's shiny it's pretty cool but it's uh... yes oh let's see here who's gonna be the first to guess what this is oh I gotta close down if I showed you what's in the background it would be amusing but not appropriate for block Thursday the uh... it's some of our internal banter that goes on it's in our office sometimes things are ooh I see someone knows who it is yep there's people right away to guess what it is this is actually um what's interesting too this is the SG-1000 this is a really old device by the way there we go so we can get it in focus come on how close can we get it I wonder before that's in the shadow you can probably see that I can't really crop it in any further because it gets into the shadow but it's a SG-1000 so that is correct yeah that's how I know you've been around for a minute look at this pf set stuff I thought about firing this thing back up I thought it was pretty cool I try to remember how long ago it was released probably a day down here somewhere it could be wrong either way pretty cool that it exists this is one of the first um... some of the arm devices which I think is pretty it's still novel it's an early attempt it's not the most successful one it was actually in use this was actually at a clients for a while obviously it's been a minute but yeah it's uh it's still kind of cool I'm trying to figure out what to do with some of my background and so I have some of these unusual devices I wish I had one a client wanted to keep it which I thought I said I'd you know we offered to recycle it but uh clients and all those keep it I'm like okay um we put a new firewall in and they had one of the really old I can't remember the model number really old netgate boxes from forever ago and uh but they wanted to keep it I'm like you know I mean I don't care if you keep it but I wish I had one of those I don't have and I'm not going to buy one just to yeah uh is it still supported that's what I'm curious about I mean it's way past end of life this thing's quite old um but I'm curious if it will run the latest p.m. since that's the part um yeah so that's the part I'm curious about is whether or not it'll even still work so that's just a curiosity I have um it also goes back to what I said I want to put a few different things I might put some shelves up behind me I haven't really decided I thought about just redoing some of the studio and rearranging it and moving the studio what would for my position be that way and if I move it that way it would give more room behind me to do things but then I would have to go further back and forth to get to my monitor I don't know it's a lot of I overthink it and then I said I'm not getting anything done and I just get back to work that's what that's so well let's see interconditions for a nasty unit 12 bays and above looking for something more than three-year warranty I do you want a Synology I guess you have to add a little more context to questions like that is like when you say I want a computer I want a server it takes a lot more context to be able to give ideas for what you're doing what what's the software it's going to run I'm assuming you don't want all MVME do you that would change the type of chassis but maybe you're just talking normal spinning SATA whenever you're asking for servers you got to get the details that they're also hard to get the details in the comments in a live stream highly recommend using forums for things like that and specifically not just my forums but if you're going to because this has come up many times hey I'm looking for an ass to run TrueNAS on there's an entire section of the TrueNAS forums dedicated to people talking about the hardware so hopefully that helps hello from New York City time you're cranking out videos really and they have been great thank you very much the cranking out of videos is a lot of work for sure but it's something I really like doing I was planning on doing a video today that did not occur I spent this morning you know first thing hard down server so as a client open we had to go figure out why was it down and what were we going to do about it and we're not even sure windows decided to lose the partition and we don't know why just for the boot we restored it and it works but still slow but it's working so we're going to sort out why it's slow later but it's a puzzle because we don't have an answer yet we just know that it did it we don't know why it did it welcome to dealing with windows problems and sometimes the answer is because it's Thursday and why was Tom there because he's got employees on vacation so Tom had to go himself in case anyone cares oh let's see hey from Germany Dublin all over the place CrowdSec on DSM7 I guess if you have public ports exposed on DSM it makes sense to put it on there that's um I noticed some people didn't understand CrowdSec and I wasn't sure exactly how I wanted to handle that the problem with people who don't understand CrowdSec came down to um people thinking it blocked websites and I'm like no you misconstrued it uh some people going on a rant of how it was for censorship I'm like what no wait what are you talking about um it's not a censorship thing it doesn't do website blocking I never said that in the video I almost wanted to re-watch the video like where did this person come up with these crazy ideas um and that is occasionally when I do delete comments on YouTube when they're so not related to the video um I mean obviously I filter the spam comments out if there's any but the ones where people are just so off topic and misconstruing what the product does in a way that I don't understand sometimes how to remove some of those comments too I'm just like what it's not a website filter it so I don't know I'd make a joke about uh what a vacation but I just really forced myself to take on yeah Tom how can one span B lands over connection like zero tier you don't that isn't how that works that's not that's the wrong way to approach that problem you don't span B lands over zero tier zero tier is a mesh network it's designed to be local to each device you load it on not span across different networks unless that particular device is multi-homed and has multiple networks then it would span it and you wouldn't be asking the question because it's a different approach at that point but zero tier is meant to be loaded on devices not spanning or routing I mean it has some routing features that's not that's like an add-on and not what it's essentially made for uh so you block those things I'm seeing issues they say back by cloud for being overly aggressive yes uh that's the nature of things you're gonna have that the more D-DOS attacks that are out there the more cloud flair is going to do that what's the main difference between pfSense and ubiquity they're two completely ubiquity offers lots of things including firewalls and pfSense makes firewalls does it make sense to install crowd second devices with no exposed ports no not that I can think of it all is it possible for a network device with a port open to be compromised and then hop to the device without open ports lateral movement is one of things you want to think about is how could something move laterally to it um this is another thing where there's comments for people misunderstood when I said you know putting firewall rules and locking down your NAS they're like well my NAS isn't publicly exposed I said you're not protecting it from public exposure you're protecting from lateral movement lateral movement is when they get inside your network and see what adjacent devices they can get to the more you lock down those devices from even talking to each other uh in any more limited fashion than they need to um that's just better security so it but crowd sex not going to identify by the way if something comes in externally and laterally moves the source IP is not the external IP it's the local IP so crowd sex would have zero effectiveness on that routing is much cleaner yes zero tier to bridge sites together yeah zero tier is alternative VPN to whole land yeah there's a lot of different ways to do that PF sets makes the best sense there we go uh didn't arrow hive get bought by someone else or did wait I didn't they buy somewhere did someone buy them I can't keep up with it I've only ever used client that really like their devices we had such a in my limited experience and was less than great is what I'll say um I was less than thrilled with them and they shipped us a bad product their website is confusing the setup uh compared to even unify things were just kind of buried and convoluted I mean I got it figured out and I got it set up for them but I was less than thrilled with the hoops I had to jump through to get to uh some simple settings inside the device but shipping us the bad device and was annoying and then not shipping the brackets uh with it to mount it which was weird we they they said well we don't unless you ask so you know we went to do an install because the client had the hardware and we were doing the install and they didn't have the brackets and we asked from like well I assumed arrow high would ship them contact arrow high which became these multiple step processes of getting a hold of someone to ship us brackets that they didn't ship I there was some confusion um the product worked once we got it installed well once we got a good one because the first one I shared to us was bad that was another thing that happened I suppose you could do MPS GRE or even EPN or zero tier ridging I mean you can do all kinds of things with it um but if you're needing those advanced things is zero tier the right product for you that's that's the thing is it the right tool for the job if you're trying to extend the functionality beyond what its core purpose is is it the right tool at that point um that's a pretty solid question I have for a lot of people the other thing that I we're gonna I gotta reach back out and we're just trying to find the time to do this but like my friends at 45 drives we've had a couple discussions on this and I even joked a little bit um with I can't remember if it made it in a video or not but me and me and David Bobble when I did that pss video we joked about I enter I recognize the amateurs right away um that comment on YouTube because they always suggest the most complicated way to do things and I'm like clearly you've never had to support a wide variety of infrastructure and everything else because you would not be choosing the most complicated way to deploy things you always make the deployment the server setup whatever you're doing for the client only as complicated as needed and no more that's it you meet their needs you meet a level of complexity because the more complexity the harder it is to deploy secure and support so if those complexities are not needed then you don't do them and that's something hard to get through people's heads I think they learn a new tool or learn a new you know piece of software that sits on top of something else and they're going why aren't you using this and I'm like that is not needed someone asked why we don't deploy small business servers with Terraform when we're dealing with Windows I'm like why would I do that it's not that hard to load Windows and set it up and I don't think Terraform is the best way to deploy Windows Active Directory servers maybe I'm wrong and maybe I'm the one who's not right but I don't think so try doing a HA we unify here you can see the difference between unifying and PSNTS they don't really have good HA stuff going there super interested in the canary specifically using Windows 10 to host a QB server any thoughts on how to implement the carries in the QB file um there are some files you can do for canaries maybe they'll get tripped and someone will look for those files if you made them look good enough and they would actually grab them and try to open them doing files on Windows is a lot harder to get people to trigger on now that's as in using something like the thinks canary files on there without an agent if you're doing something like Huntress which we deploy which also has canary files that's different because an agent is watching those canary files so there's different aspects of it so um the canary I talked about canaries with Haroon Mir on my channel there's a whole video on it but those are not actively monitored with an agent those beacon out to the canary site where you build the tokens so it really kind of depends on whether or not you have an actively monitored with an agent canary canary file whether or not you'll get a trigger on it if someone opens it let's see and the more complexity the higher profit is someone else will make a mistake and break stuff yes absolutely and put it behind a VPN if you're hoping if you're hosting any quick book stuff put it behind a VPN please do not even expose RDS least privilege and least complexity homeland people want to make it as complex as possible and I think that's great from a learning perspective please learn make this complicated thing because you may have to support a complicated thing that someone else built because they thought it was the right thing you may even have to disassemble it um it's the people who build their own firewall rules by hand and build a firewall by hand because they don't believe in web interfaces um we picked up a consulting uh well kind of consulting gig where we told them we have to replace it it's not manageable the person wrote their own firewall built it out of Debian they didn't compile the whole thing from scratch necessarily but they're very vague on how they did it um they have a bunch of custom routing rules and a bunch of custom settings all command line ussh in and change everything in a firewall and they're like well this is better than anything with a web interface it's more secure blah blah blah and I'm like is it no one else seems to have the logins to it you didn't document very well because I actually got to talk to the outgoing IT person that was taking care of it they didn't document it very well so is it really a better solution I don't know what the person did they're vague documentation they also are the outgoing IT person because they were getting canned because they are so slow to make any changes that the client requested or even respond sometimes three days for a response is pretty normal and they said we have a business to run we can't take this um and they're like can you support this firewall and we're like well what is it and the person had loaded all kinds of stuff on there I mean we got we can bypass some of that security um but it's it's a convoluted of where everything was if you have to expose RDP or VNC without a VPN I recommend using Apache Guacamole through HTTPS reverse proxy yeah I mean that's probably more secure than straight up exposing it but just put a VPN on there because just in case they find a prolonged guacamole just don't expose things you know I seen the title I didn't listen to it yet but I seen the title on Security Now talking about port knocking I think it's going to become a more popular thing even at some point for VPNs um to do that it's a clever way it's been around for years and years and years we I forget how long ago I configured it with some friends we were we were poking away at something we're playing with ideas um it's not as practical yet to implement but I think it'll get there I think it'll be one of those next maturity levels we see is uh some type of port knocking going on to open up ports and close ports it's not that it's impossible to do right now it's just not there's some Linux implementations of it there's structure around it but it's um yeah it's one of those one more way to help obscure the open ports to try to slow people down yeah I mean it was forever ago because you did it sometimes back then because so in the early days nothing the transport layers weren't really encrypted um for a couple reasons it was more work to encrypt the transport layer of something and two the other bigger reason was uh in the early days we were trying to optimize for speed and adding encryption in the early days had a cost of CPU cycles to it so people wouldn't always encrypt everything um the early days the internet were a wild time man we used to just sniff everything and and you could just grab passwords out of thin air flying by everywhere all the time because hubs instead of switches and things like that the early days were wild hello from Cyprus uh do a lot of why do they use on-prem servers because they're more practical than using a lot of things in the cloud um bottom line you know the on-prem server we had today it runs um some tools that they have a lot of files files is the biggest number one reason um they're a CAD place the CAD back end has some type of SQL server and QuickBooks um they use on-prem QuickBooks because the online QuickBooks doesn't have the features they need so they have the enterprise QuickBooks and all that runs on the file server and all the users are tied in with Active Directory to the to that server on-prem for authentication so that's why the cloud is not where everyone's at and not where everyone's going to be tomorrow in case anyone's wondering despite what you may have heard do you have recommendations for security cameras um I really like the Synology stuff uh Synology and Amcrest I did a recent video on the cameras look at my channel I did it within the last couple weeks so that's probably the I mean I don't there's always some DIY project but there's such a headache I haven't seen any um DIY camera projects that weren't labor intensive to say the least so um it comes down to what your time is worth if you have all the time to sit down and and find and set up a configure one of these awesome you can save a few dollars or you can buy a Synology and the licenses for the Synology are perpetual so you buy them once and are not that expensive so if you need four cameras and I think the licenses are on that you know 60 $70 range um four times 60 or how many hours did you want to put into it that's a math equation um I don't know the answer to it because I don't know what your time is worth uh you want to hide services why not set up tour I don't have context for that maybe you're applying to someone else tell nothing to core routers over the internet I'm surprised an owner messed things up they did I'm positive it not for you at least uh you got a new puppy I like puppies I learned so much playing your videos back back uh to keep them calm I calm puppies that's a new one we'll throw that in there security risk don't let them out to the internet seems like a mitigated risk at that point so that's uh I have uh some cameras they don't go out to the internet they're on a specific network that doesn't have internet access so yeah I'll agree I don't do I trust them to have quality firmware of course not I I'm positive they have terrible firmware on them they also have um no access to the internet so they're on a network where the only thing they talk to is this knowledge so that's how you lock these things down I like to just wish you could use other storage targets yeah the ubiquity security stuff is one of those it just works but also it just works you can't really modify it much it works the way they set it up and that's where it stops that's as far as you get with the um the way the ubiquity did it I mean it's not good it's not bad stuff we like the ubiquity um security cameras but it's also they're limited they do what they do and I hope you don't want to do anymore yes you get two free licenses with Synology shut down PNP on the IP cameras if possible well I mean I'm using PF since so uh it's off by default so that's um how I solve that problem and press camera VLAN default deny my Synology can make inbound connection to it yeah it's not it's not a hard configuration it's always how we they just don't need internet access so we don't give them internet access because why would they need it what do they need to get out to internet for nothing good as well those things nothing good will come out of hooking those up so uh let's see what else is in my title oh for those wondering and I put a link in there um yes I did launch the new business channel yes it's uh linked I think it's a top link in the description of this video for those of you who want business content that's where that's going to go for those you're happy that I'm not posting business content anymore awesome we'll just give a thumbs up to this video um I I was losing subscribers every time I posted a business video so I put it all on another channel um there's just not the Venn Diagram I'm wrong about the people who like my technical videos where I get deeply technical are not always the same people who like my business videos where I dive deep into business topics therefore those go on a different channel YouTube could solve problems like this for creators by offering subscriptions to playlists that would actually be amazing if you didn't subscribe to a channel you subscribe to a playlist because I have that problem with some creators I only want to watch content on a topic they talk about but not every topic and I think everyone's like that the option for a creator is create multiple channels and manage all the channels for each individual topic easier solution would be create a playlist and let people subscribe to that playlist and be notified when new videos for a playlist become available that would be amazing if anyone on YouTube is listening I bet everyone likes that idea but I'm sure they're just going to stop us from liking things because that's really what they um took their time to come up with I'm untangled should I use a block all firewall rule I don't have context for that question block everything I don't like firewall rule I don't know maybe I don't always it needs context live it out in the country saw your cellular ISP solution with the unlimited ATT Sam order one David and David's been great in fact watching it over that connection awesome I don't think I did a cellular ISP solution video though I think you have mixed up with someone else but I'm happy you have a solution that works whoever helped you get that solution but I don't know if you're doing an unlimited SIM solution but I'm happy you have a solution you can actually set up if you didn't know PF sense can act as an NTP server and that's a solution for that then they can have NTP but not leave the not leave the world if YouTube is listening fixed comments spam yeah when creators as big as MKBHD are talking about comment spam okay yeah that's I mean your biggest creators on the platform are talking about it let's fix it oh I meant using ATT as I was and using a SIM from your site I don't sell Sims so either way I'm glad it's working nonetheless I like when things work how's that yes there's only a single video on there so we haven't had time to really put a whole video together yet other than one it's for anyone that doesn't know it takes a lot of time to create a lot of content especially if you want the content to be not just the ramblings of a live stream where I just answer rapid fire questions so it is going to take a little while before we fill that channel up with content I've also been doing this channel for a lot of years oh you know what it was Chris over at crosstalk awesome yes and me and him are doing a live stream tomorrow have you deployed any on AP outside a unified neck gear not neck gear and genius I don't care for them at all matter of fact in genius I don't like we've had we've had those be really problematic we've taken out a couple in genius ones we've worked on a ruby to ruby deployments as someone brought up earlier we've done some arrow hive deployments I wasn't a big fan of the way the arrow hive software worked but it worked so there's that we have a few clients with marocches so we've worked with other platforms sometimes we're just the installer and we do co-managed it that means there's already an internal it department and we are the external helpers coming into help solve a problem we don't always get to choose the hardware sometimes they do so the deployments we've worked with are pretty diverse and so we've helped out with a lot of different things it's not you know we're not an expert in every other software out there but we've worked enough with them that we can usually figure out how to get them configured how to get them set up but so far I mean none of them have blown me away that oh my gosh this is so much better than a way everybody else does it to me everyone's kind of more the same and unify the outlier that is unify has a lot to do with the fact that they're not hitting you for licensing fees when you look at especially marocchi marocchi is really proud of what their parts cost and how much they charge to keep them turned on don't have a preferred cellular failover setup I just loaded proxmox that's a great idea actually use machine clunky with vnc connection so we to virtualize and load the selected OS to operate as normal not vnc I don't use proxmox so I don't know I usually sshn to my linux servers and rdp into my windows ones that that helps what about wire garden pf sets uh it's works great I use it every day I don't understand more of a question but it works wonderfully oh yeah you've yes mech telecom networks and genius is very bad yeah I did not like them at all I've had my clients a samba ad inflation some official microsoft to the samba ad relevant and updated I don't know we would probably end up just resetting up all the computers we've rarely had to migrate anyone away from it so few people are using samba ad so few that we've run into I'm not saying it'll exist I don't have a picture of the market but we don't run into it very often um not a not a super common setup from my perspective um but maybe I'm wrong there's a bunch of them out there and they just don't call me uh what's your issue with neck gear I haven't really done much with the neck gear they have some type of cloud thing they offer um but I've never been so impressed with their equipment it never wowed me so it's not really an issue with the neck gear uh I looked at it they bug me to do they wanted to sponsor me to do reviews and I don't really do that um there's wasn't anything exciting about neck gear and I believe they have like a cloud lock-in product I could be wrong but I thought that's the way their product worked from when I read it I'm like the other thing I noticed that made me not like uh even working with them at the time was there was a bunch of 404s trying to go through and read through product pages I'm like you're trying to get me to work with you on a product but your product page 404s like I'm just going to pass on this for now until you guys fix your website because googling things about you is hard now because it lands on bad pages and I'm just trying to find information uh I don't know about well known I don't Willie Howe is really the only person I know that talks about him so Willie seems to like him a lot we don't see him in the wild very often at all um I'm not saying they don't exist in some huge pocket somewhere but um I don't see a lot of them the the most common ones we see we see ruckus we see at arrow hive we run into especially because we have a client that likes them so much that we work with they caught well other IT company that contracts us to do things they like they like arrow hive um ruckus arrow hive and maraki are your ones we see the most of Cisco too um like but not as much anymore most of those are always old when we see Cisco access points I feel like that's always old ones we see um maraki's pretty much maraki's the most common one we see outside of we see a lot of ubiquity of course but that's a bias we have because we talk about ubiquity people constantly are booking us to work on ubiquity uh yes if you're big enough uh you can get into our co-managed IT we do offer uh dashboard access that's something actually there's more coming right now ninja dashboard is part of the offering we're looking at expanding that but um short answer yes uh if you meet certain minimums uh and I'm actually that's a sales person so I'm a harder person to ask but if you want to sign up for that information you go out to our contact form and hire us and say you're interested in managed co-managed services um I think it's like a minimum of maybe 10 the sales guy knows because that's a decision I have now moved away from me uh unified is non-existent how many AP solutions are not clobby sales seems like options are shrinking oh yeah there's very few companies that don't have a cloud and a license fee attached to it arubas that's the other one I forgot to mention we've worked we have one of my friend has a big IT firm um they use a lot of aruba um they're a lot bigger than me um they got about 20 staff and um they really like the aruba line uh what I meant was there a hypervisor that lets you select os you want on boot and then use it as normal I don't understand the question still maybe that's a better forum question that's why I have forums for the more in-depth more technical questions I am guessing that Tom might try loading the latest pss live on the ht-1 thousand no I'm not going to do that plus I'd have to set up the terminal ports on this there we go come on focus that would be a little tricky plugging it into the little console port setting it up loading it getting an image for it hparuba supports bit like compact accounts for good supply of supply of varching and our suppliers IVMers always have a different view oh should I do like a second live stream later in the day where I grab my jack dangles and do a live stream I can do that that would be fun it's only um 330 eastern standard time right now so there's plenty of day left but if I started doing jack dangles at 330 I can guarantee productivity it's not that's not a productivity enhancer for me ah lesson player MSPs for a maraki and laughed at you make a review when I suggested it yeah happens um it is what it is if people are happy they'll keep doing things um I don't think maraki is someone who will is a problem like other than the expense I don't think it's worth what they're charging but that's my opinion uh people who are happy they have a different opinion that it is worth what they're charging so that's that's where the big differentiator comes in if it's worth it to you keep using it if it makes you and your customers happy keep using it who am I to say any difference which land apc I use for a seamless roaming between floors mobile laptops is adode still a thing yeah yeah use uh ubiquity works great wander around roll roll around from place to place and I have it seamlessly work uh how satisfied are you oh we doing a satisfaction survey now how satisfied with engine rmm and what components do you use uh all of them including uh we will take that back we're not using ninja ticketing um so we use uh ninja rmm we use the ninja backups which I guess it's most everything we just don't use your ticketing right now um I am satisfied yeah I thumbs up I still like them ninja works great I never hear anything about sonic wall to say oh I hear all kinds of things about sonic wall um mostly it's hate mail uh haha just had a great suggestion uh first and goal I like first and goal Shawn is the person who I was doing the live stream with or not live stream video for business technicalities with and he just messaged me I think this is a funny answer he's our first video should be first and goal and the reason he said that is because um he uh we we the business technicalities kind of has a theme of uh playoff of sports themes which I'm not a sports person so it's really kind of weird but it's going to be how we do the business channel because I think there's a lot of things we can do on there we're going to do like business timeouts and things like that I know sports references I just don't watch any sports um roaming is a function of client device at the ap side is important at proper tuning it is a function of both uh sonic wall only works with a license attached you have I don't know where the licensing sits it requires a license for some things doesn't you remember have some add-on features let end users login to their machines and work yes um it can be configured that way for uh using splash top remote access I think I mentioned that I have a review of an engine I believe I mentioned that in there Maraki is best to buy at the end of the fiscal year so everything's a massive markdown replace two IT rooms two buildings for 90,000 was a sonic wall bought by uh it was bought by Dell and sold and sold off again 330 the other time you should just say eastern time and not mention standard oh daylight yeah mostly hate mail I'm sure you're talking about sonic wall uh would you installing on Wi-Fi six um here's the problem availability of parts is so limited right now for getting some of the access points that sometimes the only option if the customer wants it done at the scale they need I need a hundred of them great there may not be a hundred Wi-Fi six devices available so it really comes down to would we install it sure because of lack of availability not because I have a problem with Wi-Fi six I have a problem as everyone does supply chain is a real problem right now should be a sense handle DCP and DNS versus DHP and DNS server small business environment if you have a window server PF sense should not be handling DHP and DNS the windows server if you're using active directory and a windows domain that's where the DHP and DNS is best handled uh how to get AT&T fiber to work with unify pro I don't know thoughts are running blue iris reeling cameras uh yeah on on the shiny proxmox server wow um you're probably in for I hope you have a really really fast server my last time I interacted with blue iris and we've had a couple people have problems with it and contact us it just seems like a resource hog and it runs in windows which is definitely a resource hog so you have a resource hog of windows running a large resource intensive nbr software no granted blue iris has all kinds of cool features uh it's actually some really cool things I've seen people build automation around um with a lot of extra plugins that aren't natively from blue iris but add-ons for it I've seen some really cool work done with it awesome but uh it's resource intensive and I don't know how well it would run virtualized I just don't know because anytime we've had people want us to troubleshoot it like they have really fast systems that were getting overloaded for all the extra things they were doing with it and it wasn't virtualized now there is a challenge you may have with uh clients having trouble connecting to stuff clients aren't always as wifi 6 ready as they thought they were so what makes wifi 6 better than wifi 5 more features I'm not going to go into all the details there's a million videos and a quick google search explaining wifi 5 and 6 um do you see any changes in the supply chain shortage soon no not for a while it's people don't realize how fragile well some people now realize how fragile the supply chain is but uh yes the supply chain is very very fragile it's a delicate little flower that is um wilted a little bit right now it handles high density it's faster and it handles high density environments would be probably the two big reasons to go to wifi 6 went to order gpf eba this uh notice the seller started minutes away and I got to drive for it and have have it stay awesome just tell us you've been on the station work with unify cameras no well there's hacky ways maybe you can make it work but short answer no not really not not really what it was designed to do so not an impossible task just not much of a task uh let's do this I'm I don't like turning back and forth so we're going to shift the camera over see if I can make this work oh perfect I want to answer your questions now I gotta figure out a way to make this easier I think and we do this there we go wait this would actually be wrong this is the right this should be the right one here so this make sure is your audio all right cool one more thing uh there we go so I don't think I need that one it's easier to answer your questions here especially if I want to be able to pull them up and kind of keep my gaze if not I'll keep looking over it it feels weird we have a lot of questions today I like answering all of them yeah pointing cameras at its own monitor yes that's obviously a lot more fun audio sounds good looks all right cool so we are here now yes thank you for flying Vim I probably shouldn't touch the mic someone with headphones is going stop touching the mic oh let's see yeah junipers are pretty popular too I see people talking about them so the old Tom view sure we'll go with that why not why not it is easier if I have to do things like um so but oh LTT water bottle no it's not I don't have any LTT stuff I don't I mean I buy swag uh shirts I like Wendell's shirts but there's nothing about LTT that was particularly intriguing to me so I've never bought any of their swag I don't have anything against them just if it didn't pique my interest so uh what would be a good source to nerd out on share and ask for an old geek my videos is that I don't know what other um what other your what question would better answer that we are working on some large coffee cups yes any session was cost effective way surveillance system necessary features person detection recording and good diet performance uh pretty much Synology I don't I don't even have a suggestion beyond Synology for that yeah beyond Synology and I'm a big fan of the Synology surveillance station uh well nope that was not what I wanted to log into let's see so we can share a tab share screen chrome tab yeah this is what it looks like for anyone wondering um hey look it's my truck and the night vision is really good so I could probably pull up some recordings from night huh there's my car I guess my wife probably went out the door or maybe that's when I came back in can watch the scrolls in my backyard but uh the night vision is pretty good on this so over the it I mean you can still see a lot of detail and my house lights are not and this is just the ambient uh light from the camera itself so let's see here it's all DSM 7.1 um let's see I have to look what version I'm on it's not 7.1 because that's still in beta or maybe this one is I have a few I have a lot of Synologies for all the testing we do so I'm looking up a version it's on right now 7.01 so that's 7.01 but not 7.1 yes uh waiting for it to go in production uh those are Amcrest if you look at my channel I have a video recently I did talking about the exact models cameras and how it's the advanced motion detection inside a Synology and how that works nice wash truck yeah a little bit uh it it's actually leverages the cameras and I have that that's why I did a video it doesn't do it I don't think it does so I did a video explaining how that works it's called like advanced uh people detection with Synology it detects people and cars based on if the camera recognizes people and cars it doesn't do animals though how much power to run uh 12 4k cameras uh they have a Synology that does the sizing for you you tell them what you want and they will um be our picker so or you contract us to build it for you and pay us for consulting to set it all up that's not our option is there a way to cluster TrueDance servers uh scale has this eventually scale will have this it is not something available now with supply team issues I purchase unified flex minis and use them as end point switches on my IOTV and what parts do I need to open my cloud to manage them uh look up Unify um interesting the Unify controller I have a video I did a long time ago on it but the ports haven't changed uh it's also a write up on the um okay 7.1's officially released uh but there's also a write up on Unify if you search what ports to open for Unify they have a list yes that's showing up as an option I'm on so they probably are rolling it out mainly solve for Synology website cool um does the only work on new sound I'm not sure I'm asking better than Reolink do you recommend Reolink setups or Amcrest's way to go uh it depends on the cameras and that's what it comes down to because the cameras are doing the detection not to Synology now Synology does have special extra um nvrs they have certain models that do object detection I don't know the pricing on those and I haven't really tested them they're more money um they do exist you know what I'm gonna turn this off you know what I could do I don't need the rest of my studio on one second let me just go and it'll get dark and then the light comes back there we go I it's actually easier for me to see when there's a little bit less light this one I'm facing just this way so it is stage or a lot it's cool awesome I don't really know what uh differs crowdstick from like uh band IP except the bouncer part more dynamic well it goes through and sees the attack reads the logs and it's getting their feeds so it is collaborative because it's not just your band IP or fail to ban it's everybody's fail to ban so someone attacks my server my server is running crowd stack and that attack gets registered and they attack another server to get registered once they have enough data points they go that IP address is definitely bad send it out to all the other crowd stack servers to let them know it's bad uh according to my system scale is more suited to towards production than core but I'm hesitant I don't understand that what you mean suited towards production because um scale is very new and core is very well established I'm not gonna say old that would be the right way to describe it um core is definitely faster than scale right now on the same hardware all my testing has come to the same conclusion so I I'm sticking with core for things I need performance on scale has a roadmap for extra things and this is why they're gonna keep building it but it's not there yet many VMs uh and I SCSI uh I have them listed in my build but if you look up my latest studio build video I have them listed I don't remember how much they cost but I listed all the Amazon links to where you can buy them um so I zoned out we're in mood leading now yeah does a newer camera detection but only working on the new types of Synology or on the older types uh I don't know it should be any Synology it supports Surveillance Station um it should works but it's not done at the Synology level it's done at the camera level talking to the Synology so as long as Synology is in support and has the latest version of Surveillance Station it should work but I would buy a new one um because the used ones by the time people throw out used ones they're pretty old and we're probably getting rid of them because they're out of support I haven't even tried ZoneMinder in a while uh last time I looked at ZoneMinder it was so basic it just it didn't do anything I wanted it to do uh it was also challenging to get going and set up so I kind of dropped it how are you sourcing a bigger to hardware supply chain is so crazy right now you guys sitting a horse at a large scale oh we snipe it whenever we can buy it we check constantly and the moment we see things on there we're just buying all of them there's there's no easy answer for it because the suppliers are all out so we can't even get it through our suppliers the suppliers aren't getting them because they they go into the Unify store and leave immediately would you do Snapshots on a remote backup why wouldn't you do Snapshots on a remote backup productions about stability that features so core for production unless you need Gluster then you are rolling your own since that's not even at scale yet yeah um where I think dual controller salient system appliances offer this but unobtainable EU um okay I don't know what's attainable in the EU I felt targeted sorry for saying I'm old ha ha ha any advice of getting self-hosted would be 5 on a 1 2 working behind atia proxy um I got it working but I didn't document it I built it to test it um it worked fine I didn't there's not anything special I did getting things work with atia proxy is mostly just people not knowing how atia proxy works I mean the three videos on it and every time someone every time someone has ever booked a consulting with me to solve their atia proxy uh problem they always go oh I didn't see that checkbox oh I didn't realize you type that there I'm like it's in my video I've had zero people tell me um it wasn't in my video every time someone needs help with it I don't know any it's a long complicated video I know but I don't know how to make it any easier because it's a complicated topic of setting up reverse proxies people get DNS wrong that's why I made that third video just about troubleshooting it and that was based on all the times I've done consulting work where someone had the DNS set up wrong so I made a video about how to set up the DNS um I don't know anything special though when it came to setting up um invoice ninja v5 that I had to do I most of the challenge I had which I got a document better um and what I usually do when I'm document better is run through the whole setup more than once and make sure I have a series of notes on how to install it but the note I the notes I did to get it installed are them their notes of building it so uh the only other appliances EFS dual controllers as well qnap line up there in qnap version of free bsd I would stay away from the qnap stuff uh how does h a proxy at least on the firewall compared to a modest dedicated lb harbour like f5 um I it I mean if you're talking about a commercial f5 um web application firewall that's a completely different product that has way more features than just h a proxy so it's kind of like I don't know do you like this rolls Royce over here or does that car do they're not the same thing um they're not in really the same category but h a proxy is pretty scalable and does a lot of things but you're going to get a lot of different features if you get it as something like an f5 load balancer also pricing actually let's look up what does I this is the kind of problem and uh let's see hold on I'm going to find let me find a good page for it I but to give you like you're asking should h a proxy the free open source which is a good tool by the way or you know if you have sense good or would a um here we'll go with their I think this is one of their cheaper models so f5 it's got to find the right page right besides the licensing fees it's right in a $20,000 range let's try to find a good uh traffic manager where's a good place to sell these it's harder to find some of the um pricing on there you know this there share this tab instead um there's your licensing for it so when you're trying to compare any of these this is a local traffic manager maybe they have the other stuff I see there's a couple prices that came up going through out there I the difference in licensing price from doing something like h a proxy to f5 networks load balancers it's a $20,000 was the price I seen for some of their models um but then you click the page and it's a sales page is why I didn't feel like showing somebody writing up these sales pages but you get the idea they're not in the same category um it's not like you're you're debating quoting do I put a pf since at this person's place or do I buy an f5 load balancer for $20,000 so oh no 5k is just a license not for the balancer the balancers themselves were like $20,000 when I was googling some of the stuff so they're not in this it's like we you know we're talking about like Cisco firepower someone says well how does this go firepower which I don't really know a lot I'm not the biggest fan of the product from some of the people I've talked to that work with it in enterprise don't care for it much but they're not when you look at how much some of these things cost you're like they're not even in the same ballpark they're you're like you you wouldn't compare these two products they're not on the same bid sheets yeah that was just the licensing fees I was talking about not the actual device so yeah well they don't just bleed you on the licenses they also have a big upfront cost because Maraki is both expensive upfront for the device and then has recurring license fees you can buy a handful of pfcense devices for what you pay for one Maraki so that's um big price differences between them um what else are we going to talk about remember having the true nasty discussion in here maybe I'll make this as a separate video about snapshots because that's another thing to talk about uh can you increase the number of drives you put in this analogy as you go yes um if you set it depends on how you set them up but yeah that it is something within the realm of possibility that can be done speaking of pizza the pizza boys here they asked me uh keep schooling I tell my son to keep doing school stuff all right there we go true nest snapshot videos yeah that's um one of those things like I make it bigger right so you can see easier I have this LTS video production snapshot and that's because I managed to somehow misplace files I don't know how I did it I just know that since I'm the only one working on here I have to be the one who've done it so I I'll have to admit that I may have accidentally deleted something that was important and uh um I needed it back but that's why we have all these snapshots I'll just do a separate video for this because it's talking about ways you clone snapshots in order to get the data back you're looking for um so yeah I accidentally deleted part of the recording I did for uh the crowd sec video and I'm like where did that go I can't find it that's not good and we went back over to these snapshots and we're able to find it so if we go back over to snapshots if we type in um you can see I have snapshots going all the time and I kind of want to talk about some of the practical ways of restoring the snapshots and you know I just haven't done a video on this topic in a little while and it's it's definitely an important one and by the way and this is something maybe not everybody understands you can have multiple snapshots so this is a snapshot and this is a snapshot and this snapshot says keep it for two weeks and this snapshot down here says only keep them for 24 hours I have different tiered schedules and you can do that with snapshots that way you're not holding on to as much data um but it allows you to tier the hourly snapshots that you don't necessarily want to keep that many hourly snapshots for two weeks you can if you want um but I only need daily snapshots for two weeks but hourly snapshots are when you record something in the morning you're editing in the afternoon and then you accidentally um delete something and as I said I know I must have been the one to do it because I'm the only one that has access to delete that thing and it was gone ah so my son does online school that is correct 568 on the new channel yes volume shadow copy compatibility is really nice when using windows for our previous versions wish there was a linux equivalent yes I agree with you David I do I've never looked to see if there's any way to implement volume shadow copy in linux um but yeah they are very handy and maybe there's a way to do it I'm just not aware uh can you manage multiple pf sense routers on one dashboard no you cannot there is not any officially by neck eight supported ways to do it there's third parties have come up a way to do it but I don't use any of them and having a third party have access to all my pf senses sound scary uh nope does it become slow below snapshots when made for 1vm no uh it does not there are limitations to snapshots but um speed speed stays pretty good I mean there there is a point by which you will have problems um when you have more when you start running out of space on the drive um and you've because you've decided you want a thousand snapshots but zfs handle snapshots really really well they're also handled very differently than the way they're handled inside of a virtual machine so um the vm snapshots for something like zen orchestra so the way these snapshots are handled you know if I do a new snapshot here this has nothing to do with zfs but they are still called snapshots and they work in a similar way but this is where doing a series of snapshots inside of here has a cost of uh keeping track of each one of these differential snapshots so as I create these and there's differences between them the system has to keep those differentials and figure them all out so there is a speed that comes with it in the virtual machine world uh because of the way it talks to the drives so the way it talks to this particular storage server um but snapshotting on the zfs side is a very different process than the way it's done inside of a virtual machine when is the stream ending that's a good question I'm thinking by 430 I'll end the stream that's when I have gone long enough if you're snapshotting block level meaning you're only updating what was changed why not snapshot every hour and just leave them I don't understand the downside um there is a point where you have too many snapshots and there's no value after 24 hours because after 24 hours I have them uh I have my daily snapshots that are going that allow me to keep two weeks of snapshots uh I don't use proxmox so don't expect me to talk about snapshots and proxmox I have not used bacula yeah proxmox does support it it is a standard feature in most popular virtual machine systems I mean vmware xcpng proxmox all have um all have that so definitely a common setup but keeping all those snapshots I mean there's just a lot of them when you start going through here you like go through to storage it's just keeping no more than I need that's all and you can see the you know the different changes on some of these video production it's really not that much in this this isn't my this is my editing server and I move everything over manually I just hit the move and migrated over to the long-term storage at the office because this my studio is in my basement so I moved it there and this server it's all flash so I don't it's not as big as the other server it's still got a decent size for an all flash server but um yeah I just manually move things over there it's where they need to be and it has a few backups on here and then I have them password protected like Tom's computer backup so that way if someone to try to physically remove my free NAS this locks on boot and the data within it is encrypted so it's double encrypted because that's the best way to do it encrypt everything at rest and make sure anything that you have set to boot needs a password to be able to boot and go there what do you folks for consume windows backup sectional USB I don't know any I mean I'm not saying they don't exist I'm not aware of any that we don't use any open source tools for windows backup ZF pointers cow right yep curious how the VSC staff chats work similar never really thought about it so I've done my video on ZFS as a cow and copy on right with the way pointers work is really really clever really tricky to engineer and really well done inside of ZFS all the right features the way they're done in the VHD files for example next CPNG and other others do this as well they create separate VHD files and track the differences between them they kind of like create forks of the files and then they're differential it's a lot trickier to manage it would be cool and I don't know someone told me and I don't know if this is true at all that proxmox could do this that they could base their snapshots on the ZFS file system that would be cool I don't know if that's true but the sources were YouTube comments not anything I've read from their documentation nor do I use proxmox to really know but that would be ideal if more virtual machines had file system level access but that is interesting but I don't know how likely it is because the way that would have to work is either create a Zval or a data set per VM which I mean it's not that it can't be done but it would take some integration level to do it and then it would be an interesting integration because proxmox while it does support ZFS just like XCPNG it supports others the team at XCPNG doesn't do it because they would have to write a special ZFS module and then have two different snapshot modes snapshot for everything and then snapshot for everything that's not ZFS so they don't shoot they're not going to write it but it would be kind of neat for someone to write it so I know Hyper-V has a different name problem and I forgot what it is I don't really ever use Hyper-V getting compromised having sausage with all the files from encrypted over time so there's no clear point in time to restore hence the snapshots canaries at some point I mean you hopefully you would notice if you kept two weeks or you know we even keep 30 days of backups for most clients if not more depending on situations and compliance but you would hopefully notice if everything's been encrypted for over 30 days and canaries are no guarantee you know what I mean like you have to have an agent and for example I mentioned Huntress Huntress has an agent that actively monitors the canaries so we know when someone encrypts something because it trips a canary that's among the methodologies on there as if all of our other tools wouldn't notice either we have sent a one for example but if you have the huntress canaries set up and the agent's monitoring those canaries and something kicks off encryption then it goes hey look you tripped a canary so putting a canary so they don't encrypt slowly I just haven't seen it it's not much of you know when they get into your backups they don't always wait 30 days until they've stopped them they usually try to turn off backups so yeah yes I really liked Wendell's recent video on that that was really good on G-RAID because uh yeah G-RAID is not quite as good as they bragged it's uh it's like I don't get it I didn't understand it when people had shared line this is version of a movie I didn't watch it and then Wendell I knew Wendell would be very concise and technical so Wendell's video was the one I watched yeah Hyper-V calls them checkpoints next backup delize backup that makes sense corporate users 120 users 15-minute snapshots for one day one hour snapshot for two weeks daily snapshot for two months weekly snapshot for two years if you got the storage awesome what point do snapshots slow down ZFS yeah at about 90% obviously you're pretty high it's different for Zvol and iSCSI it's more like 60 or 70% but for general file storage it's closer to the 90 where you really have a problem bit of topic just started PF Sense watch your videos and setting up is there anything that has changed since those videos that I concerned about? no no my older videos I mean the default settings of PF Sense are pretty secure so unless you went and did something beyond and opened up other ports then you're generally fine does using paired OS make me a hacker target where does all that self hacking info go just it's in the operating system so I don't I don't think using paired OS would necessarily make you a target I am running blue iris on old laptop or your link cameras as long as you use the intel and quick resource manager currently okay cool let's good to know watching your videos I'm interested in having a one or two hour consultation session for personal project kind of depends on what it is you want to talk about it varies a lot of times I quote people if they want to talk to me $400 an hour my general staff starts at 200 hour but it depends on the project and we have that in our list that it's project dependent that's a big part of consulting with why would they find parrot you're not what you're saying doesn't make a lot of sense if someone who hack finds a system like parrot are they attracted to it like where where are they finding it are you letting people on your network so I don't understand that question to take notes about the system monitoring tool uh check mk one little video about recovering data bit by bit did I see is also racing he made a script to rebuild the entire inside the SSD yes and then yes that was a really good video for sure what I mean is there are tax that modify files he would notice and repeat the process over time I show me that attack I'm not exactly sure what you're I if someone's in your network are they going to slowly move one file at a time to then hold you ransom hoping you won't notice that they've slowly gone through and encrypted your old pictures and never noticed any file changes I could it happen sure it's a long game to play if you spend time reading different reports as an incident reports and like the debriefs on them that's not an attack I've seen so I'm not seeing this impossible I'm not seeing someone doesn't want around the network just there's definitely people that are I call them like the chaos monkeys kids with too much time in our hands they just want to run around wrecking things so yeah there's probably some kid that would run around doing that though the bigger thing is during your network you don't know what they've done keep them out of your network and that's the the bigger thing to do do ISP fries care of using Kelly generally no unless you're using it against them software is it good they would always show us a hardware rate from a controller for more yeah was a good vendor by virtual service from other than AWS Azure Linode I have an offer code the home lab show use that offer code to sign up with Linode chaos if they're encrypting files that are used daily it's not possible to take them offline yeah it's just I mean I'm not saying someone couldn't go and this is actually where bit rot is more your enemy than anything else is where CFS comes in handy is we've had people who had bit rot problems they didn't realize because they didn't access a file until they needed it two years later that they couldn't and this actually happened to a video production company and this is what got them on true nasty we're using another product that did not base itself on CFS but they paid a lot of money for it and the bit rock got them they needed a bunch of assets and a lot of their assets the old B roll video they did for a commercial they wanted to redo a commercial but use a lot of the old footage they couldn't because it was all corrupted lots of little bit corruption on there even running some of the recovery process just pieces of the files missing and broken jpegs and things like that you know the type of images they use well actually they have raw but still it's the same concept pixelated stuff missing integrity checks failing on it Linus talked about this too because he was running CFS what with no scrubs so there's bit rot is your own enemy there too keep the firewall on hackers hackers out there don't really hunt each other out I'll I'll actually say there's a little bit of mystery there's they're not until the hackers are territorial so we won't I won't say honey to her out is exactly right or wrong I will say more so than you think they definitely is it's kind of funny if you some of the infighting between hacker groups usually ends up with them going after each other and doxing each other and things like that so but if you're not part of a hacker group not likely to have you know they always encourage more people to get in it so I look like I know what a JPEG is haha ah yes that is do these are great for those you that don't get the reference there we go there make it seem a little 7 more minutes I think I got to get my son hopefully he's doing schoolwork next cloud is on VLAN 1 while all the IoT devices are on IoT VLAN someone pointed out that I am breaking all security rules by opening the next cloud to the outside without devices with other devices being on the same number is that true I don't like don't if you're if you want an IoT I mean is IoT VLAN next cloud is on VLAN 1 and all the other IoT devices are on IoT VLAN someone pointed out that I'm breaking all security rules by opening next cloud to the outside with other devices on the same subnet I mean it's not what you're doing is if someone hacks your next cloud lateral movement if someone were to be on the next cloud server could they pivot to other things that's where the question comes in if they could pivot to other things from the next cloud server that's the less secure methodology that's all there is to it needs more JPEG hey just down just got down with the business program welcome late to the party awesome great show off to you I recover VM image I'm via new back us in practice really really challengingly IoT ran on VLAN 107 our Sonic wall standby cluster failed four times over the last four years different hardware currently what's wrong with that stack I don't know I don't use Sonic wall thank you very much for the donation much appreciated uh say your video ran for the M1 and PF sense port another VLAN through a second PF term but four lanes transferring files does the transfer go through the firewall if they're on separate subnets and you have those subnets defined inside a PF sense with rules yes it goes through the PF sense even if they're on physically one wire if PF sense is handling the rules there then yes it goes through it ah yeah did we talk about Wendell's MVME party recovery yes this that's how you recover it so that's the um yeah Wendell's video on that topic is great it is very very technical and uh but also really good yes put put paired OS on VLAN 1337 absolutely that's the best VLAN right next to VLAN 69 there's got to be a 420 VLAN in there we have to have all the internet funny numbers ah your wiki should be on VLAN 42 yes that's for all the answers are all the answers will be on VLAN 42 tries always use prime for VLAN numbering there you go there's we just got to use all the different funny numbers that's the internet needs more funny numbers right I said I love when someone said that I was I seen that tweet I'm like yes the internet needs more funny numbers my son's got the jokes here VLAN 8008 ok I got it I'll have to use that one now he knows some internet funny numbers I was using ESXS for a while and I switched to Proxmox never look back sorry I'm actually tired today I think actually it's because I ate too much I ate too much food for lunch it's spring coming up it is spring right now it is mud season to be specific ooh rule 34 we're not going there Proxmox Boris Tom probably I don't use it so yes yes now the problem with that VLAN though is VLANs only go up to 4096 so 4096 there are some maximums on the VLANs so you can still name it that you just can't use those digits so the funny numbers do have to stop at 4096 oh yeah there we go you get it you just do 800 and you do a Q&Q and an 85 I got it that works see there's a way we're nerds we can figure this out we we can we can go geeky we're gonna go Q&Q that's the way to do it and now now at least some group of people said what's Q&Q and we've inspired learning with these jokes so now someone's gonna go wait Q&Q how does that work how do we Q&Q VLANs so ooh the 4077 I like that one I'm old enough to know so that means you're old if you know what the 4077 is you have some gray hair and maybe some back pain who who can name the intro song for 4077 who even knows what I'm talking about I've lost all the young folks already they're like this guy's talking about some old stuff this is this is diving diving back into the history yep I'll assume you didn't Google it yeah it's as soon as every time I see it the song plays in my head because I had a friend really really determined to learn that one day when we were like I don't know 15 or 16 he'd play the intro whenever it came on so he just keep playing it over and over in his guitar yeah you know I'm not even gonna say it I just realized you're right someone's gonna see those comments and the YouTube algorithm is gonna completely take it out of context so she probably stopped saying that we should completely not say the name of that song this is this was a horrible choice by me right now 404 yep I realized I should not say the title to the intro song to the 4077 because the YouTube algorithm would really hate that mobile army surgical hospital radar was awesome yeah they had a lot of great people in there it was a it was a good show up up down down left right left right right yeah my son probably wants pizza now any final questions this is the two minute warning two minute warning final questions winding it down I gotta go pick up my son he's watching anyways I just gotta go oh Klinger yeah Klinger was fun is the end of my live stream becoming mash trivia that's unexpected I don't have any new hots I've not bought any new hot sauces in a while so I don't have no opinions to offer on hot sauces shame on the algorithm yeah hey this is my favorite one so far so in these last two minutes can we just smash the like button how many likes do we have well we got like 86 click it click that like button there we go 89 it's getting up there zoomed in too far 100 likes there we go awesome did you watch the latest Star Trek Picard what do you think about the board queen I think it's interesting I didn't you know the last was it the fifth episode they really took a strange turn and I think they went a little bit further off script I don't know it got a little outlandish but it's Picard I'm gonna keep watching it so I may not like it and I may shake my fist angrily the script being a little bit too far fetched because I didn't understand I won't spoil it but it's like why would you leave the ship when to build a fire in a falling apart Chateau I don't understand I'll just say that and like huh what to catch up I'm not trying to spoil it for anyone but there's just plot holes that some things get too obvious and yes yeah interesting story twist yeah used to be a super hot sauce I still am we have we're actually joking we have so many there on we have hundreds and hundreds of them it got to the point where we got so many we don't we we've been trying to go through them all it's a challenge of just how many we have now that it just there becomes a point where you're like how do I consume these we had to get rid of some stuff that was older and expiring that we opened we're like we didn't care for this or didn't like this one but it's gotten to the point where like just piles of it at my office drawers and cabinets got filled people started sending it to us and I had to stop because I don't know what to do with it all I I don't know what to do with all this so we're still big hot sauce fans we still use a lot of it I just can't use it at the rate it was coming in so it's been kind of a challenge to go through all the ones we have and I mean people sent me stuff from Australia Europe I got all kinds of cool things I really enjoy them it just becomes kind of this challenge of sorting it all out let's see bring me to the office I'll eat it all time to sell it start your own tech hot ones with YouTubers yeah there might be a copyright problem there make a giveaway series give away all the hot sauce that was given to us we have too much the problem is we open a lot of it and taste of it and we don't always like it I don't want to give people open bottles of hot sauce that seems weird and creepy oh yeah my son probably wants pizza so we'll talk about pizza oh yes he's been doing a lot of good checklists and ransomware checklists so take the time to read some of what he's been putting out they've gotten less just things are bad and doom and gloom but some concise actionable things which I think is where they really need to be so I'm hoping to see a lot more of that my son can answer this right now his answer is still going to be Buddy's Pizza has the best pizza and he's not wrong but he's a solid so alright that's going to end it here we talked about the best pizza here in Detroit so if you're in Detroit I do recommend Buddy's Pizza it's not endorsed by or sponsored by Buddy's Pizza but they do have a good pizza for anyone wondering if you spend any time reading about the best pizza in Michigan Buddy's is always on that list so uh can I pay $9 for EU Linus dodging copyright teams with tech trivia from in the form of a question oh yeah Jack Daniels time later for sure Aubrey's yeah uh Aubrey's is a uh I think I've had them before myself but I'll take my son there but that's enough for today I need to go do other things now thank you everyone for joining see you next time likes comment subscribe hit me up in the forums it's a better place to have those more in-depth discussions on those more technical questions so I can dive deeper into the answer and thank you