 three two oh i guess it's live now all right now here comes the fun part i'm live here but i have to uh hi marcus anyways now i gotta find out where the chat stream is because it turns out that's not as easy to find as you might think uh youtube i gotta find my channel and it does because it doesn't show me when i do it on my phone my live change so it takes me a second to go to my channel live it doesn't do it in a normal live stream thing so hello everyone there i am says live now making a face oh i gotta mute me all right there we go i gotta pop the chat out pop out chat there we go now i can cast it hi no i told her all right now i'm ready so i will uh start with last week i talked about um the fact that i had actually we do this i'm like in front of this i can chat and talk to you at the same time uh apparently i said someone said i said seven figure i thought i said six figure anyways the big bid we have a email approval on the bid so i'm excited about that um so that's gonna be really interesting uh we're gonna try to film more of that project i'm also way behind on uh projects like i have a lot of them a lot of videos i want to do that are partially done recorded um that have not been edited yet so i got a little behind on that um including and i felt a little awkward i had a uh some of the product companies says hey we sent you the product and i'm like yeah um yeah is audio choppy or just me um let's try bringing it closer see tell me if this helps all right does that help with the audio at all very choppy uh let me see what it actually says the stream is good so now i'm hmm let me see well it looks like it's working is it working now i pause a little because i actually watching another one so i guess there is some lag okay hopefully it's a little better both audio and video i guess i could do this over 4g i'm doing it over my wi-fi which should be fine seems better audio is fine yeah better right when i read the comment all right maybe it was just a glitch i really don't have a good answer for that anyways back to the uh back to the program here for you wander off too much okay so uh yes we got approved uh on that big bid a big project uh that's awesome we're excited to get started and i'm planning to film more of that uh that's that's gonna be a lot of fun and but i say got approved i have some verbals and some confirmations but uh approval for those of you in business and don't know this approval means i got the deposit check when i see that check or this is going to come in via a ch because of the size like that that when the money comes in that's really when you know you're approved everything else is kind of uh speculative also and i kind of noticed because i can you know see myself in the phone here um the lighting's better than last time i was at my house because uh we got new lights i put we put new lights bulbs in my house it's my other exciting news that i can cover for the home edition of this video youtube was broken yesterday for those of you that don't know or live in youtube land like i do if you posted a video on youtube yesterday it didn't post uh the video would show up later so that was kind of an interesting problem so i actually had one more video to upload and i avoided uploading it because you upload things it just wouldn't go wi-fi enable no um sorry don't have such things here i'm i'm uh iot free for the most part i mean there are computers here there's a laptop here there's a phone here um there's not an iot stuff that's why it's like people ask about uh what do you call it like iot setups for my house or what gadgets i like i'm not much of a gadget person when it comes that i have normal light switches you turn them some slide because they are slider that's as advanced as i get you know so we can dim the other ones are just so much of led lights so yeah nothing exciting ooh my son's playing with the lights over there leave lights on marcus he's playing video games over there waving he's on that side it's you don't download anything you're gonna cause lag marcus anyways downloading one of the topics i had for today i was gonna wait till at least a few of you were here so i'll talk about a couple things i'm gonna have a um sonology i've been playing with so i'm gonna have some a series of sonology videos i have some new free nas videos i'm working on um i definitely have a few more firewall videos and one of the things they may publish at least one of them beforehand is going to be some project videos that i have filmed so there's going to be some of those uh including um the project where we installed some large-scale unified a handful of big deployments so we want to make sure that we have um that we have all that so i have you know all those projects covered how we did them details behind how we did them how we made them work um lots of little configuration things like that um there's going to be a videos on like some like planning i want to cover the planning side of it a lot of people think about how do you plan out a job like that and there are some different things you have to do so i want to talk about that planning phase and how that works uh so that video there's gonna be a handful of videos in that coming but one of the things i have been doing is hanging out with my friends over at uh that is referred we call it dc 313 for def count 313 um it is a group of like-minded security individuals that we all get together and do some meetups where we talk about hacking and we talk about security uh we talk about opsec and things like that and the last talk was really good um we had uh someone coming in who was opsec for the military and that talk was really really on point and i truly enjoyed it they he does really large-scale um opsec some of the red team stuff some of the um breach teams and things like that where they were really are pushing hard uh for the security breach but where the conversation got really interesting to me not that i'm saying the red team stuff wasn't a lot of fun and really interesting but what got really interesting was when he referred to you as and it's the uh you can look this up this is a law related to investments and it's a prudent man rule of law and legal definition and it was really cool because this is something about both business security especially and it service businesses like many of you may work in either in a position of ownership um or in a position of management or just in general you are responsible for the company security and uh when you're talking about that it's not just going over the um like hey i know how to secure this or these are the tools it gets a lot more detailed than that and so if you look at my video that i said oklahoma is not okay i published that video the other day and it was the disaster of it systems that occurred recently in oklahoma specifically of all uh ill titled names the department of securities was breached okay well this is where it gets even more confusing we don't really know that they were breached we know they had data public facing and publicly accessible public facing data publicly accessible is horrible this is really bad and people like oh yeah this that and the other but hopefully someone who ever worked in their IT department was following the prudent man rules and what these are are just sets of rules and a few ideas and i may do a separate video on this i want to bring you up in this video but i may do a more specifically bullet point rule and what these are are some things you really need to do to cover yourself whether if you are in a decision making capacity in IT you probably have faced management at some point time or clients either way is the same scenario you know the nomenclature may be different where you've said this is insecure this is a problem that you have you should secure this thing and the client says no we don't mind having all of our passwords in the clear we don't care about two factor authentication we blah blah blah well this is that whole but comes back to the idea of the prudent man rule and this was a fun way it was explained at the hacking event i was at was that you make sure it's not just cua in a normal way like yeah yeah i told my boss right i'm clear so when that thing that i said was really insecure gets hacked i'm clear because i told him right it's going a little bit step further net it's one creating documentation about the insecurity talking about the mitigation of the insecurity emailing that to the people that are responsible for that decision and saying these are the steps and mitigation you take or in certain cases especially if you're an employee you're like i'm not sure where this is so we need to bring in external help to audit this or you need training it's all about really concise request documentation in writing so you email your your superior you talk to the client you put in writing these are the things you need to mitigate this level of disaster then follow that up with make sure especially if you're working internally and you're using your own company email you cc an external email address so you cc that external email address you put that in there and say these are my documentation this is what could happen i've documented very well the potential threats so the person has a good decision they understand the cost and you are now covered from that because i'm really hoping that there's some it person um undoubtedly being deposed right now because of the level of breach and we're going to bring up the Oklahoma because it's so recent they're being deposed they're being grilled by um very higher ups going how did all this occur and hopefully that person has all their ducks in a row that has all the things lined up this these are the things i told them to do they simply chose not to do any of them or maybe it's even someone at the lower level that had an inept boss which that happens sometimes that doesn't know it very well what was at the helm opening these ports to the internet that caused this problem it's it's a lot of misconfiguration it looked like is what happened it wasn't malicious per se it was just wow this yeah they're going to blame you in the driver seat i see that someone pointed that out big you're right they are you got to expect that that's something we've dealt with clients they're going to blame us we tell them this server is going to fail that is a matter of time it's making noise the radar is broken whatever that is we've directly told clients this and then it failed they still are angry but at least there's someone understanding because you just bring it up you do not bring it up in an emergency situation isn't i told you so but you go look i told you on uh December 13th the server had a failure you decided to ignore it you decided to roll the dice and gamble with it knowing that here's the documentation um we just dealt with this again with a client today and that's also why this comes up so um i uh just absolutely you know make sure we were clear they finally the good news is it wasn't a disaster situation but it was an opportunity for reminding them they had an office manager that chose not to listen to us repeatedly that office managers decided that they didn't need that the backups are working and no one should audit it our review of this customer and our break fix not manage client was that their backups were not occurring we said we do not see any evidence that backups are occurring and that's how we documented our review when we were fixing just a firewall then we fixed the wireless and then we fixed a band network switch so none of our jobs touched the server but we did realize the age of the server and things like that and they had us look at something on it while we were there we said i i don't see any backups and those are the first thing i always check is there a backup to do this so what i've done is never every couple weeks or anytime there's some level of engagement because they're break fix i remind them there is no backups finally their office manager who was very dismissive of me and my company in terms of not heeding our warnings um the person who took her position seems much more concerned when i reminded them like oh i they let us know that she left they let us know who the new contact was and if someone else in the office took that position and we let them know hey this is a reminder i'm sending it again to you i reminded your previous office manager you don't have verifiable backups and to our knowledge no one has ever tested your backups and they they responded aptly to it so it's it's all those things we've had history of doing it they're in it of course even the new person well has it been brought up before i'm like yes it has um yes it's been brought up here's you know when we sent these emails before we sent them as a reminder something we send the bill or something you guys know um your your network switch has been replaced it's fixed your backup and running um we still never got any verification on those backups just letting you know that we still have not observed any backups happening boom you know you're just covering it you're not being intrusive you're not trying to push it i'm not just trying to upsell you a product i'm like telling it you're stuffing backed up and you don't have a rate array it's all on a single drive server so it's not like there's even a hope that this thing if a drive fails it it's going to fail hard so i wanted to think about that it like i said this doesn't have to necessarily apply to you if you're um it's really surprising that you don't have to be a business owner you don't have to be uh at the head of it you may be a lower tier you're at the help desk level even but if you see something you document it you organize it you just say i i did my job i've seen it um i'm documenting because you may be the one who gets the foot you know your feet put to the fire on that and because well you know it's gonna happen i will answer a couple pf sense questions i've seen pop i won traffic shaping um i have another video on it but i well i did a video on cattle queue and it's really cattle queue plus uh the traffic shaping wizard which is really easy to run and i've referenced mark firman's video if you want an in-depth explainer he took the time to create graphics on it um mark firman uh did that wonderful pf sense video it's long but it's wonderful and it gives you a good visual representation to how packet queuing works how traffic shaping works and if you don't care about all the visuals and graphics you just want to know how to do it just run the wizard the wizard works really well in pf sense second question i've seen come up i have not seen uh i i seen someone say a package that's pinning the cpu i don't know i haven't seen it so uh unaware of it none of our clients called the complain and i today was in our pf sense because we were playing with a few things and i seen no issues at all it was running smooth and happy so i really have no i have no reference for what you're talking about i haven't seen it if you want to drop a link or drop it on our forums i'm more than happy to discuss it in more depth if you have some example and uh troubleshoot it oh let's see vicky during our yearly it audits uh they ensure we've tested back up in canvary restored they want proof yes thank you some company wants proof you work for a good company because they want that so that's a um uh that's something really good there so definitely good to go ahead and prove it we do it sometimes even more often than that um saturday was a bad day for tom because he did something uh i have backups of everything so i'm able to run beta software and try an idea the idea was supposed to be a video the idea ended up tom restoring virtual machines so i got to test my backups on a very unscheduled um basis so but so sometimes i end up testing my own for customers we do the same thing i mean it's good and bad um the nice thing about you know the backup systems is we have a couple clients that have some people that just delete shit that's all i can say they just have some bad case of the mondays and uh they test our backups we have a client that tests them about once a week and i don't know i don't i don't it doesn't seem to be as frequent they've gotten better um we had a client a while ago that was really bad but they fired that person it was an eventual thing i figured if they were deleting that many files and losing things it was eventual that they were gonna have a job there anymore too so it was they were they were full of incidents um but uh related to backups so this is something kind of interesting i didn't um i've never really thought as much about this and it's maybe less and less likely to happen with more and more data living in flight versus uh static uh type data but it was a really interesting um and this was a very large company that went out of business let's come back to my dc through and three talk where we were talking about security implementations and some of the problems that run and their dr plan went great so um the dr plan went smooth they had done it many many times but when a disaster struck they could not restore and this is where it gets really weird so they had an offsite plan but it wasn't very regional and it was regional but it was less regional so what that means is they started with we contracted this company to have all of our backups offsite they were supposed to be somewhere else well the company then subcontracted the data to be a little bit more regional to a different data center unbeknownst to the client well when the disaster had struck it struck both areas that normally isn't a problem but it did hit their main office to a total loss uh because it's like a tornado type thing when they fired the generators up at the data center the generators were moved closer to the data center and they should have been and caused a problem and deleted and degaussed essentially the equipment that was on the wall that also contained their backups so they said it was like the most inconceivable thing that happened but it did happen and it did cause them to lose everything and it was like they uh so sometimes it can be really worse now someone asked how do i check my backups um we're using the solar winds and it's essentially does the md5 it does a hash to verify each backup um their system is very very thorough and it's one of the reasons i'm hesitant because i see people whining about oh my gosh i can't believe solar winds cost that much or something to that i know it's expensive but it does everything in automation now that's for general full backups the other side of it is yes there's other customers with other backup solutions and other solutions related to um like how i do my backups or how we do backups of a linux box and things like that like there's always custom backup scripts um that we do we have client that has like just a series like they're only paying for backup of a machine and we came up with a strategy um with the other machines because the only thing that ever changes on them is the databases um so those databases get synced over to another machine for backup purposes so they don't have to back up every single one but they back up like that database because that's of course what changes even for us we are doing hourly backups of all the data at our office i think actually some of it i'll i'm gonna put together like a video on all the little things we backup um but we're instead of just syncing the whole vm which is overkill we do weekly snapshots of our virtual machines but we do like half hour increments and one hour increments of all the data that we generate so that's one of the videos i was actually working on saturday before i made a really bad mistake um i wanted to try out some beta software it wasn't a mistake like i typed something wrong i just the beta software crashed uh a continuous backup i had it wasn't big deal i had to restore a couple things and things like that but i know the risk of doing that i know i have all my backups and i know my backups are good and verified so i'm not like it's a time consuming thing but the time was just spent restoring as opposed to doing videos and i just did some other stuff and i caught up on a few other things uh what do i do for offsite backups combination of things so um i have what i do and i have what we sell our clients and that's not all in the same because of different needs and it really varies on clients but my general msp backup sale is going to be solar winds like my cookie cutter they have a general window server your standardized stuff once they get in a custom servers and custom linux servers are going to be something different different solutions being sold but for my um standard msp sale is going to be my go-to is going to generally be solar winds backup that's my backup system for a lot of our clients it gives us a really nice dashboard integrates with our msp control panel really smooth really good i've done a review on it i love the software i also do like cloudberry cloudberry is not maybe as fast it's close it's cloudberry's got a great product their restore is great what cloudberry has a big advantage of is cloudberry is a software company that allows you to choose your own back end i like cloudberry for that reason so um they're great they are uh they are a good tool to use too it's kind of nice because they are uh platform agnostic so you can buy cloudberry for one all different front end platforms you know linux windows etc and back end uh they have a multitude of storage providers uh which can include your own storage devices not just something cloudberry provides so you can use cloudberry to multi destination more than one cloud provider so you're okay i want to use uh azure and back plays plus google and then maybe i want to keep a local copy for myself maybe even one you can even split this up for the client you can set a client backup from cloudberry that would allow you to um back up to a local device for the client maybe you know one more uh even if it's just a backup hard drive or maybe a uh nas that they have on site you can send a copy to your office and then you can send a copy to the cloud so you have like a really strong redundancy of the backup is the bedtime Marcus yeah kids gotta go to bed wave wave hi there's a 102 people you can say hi to 102 102 seven q day cool all right have fun man oh okay don't need tripping on cords anyways good night so there's a few different options there and uh when it comes to and this is where you get into the custom solutions when you get into custom solutions um we have clients are singing things across there we have clients that just have data in a different manner um than standard so we are actually working with some companies because they have multiple data centers at geographic locations they sync the data themselves and we're talking like you know 30 40 50 terabytes at a time that they have to keep in sync and we have some of them using free nas along with uh synchronization to get the data all shuffled around so that's that's another you know it it kind of depends anyway at some point when you have you know 70 80 terabytes of data it it doesn't make sense to use a solar winds backup system so solar winds is like your standard go-to windows server client or even backup some of the workstations clobbery for custom and then after that it kind of just goes what fits the client and then even what we're doing is this is partly because i like rolling some of my own stuff even though i have other tools at my disposal and it's not being cheap i i hate when people think well you're just being cheap but no i actually like exploring some of the options because sometimes those become the scalable options for clients i use sync thing i i love sync thing we have it syncing between like my laptop my server at home another server off-site and another the servers at our office and sync thing is um bandwidth throttled so as my server backups are happening which are happening every half an hour for certain things like our invoicing system and some of the knowledge bases that we have where even unify every half hour creates a backup every half hour creates a backup so when it's doing that it just syncs it in real time it just grabs that file and replicates it at all those locations as needed so that's a that's another i've done a review on sync thing there's a i got an in-depth video on it i'm going to do maybe it hasn't really changed much as a product but i thought about reviewing it because each time i review sync thing i'm talking about more and more files at scale that it has at sync they've actually added they've really added to the algorithm to make it better and tweaked it a lot so it's even more efficient for doing massive file syncing so it kind of it finally hit what they refer to as their 1.0 version which means it just takes it out of beta so it has you know it's really come up it's a great product i'm so i'm using it for years and picture it as your own dropbox keeping things in sync for even things like um we'll use an example the youtube template that i added it right here um i want to add the youtube template i added on my laptop it has the templates because the templates that i use for my youtube videos for all the live stream sometimes i start a video and i upload it from the shop but i finish it at my house as far as uploading that's why you'll see like these weird releases that i do in terms of scheduling but having that file the template synced across all my devices all the time means you know i'm working on a shop okay time to leave it's uploading it's going to take you know half an hour to upload i drive home grab dinner whatever that i go up on my laptop and that template that i already started i can finish on the laptop and push the upload its syncing is just a great tool for that it works that's the one thing i do use in free nas as a plugin the only jail i run is a syncing jail everything else i run is a separate vm not on free nas but just an xcpng in general um some of the other things we're working on right now is there's going to be uh i have some servers we're building for clients so i may talk a little bit more about server deployments and some of the transitions um related to that because that's always the it's a hard project if you've not done it before to go okay we gotta migrate all these old servers consolidate it move the domains over um and we're actually because of the client has had so many problems over the years and i've mentioned this i think in the last vlog we don't do a rip and replace when we take over clients we do a transitioned planned upgrade so the transition planned upgrade for this client is new servers and like a transition like okay do we even want to bring their old domain they only have nine computers on a domain do we even care about the domain or we just recreate those nine users and in this particular one we're going to recreate the nine users because we know the domain has so many issues um that were legacy ghosts in the shell ghosts in the machine from the domain so it's worth it to us just to rebuild the domain from scratch and rejoin those computers of the domain um the more work that is for the transition the less headache it is because they did so they've been the legacy migrating domain information and archive stuff and then different objects interactive directory for us that have dated back to the 2003 server days in place upgrades um with the domain so yeah um often do i buy a new laptop for myself do for a new one soon this x250 i bought quite a while ago i know it's older i think this is the three or four year old laptop i will keep a laptop until it's uh i don't know maybe just too slow to do things so right now it's actually far from it um so yeah just it's uh i don't buy one very often i'm not i actually don't spend much money on myself when it comes to technology i make sure it's fast enough to get what i need to get done and that's it i don't uh just because have it my i do like my gaming system is nice but once again it's not that nice but my kids play it more than me i don't really play that many games what do i think about proxmox i think you should go to learn linux tv to learn more about proxmox and uh yeah that's that's a uh it's a good tool it works i it's on my to-do list to do a proxmox versus xcpng but honestly there's very very little fundamental differences until you scale upwards uh until you really get up there into the large scale deployments proxmox and xcpng they're i mean like they're tit for tat they have a high number of features um that are very similar to each other so there it's a hard decision if you're only running one server and you like proxmox keep with it there's not a reason to switch it there's nothing wrong with it at all it seems to be a really good project um so there's that uh what do we think about g-suite going up how much it went up whatever the product's been the same price for quite a few years inflation uh causes prices to go up and i talked about this in my solar winds video when people said oh my gosh it went up four percent once you become a little bit bigger as a as a business it just the the money goes especially for in a service industry where um you need knowledgeable people knowledgeable people don't come for free my payroll far exceeds any um i i here's what does make a bigger deal the time costs of living increases and increases in payroll are significant just in every measurable way more significant than g-suite or the tooling software that i use uh going up not that i want them to raise the price of my tooling software but that is much much um bigger expense so in the scheme of business it's not i mean i wish it didn't go up but i understand why it went up so that's kind of how i feel about it so it's not not the end of the world um but i understand they've had the same prices for years is what it is so you switch from proxmox xcp and g that's awesome steward love hearing that so i'm a big fan of xcp and g but i'm not i i'm not down on on there um how do you sell vpm and syncing to use syncing on mobile devices phone i've not had the need to use it on mobile devices phone um i know it does have an option for it i just don't there's nothing i care about syncing um to sync thing on my phone so i it has an option i've heard it works i have lack of use case for it so maybe i could test it but then my testing wouldn't be very thorough and because i could just verify that it works but you already knew that that's the reason that people love it they think it works great for syncing things on their phone i mean it's what it does and cool but i don't know what i want synced on my phone i use google docs by the way that's the only thing i do sync on my phone so it's not like any documents on my phone for things as far as vp ending syncing thing it's arbitrary just it it's it's an ip it works on tcp um point it at the other side of tcp on the other side of vpm and that's it yeah um i actually so me and jay if you happen to notice on learn linux tv that his videos are also filmed at my studio he lives local here in detroit he's a friend of mine and uh yeah he i let him use my studio on as needed basis to film his videos and you know anything he wants to film there he uses my camera i led it to him uh jay is a smart dude does great work and uh very and i told him to i said look dude there's a lot of people asking me about proxmox go be the proxbox guy because you actually use it he uses it both in development and production it's a tool that he uses at his company actively so he's his knowledge about it is like my knowledge about xcp and g he's got deployments of it he's physically using it he runs business with it uh so it's something that he's using in his very knowledgeable he's a really knowledgeable uh guy about linux in general but he does specifically use it my review of it i'm not using it actively anywhere i have zero clients using it i have a lot of clients using xcp and g very few i can say zero that i'm directly aware of um using proxbox if they are using it i don't know about it because they've not contract me to touch that side of their business hence my knowledge on it would only be it would take me a long time to learn it and i went back to the sometimes i say the words i don't have a use case so hey thank you philip ucanon all is very well yeah me and jay have talked about doing it we're trying to figure out how to do it because we actually me and jay did is while we're on that we both co-hosted a study morning learning review and two weeks ago well two weeks this sunday um we had a discussion about that hey thank you very much uh peter ross i'm sorry we're not going to try and say your last name is i'm probably saying it wrong thank you very much for the donation um and thank you for subscribing so but uh we are talking about like we we really went down the list we don't we dove into some technical details between proxmox and xcp and g and it's impressive like they feature wise they're at parity with each other on so many levels even right down to being able to do a live vm and memory snapshots and things like that so that's really good um any recommendations security news blog sites to follow yes uh talos security is good crebs on security is amazing so brian crebs i love his writing style um um demitri which is i'm trying to remember his name the person's over at uh uh he's at the head of google's project zero his name is eluding me at this moment i've talked about him a couple times because his his security stuff when he releases is he's out of the security news but his breach details are very interesting um but definitely follow brian crebs um amazing stuff bruce schneyer the guy's amazing i got to meet him i got to write an elevator of bruce schneyer once and uh that was really i don't know that's it's that's my bruce schneyer story i got to write an elevator to the guy he's amazing i've it was coincidental that was in the elevator with him i was there while he was doing a keynote address so steve giftson security now podcast listen to that i listen to that every week i think it's great um there's some love and hate maybe you agree don't agree with steve giftson but the overall the overarching steve gets a very knowledgeable guy um quirky but definitely knows his stuff when it comes to security his explaining explanations are really good he's really talented at what he does um ios face sent quality with unify so is as are people with and or apple devices having problems i don't know that i'm not that i'm aware of um i i don't know i'm not no one's ever brought that brought that to my attention so no not that i'm aware of but i do know there has been trouble in the past with the power saving features on unifying this doesn't come back recently this goes back a long time ago um so you could have someone with an old firmware version there was some problems with the way the apple implemented power saving wi-fi features that caused problems with unify but to my knowledge those have all been solved with firmware updates and there were mitigations of just turning off certain power saving features on the unify uh to stop the iphone's from having a problem and the detail as i understood it was due to a poor implementation by apple from based on rfc standards uh thoughts on ubnt.com changing to ui.com i don't know i don't think about it that's probably some marketing decision so uh the beers with telos podcast yeah i haven't really listened i think i maybe listened on one episode i don't remember if it really grabbed me or not um it's hard listening to all the different security episodes i read a lot faster than i can listen sometimes i even when i listen i'm listening at 2x all the time so that's actually a problem because i listen and i'm in silence so to speak a lot so i'm not always engaging with people on a verbal level so i set the slow myself down to talk in videos because if not i want to talk really fast and make things go as fast as i hear them when i am listening to a podcast and you know you get moving really fast and that doesn't do much good it becomes unusable at some point uh but beer with telos i'm trying to think there's another one um the the podcast around my phone uh that's the one that's the one that really pops to mind i don't know you know what i will start i will make a list and i will put it on my forums forums.lauren.system.com i'll make a list of uh all the security blogs i regularly follow they have my bookmarked and i'll um put through um all the places like reddit net sack is great man um that's good for sometimes discussions i have with people things like that but uh so there's definitely a handful of people i follow i also have security friends um so we actively like even on facebook we engage in those kind of conversations and talk about things like that in some of the companies like sofos their naked security blog great blog that's one of them i follow too um so yeah i'll i'll actually table this conversation so i can put together concise lists and everyone can join in on the forums and kind of talk about that so that would um probably be a good thing i think that is a great idea for a forum post and i think it'll get some engagement because hey why not let's all share all the all the ones out there that we do um i've been trying to post a little bit more on some of the news forums a little bit uh it maybe i'll post some of that in in my forums there so let's see paul's security weekly i haven't followed that one i've seen it pop up once in a while hmm i doubt they yeah i don't think they owned ui.com already that's probably part of the deal is just being able to afford to buy a two letter domain um the other thing too so there's a couple security things if you follow me on twitter uh i tweet it out and one of the things i try to do in this is something that annoys me about many news organizations is they want a more salacious outline i get it because they're a news organization um and they have like they do much attention but they don't always credit properly or you have to dig for the source of it um that's why like my oklahoma is not okay video is all about up guard not about the place where i actually had noticed i'd noticed it in another news or news organization who i didn't waste my time referencing i always like to go right to the source someone to post in the forums um today about the apt problem um in the apt package manager and having a gps problem but once again my reply is directly to the mailing list in debian which both shows the mitigation for it what happened how it works and how you get around it so um you know i try to really focus on some of the sources for some of the things which is why i spend so much time reading on them i'll i'll point to the kernel mailing list where it was mentioned the debian mailing list for the package manager listen anytime i can be the closer to the source to the people that either made the discovery or are reporting directly on it as a bug report as a cv e the people of doctorate cv e those are a lot of my go-tos for when i know about a security flaw and how i like to share it um that way it never gets convoluted you know the old telephone game where i heard from this person and they passed along and a little bit of information was lost or changed or you know tweaked a little bit that's not necessarily what you want you want to understand from especially when you're talking about security you're talking about um your distributions and problems whether you want the most upfront information from the people that best understand the flaw and best understand how to mitigate that flaw and file the cv e because the cv e isn't just filed uh to notify us it's also filed with how the mitigation uh was being put forth um what do i think on the new free s of s i love it uh so far i i've learned and this has been slow for me to get some of the free s 11 two videos out i've learned some of the quirks i've had with it have to do completely with my build and i built it at my lab machines and it works fine so um i've made some discoveries that i'll share but it's also just bad choices i have for some of the hardware uh i'm going to do some 11 to hardware discussions related to that as well um so that's going to be an interesting you know some of the stuff i put together on that at least i find it interesting maybe you will too but i will be doing a whole bunch of i needed i'm going to do a getting started with free s 11 two video and kind of putting all that together now part of that is and a person is probably listening here we're going to be onboarding probably at least one more person to help organize some of the business stuff so it'll free up more of my time so i can get back to video making so there's some other changes company changes that aren't finalized yet we're still working out the details and uh we'll get those done um how did unify protect get released as basic features missing from unify video i don't know lots of non intel nicks someone may have been following me on the xcp ng forums i don't just post in my forums um yeah i i may be ordering some intel nicks i've had so this is may this is weird because it's working fine in free nas 11 one but i'm running into a quirk in free nas 11 two with the same card and i can't tell if it's the card or not so um i'm i can't tell but what happens is sometimes the card even though it's statically assigned seems to lose the gateway on a boot up you edit and save the card and it works but i can't repeat that on another machine even with the same card so i'm i may just reload my machine it's probably because i did it from beta i don't know i'm trying to sort some of those things out but um related to because someone said intel nick the xcp ng machines i have seem don't seem to problems with the uh ctx driver um which is chelsea io they're having a weird quirk that i'm not seeing with other intel cards so um i need to order some more intel cards because so i can do some ab testing and i granted i bought these chelsea cards i've done a video on they seem to work good for free nas especially the 11 two when i did the video they're fast they're work good in i'm having no problems with them um in terms of transferring data at 10 gig but the when you attach a vm to them they don't seem to transfer the vms at 10 gig but they are working properly at 10 gig as a storage connector for a sand connection so but they're also older cards they're like 11 year old cards so and without spend some money and uh get some intel ones uh i always would abandon the real techniques yeah that's i've said that before when i do my pf sense videos i do tell you well you know my getting started with pf sense 2018 video i'm gonna do a 2018 version pretty soon here i tell you to buy a very specific um well series at least not the cards you should buy four port intel network card if you're going to custom build your pf sense build a couple of them grab a couple of them network cards uh they're inexpensive on ebay used you can buy these like you know 50 60 box four port intel next they work wonderful and they give you another advantage let's say you have a total catastrophic failure of your pf sense that you custom built no problem if you use the same four port nick card even if that nick failed in that one but you bought another similar intel nick you could just drop your pf sense load the config file in another pf sense box with that same network card and no matter what physical box it goes into the network ports line up to be exactly the same igb zero through igb three the alignment is the same so you can actually transplant your network card directly over without any problems at all um so it's another advantage you have to using it and having a spare on hand uh that way if you do have a catastrophic failure it's really quick to recover from with very little headache also i've had real tech cards just cause headaches that i can't explain yeah always abandon real techniques um one of the questions you have is i'm not going to stay all night on this um because i am a little bit exhausted um i was at a business networking event before i was here um i'm tired i'm going to watch some tv i'm going to post on a forum but list all the security blogs that i go and start that discussion and keep engaging with people and things like that oh you know what i'll mention um i got some hate mail the other day and uh hate mail's fun and i say it that way and i i thought about replying and i just sometimes i don't bother because it it'd be falling into a fierce um but the person ad was upset they wanted to purchase um i don't know a unify or something like that uh they had like a whole you know just let network layout questions like a bunch of q and a and the q and a was incomplete so i would have had to send several emails and in the end they want to purchase not from me just from my amazon link and things like that and i'm just like they got upset and i said well you can post on our forums you're free or i can help you with your network as a consulting project and they got just so livid with me and i'm like you look you don't understand like the margins i mean i i'm thankful for anyone who clicks on my amazon link to buy stuff but it's like it's a one percent two percent margin it only works when like a million people buy something i make a few bucks but yeah the margins are super low on some of this stuff the people and that's what his rant was to me i bought stuff the year amazon store you should be able to help me design my network and pick out which way uh just the whole thing like that um yeah i and i'm not complaining at all thank you for everyone who does country with some people i don't think they understand that it takes time for me to you know i i'm very thorough if you uh contract me to veil your network i'm very happy to talk to you in an open forum discussion because your question helps others um who may have similar questions and it's all indexed by google so those questions can be answered again if they come up like hey you know how do we set up this or set up that but to provide full network consulting so you can buy a single product off on amazon link i mean it takes too much time for me to dive into all that so yeah that person was just they wrote me a rant email i don't really get it um what do i think of ubnt versus edge router versus uh pfcense use case uh license fees and we don't really do many edge routers at all edge routers are less more unified less edge um thoughts on data or i've never used it pretty much the big guys in the market are connect wise and solar winds uh so i have no opinion on data just not used it i think data is an interesting company that seems to be getting bigger i asked someone who's used it whether or not they uh think it's good or not so um deployed thin clients not very often they're not very popular they're kind of a headache we've taken some out because it just was a headache for the client they couldn't get the things done they need to get done so they never move into thin clients uh some people had kephethina i i don't you know i don't i'm not mad a person at all about it i don't take it personally i just wish i i you know when i try uh i i never reply more than one or two emails i i don't want to i want to educate them i want to make sure they understand i'm not you know trying to be rude but time is money i um youtube was a scalable way for me to use my time so i go ahead and put something out on youtube i i put it so it can be as thorough and complete i don't leave you hanging i don't put a video out but leave one little piece out that you had the pain before no i tell you the entire process how we how you get something accomplished from loading pf sense or whatever you know video i do and i try to be very thorough that's very scalable what's not scalable is when people want one-on-one training i have finite amounts of time to get things done i have a business i have bills to pay my kids that need things and so i have to manage my time like that youtube is very scalable individual one-on-one time doesn't scale so i have to get paid for that so yeah go set up a new r720 awesome like good stuff there um so what else do we have here have you deployed thin clients uh real tech don't have a proper driver for bsd i i think they have a driver for bsd but yeah i don't know i definitely definitely had problems with it and it varies it's usually those cheap onboard real techs but you gotta remember the lot of those onboard real techs are kind of they're the cheapest one that they get stuck on there and things like that so yeah uh thin clients with citrix on a plant there's uh the you know the things like that that are very um you there are use cases where they make a lot of sense so there's times you can use them uh any specificities recommending custom pf sensebox versus uh devices we eat if i add router raker tick we don't use microchic at all um micro tick and so make sure i'm seeing it right unify is great for that uh whiskies in this glass uh pf sense is just kind of a great go-to solid predictable firewall but if they want things like utm we do untangle um so i didn't see the mention here but that's why i reviewed untangle is because there's our nice deployments for things like that um fireplace no far from iot that is a real fireplace um this is a is a giraffe on right here so this is my uh my wife's zender f and yep yep that's fully fireplace like in uh it has been converted to gas so it's been slightly modernized um but no we're not doing an iot fireplace at tom's house sorry that's yeah no no we're not doing that as an msp there's many conferences and attend this year i don't know i might be attending one of them i'm not so this is me and it is may not be you um but i will say that uh for when it comes to conferences if it's a hacker conference i'm all in i'm i'm like trying to figure out which linux conferences and hacker conferences i'm going to go to each year um in events but when it comes to the other ones the business conferences i don't feel as comfortable there they're not my um i know they're my peers because i'm doing similar things as them they're not always the places that i have the most desire to be um so i don't really yeah so i southeast linux fest uh let festival so i go to the ohio linux fest that's uh definitely something i you're i'll probably go this year to the ohio linux fest um i'm probably going to be at gurkan which is a hacker conference so that's on my radar to go this year tickets are pricey but uh worth it um what's the best advice to give to another computer readers uh i'm gonna do another video on this one this is a topic i always leverage your knowledge not products that's something important when you leverage your knowledge you can make a lot more um controlled decisions and better money in the in the long term when you're leveraging knowledge versus people who go i'm going to resell this product is when you get into focusing on product resale as your way you always make money you're reselling someone else's product you're not really selling your product when you leverage your knowledge you're reselling you as a product um so you're going to be able to leverage it more now that is harder it means you have to have more knowledge but it's more rewarding because you're leveraging yourself on there so i may do something more in depth to explain a little bit more what that means but that's one of the things that i look as a key to my success is the fact that we've always focused on leveraging knowledge not leveraging our ability to sell someone else's product yeah def con um that's well that's what this is here we're doing local uh yeah you may see me at def con um so that's uh that's a big thing is like i said hacker conference i'm all in very comfortable there that's i've been going to him for a long time different ones over the years like for the last 20 years that's the place where i'm comfortable so business conference says i just always feel a little out of place uh i'm way more on the hacker geek side and way less on the business side i mean i make money and things like that like that's an important aspect of what i do and it's important but it's not where my focus is when someone brags like i remember speed made 20 million last year and i'm like would you do that's interesting that's not how much you made i i'm not saying money's not important but if you start off with how much you made we're probably not thinking the same way cool i'm glad you're making money that's awesome thank you but that's not where i leave that's not my interest i'm like what did you do what is the interesting technical problem you saw that fascinates me and that's why hacker conferences and me going to those are always so fun because that's where my interest lies isn't that like i said there's not that i'm saying money doesn't matter i'm not trying to be pretentious or something i'm trying to tell you that that's not i need to make money to pay my bills and buy laptops but it's also not the interesting thing that you lead with i want to know what technical things were done that's that's just my interest level um and it's also why my sales tactics are so much different or maybe a little bit lacks uh do you install any free pbx system for clients yes install and manage them uh not a lot yet we're slowly getting into it as we do takeovers on those um we have a messy disaster of a free pbx that i have to deal with tomorrow low on the list of things that tom wants to do but i gotta go hack it um because it was a hostile it take over with no passwords but that's what part of the fun is it's also linux i just gotta change root password on it i just don't like the fact that i go physically to the client to make this happen hello from chicago all over the place hello from ohio ohio's flat there's nothing interesting in ohio i'm sorry actually interesting fact but ohio is the um the place with the most astronauts so something about that state that makes people want to get off the planet hello from the philippines i well a fascination in me is a global audience that's always interesting um i just cool interacting and i've thought this ever since i got online in the 90s when i could interact with um people from all over and i was just always interesting side point lol i i assume you're laughing at the fact that you live in ohio hey you do have uh jungle gyms in ohio so you got that and they got a lot of hot sauces there so yeah that's i i can get down with that it's that's a one nice thing new zealand lord of the rings was filmed there if i'm not mistaken so that's that's a cool shout out for new zealand that's that's pretty cool ohio i used to have to drive through ohio man it's i it wasn't something i ever looked forward to uh when i worked in corporate there was a where our location was in detroit uh we had one location in ohio and another location in uh kentucky so i had to go through ohio that was never exciting i spent a week in cleveland and one day yeah i drove through i i've had to drove through the i-80 i-90 corridor when i used to have to go to new york uh visiting family and things like that years ago not exciting i'm sorry nothing there cleveland is the armpit of america that i i've heard that a lot i don't you guys got the rock and roll isn't the rock and roll hall famous there i think so yeah it's a long state look i just set cruise control and try not to fall asleep when i go in ohio they really love riding tickets you know i don't see vince usually in here he emailed me today about storage servers and he didn't reply i don't know if it was sticker shock or what um by giving the raw costs of just the hard drives for his requests so i don't see you here vince i don't know if you're in here and i just you know haven't commented but um did you get sticker shock when i sent you just how much that amount of storage costs um i'd recommended uh 45 drives uh system so they're great but yeah it's expensive uh he didn't know where i live i live uh in detroit so king's island oh yeah i forgot about king's lion carolina although it's the tornado ailey down there so yeah um i don't know when i know anything about detroit before i leave i've looked here my whole life is not well i live south of detroit um we i say i'm from detroit but technically uh i live in the city of taylor i my office in south gate i'm three miles from my house to my office three miles away um and for me to be in detroit proper is a 13 or 12 mile drive it's very short um for me to get into detroit proper so but i think people who said they're for whoever said they're from chicago you may live in the suburbs of chicago but you know that's generally how we refer to it you live in chicago or even if you're on the edge of chicago cmu ad centers in detroit okay oh yeah the veiling national park cool yep there's there are some neat things so i won't dog on ohio too bad oh yeah Henry Ford museum uh that's a pretty awesome place my sister works there my sister does the exhibit for the uh model t cars and a few others my sister's an historian um art historian thing she's very very different than me um she likes old art stuff uh what else we got here anything else any last questions the whiskey's getting a little bit low for the jack dangles here which is actually an a jack dangles cup uh how did i get started with my current business ooh i won't go too in-depth but in short i worked in corporate america um i was the head of it for a big company related to auto the automotive uh supply chain management uh we were a transface rider but when that company um tanked essentially uh it was broken up and those became my first it clients so they i have been um uh 2003 is when all that went down so officially my company started in 2003 so now i i've had this business going on 16 years uh that i've been in business so it's just one of those opportunity happened i decided to start a business rather than work for anyone so that was when i was 26 years well 25 or 26 is when i started my company um how do i go about bids and contracts i think i have a video on that called how we acquired our clients i'm going to do a follow-up to it and i'm still going to break it out with excluding youtube um because that's not every youtube is a good growth model for us and we get a lot of clients uh that contractors from youtube and thank you for any of you that have hired me in the past or plan on hiring me in the future the other side of that though is uh face-to-face networking there's a video i'm going to be releasing either sat friday or saturday um that is having had a chance to edit or upload yet uh talking about that i go still to this day physical networking events talking to people that is where the majority of my work comes from uh direct direct business word of mouth and things like that so that's still the number one acquisition of clients is from direct uh people buy from people they like type things going to sales events and stuff like that hello my daughter hi i'm talking to a hundred people online for blog thursday it's not a vlog if it's all live it's not vlog if it's live no no you want to wave hi to everyone my other child it's uh the boy asleep yes the the other child one child's in bed the other child just got home from work so well the glass is almost empty so i'm not going to be rebooting it uh so i'm going to watch tv ooh brought to you by bigby so yeah what do i think of a 250 gig for a six-year-old office not unheard of how's that i've got clients like that there's there's always there's always another disaster around the corner things like that so definitely a thing definitely a problem um so i think that is it my friends thank you for all of you that we're watching i love that there's a hundred of you here uh if there's no final questions uh for home use do you suggest pf sense unify unify is great for home i have no problems unify or pf sense on my like both all depends on the features you need did you ever consider over a backup for small bin size clients to service all your company using sdp not really because you run into some liability there uh don't i have done that i used to have a backup services before i moved it all to the cloud that i used to run in my own office but i also did it with high levels of encryption and password protection on boot type stuff so you have to be very secure and very much make sure you're able to fulfill whatever it is don't do it unless you're confident that you can really do it right oh sonology we don't trust me they asked me today because they sent me some equipment and this is going to be brought to you by sonology because they are not sponsoring and monetary they're sponsoring by offering me the equipment to review um i always just close that when i do those videos um so those videos are coming i'm testing it i just got to put it all down and writing i've been really swamped so which is not a bad thing but that's part of it oh awesome thank you uh so fun story and maybe i don't think doug's watching right now or doug even watches my vlogs um hi doug if you are but um one of the things that's funny i another it company um i had uh they're a competitor i guess you could say they're one they're two miles from my shop doug's a great guy uh and it's funny because we talked about he like some of his employees have watched my videos and things like that to set up things that are being sold to clients that i guess you could consider potential clients for me but whatever um i yeah that's i don't mind that at all um yeah i don't that's why i like giving this information out it makes the it's part of the thing like the hackers are so so you know the guy who did this talk at the uh dc 313 so the guy puts his talk together and like he said he's he's got a super high bill of a rate he does you know fortune 1 000 company security audity but you get a bunch of hackers in your room together like they throw that out the door they're like buy me a beer dude i'll audit your security like we'll talk about it we'll talk about how you do some of this and how you set up your upset policies and da da da da and uh that's so true of that and that knowledge sharing information is why i'm so comfortable at a linux conference at a hacker conference um because sharing knowledge is something of value to me um people shared knowledge for me to get where i'm at and i like to return that favor uh to that next generation or other people that just interested in learning getting more people in tech is important um this this we there's a lot of complicated stuff there's a lot of knowledge i certainly don't know all of it um oh if you're still listening i didn't forget about you um i will ask phil or maybe i will do an ansible part three with uh j j's an ansible person as well j has a different take on ansible he does he does some different things but he's also good at ansible um i am weak at ansible i know the basics of how to do it but i'm not an ansible expert because it's not my day job it is the day job of both phil and j all right uh i think yeah i try to do some short some long it all depends on the topic um so thank you very much though big awesome on that thank you i appreciate the compliment on there i try to keep it nice yeah all i need is a camera and a six pack to get all the info that's true i am an open book if you buy me a beer i share a lot of information so thomas glad to see you here you'll have to watch it and rewind here because i am getting ready to jump off so uh thank you thank you for those of you that threw money at me um that will definitely buy me another beer and uh definitely help produce another episode uh ansible is outstanding uh learn it if if your job is dev ops and managing linux servers learn ansible it will save your life if you manage if you want to manage things at scale you learn ansible that it is a great tool for doing that so spend some time on it there's a lot of documentation on it um it's definitely a great thing to having a tool set like i understand all the concepts of use case for it i just don't in a practical manner use ansible all the time i play with it i toy with it i get stuff set up but uh it's not my day job so that's why i don't do the ansible bit is myself because it is important when you're talking about a dev ops tool that you hear it from a dev ops practical usage standpoint uh from someone really really smart like phil who really really does good ansibles videos or like uh jay who also is an ansible user at their day job so router for lt fell over uh cradle pointer popular we got some clients who cradle points they work good um i think that's it thank you everyone uh if you have other questions just throw them in the forums uh you'll probably notice my obsessive behaviors mean i try to reply to everyone i possibly can in the forums that means i send out tons of emails and i send out tons of replies as well on all this so uh please jump into forums post on there there's a lot of other smart people um in many of them smarter than me uh that will also help answer your questions and that's what i want i want to be a big knowledge sharing place so uh please throw your questions there and um there's a whole section for video suggestions so throw that out there i i love suggestions put it out there the discussion so something it's funny because sometimes maybe the suggestion is something i've done or maybe a twist on it but hey that's why it's there for so uh thanks to all of you uh like subscribe and all that well you probably are that's why you're here anyway so um awesome anything i can do just like i said uh continue discussion of forums jump it over there i security news list poke me if i don't post that it's not getting it may happen tomorrow morning it's not going to happen tonight uh but i will um work on that real soon because i have them all bookmarked i'll just dump all the bookmarks like these are the places to listen to what do you listen to or what do you read where the where's your go-to source for a lot of security news um there's so much of it so um yeah that's uh that's about it so have fun thanks