 Welcome to vlog. There's a 296 and We're gonna be talking about a few things and yes, I'll be talking about what's in the thumbnail there So this is at least one thing on the agenda with a focus. There we go So I'll be talking about some air quality stuff. This is Directly coming because of the comments I got when I brought this up last time I Was just sent down the rabbit hole of figuring out how much co2 is in the air and I'm like That's interesting and it just became more and more interesting as I started reading So I'm gonna do a video on this topic and it's you know, I It's all it feels slightly off topic for some of things that cover my channel But I think it's interesting enough to cover because it affects tech people in general Or really anyone who works indoors, but I think this is relevant to tech people and of course, you know Being a tech nerd. We love monitoring and quantifying the things around us. Oh, yes by holding this I have now changed the results. We now are at 731 so yeah, we'll talk a little bit about this. I'm gonna do a video on it. That's one of the things Let's cover though. So I've been trying to remain some level of organized here Where and when and that is the first thing we like to start with I'll be a gher con October 13th and 14th 2022. I'll be at it nation November 9th through 11th 2022 And I'm pretty sure I'm going to the Ohio Linux Fest That is on December 2nd and 3rd. So those are all on my list of things I got going on and Oh, I see other people talking about it too. Yeah, how interesting it gets how to protect your Yubi-Kee with a password Mmm, we'll be talking about a little bit of that I don't worry as much about Yubi-Kee with the passwords. I use Fido not Yubi-Kee for off So I don't think that's there girl con Yes, you misheard it. So that's probably We should probably pull that one up because it is something a little bit harder to say or for those of you that English is not your first language to understand what Tom was talking about Gher con G R R C O N. So that's Where I will be so yes, you did mishear it But as I know not I know at least some large percentage of you are not English is a second language And I'm not the most articulate person from time to time so that's the thing as well Let's see here, I think me and Jay talked about Yubi-Kee's I think there's a way you can put a password on like the Yubi-Kee app, but I don't have anything using Yubi-Kee authentication all the things I do with my Yubi-Kee outside of playing with it is pretty much all going to be Fido I so I did that video today on Fido off because You know, that's That's my preferred authentication method is to use Fido not the Yubi-Kee one I talked about this even I mentioned bit warden in that video. I just published like an hour ago Maybe two hours ago about that Fido to off just is a slick system that works well and What was that website it's I This is the demo website I had done with it Drag my key over here a little closer to me You know, I don't know if this shows up. Let me see here. So let's Learn more register Does the challenge and response pop up show Nope, it doesn't show in the share I have to share a whole screen to do it because it's an it's a outside Window that comes up the something went wrong when I don't click it comes up But yeah, I'm really partial to the way Fido does authorization. It's To me just a better way to do that. Oh, so Yubi-Kee does have a pin support for Fido to I mean, that's novel. I Don't know If I want to do that it seems extra and convenient to add a pin to your Fido to I mean, that's username password Blinking Fido to key that you had to physically touch. I think that's enough but then again I mean if it's not then go ahead and add a pin to it as well. So It just seems like a extra sir Well, the pin code protects it if you should lose it. Well, yes So I guess if you have a physical worry of someone gathering your username your password and your key Then yes, putting a pin on it would stop that particular attack. I Mean, I won't lie the Kreb's on security article from today. We'll pull that up to Kreb's on security If you didn't hear this sim swapper abducted beaten and held for two hundred thousand dollar ransom There comes a point when you think you're mitigating all the things, but you know, there's XK CD, what is that the XK CD where they just say we're just gonna hit him with a pipe Hold on XK CD hit Hit with wrench one is that I have 38 so we'll pull this up for reference and This is the reality of it, you know every crypto nerds imagination. So laptops and crypts Let's build a multi-million dollar cluster to crack it. No good It's 40 96 RSA our evil plan is spoiled. What actually happens his laptops and corrected Drug him and hit him with this $5 wrench until he tells us the password. That's and I mean, that's a joke But this isn't I mean This is what happened with that particular person They were while they were taken by a cybercriminal group so that's the thing and The page there goes the page. She said it didn't want to scroll. There goes. Now. It's happy Yeah, a Florida teenager was a lackey for cybercriminal group that specializes in crypto currency theft was beaten and kidnapped last week by a rival cybercrime gang So yeah, that's definitely something to think about Fido to pin is optional based on the website Bitwarden doesn't ask for the Fido pinning if you do it, okay Good, I have two Yubi Keys expensive but worth it. Well, I brought this up in my last video Because We pull up my Amazon real quick. So orders if I type in come on I purposely bought This the trust key because it's like 18 bucks. It's cheap. It's inexpensive. It's trust key is part of the Fido alliance I'll throw a link for people just want a direct link to this I'll throw it in the stream real quick, but it's on the Fido to video the same link And this is what I'm using right now I have Yubi Keys as well I've actually I've got half of things on Yubi key half on trust keys Because I've been testing both of them just to make sure they work and I bought this back in What does it say here March? So that's what I set it up I've been using it ever since without a problem and for $18 for those you that are being budget conscious on them That's pretty cheap. It feels a lot less painful to lose something that's $18 Or to buy a pair of them to, you know, have a backup key I actually I like that a lot of services offer Um t o t p as a backup because t o t p is obviously less convenient than touching a key She got typed some numbers in but having t o t p awesome. Uh, there are some services Where we set up the Break glass accounts. It's kind of annoying, but it's just way some business Services work where we'll have an admin function User who has high levels of privilege But we keep that t o t p extra locked down and keep those accounts separate And then all the other users just get a single Yubi key and if they lose their single Yubi key We can go back into that other account and be able to recover That person so there's workarounds and solutions for it But honestly a bit warden's solution of being able to register multiple keys to a single account makes complete sense to me And it's just a great way to do it Uh 20 Yeah, I think there this is what I saw with the 23 uh, $20 one says that right here So and this is actually a problem. Um, the Fido people I read through and uh, Listened to some of their talks. I think when they gave it rsa One of the things they commented on was it's not part of the spec That requires the company to have multiple key slots. It is suggested that they do Um, so some companies have a key slot some companies have multiple key slots It's not It I think they should have like mandated five key slots or something Just say you know what you should have at least five slots in there because it's so Minor of a programming change to register multiple keys So that's just something else to think about You cannot register more UB keys with Othello if I remember correctly. I've never used, uh, Othello So not not a tool I've tried to use, you know authentication though. It's It's something you have to spend a lot of time thinking about Uh, I someone actually commented that you know MFA fatigue. Oh turn off the MFA notices. I'm like, no All MFA by default any of these push type systems such as duo should Already have a default rate limit because at some point there should be someone asking the question I can't think of any scenario Unless you're a developer testing it where there should be a rapid succession of MFA requests They shouldn't be happening unless there's some developer reason for it. That should be like just a flag of Someone's doing it at a rate. That is well higher than normal higher than how long their authentication token expires Maybe you have someone who misses it and does too But there shouldn't be more than maybe two because at some point if they've missed two There's something going on, you know, that's just one of those little things on there So I mean, I think we can tighten up things like duo and push type MFA I don't think that's an impossible task. Uh, and it's probably what's gonna happen in a short term As much as I like to be an optimist. I'm also a realist I I have the idea in my head of how I want the world to be But I also have to deal with the reality of the way the world is and the way the world is right now is full of bad authentication methods So that's a thing. That's something we kind of have to deal with When I did another video on the quad nine thing. So, uh, that's still going I brought it up and you know, it's just It's an aggravation and donating to quad nine is kind of the, you know, call to action. What helps Uh quad nine needs money to pay lawyers to fight sony. I wish that wasn't the world I lived in but I back to that the world I live in versus the world I want to live in I want to live in a world where sony isn't suing a dns company because Uh, it's always dns even when lawyers are involved sometimes apparently. So that's the thing Uh But nonetheless, um But the quad nine 502 those are the big things I wanted to talk about most I have on my little list here Uh air quality. Let's just jump on that. Oh I have sastralio before air quality. Uh, that's been going well. I've been debating about changing the thumbnail on it Uh, the thumbnail is accurate, but I was doing more ab testing for those who didn't notice the last few videos have me making stupid faces I don't like that that works, but every time I do ab testing I get more views on videos with my stupid face in it. So Ah, you know, that's just Uh, anyway, so I might change the on there, but says it's still a good product. Uh, uh, I did that there You know, my first sponsor that I've had on the channel. So that was pretty cool doing a video with them I actually do use the product though, too It's in the demo phases for us for doing a proof of concept, but it's been in the lightning Directly using it. So we talked about all the cool features that has in the demo, but directly using it. It's so pretty cool So I have a video on that. It's easy enough to find on my channel. I published it. I think about a week ago now. So Um, let's see Uh, what's your opinion on change enforcement and people that just increment a number somewhere combined with the easiest password Uh, the past is the rules. I don't understand Why someone should change your password? Uh, it's Like why no, I don't understand why this should change your password. Let's give a full sentence here before you get taken out of context I don't necessarily understand Why it needs to be changed and expired out if You have a threat actor There's there is a scenario where I can see it and it's an edge case If you potentially have a threat actor who's regularly logging in as you But is doing it for a spying reason to collect intel. So You have that password. It gets compromised But they you know keep using your password. So if you change it, they're going to lose access That's not the reality of how most of them work Usually one of the first things they do to establish persistence is a threat actor gets in they are looking for a way to Establish persistence all the time because they don't know If one you're going to change your password just because if the employee they compromise will remain in the system So they're always fighting going what is the next pivot to try to stay here and remain unnoticed Because at some point someone may notice the logins of that user and regularly logging in from somewhere else and get caught So yeah, I don't really see the reason uh for it That's kind of an edge case, but I've heard people bring up but it's if you go through the reports It's not like that's always the persistence mechanism. They usually have a persistence mechanism They come up with to remain and gain that foothold. So And this is really what happens is password change enforcement only makes people choose even easier passwords. They can remember them Um, it's actually one of the reasons and when you look at rainbow tables of passwords You'll you'll notice that there's all these passwords that usually contain Oh, I don't know the month or the season Because maybe every 90 days and someone may put the different seasons like here's my fall password and my summer password um, and you're kind of forcing people into That scenario people and humans aren't good at remembering entropy There's going to be some exception exception of someone who can remember entropy very well Most people come up with passwords that are of some memorable or past phrases because past word would be Kind of inaccurate for the way you should be doing it. We should stringing together Partial sentence of something so you gain a higher level of entropy But also capitalizing things and putting different mnemonics together to come up with it And then that should be your master password that pivots you into all of your other authentication because Whether you like it or not Password managers are pretty much a necessity to do it right There has been the debate that I've heard from people that password managers create one central spot for everyone to attack you I get that but I don't the benefits I think outweigh that particular risk and The reality of a password manager and one of the good things a password manager does is like Oh, I don't know the call I got today from the CEO of a company who likes to call me directly Their password manager wouldn't fill in and it's because they were on a scam site That's actually one of the advantages once you get people using it They just get confused thinking your password manager is broken But it turned out they were just on a scam site so they call out of concern Obviously someone could do something dumb and copy the password out of the password manager But generally one of the benefits of a password manager is not having to necessarily always be aware of the url I mean you should be as much as possible, but we're dealing with end users who are not so Yes, the uh password manager can save you from that not to mention it creates a higher level of Complicated for password by password manager generating gibberish. Just does a great job of gibberish It it's got good enough entropy that as I create sites I can create whatever the password length and complexity is I usually just go with that go with a large complexity Set up passwords for many different things and stick it all in the password manager and yes, that is wonderful um If you want to use the I've heard people argue for this too The problem is once you not save it in a browser once it's not in the browser Now you have the url matching problem again. So keep passes great and it's not a bad way to store passwords But now you're dealing with your ability to make sure it's not typosquatted Or some type of phishing url that really does look like the real domain But might not be and that can be a real challenge on there. So yeah, it's One of those things that Can be a problem on there back to why I like fido so much fido Part of the fido challenge header that is in there requires the domain That's why fido becomes spoof proof in terms of typosquatting or trying to proxy or man in the middle The video we did the how I would hack you video we talked about you know using Is it evil engine x? I think so evil engine x Which will grab the you know multi factor tokens by proxying well fido doesn't allow for that That's something they built into the spec. So yes, that's one of the good things about it in one of the ways it can help Um back on to Is there is there more questions? We have or want to drill time about because let's stay on this topic if there's more questions Feel free to ask away Because I don't mind talking about you know mfa security fido and all that stuff this is All great stuff to talk about by the way So I'm definitely a fan of the topic and hoping to educate more people on this topic the Challenges around authentication are where we're going to just keep seeing more and more The browser is one of those things that we're learning It's pretty much always attacked. It's why you have to very much limit what extensions you have You know, it's probably get related here. Why not? We're talking about passwords Uh, this was a new report I did not pull up what I wanted I won't even say what I typed in You'll you'll get a hint though. It's this was just in the news. Where's it at? Trying to find the right article on it So I can pull up the proper there we go. There's proper security research on it I want to dive right to the security research or not the news Spell jacking Anyways, uh, yeah, this is one of those fun things Uh Can I use fido as a 2fa from my ssh servers with on windows and putty or so I don't think it's supported in putty not that I know of Matter of fact, one of the problems and I did a video on ssh with fido is You have to have your destination server Up to date enough your destination ssh server has to support it So it's not just a client problem your client has to be new enough and then its destination has to be new enough as well. So Uh I don't think that putty supports it. I don't know But it also it's twofold an easy example I like true nas a lot sure nas doesn't have support for it. So there's that Um, but this right here this was brought up and I'm kind of mixed on it It's interesting. It's chrome's enhanced spell check and I don't think anyone's too surprised, but at least companies are certain respond on this um, including the Uh aws and last pass mitigated this issue Where they stopped looking and all they're saying is hey Spell check equals false. I didn't look to see if bit warden uh addressed this yet, but I'm positive they're on top of it Basically, I don't think anyone's going to be overly surprised I brought this up from a security risk when people asked me before I I really think the Grammarly thing is cool But I don't use Grammarly as a plugin because this worries me going I have a third party browser plugin third party browser plugins by the way to Browser plugins can't be obfuscated That is a rule for the way they're put into the browser that way we understand or have the ability to examine What they're looking for? But obviously if they can read what's on the screen or read what's in input fields That input field does include the password So you have to make sure that these companies aren't grabbing it and when you reveal the password It turns out the spell checker. I believe that's in this demo right here So if you do this, uh credentials password And they're going to show that It will I think they have to just See how it does the little underline because it's misspelled That is what how, you know, it's sending that data. So here it goes. It's sending That particular data So I get it. That's definitely a problem I don't click show password too often, but obviously it shouldn't do that. So I will, um Agree that that's definitely a problem. So It's interesting at least people are doing something about it Yeah, nothing like spell check check your password into clear. I'm always just nervous about hitting show password I don't want to show it. Um, I have it pasted in. I'm happy with that. I don't want it displayed anywhere shown somewhere So, yeah It's just one of those little details on there So don't spell check your password is what that's what I say Open SSHS client side security key support for encrypting private keys. Uh, so she can key types Yeah, I It's about the Um support those here's a weird one for you and I covered this in that video Microsoft has omitted it from theirs. So even though they're the right version number to have the support They've omitted it from uh the compile time flags. I guess I don't know if that's changed since I did the video I know at the time I did the video on ssh and phyto That was one of the weird things. It was a I think it was a github request or a pull request somewhere That said hey, please enable this because microsoft doesn't I don't know why I thought it was kind of weird. Maybe they thought no one to use it I don't really have an answer for that because i'm using linux on my desktops Uh, it's really not an issue for me and I don't use putty. Um, even my staff that uses windows They're managing ssh inside of windows. They're not using putty either. Uh, so that's You know, that's a different way of handling it Onto the air quality thing. Let's talk about that real quick because this is kind of fun So let's pull up the Maybe not great air quality, but it's better than it was What do we got here? So we'll share this right here This is some of the co2 levels that were in my office Well, so simply my building because they uh, they being some of my staff went ahead and made sure that we were sealed up pretty good to stop leaks in the winter But I think we've now brought up too high of concentration of co2 This is a tool called the air gradient and the air gradient. It's a pretty cool kit I'm going to do a full review on it, but to give you an idea of what it is It's a device that does air quality solutions. It's a part of a Open air gradient is part of the kit system that they have Jeff Gehrling set a video on it already. Uh, let me see pull up the kits There we go So here's the different quits kits I because I just told the person, um, they sent me this as a review unit I got their pre-soldered one. It's like a 128 u.s. It's not incredibly expensive um But nonetheless, it works really well now by default It sends all the data to air gradient when you set these up So it sends their dashboard and collects it. That's the easy way to set it up Jeff Gehrling has an entire video on this where he breaks down and has all the stuff on github for how to reprogram it To send it to something like grafana And then of course from there you can build all kinds of home automation tools for it Which I think is really neat, which a few people commented before when I think it's on just video That they're using it to control vents to bring air in and out. So yes, this is a really fun Tech project for sure what sent me down the rabbit hole though And there's not many people that took the time to do this you can find some really cheap co2 monitors online and uh Naomi you has a youtube channel And I think she's one of the only people that did a review of just how bad Many of these inexpensive Uh co2 monitors are so what I did because someone asked me how accurate was and I thought that was an odd question I've really thought about the granular accuracy of it until I really started getting into it And I learned about these aeronet boxes. So aeronet is this is expensive This little box here is like 250 dollars, but it's got a nice ink display lasts a long time And uh, it's regarded as being very very accurate aeronet makes a lot of high quality controller stuff And this is kind of what you use as a benchmark. So this was within probably two or three percent the aeronet one seems to be just slightly not much but slightly like six or seven Off from this one. So they are really close to each other. So the air gradient does seem to be among the accurate ones But that video by uh, I think it's Naomi you that did this if you just type in like comparisons of co2 There's a couple people did videos, but she compared quite a few of them They are wildly all over the place and give you inaccurate references to how much co2 is in there And that's essentially what we're measuring here. So as I you talk next to this and exhale co2 We see it going up and yeah, this is a concern when it gets to certain levels Now my understanding from some of you that commented on this is over in europe This is just part of testing that's done in a lot of buildings. It's a concern I believe a few people from the uk said it's just part of like general things that need to be done To determine at different buildings pubs, whatever it may be public venues schools This is a normal thing where you just confirm that there's proper ventilation This is not really a thing here in the united states Like no one here seems to be aware of this and it's not part of the inspection It's certainly not part of home inspection or building inspections that we do The only time that it is is for large office buildings multi-level multi-story office buildings We have some clients that we help in part of our management is managing your hVAC system Not necessarily managing it but managing the computers that's Monitor air quality control They do have to measure co2 into building and have to exchange air at certain rates To keep fresh air into building, but it's one of those things that went down the rabbit hole It was really interesting learning about all this I ended up buying one of these devices because I wanted to vet the accuracy of the air gradient So probably next week. I'll have a video done on the air gradient Yeah now we do have testing for radon and awesome to see here really how But the radon testing varies greatly by where you live So there are some places like where I'm at now We don't really have an issue, but if you Buy houses and there's a couple areas here in michigan that if you buy a house Like where my friend lives radons are real problem Where he's at because they have to have the special radon Evacuation systems that pull it out. It's interesting He had to build this whole thing in his part of his basement that's a radon Removal so it's not just testing. He actually Knowingly has enough radon that it's a problem at their place So there is that level of testing but it kind of depends on where you are if you're I think it depends on how deep you go into bedrock or something like that I don't know what controls or what Elements are below you that cause a radon to be an issue. So it's interesting though Most people outside industrial hygiene and atrack absolutely don't Don't care about co2. Uh, I care about co2 It's yes um Yeah, some geological formations have lots more radon than others. That's all I know Ah Granite, okay, so it's granite clay All right And you're saying during your first year of the pandemic our government added some air regulation rules for pubs and buildings Uh, we're we're not much for rules here in the united states. So we do not have such rules here I actually i'm fascinated by what my friend told me um About the honest pint like what do you mean? He was Upset with the My friend from the uk was here and was upset with the a volume of beer that was given to us for a certain price And he said that's not an honest pint. I was like, why don't you know what that phrase means? What do you mean honest? It's a pint and he goes no, it's not and the debate raged on and I learned that in the uk They have the honest pint and that is a uh an exact measurement of the alcohol in the beer You will be provided and that is a standardized unit of measure and I'm like, well, that's clever Okay, so in the uk they did this as well for monitoring I I guess I heard this I think some of it was uh reading some of it was from some of you Some of it was people on twitter when I started posting pictures. Um, the good news is my Area my house is fairly well ventilated, although it does build up a bit down here in my area So I'm probably going to do some things like it takes a long time and me talking a lot and breathing a lot in here to build it up So uh interesting though Uh, I'm on dartmore in the uk. The house has a radon pump and detectors so much granted underneath So granite seems to be the underlying Thing that does radon, but I you know, I we think about this a lot because if we're working intact generally speaking Unless we're in the cabling and infrastructure side, we're in an enclosed space a lot We're in a nice air air conditioned Room that is um, you know the nerd space that we build but we do spend a whole lot of time there So I think it's worth thinking about and having this on there because if this gets up to a really high level There's just going to be a lot of co2 and the symptoms are not deadly But you're going to get a higher heart rate Because your heart's going to beat more to try to compensate for the amount of Oxygen that is coming in and it being smaller says hey, we'll just you know circulate more So we make the most out of each breath. Uh, you will get more fatigued You will probably not be as creative and maybe a little bit groggy And I think these are interesting things. Uh, jeff caroline covered that in his video and I thought it was really clever So nonetheless, that's my uh, ramble on air gradient What other questions do people have for me or do they have any more questions for me? Um I am working on a few other videos. Uh, they're going to be to do PF sense for msp's and unify for msp's because this people asked me a lot of questions about how we do things and how we manage them So those are a couple video topics that I have upcoming kind of related to that I'm also going to do the house set up a multi tenant host for a unify controller So that's on my to-do list as well. Um I will be doing that all with linode. They may they want to sponsor the video. So That's going to be kind of fun And uh, I just upgraded to pf sense to plus I find it disappointing that neck gate isn't offering pf sense plus installation media I will make recovery more time consuming it needs to be Ah, I mean I I don't know what their plan is to do that. Uh I it's it's one of those things I asked them and all the only solution is You're gonna have to load the standard version, but it it doesn't take long to do the plus upgrade It's one extra reboot. It only takes a few minutes At most for it to reboot probably like two minutes. So I mean, I agree. I wish they just had the installation media But I don't find it to be I don't reload mine that often. So Uh, there's no central manager for pf sense. That is the topic I will be talking about when I do pf sense for msb's I will lead the video with that If you're looking for central management, don't use pf sense end of story It stops there. That's going to be where some people go. Well, I'm not using it and that's fine I at least you know now I always like to get that big piece of information the deal breaker if you will Out of the way at the front of the video or for anyone asking Um, it's that simple. Maybe one day it'll have it But today it does not and I don't see it happening anytime really soon and I never buy Uh, a product based on their hopeful roadmap. I try to buy it on the Known working functions it has right now What's your view on unify and ui and generally, uh, do you think stock levels are really hurting them? Uh, they're doing really really well. So I mean financially They're doing great. They're actually ahead of some of the other vendors They're actually able to deliver faster than cisco and maraki right now in terms of products. So does it hurt them? Yeah, I mean I if I have more demand for my product than I'm able to offer that always hurt sales If I'm only able to make a thousand widgets, but the demand level is 2000 Yes, I'd make more money, but um, I think they're doing well in the status they're in Uh, if you're a child of the routing program as bgp, uh, I play with it some I might do a video on it one day. It there's so little demand There's all of a handful of people that there's people have done videos on it Maybe hardly get views because it's such a niche thing. It's not unused. It's actually reasonably used But it's not used by the majority. So it's low on my list to do a video on bgp on there I need to do a new 2022 edition of getting started with pf cents. That's the video i'm working on right now I just did a presentation last week, uh for a security group. So I Pretty much, uh, have all the new, uh Slides and timeline put together to do a full pf cents getting started video I just need to get that one done that video is more of a priority to me than bgp Uh, do you recommend any access points for pf cents? I like unify access points I got my appliance of pf cents. Uh, didn't have the driver's for nick ended up installing open sense That happens There, uh pf cents is moving to free bst 14. So that'll actually alleviate a lot of that uh You log in every pf since you manage to make a change across the board. I don't usually make changes across the board So yes I would say sorry i'm late, but it's been busy. Well, yes, travis has been working. I hope So that's uh Personally, I'd be mostly in bgp from what I gather. Okay We have bgp, uh for us pf and they're not connected to each other in our scenario Yeah, the internet does run on bgp. So I mean, I know a lot of people use it I just don't know how many people in pf cents use it. I don't know what percentage it is Um outside of people's testing in their lab to play with bgp like I said, I it's just one of those complicated topics that I have other videos I'd rather do first because I think they're More people would watch them. Um, it me and david bomb will have had a com a personal conversation about this before About which videos do you make because there's always someone who wants to know Some really deep technical thing and I get it and there's a write-up on it Um, but people want us to make a video on it, but it's like we have to balance it I mean my video is already pretty niche as it is. I'm not doing Mainstream things, but it's about keeping a balance because the time and effort it takes to make a video is Not trivial. So if I have to put x amount of time and effort I want to have the best impact I can with that video. So that's always the thing Bgp is a big ocean. Yes. It is indeed That is a good way to put it Vios for vgp. Yeah, it'll a people ask you if I'll do a vios video not likely. Um, I buy nothing against vios. I just don't use it. So I don't really get a video on there Oh, so noise me that they stuck with java 8 some this or not java 8 anymore. Yeah, I I don't know. I wish they would just build a better installer That doesn't have some of those other dependencies that are external. It wouldn't be cool if they just built it like a A snap package or something like that What if they delivered a docker image with everything in it from them not third party I don't don't get me wrong. There are third party docker images for unify But I'm talking about if they directly as a service delivery model Came up with that seems like that would make a lot of sense to me, but yes um Welcome Jeff Walker new member and I wanted to see if this worked. So this is a New feature they added so I can actually highlight when someone joins. So it's just kind of cool But remove the need for java all together. Well, that's a pipe dream and no one wants to Pay the technical debt it takes to rewrite everything that's required java. That's not a thing I mean, I get it that's um It's good. Let's let's rebuild it and go All right, they have enough money to do it. I don't think they have the desire or the need to hire another programmer Or a group of programmers to be able to do it So I don't expect it to happen anytime soon or ever as far as that goes I got a bit though It looks good and by the way sysco stuff is all written in java too It's I still got to finish and figure out what I'm gonna do with that sysco thing That's something to do. Let's just get it off because I'm annoyed when something's in the back of my head bothering me That I like haven't had a chance to finish So I will finish the video on it actually I'm gonna see maybe I got lucky and he had an update that solves some of the problems on there so Who knows now I can actually get the sysco video done Uh It's not gonna be pretty. I mean I'm gonna cover all the problems I have with it now if they solve those problems That's actually a better outcome for the video because here's where I started with it two months ago Here's where it is today after some firmware updates. That would be great but As I told them right now my verdict on the sysco stuff is is broken so uh Yeah, I don't know. I'll sort that out Anything else before I wind this down. Let's see. Do I have my list covered go ahead and throw a few more questions That makes they have a few more minutes um Any recommendation to draw cable runs and calculate the cat six design uh, nope Nope, we just we just measure buildings or look at schematics and figure it out from there uh You know someone told me the way I do it doesn't scale and I'm like we're doing 300 drop jobs We've done some jobs that are more than that. Um, I think it scales so I'm just literally putting stuff in spreadsheets and measuring buildings or measuring sometimes just off the schematic Uh, we're rewiring a building out in indiana right now that we completely based off schematics Well, I should say we it's in the past tense last week. We finished a project in indiana that was based off schematics and went very well Um, so we do this all the time that includes when we travel So I don't really I think people try to tool themselves out of doing the work and they're looking for something that'll magic it all to happen um, so yeah I don't really have any answer for that. So Um, I don't know of anything the the problem isn't mdns across vlands The problem is the crappy design of some of the things that just don't work across vlands. So Yeah, that's it's not really an mdns problem as much as it is all the Stupidity of the way the devices work. So I don't really have any solution for it Sonos being one of those devices that people always get angry. It doesn't work properly I'm like you're phoning your sonos should be on the same network That's my answer to that problem. You're phoning your chromecast should be on the same network your Uh mb server and your chromecast should be on the same network all those things talk to each other They should just be on the same network and that's how you solve the problem with it. So Indiana crew checking in hey Fun stuff All right, uh Any more questions So no sweat of pain. Yes Yes for sure Uh, what do you think of a unified guest network? Uh, facility the isolation is the isolation is pretty weak I don't know. I've not really Spent time security testing it. Um, mostly if we're going to build a guest network We're going to build the rules and pf sentence not on unify But we'll still check the unify one because then the unify devices will do host isolation So if you create a separate guest network, you don't want the guest talking to each other So you first you build a separate guest network build the rules you want around it Then you go into the unify and check the guest network option Which then enhances things because it's doing host isolation Have I done a thorough test to see if there's any way to break host isolation? No Uh, so I don't know if there's any issues with it if there's a security fall I don't know of any that's been reported Ubiquity does participate in hacker one. So if someone finds a way around it Hopefully they're collecting a bug bounty on it. So It also breaking out of gas fee land Uh, hopefully if you set your network up, that's a lower risk scenario if it happens Uh, but you know, it could be bad Um, you certainly don't want people wandering around your management network If that's where if that's where they break out in land over to but yeah, I I don't think it's a big deal It's it's not like networking is new. It's not that there can't be a flaw in there It's just I don't think there is are pretty they're actually pretty on top of security over at unify shockingly They may be bad at some things but security not one of the ones that they've been terribly bad about What about this syscos revealed new hardware? Uh, that's the sysco stuff. I've been testing this broken so Yeah, I just I've been testing it. It just works terribly. I have some of the devices right here The uh, here's one of their mesh extenders that comes with it This breaks my uh things. Yeah Yep, that's the ones i'm testing. I have the 140 ax I've been testing. I got to test the 150 ax Here's the next confusing thing the 140 ax is not compatible on the same network as the 150 ax according to sysco's documentation I don't understand why they sent me both and my testing has gone poorly so far and and the sysco management software is terrible and broken and It's just a stupid vm. So I don't really know Tom another christ is on tic-tac. When are you going to see lauren systems doing a dance tic-tac? I don't know uh I'm Probably I need to hire someone. I throw it out there. I just haven't found someone yet I haven't put an actual job offer up But like I could use someone probably just to do social media posts The problem is I get anytime someone asks are a bunch of people that don't know how to do social media posts reaching out to me It's always some generic Message email we can do this and we can do that and it's never what I want I don't really have the time to do it between running a business Having all these employees and all the projects I work on them making youtube videos and posting them I mean, maybe I'll post on tic-tac, but it's super low on my priorities list for things um But I don't know who knows there could be a future where I do where I build out a bigger team Matter of fact building out a bigger team there actually will come a point where I may have to hire um Someone dedicated to help building out my lab stuff for youtube because I've got more stuff to test and more ideas to test And I have people to test them my staff stays really busy with Business things which is great because that's an important aspect that uh makes payroll As long as all the businesses are happy they keep paying us and I can keep paying staff But as I build up youtube and this is one of the reasons I wanted to take on advertisers is so youtube has some revenue Not just to pay me but to pay more people, you know to build out More things for more in-depth testing. So that is on my to-do list Uh probably sooner than later to hire someone just to help me build labs and test equipment Uh, I kind of need a local person for that because The problem is it's not about remote testing a lot of it is I need someone to physically set a few things up That becomes kind of a challenge for them to run around setting everything up because now It just becomes me running around setting it up and then promoting and to configure it Granted promoting and to configure is a big part of it But if I have to do all the labor, um, I have to figure out how to balance all of that Uh Why don't I have marcus do my social media? My son doesn't do social media is why So that's the biggest one Uh, do you think past keys are a good alternative for mainstream people? Uh verdict is still out on that one. I I don't know that I love the way past keys are implemented So I don't know. Uh, I have to really look at How that pans out. I'm not really um I don't know. I'm mixed on how I feel about past keys I I would have to really understand the implementation and see them in action to really make an honest judgment on them I know Steve Gibson did a dive into him and I kind of shrugged my shoulders like he did at it saying Uh, not as good as it could be And for those of you, yes, I'm aware of Steve Gibson and the sqrl. I wish that had more, uh You know Influence on the market, but it does not It's not really going anywhere. It was just a bunch of nerds that liked it. So Greetings, son. Who does not do social media? I mean granted my son does like tiktok because he's of the age of people that like tiktok. So we'll go with that Yeah, you're not in the u.s. Otherwise you apply for a role. Yes Still using DaVinci resolve for videos. Yes, I am um Marcus likes youtube and tiktok marcus. Um, I mean technically he has a facebook account, but you know That's not really the same That's weird Okay, all right My google account just bounced out, but it's it was just time all my stuff from google bounces out from time to time Logs me. Well verifies. It's me. So this weird timing on that one Ooh hot ones has their new season lineup. I'll have to check Uh, I'll have to check that out and yes, the only reason my son has facebook is because of his oculus. That's really it. So So far msp 360 backup. It's working Um, we like it. It's not broken That's pretty there and also I wish my son by the way is not Much into any of the testing for all that but maybe I can make a hybrid where um, I have a technician Remote but they help my son locally plug things in or I tell my son locally to plug it all in so Uh fun stuff Yeah, I'm looking forward. I have to look uh new hot sauces that are coming out with them. So that's really cool All right. So before we wind this down, let's go ahead and tell people to smash that like button There's 109 people 41 likes go ahead and help that facebook algorithm Um, I think was it last week that I yeah last week was I did the datacom one feels like datacom was so far away I got my voice back obviously. So there's that so that part makes me happy uh Let's see 45 likes we will share this screen pull up the live streaming scheme So throw that here Pull it up. Hey, look who wandered in here 49 likes. Oh no, still not many likes. I like the recursion though It's tritz Uh Try to set up devices and you teach them how to do it so beginners can learn how to set devices Hmm. I'm not the biggest beginner channel. There's plenty of other people who are uh beginner channels. So the beginner channels I I you know, I've had a few people say that like you start at the deep end. I'm like, yes, I do I I'm I'm not the uh start at what is the computer and go all the way into building firewall rules I usually start with the firewall rules and why you need them and how they work So I it's one of those things it can only cover so much and I don't want my videos to be six hours long for one video Because I don't have time to produce that long of a video. So I usually start at the deeper end of things 54 likes we've definitely made a dent in that not a big dent. Just a small dent. So Let's zoom in a little bit Does it make it bigger on there a little bit? All right All right 54 all right, well Uh It's hard to know where to start it is. Uh, it's hard for me to know Where should I start what technical level do I start? Do I start with turning on the computer? Do I start with how to load an operating system? Not easy answers and things like that Then there's there's so many starter channels and people usually start with the starter channels And they wander over to the more advanced channels. That's just the nature of things on youtube So most I I'm the deep dive person. Uh, most of the stuff I do is much more technical So that's where that's where I feel I land. There's obviously some people more technical to me You know window from level one text is kind of the same way He's he's mostly at the especially like level one linux. It's a more advanced linux class Uh, j covers a pretty broad spectrum because I mean, he's not linux 101 But his learn linux tv starts with a lot of basic commands, but he gets right into the real advanced stuff on there So, uh, but this is something all of us discuss and struggle all this youtube friends of you know, where do you start the video? Uh, how do you start talking about it? How deep do you start technically and you know, I get those comments It's like all the time people like but I you know, I want to know this More in-depth thing and you're starting too deep and I want to get up to that level and I'm like, well, there's other channels But I don't have time to watch those channels because this is the next question and people ask goes Which channel should I start with? I'm like, I don't know. I don't watch them I I haven't done 101 stuff. So it kind of becomes which is the person who lines up for you. So Marcus could start a youtube channel called dad. How do I set up my network? No, no Marcus ain't sold on that one Oh That's fun stuff. All right. Well, thanks everyone for joining awesome doing this live stream today Uh, I had fun answering everyone's questions as always. Oh, you know, I'll set this up next time I'm probably gonna set up a dedicated email address for like people to email me questions ahead of time Uh, so I have a list. I I think that's actually maybe it'll be like Should I do vlog or vlog thursday at lauren systems.com? Or why not both? I don't know. Let me know in the comments if I should set up an email address up where people can just email And then I'll just read all the emails that came to that as part of the q&a and uh questions I mean don't expect responses to all the emails and I'm opening up the floodgates saying that I'll set up an email vlog at lauren systems.com But hey, you know, I don't mind answering questions. If they're already spelled out for me That's uh, always fun to do and read through them all and hey, why not? So thanks everyone forums is definitely a great place. I like Keep it into forums. I agree with that. I I check the forums every day and reply to people So if you really want to uh interact with me and expect me to reply to something Forums is where you'll get a reply other places. You're just guessing at my email address sending stuff that Probably by the way at any given moment, uh, there's a lot of unread emails because tom doesn't usually read emails so emails They mostly go to the bit bucket because there's too many of them So forums is where you'll get a response from me kj twitter. So yeah Email is definitely not the way But if I did vlog I could just go through and read them and have mail time until this gets too big And then I wouldn't be able to do it. So I don't know if it's a good idea or not But hey, why don't I'll throw it out there. Let me know in the comments down below. Thanks everyone for watching. Take care