Category: sysadmin (Page 1 of 2)

don’t Zoom our children!!

 

Privacy seems to be the latest casualty of COVID-19. I guess because I am involved in the information security community, I thought everybody knew about the atrocious privacy policies and reprehensible actions of Zoom. I was shocked to discover that Matthew and Joshua’s school district is planning on forcing children to use this platform whose policies probably make Mark Zuckerberg envious. Here is what I wrote to them today:

Continue reading

great migration

Back in 2014, most of my servers were using Ubuntu. In April of that year, a long-term support (LTS) version was released and I migrated the servers to it. LTS releases are supported for five years—it seemed an eternity at the time.

In April 2016, the next LTS release came out. By then, I probably had close to 50 servers running a handful of distributions. All the Ubuntu-based servers migrated successfully except for two (four, actually, as each of those servers had a hot backup). One of those handled the office phones (asterisk, hylafax, IAXmodem), the other mostly handled email (postfix, dovecot, spamassassin). Those machines died horribly when I attempted to upgrade to 16.04 (saved by backups!) and, since they handled critical services, I decided to leave them on 14.04. After all, I had until 2019 to upgrade.

Plenty of time.

Continue reading

spamassassin update

Most email users are blissfully unaware of the magnitude of the spam problem. Major email providers do a pretty good job of filtering, so you might see little or no spam in your inbox. Even the stuff that gets sent to your “spam folder” is only a tiny fraction of the spam that gets sent to you. That hides the magnitude of a really big problem, and one you pay for even if you don’t realize it.

Continue reading

IPv6

IPv6If you don’t know what IPv4 and IPv6 are, this post isn’t for you.

If you know, and are wondering how you might implement IPv6, this might be of interest. We handle http/https requests using a white box router running Debian. Until recently, we were IPv4 only, and the router used NAT to connect to an existing subnet with a local IPv4 address space (in the 10.x.x.x range). What makes it odd is that the subnet is also reachable through a different IPv4 address and NAT—it’s ancient history in a network that has been running since the 1990’s.

Continue reading

cheap phones

A year or so ago, I was looking for a new phone. I had been using a Google Nexus 6 for two years, ever since I became a beta tester for Project Fi. I loved Project Fi (Google is eversomuch cooler than any other cellular carrier/MVNO in the US), but getting timely updates—even security updates—for the Nexus was like pulling teeth, and they dropped support for what had been their flagship phone barely a year after I bought it. Add to that the fact that there’s no effective private backup solution for Android devices, and I didn’t have any real choice. I had an old iPhone 5 that I had owned for maybe four years, and it was still running the latest version of iOS with all the security updates delivered instantly, while my three-years-newer Android was a security breach waiting to happen.

Continue reading

parallel productivity

Josh asked me the other day about how we backed up early hard disks when we didn’t have small portable drives, the internet, NAS, or writable DVDs. I started telling him about my teak box with the tambour top that held 50 (or was it 100?) 1.4MB 3½” floppy disks. I remember a routine of running a backup program while feeding disk after disk into the machine for an hour or two every day.

Continue reading

WordPress updates

One critically-important aspect to running WordPress sites is keeping everything up-to-date. Not just the WordPress software itself, but themes and plugins. I wrote a quick script to keep everything tidy; it runs as a cron job, and it runs often.

Continue reading

« Older posts

© 2021 risley.net

Theme by Anders NorenUp ↑