NCSAM – Post 0011: MFA ALL THE THINGS

In case you missed it, passwords suck. No really. https://blogs.serioustek.net/post/2019/10/23/ncsam-post-0010-lets-talk-about-passwords That being the case, one of the best ways to improve security is to use multi-factor authentication. Use MFA If you are not using multi-factor authentication (or don’t know what it is), stop reading this article RIGHT NOW and turn it on for any service that you can (or go read this NIST paper: https://nvlpubs.nist.gov/nistpubs/SpecialPublications/NIST.SP.800-63b.pdf ). Many web services like banking or healthcare should already … Read more…

NCSAM – Post 0010: Let’s Talk About Passwords

Yes, that password. You know, the one that you use on EVERY. SINGLE. LOGIN. But hey, it’s a really good password, you say. Psssst…it doesn’t matter. If you re-use even one password, you are twice as likely to have your account “hacked”, your identity stolen, or any number of bad things. Don’t believe me? Read this post: https://techcommunity.microsoft.com/t5/Azure-Active-Directory-Identity/Your-Pa-word-doesn-t-matter/ba-p/731984 Take note of the large chart and the column that says “User assists attacker by…” Notice how … Read more…

National Cybersecurity Awareness Month (NCSAM) – Post 0001: Taking a Step Back

Well, it’s that time again – you know, when you get tons of email from security vendors reminding you that your security sucks, no security is perfect, this bug, that vuln and blah blah blah. Let’s take a step back and get started the right way with a series of posts that address a few places where you can improve your day-to-day technology security. Risk No security is perfect, you are simply mitigating risk – … Read more…

Duo MFA with NetScaler nFactor Part 2

Some background There have been several questions and comments around the first post that describes a workaround to get Duo multi-factor authentication working with NetScaler (Citrix ADC) and nFactor. The issue stems from the fact that nFactor authentication uses both advanced authentication policies and it uses the RfWebUI theme – so if either of these conditions were met in your configuration, you were greeted with a rather ugly and non-functioning UI like this: Good news, … Read more…

Site Local GSLB with Citrix ADC

If you know anything about GSLB, you likely know that it is nothing more than a DNS trick that allows you to programatically return an IP (or CNAME) for a name based on service health or proximity to a location. But you may not know that you can also use GSLB in conjunction with Link Load Balancing to ensure that internal resources are highly available. What is Link Load Balancing (LLB)? Link load balancing is … Read more…

Go Home Android Discover, You’re Drunk

OK Google: We need to talk. I’ve used and loved Android OS phones for a LONG time now and lately, I really enjoyed the Cards feature in pure Android (Nexus, Pixel, etc). But unfortunately, you changed it to¬†Android Discover and it’s mind-numbingly frustrating and useless now. It used to show reminder cards about upcoming package deliveries, useful news stories and calendar reminders…now it’s almost like it just picks random words from my search history (or … Read more…

Installing Citrix ADC (NetScaler) on Proxmox

A few days ago, I did a thing and one of the first issues I had was getting a NetScaler (Citrix ADC) appliance up and running on the new host…because, you know….priorities. This scenario is certainly supported as the hypervisor is KVM, but on the initial boot, it got stuck here: And that’s no good. How did we get here? Let’s go through the basics as it’s slightly different than just importing an OVF template. … Read more…

Home Lab: Migrating from ESX to Proxmox

I recently converted my home lab virtualization environment from vSphere\ESX to Proxmox and documented some of the useful tools and commands I used to do so. A little history My lab environment has gone through MANY iterations, both in hypervisor and storage: https://blogs.serioustek.net/post/2016/04/25/homelab-a-few-weeks-with-xenserver-and-nutanix https://blogs.serioustek.net/post/2016/04/04/upgrades-lab-local-ssd-hypervisors https://blogs.serioustek.net/post/2015/07/16/backup-vmware-with-veeam-free-powershell-and-freenas https://blogs.serioustek.net/post/2014/07/01/backing-up-vmware-virtual-machines-on-freenas-aspx https://blogs.serioustek.net/post/2014/06/14/vmware-on-freenas-the-right-way-aspx https://blogs.serioustek.net/post/2013/09/07/starwind-san-v8-beta-initial-testing-aspx https://blogs.serioustek.net/post/2013/02/20/freenas-esx-and-nfs-synchronous-writes-and-the-zil-aspx Learning a variety of hypervisors was due mostly to my background in consulting and I’ve tried or used most of the major hypervisors available: HyperV, XenServer, … Read more…

Troubleshooting Tips for Citrix ADC (NetScaler)

I’ve collected numerous Citrix ADC (NetScaler) troubleshooting tips and commands over the years, so here they are. Note that some of these tools, file paths or methods may have changed over time. Also note: single\double quotes are inconsistent (sorry) and usually not needed. Note a third time: don’t copy paste from the web to cli\gui – things will likely get mucked up. Log File Locations ns.conf configuration file /flash/nsconfig ns.conf.x older configuration file; increments after … Read more…

Powershell Duplicate file Cleanup for Plex Camera Uploads

Some time ago, my wife had her phone stolen and we had not setup any sort of backup for the pictures, so a good number of photos and videos of our kids were lost that day. We now both use Google devices, so we have automatic backup to Drive for free, but I didn’t want to rely only on that. Enter Plex Camera Upload We use Plex a lot in our house – one of … Read more…