🔒 Patreon Special

IT Pros: exclusive shows await you on Patreon, focusing on the more challenging aspects of running your practice and working with clients and employees.

241: "Not Dead Yet" With Weldon Dodd of Rewind Tech - Denver, CO

/

Topics:

-To start the new year, we are very pleased to be joined on our first live show of 2018 by Weldon Dodd of Rewind Technology in Denver, CO.  Weldon hangs with the crew as another host in case Sam goes missing again.
https://rewindtech.com

-Some things never change, the old HCS land grab jokes are in full swing

-Joe discusses the first zero day exploit of 2018, actually launched via tweet on New Year's Eve. Check out the IOHIDeous narrative on GitHub, kind of interesting! The vulnerability exists in a process called IOHIDUserClient which the macOS limits to having only a single instance at any given time, which happens to be spawned by WindowServer. So in order to exploit the vulnerability, we need to kill the WindowServer process. But terminating it requires admin privileges and essentially reboots the GUI, so this is not a viable mode of exploitation. But it turns out that by logging out the user, WindowServer releases its IOHIDUserClient temporarily, giving the exploit enough time to spawn its own instance of IOHIDUserClient and leverage it to compromise the system. The exploit can use "launchctl reboot logout" which does not display a warning dialog. The exploit can also use an AppleScript command to send loginwindow an event called "AppleEventReallyLogOut" (osascript -e 'tell application "loginwindow" to «event aevtrlgo»'), and loginwindow apparently doesn't care who sent the event, but it does display a dialog box as if the user selected "Log Out" from the Apple menu.

-Jerry wonders if this will be on the CCP test

-Sam recalls a story working after hours at a client when the alarm goes off

-Weldon shares his story of a Promise RAID gone wrong. Friends don't let clients pull drives out of RAID drive bays.  It also leads to a further discussion about how to handle RAID solutions and future expansion.

-A handy virtualization app for Synology, which Sam has used in conjunction with CrashPlan, is Docker: https://www.synology.com/en-us/dsm/feature/docker

-Jerry is busy building Minecraft worlds on Synology. He ends up needing a volume formatted as Btrfs.  Read more here: https://www.synology.com/en-us/dsm/Btrfs

-Time Machine and Synology has had a spotty past

-Sam discusses a Wi-Fi upgrade in NYC and replaced aging equipment with Ubiquiti Unifi. He also has some advice on utilizing a Cloud Key.

-He also mentions a handy workaround to test network settings remotely while still needing to reconnect to the remote computer.  Joe recalls a similar solution for another problem.

-Jerry talks about the Unifi In Wall units that he has set up recently: https://inwall.ubnt.com

Thanks as always to our Patreon sponsors!

IMG_0890.JPG

Listen to the outtakes and learn the origin of this picture!

239: Joe's Super Secret Password - PSIMacRules!

/

We're sponsored this week by Watchman Monitoring, a favorite tool of ours that should be in every professional consultant's toolkit.

Visit WatchmanMonitoring.com/cmdctrlpwr and sign up for your free trial to find out how Watchman Monitoring can keep an eye on your client machines and notify you of over 100 issues. Be sure to tweet @cmdctrlpwr #CCPsentme to support the show!

TOPICS:

aca5bb517cf52056ea1d92214be167cf.jpg
VqZeE9Ai_400x400.jpg

 

 

 

 

 

 

The Kim Komando Show ® and all material pertaining thereto is a Registered Trademark / Servicemark: No. 2,281,044. America's Digital Goddess
https://www.komando.com

1200x630bb.jpg

238: Interview With Pepijn Bruienne Of DUO Security & The Mac Admins Podcast

/
pb.jpg

Pepijn Bruienne is a Research and Development Engineer at Duo Security in Ann Arbor, Michigan. He breaks Macs to help his employer's customers be more secure. With more than a decade and a half of experience in a variety of Mac Admins areas, his skills include Systems Administration, Operations Management, Mac/Linux/Windows Server and Desktop integration, software deployment, configuration management and process automation.

Pepijn is also co-host of the popular Mac Admins Podcast and friend to our show.  Subscribe today and listen to Pepijn and the crew discuss all things in the Apple IT world.  Listen to the first Command Control Power/Mac Admins crossover show here:
https://podcast.macadmins.org/2017/10/01/episode-53-cultural-exchange-with-sam-valencia/

Mac-Admins-Podcast-Retro-Colors-1.png

237: Beeping not Clicking

/

- Justin Esgar of the ACEs Conference and Will O'Neal, President of Mid-Atlantic Computer Solutions, join us to discuss ACEs 2018 in Baltimore, MD

- listeners get a 10% discount on ACEs Conference: https://acesconf.com/go/ccp

- Sam helped his Mom with iOS 11 update

- Jerry has MacBook Pro followup: he upgraded to a two year old machine

- buying on eBay

- selling used Macs on eBay or Mac Of All Trades

- Johnny Ive responds to criticism of MacBook Pro

- iPhone X impressions

- Sam fixed a failing drive that was beeping, not clicking: Opened up 2.5” hard drive to repair (moved the heads into park position while turning platter counterclockwise (it was beeping, NOT clicking)

https://www.youtube.com/watch?v=WNJqTPutrJ4

The Piezoelectric Effect

- Text Expander Snippet For Email Advice

- High Sierra PSA courtesy of Jason Campbell, ZMS Consulting:

“Scenerio: A Mac workstation running High Sierra is working off a Mac server. The Mac server is running macOS Server.app 5. 

Issue: The lock files generated when opening files that live on the Mac server aren’t deleting when the file is closed. This causes ‘file in use’ messages when trying to open the file again. It times out in about 10 minutes but still another reason to hold off on upgrading businesses to High Sierra. Apple engineers are aware of this and are working to resolve.”

Credit to Jeff Satterwhite for finding the issue. He’s the owner of Post Mod Tech out of Austin, TX. He’s a longstanding ACN member and FileMaker developer. 

Thanks to our Patrons for sponsoring Command Control Power!

235: The Lazy Man Migration Assistant

/

TOPICS:

• Joe wonders: how many clients have gotten the wrong impression when you give them the recommendation "Just use 1Password.”

foto-wtf-mac-grande-starbucks.jpg

• iLugger: https://www.ilugger.com/

• Joe reveals another boneheaded move during his company's email migration – learn from his mistake! He exported contacts to a vCard file, but forgot to turn on Export Notes in Contacts app preferences

• CodeTwo Exchange Sync
https://m.codetwo.com/exchange-folder-sync

• The Mac CRM & Project Management app trusted by busy teams.
https://daylitemac.com

• thanks to listener Tim Hannon for the courteous correction about the pronunciation of patron Steve Sorbo's business name, Mac SOS

RAMDoubler.jpg

• Resolve issues caused by changing the permissions of items in your home folder
Repair Permissions - https://support.apple.com/en-us/HT203538

• how to enable Apple Remote Desktop (ARD) using the kickstart command on the command line:
https://support.apple.com/en-us/HT201710

Screen Shot 2017-10-27 at 9.23.55 AM.png

• Joe walks through his process of migrating data to a new iMac running High Sierra, which provided validation for many consultants best practice for a successful migration. The Migration Assistant built into Setup Assistant didn’t work even after repairing the source drive, rebuilding the source disk directory, letting it calculate the space needed for all items first, etc. Creating a Temp user account, installing all software updates on the destination machine first (just iTunes in this case), and perhaps most importantly using Migration Assistant in the Utilities folder is what finally yielded a successful migration

• Joe offers a bonus migration tip. If you're unable to delete a user account in High Sierra, this helped, surprisingly: https://discussions.apple.com/thread/8087348?start=0&tstart=0

234: Letting The Fox Into The Henhouse

/

We're sponsored this week by Watchman Monitoring, a favorite tool of ours that should be in every professional consultant's toolkit.

Visit WatchmanMonitoring.com/cmdctrlpwr and sign up for your free trial to find out how Watchman Monitoring can keep an eye on your client machines and notify you of over 100 issues. Be sure to tweet @cmdctrlpwr #CCPsentme to support the show!

TOPICS:

Michael Thomsen, Director, Origin84 writes:
 

"I think that this is a particular time of year leading into the Christmas period where people can become a bit testy and start demanding things be done faster than usual for the arbitrary "have it in before the holiday" deadlines. Probably harder still in the NH given you're also headed into Fall/Winter.

Off-boarding is a great topic, and a fine art. Until you've had some experience with the good and bad it can be a minefield - especially if it was not your decision to end the relationship. 

As an anecdote we've just lost a contract for a fully Mac design client with on prem storage to a generic 'Cloud Services and Support Provider' who is going to save the company "thousands of dollars" per month by deprecating the on prem storage by moving them to Dropbox Business. 

While this was not what we would recommend or support it ultimately is the businesses decision however we have taken great pride in developing a rigorous but simple and straightforward off-board process more thorough than the new vendors on-boarding process - which in turn has caused some significant questions to be raised whether the new solution and vendor are fit for the job. 

We will continue to take the high road until we part ways, because ultimately once you're not working with a client the only thing they really remember is the way things were left when you walked out."

- Sam's Birthday 

- Apple "Hand Off" Mysterious Hack?

- Apple Genius Bar Diagnosis And Fixes

- High Sierra Installer Being Pushed Out By Apple

- Time Machine Glitch and Fix - Users seeing an error: URLs with the type "file:" are not supported, solved by changing name of Time Capsule disk; old name had a single quote in it

- Apple Watch Player - https://itunes.apple.com/us/app/watch-player/id1170672458?mt=8

- Clients Replacing Routers

- Apple vs Watchman - Identifying Hard Drive Errors and Sending your Client To the Apple Store

- Think twice before encrypting your HFS+ volumes on High Sierra
https://bombich.com/blog/2017/09/29/think-twice-before-encrypting-your-hfs-volumes-on-high-sierra