winklevos

Members
  • Posts

    8
  • Joined

  • Last visited

Report Comments posted by winklevos

  1. 12 hours ago, winklevos said:

    On another note, only thing issue so far seems to be vfio binding, vms can't work
     

    chown: cannot access '/dev/vfio/15': No such file or directory
    Error: unable to adjust group ownership of /dev/vfio/15

     

    odin-diagnostics-20211028-2339.zip

    To further this, trying to boot in safemode throws Cannot find device "bond0" 

    After more testing, I did a completely fresh install of the new release, (no existing config). These same errors occurring. Sometimes unable to boot correctly with Cannot find device "bond0" 

  2. There is a lot going on in the release, and a lot of good!

    Some mixed sentiment on the UPC and My Server stuff. Firstly the My Server stuff is fine, an optional additional service people can use to remotely monitor one or more servers. Great stuff useful for those that need or want this. 

    The UPC stuff is a little more complex. I changed my key today, the old way, and it was super simple barely an inconvenience. I'll outline my concerns with this direction, take them as you will.

    • UPC is linking to a forum. It could be that the forum backend is the core authentication system / CRM or the like, but it seems an odd choice to me. 
    • If a server is authenticated via UPC an open web socket is maintained. Generally not a big deal, but it's another thing to be exploited and as others have pointed out didn't work out so well for other companies.
    • All information is useful to a hacker, no matter how little data may be captured if there is a breach it is exposing potentially vast configurations, IPs, and so on.
    • On the configuration backups, why a private repo? This seems odd to me, are these encrypted per server? Wouldn't just end to end encrypted file blobs be more secure, regardless of saying "it doesn't include files with sensitive info".
    • No company regardless of design or merit is immune to breaches, hacks, or acquisitions.
    • While it's clear now that if you have a valid key you do not need to authenticate with UPC (forum), this is pretty much how all non-cloud authentications go to die. I've seen, you've seen it... And I get it, from a business perspective, it's easier for you to manage centrally, oversee, and move towards the subscription model. Confidence that a path like this isn't in the future would ease many, especially in the area of data storage where moving is not always trivial. 
    • Are you GDPR compliant, or similar data protection schemes (kind of not specific to the release, just generally)
    • Are you ISO27001 and SOC certified such that we can be sure your development pipelines to your infrastructure won't be compromised with active connections to our servers?

     

     

    These are my concerns, the features and functions of Unraid in this release are great. Thanks for the work put into them

    • Like 4