Re: SL 6.10 upgrade & smb
Hi, the Samba team makes constant changes to keep up with MS upgrades. If you want to downgrade Samba, just downgrade it, doesn't make sense to downgrade whole OS Might be, that you need only update your smb.conf to get to working condition, some features are simply deprecated. Do you use samba 4 or samba 3? -- *Karel Lang* *Unix/Linux Administration* l...@afd.cz | +420 731 13 40 40 AUFEER DESIGN, s.r.o. | https://urldefense.proofpoint.com/v2/url?u=http-3A__www.aufeerdesign.cz&d=DwICaQ&c=gRgGjJ3BkIsb5y6s49QqsA&r=gd8BzeSQcySVxr0gDWSEbN-P-pgDXkdyCtaMqdCgPPdW1cyL5RIpaIYrCn8C5x2A&m=rAib_RKZgbXYgtvfKlGIYQVLlE56lOHQI0aRCI0Ar1Q&s=SF8QVJWPUXAaX4Nxwv_Keaixz5DAihiNGVSmpvvDdDw&e= On 07/23/2018 04:38 PM, Larry Linder wrote: We upgraded one system to SL6.10 and noticed that it no longer was recognized by the serer and it could not see server or any of the other linux or windos boxes. We verified that they network is defined as WORKGROUP on all systems. We looked at smb.conf and the firewall and nothing makes any sense, It is set up like all the other systems. Is there anyway to un update a system say from the 6.10 back to 6.9 ? other than reloading it. We also noticed that Nautilis was been "carved on" and a lot of the nice features are gone. smb builds it own host table. What creates it. It is just a simpler version of the "hosts" file we on all systems. Thank You Larry Linder MicroControls LLC
proofpoint.com URLs in sl-users messages
Dear Scientific Linux users, You may have noticed recently that URLs in messages to the scientific-linux-users@fnal.gov mailing list are often converted to a longer version where the original URL is routed through "urldefense.proofpoint.com", e.g., https://urldefense.proofpoint.com/v2/url?u=https-3A__bugzilla.mozilla.org_show-5Fbug.cgi-3Fid-3D1278282&d=DwIBAg&c=gRgGjJ3BkIsb5y6s49QqsA&r=ZSgt1f7kW9G8-9f6VpdMqA&m=GNVwbRVdMb0OHea3YcT932r9X96HOwQvQqu1TZ4KG5k&s=YJv_zN6hJ20hObNHTC9szZwF56XooQ5-FHJCgYt00cg&e= This is an anti-phishing measure adopted by Fermilab. URLs in mail messages are automatically rewritten to go through a service that checks against known malicious sites, then either blocks the attempt or routes to the original address. Although these links look odd, they are legitimate, and you will get to the intended sites if you follow them. Thanks, The Scientific Linux team
Re: SP: proofpoint.com URLs in sl-users messages
On Tue, Jul 24, 2018 at 09:39:37AM -0500, Glenn Cooper wrote: > > You may have noticed recently that URLs in messages to the > scientific-linux-users@fnal.gov mailing list are often converted to a longer > version where the original URL is routed through "urldefense.proofpoint.com", > e.g., > > This is an anti-phishing measure adopted by Fermilab. > Some people dislike these email manglers because they replace obviously safe URLs (://triumf.ca, https://urldefense.proofpoint.com/v2/url?u=http-3A__bnl.gov&d=DwIBAg&c=gRgGjJ3BkIsb5y6s49QqsA&r=gd8BzeSQcySVxr0gDWSEbN-P-pgDXkdyCtaMqdCgPPdW1cyL5RIpaIYrCn8C5x2A&m=9MsrWO_OsZsUg1N098OjP5FVq11d4xFs7FQSsO0fvOg&s=hNpBcmIgNIJC38WgFxk6q0e-BDk3eAeFQnaJXmIOK3Y&e=, ://gnal.gov, etc) with magical "eat me" cookies. Maybe these manglers cut down on nigerian fishing, but I think there is a net decrease in security because everybody is forced to click links without knowing exactly where they go. And there is a privacy violation element to this, now a 3rd party has a record of when I visit what web sites. (And after the recent Facebook scandal, only the naive disbelieve that these records are not available for sale, cheap). -- Konstantin Olchanski Data Acquisition Systems: The Bytes Must Flow! Email: olchansk-at-triumf-dot-ca Snail mail: 4004 Wesbrook Mall, TRIUMF, Vancouver, B.C., V6T 2A3, Canada
Re: SP: proofpoint.com URLs in sl-users messages
On Tue, Jul 24, 2018 at 12:20 PM, Konstantin Olchanski wrote: > On Tue, Jul 24, 2018 at 09:39:37AM -0500, Glenn Cooper wrote: > Some people dislike these email manglers because they replace obviously > safe URLs (://triumf.ca, > https://urldefense.proofpoint.com/v2/url?u=http-3A__bnl.gov&d=DwIBAg&c=gRgGjJ3BkIsb5y6s49QqsA&r=gd8BzeSQcySVxr0gDWSEbN-P-pgDXkdyCtaMqdCgPPdW1cyL5RIpaIYrCn8C5x2A&m=9MsrWO_OsZsUg1N098OjP5FVq11d4xFs7FQSsO0fvOg&s=hNpBcmIgNIJC38WgFxk6q0e-BDk3eAeFQnaJXmIOK3Y&e=, > ://gnal.gov, etc) > with magical "eat me" cookies. > > Maybe these manglers cut down on nigerian fishing, but I think there > is a net decrease in security because everybody is forced > to click links without knowing exactly where they go. Another failure of using such a service is that the URLs are now mangled inside the ProofPoint URL. When at some point in the future the ProofPoint service is discontinued or is no longer used by Fermilab (it will happen, some day, one way or another) the URLs that were originally submitted are lost. A "safe" link and a non-HTML-sanitized copy of the original URL would be a welcome safeguard from being hostage to the service for a clean copy of the URL for several reasons, even to just know what the URL is targeting along with having the option to not follow the link through the URL filtering service for tracking and privacy concerns. expressed by Konsantin.
Re: SPAM: proofpoint.com URLs in sl-users messages
On Tue, 24 Jul 2018, Glenn Cooper wrote: Dear Scientific Linux users, You may have noticed recently that URLs in messages to the scientific-linux-users@fnal.gov mailing list are often converted to a longer version where the original URL is routed through "urldefense.proofpoint.com", e.g., https://urldefense.proofpoint.com/v2/url?u=https-3A__bugzilla.mozilla.org_show-5Fbug.cgi-3Fid-3D1278282&d=DwIBAg&c=gRgGjJ3BkIsb5y6s49QqsA&r=ZSgt1f7kW9G8-9f6VpdMqA&m=GNVwbRVdMb0OHea3YcT932r9X96HOwQvQqu1TZ4KG5k&s=YJv_zN6hJ20hObNHTC9szZwF56XooQ5-FHJCgYt00cg&e= This is an anti-phishing measure adopted by Fermilab. URLs in mail messages are automatically rewritten to go through a service that checks against known malicious sites, then either blocks the attempt or routes to the original address. Although these links look odd, they are legitimate, and you will get to the intended sites if you follow them. This message showed up in my inbox tagged as SPAM .. so I am not sure how this is an improvement. cheers, etc. -- Denice Deatrich, TRIUMF/Science/ATLAS Ph: +1 604 222 7665 <*> This moment's fortune cookie: Ban the bomb. Save the world for conventional warfare.
Re: SP: proofpoint.com URLs in sl-users messages
I concur with the previous posts about ProofPoint. The U of I campus implemented this several years ago. I complained. Fell on deaf ears. Implemented by our security folks. Rationale being that 99% of the campus email users (i.e., using the campus Exchange server) are either too lazy and/or too unaware of the dangers of blindly clicking on a URL in their emails. However, U of I email with a URL in the message body shows the real URL (in blue and underlined - unless the URL is hidden via the html " So, in our case, one can just copy/paste the URL in the message body to a browser and NOT go thru ProofPoint. The other aspect of the U of I's ProofPoint config is that it only affects email composed in HTML format, and since I generally loathe doing that unless absolutely necessary, I almost always compose in ASCII mode. So, I suppose this might be a test of how Fermilab has implemented ProofPoint as I will now include a rather well known URL here (https://urldefense.proofpoint.com/v2/url?u=https-3A__www.google.com_&d=DwICaQ&c=gRgGjJ3BkIsb5y6s49QqsA&r=gd8BzeSQcySVxr0gDWSEbN-P-pgDXkdyCtaMqdCgPPdW1cyL5RIpaIYrCn8C5x2A&m=Ma0w4F56naDITDGkKlQvVJtetzaOiMo7eexfGKNZgfo&s=j_HbB2h_p9zjRUhPqMrTbEdV3hg8KvFr66CCOEJkwDA&e=) and see how it arrives in your inbox. :-) Jon Pruente wrote on 7/24/18 12:33 PM: On Tue, Jul 24, 2018 at 12:20 PM, Konstantin Olchanski wrote: On Tue, Jul 24, 2018 at 09:39:37AM -0500, Glenn Cooper wrote: Some people dislike these email manglers because they replace obviously safe URLs (://triumf.ca, https://urldefense.proofpoint.com/v2/url?u=http-3A__bnl.gov&d=DwIBAg&c=gRgGjJ3BkIsb5y6s49QqsA&r=gd8BzeSQcySVxr0gDWSEbN-P-pgDXkdyCtaMqdCgPPdW1cyL5RIpaIYrCn8C5x2A&m=9MsrWO_OsZsUg1N098OjP5FVq11d4xFs7FQSsO0fvOg&s=hNpBcmIgNIJC38WgFxk6q0e-BDk3eAeFQnaJXmIOK3Y&e=, ://gnal.gov, etc) with magical "eat me" cookies. Maybe these manglers cut down on nigerian fishing, but I think there is a net decrease in security because everybody is forced to click links without knowing exactly where they go. Another failure of using such a service is that the URLs are now mangled inside the ProofPoint URL. When at some point in the future the ProofPoint service is discontinued or is no longer used by Fermilab (it will happen, some day, one way or another) the URLs that were originally submitted are lost. A "safe" link and a non-HTML-sanitized copy of the original URL would be a welcome safeguard from being hostage to the service for a clean copy of the URL for several reasons, even to just know what the URL is targeting along with having the option to not follow the link through the URL filtering service for tracking and privacy concerns. expressed by Konsantin. -- P. Larry Nelson (217-693-7418) | IT Administrator Emeritus 810 Ventura Rd.| High Energy Physics Group Champaign, IL 61820 | Physics Dept., Univ. of Ill. MailTo: lnel...@illinois.edu | https://urldefense.proofpoint.com/v2/url?u=http-3A__hep.physics.illinois.edu_home_lnelson_&d=DwICaQ&c=gRgGjJ3BkIsb5y6s49QqsA&r=gd8BzeSQcySVxr0gDWSEbN-P-pgDXkdyCtaMqdCgPPdW1cyL5RIpaIYrCn8C5x2A&m=Ma0w4F56naDITDGkKlQvVJtetzaOiMo7eexfGKNZgfo&s=zuwvjMwO6N3LEFjVQk1g1psUnqgccVLNrF7TNvgHQRY&e= -- "Information without accountability is just noise." - P.L. Nelson
Re: SP: proofpoint.com URLs in sl-users messages
Same test only now I've composed in HTML format. Same URL: (https://urldefense.proofpoint.com/v2/url?u=https-3A__www.google.com_&d=DwIDaQ&c=gRgGjJ3BkIsb5y6s49QqsA&r=gd8BzeSQcySVxr0gDWSEbN-P-pgDXkdyCtaMqdCgPPdW1cyL5RIpaIYrCn8C5x2A&m=sVkiPzVJL_iMgLLvSTjn_PVonwnx8h1jT871yRet-T4&s=TZGZbRrxKyrMRUQCxm4kUvNcS7tHO8hynCK27Kro7ig&e=) P. Larry Nelson wrote on 7/24/18 1:40 PM: I concur with the previous posts about ProofPoint. The U of I campus implemented this several years ago. I complained. Fell on deaf ears. Implemented by our security folks. Rationale being that 99% of the campus email users (i.e., using the campus Exchange server) are either too lazy and/or too unaware of the dangers of blindly clicking on a URL in their emails. However, U of I email with a URL in the message body shows the real URL (in blue and underlined - unless the URL is hidden via the html " So, in our case, one can just copy/paste the URL in the message body to a browser and NOT go thru ProofPoint. The other aspect of the U of I's ProofPoint config is that it only affects email composed in HTML format, and since I generally loathe doing that unless absolutely necessary, I almost always compose in ASCII mode. So, I suppose this might be a test of how Fermilab has implemented ProofPoint as I will now include a rather well known URL here (https://urldefense.proofpoint.com/v2/url?u=https-3A__www.google.com_&d=DwIDaQ&c=gRgGjJ3BkIsb5y6s49QqsA&r=gd8BzeSQcySVxr0gDWSEbN-P-pgDXkdyCtaMqdCgPPdW1cyL5RIpaIYrCn8C5x2A&m=sVkiPzVJL_iMgLLvSTjn_PVonwnx8h1jT871yRet-T4&s=TZGZbRrxKyrMRUQCxm4kUvNcS7tHO8hynCK27Kro7ig&e=) and see how it arrives in your inbox. :-) -- P. Larry Nelson (217-693-7418) | IT Administrator Emeritus 810 Ventura Rd.| High Energy Physics Group Champaign, IL 61820 | Physics Dept., Univ. of Ill. MailTo: lnel...@illinois.edu | https://urldefense.proofpoint.com/v2/url?u=http-3A__hep.physics.illinois.edu_home_lnelson_&d=DwIDaQ&c=gRgGjJ3BkIsb5y6s49QqsA&r=gd8BzeSQcySVxr0gDWSEbN-P-pgDXkdyCtaMqdCgPPdW1cyL5RIpaIYrCn8C5x2A&m=sVkiPzVJL_iMgLLvSTjn_PVonwnx8h1jT871yRet-T4&s=rK67tnoRg-LrGgKZGxwX7Y3ysQghBlXmTJkqZTTyxC8&e= -- "Information without accountability is just noise." - P.L. Nelson
Re: SP: proofpoint.com URLs in sl-users messages
Hmmm, my copy sure doesn't look like HTML format. I surrender P. Larry Nelson wrote on 7/24/18 1:44 PM: Same test only now I've composed in HTML format. Same URL: (https://urldefense.proofpoint.com/v2/url?u=https-3A__www.google.com_&d=DwIDaQ&c=gRgGjJ3BkIsb5y6s49QqsA&r=gd8BzeSQcySVxr0gDWSEbN-P-pgDXkdyCtaMqdCgPPdW1cyL5RIpaIYrCn8C5x2A&m=EYDBVOo8z2PATbw_pAw6GKNYkFSqZ79zzdFhPDE8sko&s=36AasAKnjw3JX0UK8z2_eOOgWRhxPGfavvUN_pCuhXY&e=) P. Larry Nelson wrote on 7/24/18 1:40 PM: I concur with the previous posts about ProofPoint. The U of I campus implemented this several years ago. I complained. Fell on deaf ears. Implemented by our security folks. Rationale being that 99% of the campus email users (i.e., using the campus Exchange server) are either too lazy and/or too unaware of the dangers of blindly clicking on a URL in their emails. However, U of I email with a URL in the message body shows the real URL (in blue and underlined - unless the URL is hidden via the html " So, in our case, one can just copy/paste the URL in the message body to a browser and NOT go thru ProofPoint. The other aspect of the U of I's ProofPoint config is that it only affects email composed in HTML format, and since I generally loathe doing that unless absolutely necessary, I almost always compose in ASCII mode. So, I suppose this might be a test of how Fermilab has implemented ProofPoint as I will now include a rather well known URL here (https://urldefense.proofpoint.com/v2/url?u=https-3A__www.google.com_&d=DwIDaQ&c=gRgGjJ3BkIsb5y6s49QqsA&r=gd8BzeSQcySVxr0gDWSEbN-P-pgDXkdyCtaMqdCgPPdW1cyL5RIpaIYrCn8C5x2A&m=EYDBVOo8z2PATbw_pAw6GKNYkFSqZ79zzdFhPDE8sko&s=36AasAKnjw3JX0UK8z2_eOOgWRhxPGfavvUN_pCuhXY&e=) and see how it arrives in your inbox. :-) -- P. Larry Nelson (217-693-7418) | IT Administrator Emeritus 810 Ventura Rd.| High Energy Physics Group Champaign, IL 61820 | Physics Dept., Univ. of Ill. MailTo: lnel...@illinois.edu | https://urldefense.proofpoint.com/v2/url?u=http-3A__hep.physics.illinois.edu_home_lnelson_&d=DwIDaQ&c=gRgGjJ3BkIsb5y6s49QqsA&r=gd8BzeSQcySVxr0gDWSEbN-P-pgDXkdyCtaMqdCgPPdW1cyL5RIpaIYrCn8C5x2A&m=EYDBVOo8z2PATbw_pAw6GKNYkFSqZ79zzdFhPDE8sko&s=8P7D0JjiUCaWC6pRi-O7YHxf0ZnDitNCQLFRp9iRMbU&e= -- "Information without accountability is just noise." - P.L. Nelson
Re: SP: proofpoint.com URLs in sl-users messages
Certainly a counterproductive decision for Fermilab and the mailing list users. Not to mention privacy-violation redirecting to 3rd party trackers... I'd admit with this URL mangling, I'd be more reluctant to click URLs in the emails :) Let's see if these gets mangled: https://urldefense.proofpoint.com/v2/url?u=http-3A__www.google.com&d=DwIFaQ&c=gRgGjJ3BkIsb5y6s49QqsA&r=gd8BzeSQcySVxr0gDWSEbN-P-pgDXkdyCtaMqdCgPPdW1cyL5RIpaIYrCn8C5x2A&m=UpAH2qwjSm-yxXqncllWyqMys2EQksAO_aru1jg0wRg&s=N3bPkxmj6XWXuPdnXdgs7j52SQqTSen79RfajLTfVFY&e= "https://urldefense.proofpoint.com/v2/url?u=http-3A__www.google.com&d=DwIFaQ&c=gRgGjJ3BkIsb5y6s49QqsA&r=gd8BzeSQcySVxr0gDWSEbN-P-pgDXkdyCtaMqdCgPPdW1cyL5RIpaIYrCn8C5x2A&m=UpAH2qwjSm-yxXqncllWyqMys2EQksAO_aru1jg0wRg&s=N3bPkxmj6XWXuPdnXdgs7j52SQqTSen79RfajLTfVFY&e="; google.com cnn.com cbc.ca "github.com" https://urldefense.proofpoint.com/v2/url?u=http-3A__localhost&d=DwIFaQ&c=gRgGjJ3BkIsb5y6s49QqsA&r=gd8BzeSQcySVxr0gDWSEbN-P-pgDXkdyCtaMqdCgPPdW1cyL5RIpaIYrCn8C5x2A&m=UpAH2qwjSm-yxXqncllWyqMys2EQksAO_aru1jg0wRg&s=uU1UAXuZX-nKjbS9OG0vbhA8YAwkSQL4wGTyJqFOXaw&e= and URLs in sig... -s On Tue, Jul 24, 2018 at 2:45 PM, P. Larry Nelson wrote: > Hmmm, my copy sure doesn't look like HTML format. > I surrender > > P. Larry Nelson wrote on 7/24/18 1:44 PM: >> >> Same test only now I've composed in HTML format. >> Same URL: >> (https://urldefense.proofpoint.com/v2/url?u=https-3A__www.google.com_&d=DwIDaQ&c=gRgGjJ3BkIsb5y6s49QqsA&r=gd8BzeSQcySVxr0gDWSEbN-P-pgDXkdyCtaMqdCgPPdW1cyL5RIpaIYrCn8C5x2A&m=EYDBVOo8z2PATbw_pAw6GKNYkFSqZ79zzdFhPDE8sko&s=36AasAKnjw3JX0UK8z2_eOOgWRhxPGfavvUN_pCuhXY&e=) >> >> P. Larry Nelson wrote on 7/24/18 1:40 PM: >>> >>> I concur with the previous posts about ProofPoint. >>> The U of I campus implemented this several years ago. >>> I complained. Fell on deaf ears. >>> >>> Implemented by our security folks. Rationale being that 99% of the >>> campus email users (i.e., using the campus Exchange server) are either too >>> lazy and/or too unaware of the dangers of blindly clicking on a URL in their >>> emails. >>> >>> However, U of I email with a URL in the message body shows the real URL >>> (in blue and underlined - unless the URL is hidden via the html "https://urldefense.proofpoint.com/v2/url?u=https-3A__www.google.com_&d=DwIDaQ&c=gRgGjJ3BkIsb5y6s49QqsA&r=gd8BzeSQcySVxr0gDWSEbN-P-pgDXkdyCtaMqdCgPPdW1cyL5RIpaIYrCn8C5x2A&m=EYDBVOo8z2PATbw_pAw6GKNYkFSqZ79zzdFhPDE8sko&s=36AasAKnjw3JX0UK8z2_eOOgWRhxPGfavvUN_pCuhXY&e=) >>> and see how it arrives in your inbox. >>> >>> :-) >>> >> > > > -- > P. Larry Nelson (217-693-7418) | IT Administrator Emeritus > 810 Ventura Rd.| High Energy Physics Group > Champaign, IL 61820 | Physics Dept., Univ. of Ill. > MailTo: lnel...@illinois.edu | > https://urldefense.proofpoint.com/v2/url?u=http-3A__hep.physics.illinois.edu_home_lnelson_&d=DwIDaQ&c=gRgGjJ3BkIsb5y6s49QqsA&r=gd8BzeSQcySVxr0gDWSEbN-P-pgDXkdyCtaMqdCgPPdW1cyL5RIpaIYrCn8C5x2A&m=EYDBVOo8z2PATbw_pAw6GKNYkFSqZ79zzdFhPDE8sko&s=8P7D0JjiUCaWC6pRi-O7YHxf0ZnDitNCQLFRp9iRMbU&e= > > -- > "Information without accountability is just noise." - P.L. Nelson > -- Serguei Mokhov https://urldefense.proofpoint.com/v2/url?u=http-3A__www.cs.concordia.ca_-7Emokhov&d=DwIFaQ&c=gRgGjJ3BkIsb5y6s49QqsA&r=gd8BzeSQcySVxr0gDWSEbN-P-pgDXkdyCtaMqdCgPPdW1cyL5RIpaIYrCn8C5x2A&m=UpAH2qwjSm-yxXqncllWyqMys2EQksAO_aru1jg0wRg&s=dOjjGinCrUtv5r0Bsn7KrONlWvlxe-GL000kqcVjWxI&e= cciff.ca | mdreams-stage.com marf.sf.net | sf.net/projects/marf
Re: SP: proofpoint.com URLs in sl-users messages
Weird... None of yours got mangled (at least in my copy of your email) but scrolling down I see the URL in my sig is now ProofPointed as well as my google.com URLs in the quoted part of your response. The Fermilab ProofPoint settings seem to be a bit mysterious. Serguei Mokhov wrote on 7/24/18 1:54 PM: Certainly a counterproductive decision for Fermilab and the mailing list users. Not to mention privacy-violation redirecting to 3rd party trackers... I'd admit with this URL mangling, I'd be more reluctant to click URLs in the emails :) Let's see if these gets mangled: https://urldefense.proofpoint.com/v2/url?u=http-3A__www.google.com&d=DwICaQ&c=gRgGjJ3BkIsb5y6s49QqsA&r=gd8BzeSQcySVxr0gDWSEbN-P-pgDXkdyCtaMqdCgPPdW1cyL5RIpaIYrCn8C5x2A&m=ZGI1z1l3vfqoHxT9bkh2uTtKg-5zoSMkjMa7dJwVne0&s=nqcqCYyYafmVYrQM4k8j6RTbffl_OK4TwW88Tp8BUsY&e= "https://urldefense.proofpoint.com/v2/url?u=http-3A__www.google.com&d=DwICaQ&c=gRgGjJ3BkIsb5y6s49QqsA&r=gd8BzeSQcySVxr0gDWSEbN-P-pgDXkdyCtaMqdCgPPdW1cyL5RIpaIYrCn8C5x2A&m=ZGI1z1l3vfqoHxT9bkh2uTtKg-5zoSMkjMa7dJwVne0&s=nqcqCYyYafmVYrQM4k8j6RTbffl_OK4TwW88Tp8BUsY&e="; google.com cnn.com cbc.ca "github.com" https://urldefense.proofpoint.com/v2/url?u=http-3A__localhost&d=DwICaQ&c=gRgGjJ3BkIsb5y6s49QqsA&r=gd8BzeSQcySVxr0gDWSEbN-P-pgDXkdyCtaMqdCgPPdW1cyL5RIpaIYrCn8C5x2A&m=ZGI1z1l3vfqoHxT9bkh2uTtKg-5zoSMkjMa7dJwVne0&s=INI4G8jasFk0qatIiVrK7ndowa48nV-He-K2gNoIkII&e= and URLs in sig... -s On Tue, Jul 24, 2018 at 2:45 PM, P. Larry Nelson wrote: Hmmm, my copy sure doesn't look like HTML format. I surrender P. Larry Nelson wrote on 7/24/18 1:44 PM: Same test only now I've composed in HTML format. Same URL: (https://urldefense.proofpoint.com/v2/url?u=https-3A__www.google.com_&d=DwIDaQ&c=gRgGjJ3BkIsb5y6s49QqsA&r=gd8BzeSQcySVxr0gDWSEbN-P-pgDXkdyCtaMqdCgPPdW1cyL5RIpaIYrCn8C5x2A&m=EYDBVOo8z2PATbw_pAw6GKNYkFSqZ79zzdFhPDE8sko&s=36AasAKnjw3JX0UK8z2_eOOgWRhxPGfavvUN_pCuhXY&e=) P. Larry Nelson wrote on 7/24/18 1:40 PM: I concur with the previous posts about ProofPoint. The U of I campus implemented this several years ago. I complained. Fell on deaf ears. Implemented by our security folks. Rationale being that 99% of the campus email users (i.e., using the campus Exchange server) are either too lazy and/or too unaware of the dangers of blindly clicking on a URL in their emails. However, U of I email with a URL in the message body shows the real URL (in blue and underlined - unless the URL is hidden via the html "https://urldefense.proofpoint.com/v2/url?u=https-3A__www.google.com_&d=DwIDaQ&c=gRgGjJ3BkIsb5y6s49QqsA&r=gd8BzeSQcySVxr0gDWSEbN-P-pgDXkdyCtaMqdCgPPdW1cyL5RIpaIYrCn8C5x2A&m=EYDBVOo8z2PATbw_pAw6GKNYkFSqZ79zzdFhPDE8sko&s=36AasAKnjw3JX0UK8z2_eOOgWRhxPGfavvUN_pCuhXY&e=) and see how it arrives in your inbox. :-) -- P. Larry Nelson (217-693-7418) | IT Administrator Emeritus 810 Ventura Rd.| High Energy Physics Group Champaign, IL 61820 | Physics Dept., Univ. of Ill. MailTo: lnel...@illinois.edu | https://urldefense.proofpoint.com/v2/url?u=http-3A__hep.physics.illinois.edu_home_lnelson_&d=DwIDaQ&c=gRgGjJ3BkIsb5y6s49QqsA&r=gd8BzeSQcySVxr0gDWSEbN-P-pgDXkdyCtaMqdCgPPdW1cyL5RIpaIYrCn8C5x2A&m=EYDBVOo8z2PATbw_pAw6GKNYkFSqZ79zzdFhPDE8sko&s=8P7D0JjiUCaWC6pRi-O7YHxf0ZnDitNCQLFRp9iRMbU&e= -- "Information without accountability is just noise." - P.L. Nelson -- P. Larry Nelson (217-693-7418) | IT Administrator Emeritus 810 Ventura Rd.| High Energy Physics Group Champaign, IL 61820 | Physics Dept., Univ. of Ill. MailTo: lnel...@illinois.edu | https://urldefense.proofpoint.com/v2/url?u=http-3A__hep.physics.illinois.edu_home_lnelson_&d=DwICaQ&c=gRgGjJ3BkIsb5y6s49QqsA&r=gd8BzeSQcySVxr0gDWSEbN-P-pgDXkdyCtaMqdCgPPdW1cyL5RIpaIYrCn8C5x2A&m=ZGI1z1l3vfqoHxT9bkh2uTtKg-5zoSMkjMa7dJwVne0&s=l7l1lrZgSpAr0K8iyL7LTCTt6o9OZXT_q7VJXbA1C7w&e= -- "Information without accountability is just noise." - P.L. Nelson
HiDPI and SL7 with XFCE4
I just set up a 4K display, and googling has found me basic fixins: https://urldefense.proofpoint.com/v2/url?u=https-3A__www.makeuseof.com_tag_linux-2Dhidpi-2Dsupport-2Dfor-2Dgnome-2Dkde-2Dxfce-2Dcinnamon-2Dand-2Dfirefox_&d=DwICaQ&c=gRgGjJ3BkIsb5y6s49QqsA&r=gd8BzeSQcySVxr0gDWSEbN-P-pgDXkdyCtaMqdCgPPdW1cyL5RIpaIYrCn8C5x2A&m=PRl7GrNK8n6DuVgh4ktAsasUIdCgBggpIOupwJTZ6IU&s=PZhZGO9zyfMYDIcEVM7L1f9YBEIhWUkn6eSEk6wLly8&e= I also found the Default-hdpi theme. However, my main problem now is that even though my panel has "mode horizontal" and Number of Rows = 1, the Windows Buttons have 3 buttons in a stack before going horizontally. Any hints? -- James Pulver CLASSE Computer Group Cornell University
Re: SP: proofpoint.com URLs in sl-users messages
Hi, PSU uses Microsoft "safelinks" as of a few months ago which is similar. It was pointed out that this "feature" actually makes users less secure and more likely to fall for phishing attacks. The complaints fell on deaf ears. You can't rewrite message bodies without breaking PGP signatures. Also, you can't verify that a message is really PGP signed without every sender's public key. Microsoft just looks for "pgp signed" somewhere in the message body. I'm sure that proofpoint has to do something similar. If you can figure out what it does, you can at least cause your messages not to be rewritten. I'll include a couple of links here to see if my signature has any effect: https://urldefense.proofpoint.com/v2/url?u=https-3A__arstechnica.com_&d=DwIBAg&c=gRgGjJ3BkIsb5y6s49QqsA&r=gd8BzeSQcySVxr0gDWSEbN-P-pgDXkdyCtaMqdCgPPdW1cyL5RIpaIYrCn8C5x2A&m=T1iZwapzXbIi4JLbBCnP38Ro1p2oI3cIySeI0ZN-XJQ&s=_7L9QKlMXgH13BlmXTxbcGdOMxEWc3zglupXG8wMXXI&e= http://www.fnal.gov/ https://urldefense.proofpoint.com/v2/url?u=http-3A__www.lanl.gov_&d=DwIBAg&c=gRgGjJ3BkIsb5y6s49QqsA&r=gd8BzeSQcySVxr0gDWSEbN-P-pgDXkdyCtaMqdCgPPdW1cyL5RIpaIYrCn8C5x2A&m=T1iZwapzXbIi4JLbBCnP38Ro1p2oI3cIySeI0ZN-XJQ&s=mJql-MMfFHbr-rrtZcnnPCwDo_iVDv9yq1NcLMbcGQU&e= https://urldefense.proofpoint.com/v2/url?u=https-3A__www.google.com_&d=DwIBAg&c=gRgGjJ3BkIsb5y6s49QqsA&r=gd8BzeSQcySVxr0gDWSEbN-P-pgDXkdyCtaMqdCgPPdW1cyL5RIpaIYrCn8C5x2A&m=T1iZwapzXbIi4JLbBCnP38Ro1p2oI3cIySeI0ZN-XJQ&s=VMVCwSbpwpwIOJbXZRrcvGRmQxxShFWSta3rdH1ehts&e= Cheers, Ron -- Blindly following a list of best practices is not a best practice. On Tue, 24 Jul 2018, P. Larry Nelson wrote: Date: Tue, 24 Jul 2018 13:40:44 -0500 From: P. Larry Nelson To: Jon Pruente , Glenn Cooper , scientific-linux-users@fnal.gov Subject: Re: SP: proofpoint.com URLs in sl-users messages I concur with the previous posts about ProofPoint. The U of I campus implemented this several years ago. I complained. Fell on deaf ears. Implemented by our security folks. Rationale being that 99% of the campus email users (i.e., using the campus Exchange server) are either too lazy and/or too unaware of the dangers of blindly clicking on a URL in their emails. However, U of I email with a URL in the message body shows the real URL (in blue and underlined - unless the URL is hidden via the html " So, in our case, one can just copy/paste the URL in the message body to a browser and NOT go thru ProofPoint. The other aspect of the U of I's ProofPoint config is that it only affects email composed in HTML format, and since I generally loathe doing that unless absolutely necessary, I almost always compose in ASCII mode. So, I suppose this might be a test of how Fermilab has implemented ProofPoint as I will now include a rather well known URL here (https://urldefense.proofpoint.com/v2/url?u=https-3A__www.google.com_&d=DwICaQ&c=gRgGjJ3BkIsb5y6s49QqsA&r=gd8BzeSQcySVxr0gDWSEbN-P-pgDXkdyCtaMqdCgPPdW1cyL5RIpaIYrCn8C5x2A&m=Ma0w4F56naDITDGkKlQvVJtetzaOiMo7eexfGKNZgfo&s=j_HbB2h_p9zjRUhPqMrTbEdV3hg8KvFr66CCOEJkwDA&e=) and see how it arrives in your inbox. : -) Jon Pruente wrote on 7/24/18 12:33 PM: On Tue, Jul 24, 2018 at 12:20 PM, Konstantin Olchanski wrote: On Tue, Jul 24, 2018 at 09:39:37AM -0500, Glenn Cooper wrote: Some people dislike these email manglers because they replace obviously safe URLs (://triumf.ca, https://urldefense.proofpoint.com/v2/url?u=http-3A__bnl.gov&d=DwIBAg&c=gRgGjJ3BkIsb5y6s49QqsA&r=gd8BzeSQcySVxr0gDWSEbN-P-pgDXkdyCtaMqdCgPPdW1cyL5RIpaIYrCn8C5x2A&m=9MsrWO_OsZsUg1N098OjP5FVq11d4xFs7FQSsO0fvOg&s=hNpBcmIgNIJC38WgFxk6q0e-BDk3eAeFQnaJXmIOK3Y&e=, ://gnal.gov, etc) with magical "eat me" cookies. Maybe these manglers cut down on nigerian fishing, but I think there is a net decrease in security because everybody is forced to click links without knowing exactly where they go. Another failure of using such a service is that the URLs are now mangled inside the ProofPoint URL. When at some point in the future the ProofPoint service is discontinued or is no longer used by Fermilab (it will happen, some day, one way or another) the URLs that were originally submitted are lost. A "safe" link and a non-HTML-sanitized copy of the original URL would be a welcome safeguard from being hostage to the service for a clean copy of the URL for several reasons, even to just know what the URL is targeting along with having the option to not follow the link through the URL filtering service for tracking and privacy concerns. expressed by Konsantin. -- P. Larry Nelson (217-693-7418) | IT Administrator Emeritus 810 Ventura Rd.| High Energy Physics Group Champaign, IL 61820 | Physics Dept., Univ. of Ill. MailTo: lnel...@illinois.edu | https://urldefense.proofpoint.com/v2/url?u=http-3A__hep.physics.illinois.edu_home_lnelson_&d=DwICaQ&c=gRgGjJ3BkIsb5y6s49QqsA&r=gd8BzeSQcySVxr0gDWSEbN-P-pgDXkdyCtaMqdCgPPd
Re: SP: proofpoint.com URLs in sl-users messages
It appears it mangles URLs that begin with http and www at the moment. -s On Tue, Jul 24, 2018 at 3:05 PM, P. Larry Nelson wrote: > Weird... > None of yours got mangled (at least in my copy of your email) but scrolling > down I see the URL in my sig is now ProofPointed as well as my google.com > URLs in the quoted part of your response. > The Fermilab ProofPoint settings seem to be a bit mysterious. > > > Serguei Mokhov wrote on 7/24/18 1:54 PM: >> >> Certainly a counterproductive decision for Fermilab and the mailing >> list users. Not to mention privacy-violation redirecting to 3rd party >> trackers... I'd admit with this URL mangling, I'd be more reluctant to >> click URLs in the emails :) >> >> Let's see if these gets mangled: >> >> >> https://urldefense.proofpoint.com/v2/url?u=http-3A__www.google.com&d=DwICaQ&c=gRgGjJ3BkIsb5y6s49QqsA&r=gd8BzeSQcySVxr0gDWSEbN-P-pgDXkdyCtaMqdCgPPdW1cyL5RIpaIYrCn8C5x2A&m=ZGI1z1l3vfqoHxT9bkh2uTtKg-5zoSMkjMa7dJwVne0&s=nqcqCYyYafmVYrQM4k8j6RTbffl_OK4TwW88Tp8BUsY&e= >> >> "https://urldefense.proofpoint.com/v2/url?u=http-3A__www.google.com&d=DwICaQ&c=gRgGjJ3BkIsb5y6s49QqsA&r=gd8BzeSQcySVxr0gDWSEbN-P-pgDXkdyCtaMqdCgPPdW1cyL5RIpaIYrCn8C5x2A&m=ZGI1z1l3vfqoHxT9bkh2uTtKg-5zoSMkjMa7dJwVne0&s=nqcqCYyYafmVYrQM4k8j6RTbffl_OK4TwW88Tp8BUsY&e="; >> google.com >> cnn.com >> cbc.ca >> "github.com" >> >> https://urldefense.proofpoint.com/v2/url?u=http-3A__localhost&d=DwICaQ&c=gRgGjJ3BkIsb5y6s49QqsA&r=gd8BzeSQcySVxr0gDWSEbN-P-pgDXkdyCtaMqdCgPPdW1cyL5RIpaIYrCn8C5x2A&m=ZGI1z1l3vfqoHxT9bkh2uTtKg-5zoSMkjMa7dJwVne0&s=INI4G8jasFk0qatIiVrK7ndowa48nV-He-K2gNoIkII&e= >> >> >> and URLs in sig... >> >> -s >> >> >> On Tue, Jul 24, 2018 at 2:45 PM, P. Larry Nelson >> wrote: >>> >>> Hmmm, my copy sure doesn't look like HTML format. >>> I surrender >>> >>> P. Larry Nelson wrote on 7/24/18 1:44 PM: Same test only now I've composed in HTML format. Same URL: (https://urldefense.proofpoint.com/v2/url?u=https-3A__www.google.com_&d=DwIDaQ&c=gRgGjJ3BkIsb5y6s49QqsA&r=gd8BzeSQcySVxr0gDWSEbN-P-pgDXkdyCtaMqdCgPPdW1cyL5RIpaIYrCn8C5x2A&m=EYDBVOo8z2PATbw_pAw6GKNYkFSqZ79zzdFhPDE8sko&s=36AasAKnjw3JX0UK8z2_eOOgWRhxPGfavvUN_pCuhXY&e=) P. Larry Nelson wrote on 7/24/18 1:40 PM: > > I concur with the previous posts about ProofPoint. > The U of I campus implemented this several years ago. > I complained. Fell on deaf ears. > > Implemented by our security folks. Rationale being that 99% of the > campus email users (i.e., using the campus Exchange server) are either > too > lazy and/or too unaware of the dangers of blindly clicking on a URL in > their > emails. > > However, U of I email with a URL in the message body shows the real URL > (in blue and underlined - unless the URL is hidden via the html " href=" > construct), but when you move the mouse pointer over the URL, (at least > in > Thunderbird) the bottom horizontal box of T-bird (I'm sure it has a > more > official name) then shows the long obfuscated urldefense URL. > > So, in our case, one can just copy/paste the URL in the message body to > a > browser and NOT go thru ProofPoint. > > The other aspect of the U of I's ProofPoint config is that it only > affects email composed in HTML format, and since I generally loathe > doing > that unless absolutely necessary, I almost always compose in ASCII > mode. > > So, I suppose this might be a test of how Fermilab has implemented > ProofPoint as I will now include a rather well known URL here > > (https://urldefense.proofpoint.com/v2/url?u=https-3A__www.google.com_&d=DwIDaQ&c=gRgGjJ3BkIsb5y6s49QqsA&r=gd8BzeSQcySVxr0gDWSEbN-P-pgDXkdyCtaMqdCgPPdW1cyL5RIpaIYrCn8C5x2A&m=EYDBVOo8z2PATbw_pAw6GKNYkFSqZ79zzdFhPDE8sko&s=36AasAKnjw3JX0UK8z2_eOOgWRhxPGfavvUN_pCuhXY&e=) > and see how it arrives in your inbox. > > :-) > >>> >>> -- >>> P. Larry Nelson (217-693-7418) | IT Administrator Emeritus >>> 810 Ventura Rd.| High Energy Physics Group >>> Champaign, IL 61820 | Physics Dept., Univ. of Ill. >>> MailTo: lnel...@illinois.edu | >>> >>> https://urldefense.proofpoint.com/v2/url?u=http-3A__hep.physics.illinois.edu_home_lnelson_&d=DwIDaQ&c=gRgGjJ3BkIsb5y6s49QqsA&r=gd8BzeSQcySVxr0gDWSEbN-P-pgDXkdyCtaMqdCgPPdW1cyL5RIpaIYrCn8C5x2A&m=EYDBVOo8z2PATbw_pAw6GKNYkFSqZ79zzdFhPDE8sko&s=8P7D0JjiUCaWC6pRi-O7YHxf0ZnDitNCQLFRp9iRMbU&e= >>> >>> >>> -- >>> "Information without accountability is just noise." - P.L. Nelson >>> >> >> > > > -- > P. Larry Nelson (217-693-7418) | IT Administrator Emeritus > 810 Ventura Rd.| High Energy Physics Group > Champaign, IL 61820 | Physics Dept., Univ. of Ill. > MailTo: lnel...@illinois.edu | > https://urldefense.proofpoint.com/v2/url?u=http-3A__hep.physics.illinois.edu_home_lnelson_&d=DwICaQ&c=
