More actions
- Happy Halloween!
- Bryce inquired about BIOS RAID for his dualboot setup
- BIOS RAID is bad apparently
- Hardware RAID is only available via PCIE cards
- WinBTRFS
- Missed opportunity to call it WinTRFS ("WinterFS")
- Scuffed, but apparently works
- Anthony used it for a Windows C:\ drive once
- Best project for mounting Linux partitions on Mac/Windows literally just runs an Alpine VM in the background and shares the drive via a local NFS share
- Kinda scuffed, but actually a smart way to do it
- All Linux filesystems would already be supported without writing new drivers
- LUKS/LVM/MDADM support would probably be trivial to add
- NOTE: Post-meeting I think I found it, it's called "linsk"
- Kinda scuffed, but actually a smart way to do it
- WireGuard and Tailscale presentation
- What is a VPN?
- Open Protocols like OpenVPN
- Proprietary protocols like F5 Big-IP VPN (booo!)
- What is WireGuard?
- Veeeery fast
- UDP-based
- Nice advantage in that if a packet is invalid, it just silently drops it
- Attackers have very hard time finding a wireguard server endpoint (versus services like SSH that send a handshake on first connect)
- Works off the fundamental properties of asymmetric crypto
- Standard "Alice and Bob" setup [1]
- The server has a public and private key
- Each client has a public and private key
- The server has each client's public key
- Each client has the server's public key
- All messages sent are encrypted with that respective parties public key
- What is Tailscale?
- WireGuard on "easy mode"
- Much easier to configure
- Utilizes mesh network over the more common "hub-and-spoke" model
- What is Headscale?
- Self-hosted Tailscale
- Good resources to learn more
- What is a VPN?
- LUG Headscale server?
- Could help bypass NAT if you have a restrictive ISP
- Makes it easier to connect to your devices from anywhere (on/off campus, back home, etc)
- If we get our public IP subnet, we could do reverse-NAT through a VPN to give you an entire public IP for your homelab
- Tim's warning on GLRC admins apparently not liking orgs using their own VPNs
- Should we warn ITO/WMTU?
- Literally every org in the GLRC uses their own VPN over the crappy MTU F5 one, does IT really care?
- Wizard guy came in and gave us candy
- Thank you wizard guy
- Tech apparently has an official Tailscale server
- You'll see a bunch of random devices on an internal MTU Tailscale network if you authenticate with your @mtu.edu Gmail to the Tailscale app
- ...they respond to pings
- "What are the odds someone put an iDRAC in there?"
- GLRC Pizza Party has been decided!
- Meeting this Saturday @ 1PM, in the GLRC main lobby
- Little Caesars was voted the pizza of choice