Can only laugh
Posted by MR-IT-@reddit | sysadmin | View on Reddit | 61 comments
Just another rant. So the company I work for decided to use home grade WiFi for their building. I express my concerns and all. The owner told me not to step foot on the new location and not to do any work related to it.
Now with the FCC banding certain equipment. Can you guess? The equipment they brought is on the list. The owner didn’t say let replace it. He buys more in case he can’t get it anymore.
Like wtf is this. I feel like I’m in a comedy show. I can’t believe this is really happening.
dww0311@reddit
You will never win a battle with someone determined to do things on the cheap. The only winning move is not to play. Start looking elsewhere, because the problems that will be coming with that scenario will still be your problem to solve
mahsab@reddit
I don't like saying this out loud because I'm inclined to agree ... but ... all the missing features aside, home grade WiFi devices are pretty damn good.
For basic scenarios, I have a hard time getting the same performance out of enterprise gear.
Also reliability wise, they don't like ever die - only the PSU, but POE ones just live forever.
himitsumono@reddit
But there comes a point ... For a number of years, I used to set up a 6-8 PC lab as a kind of help center at a conference every year.
We had hardwired internet, but as a rule, the hotels charged insane amounts to supply wifi for the attendees, so I inherited that problem. I'd set up a couple of consumer grade wifi routers, one to supply the staff/vendors, another for the attendees.
It worked ok at first but as time went on and more and more people brought computers (and cell phones and tablets) and demanded wifi, as though it was their baud-given right, I'd hear about it.
The real kiss of death came when we were in a kind of basement walkout room; we could see the outdoors, but we were surrounded by building or dirt on three sides and above.
Net: nobody's cel phones got so much as a single bar, so they were all hitting the wifi.
And unfortunately, our devices allowed for max of 255 connections (pretty standard), but provided no way to control the lease time. Once somebody connected, it seemed that they stayed connected. Forever or until the router hit the 255+ limit and simply crashed.
Which happened once an hour or more. By the end of the first day, I could have found the reset switch in the dark with one hand tied behind my back, and the other fending off five or six entitledangry attendees.
In the event, I told the conference organizer that we were either buying better routers ... NOW ... or I'd teach him where the reset button was and send the angries to him from then on. Five minutes later, we were on our way to Fry's.
In the end, all it took was setting the lease time to like 5 minutes or so, which the new routers' software allowed. No more issues.
dat510geek@reddit
The only way you can force cheap decision making as a incorrect step and accountablity is to get an external audit or 2 done, have iso requirements or soc for vendor or customer relations. Im doing this exactly now and my exec are apologising or sorts, by way of say "well how can we fix this going forward" then you have your business case ready to go and they approve willingly. If they don't, which has not been the case, you have them sign off that they agree to not fix this. If you fail compliance you have a cya sign off
Bogus1989@reddit
just curious what did this tool buy?
Cheomesh@reddit
Like a little residential gateway with the antennas?
HoosierLarry@reddit
People that don’t know shit about IT telling me how to do my job is why I’m sick of this career.
BrokenByEpicor@reddit
Literally we were having VPN issues the other day and one of our salespeople sends me something like "You should try this".
I deleted it without response (I did forward it to my friends for vicious mockery). Then she emails it to my boss. He also laughed. I don't know if he responded but he knows better than to even ask me to.
DaftPump@reddit
Going above your head is an asshole move...
BrokenByEpicor@reddit
True, but given I ignored her email without response I can't be too mad about it.
DaftPump@reddit
I wouldn't be either but that action reveals her tendencies.
Polymarchos@reddit
I'm very curious about the redacted technical term.
In my mind it was something like "flash the IPSEC controller".
BrokenByEpicor@reddit
I think it was like SD-WAN or something.
Centremass@reddit
Recalibrate the dilithium crystals.
fresh-dork@reddit
remodulate the carrier subfrequency.
DaftPump@reddit
This is why I left.... I still hang in this sub tho.
MR-IT-@reddit (OP)
I’m getting to that point. Like you hire me for my expertise and don’t follow what I say.
HoosierLarry@reddit
I bet they don’t do that shit with legal or accounting - unless you’re Enron or PwC I guess.
TheAmazingHumanTorus@reddit
Former small business in-house attorney: "They do do that shit with legal."
HoosierLarry@reddit
Good to know.
GeriatricTech@reddit
I hire you that means I tell you what to do and what to care about. It's that simple. Go tell him your thoughts but you won't because you want that money. So what is the point of this again?
CeC-P@reddit
Time for an anonymous email to your insurance company. I am not joking, I would do this.
St0nywall@reddit
Any equipment available now is grandfathered in. So long as the FCC hasn't reclassified it due to a change in its internals, that equipment can be imported to the US.
There is a firmware ban for March 2027, meaning no firmware changes will be allowed for existing "banned" equipment after that time.
There is also a process to have the equipment allowed for import and distribution in the US. The companies just have to go through a more rigorous process to be allowed to continue importing new products.
Knowing the facts makes it less scary and more inline with a money grab disguised as security IMO.
Unable-Entrance3110@reddit
Makes me wonder if companies will just freeze their model numbers but just silently upgrade the internals over time.
pointandclickit@reddit
There is a firmware ban for March 2027, meaning no firmware changes will be allowed for existing "banned" equipment after that time.The logic here is astounding. What's better than a device with a potential nation-state sponsored backdoor? Never being able to patch it so everyone else can get in on the fun too!
Granted, yeah... most of these devices are probably lucky to receive a year or two of support. Even luckier if anyone cares enough (or is capable) to update.
hellcat_uk@reddit
Nobody ever said the people banning it were intelligent.
fresh-dork@reddit
you mean 'pay a bribe'
Unable-Entrance3110@reddit
So, I assume that these are not going to be centrally managed? As in, good luck with roaming / hand-off problems...
Sinsilenc@reddit
I mean cheap can be done with commercial things like unifi... A basic u7 lite is like 99$
sionescu@reddit
What's "home grade WiFi" ?
hadrabap@reddit
Anything that is not enterprise/industrial grade. All the devices you can get in your favorite grocery store in sale. 🤪
AlkalineGallery@reddit
some think enterprise / industrial grade means any equipment that requires a var/reseller to purchase.
shrug
AtarukA@reddit
Hey at least, it's not military grade.
discusfish99@reddit
I don't get it. What could be cheaper than Ubiquiti? I imagine it's some silly mesh system
sublimeprince32@reddit
Ready for it? Ready?
At least its not ubiquity.
There. I said it.
Snoo_97185@reddit
Dang what's up with the ubiquiti hate. I feel like so many people hate on ubiquiti or think wifi is super complex, but I've done 100+ deployments that I've worked on years after that were just fine....
mahsab@reddit
They were good in the beginning.
Then they got worse - they focused more on the marketing rather than technical stuff, the products got more expensive, there was a lot of uncertainty with product lines and which direction they are heading, some of the new products were disappointing, they had a lot of serious bugs etc.
But then they got better again.
GeriatricTech@reddit
You just don't have the skillset to use Ubiquiti. There, I said it. Now what?
DifferentSpecific@reddit
What equipment did they buy?
Ill_Consequence_1763@reddit
Just grab popcorn. some lessons only get learned the expensive way.
Educational_Boot315@reddit
Pretty much any router that isn’t Starlink is “banned” so you’ll need to be more clear on what equipment you are talking about.
But also I don’t think you or the owner understand what thrbsecured networks act is doing.
Also, why is your owner buying and installing equipment when your company has a sysadmin?
Better_Dimension2064@reddit
Guess: the sysadmin proposed one of those fancy wifis, but the owner's nephew beat that price with Linksys, Linksys2, Linksys3, ...
GeriatricTech@reddit
Yes, we get it. The owner of the company is a moron and you are some genius. I see this too often. HE is the owner. HE has everything on the line. HE is your boss. HE pays you. HE told you to mind your own business on this and you are here ranting. LOL.
gwatt21@reddit
Where do you work so I can avoid business with them? 😂
MR-IT-@reddit (OP)
😂 my luck u be related to the owner. Not saying anything
cccanterbury@reddit
smrt
natflingdull@reddit
Small business problems. I thought Id like the freedom but I dont think Id ever go back
cccanterbury@reddit
jfc i tried. i poured my energy into doing inventory, but they wouldn't connect HR such that it was to that process to automate. i tried to standup a DC, but they wouldn't pay for it. I never again want to work in an unmanaged shop.
GX_EN@reddit
Sometimes big businesses, too. I worked for a couple MSPs over the course of 9 years - 2015 to 2024.
Saw companies with hundreds of millions in revenue and bigger: Use home NAS boxes in remote offices for production data. Not backed up! Have free version stand alone VMware servers for production. Backup strategy was taking snapshots once a day. Server 2003 VM and physical machines running business critical apps. One was in the DMZ with a customer facing web app. SQL injection happened on the latter. VMware cluster running Horizon with storage presented from an array that was EOL/no warranty. I could go on, but you get the picture.
Chownio@reddit
Whole lot of people in this post that only read headlines.
MrKixs@reddit
DR Office or Law Firm?
trborgan@reddit
Time to apply elsewhere.
MR-IT-@reddit (OP)
Oh I am lol
MrJacks0n@reddit
The routers that you can buy in the country now are not banned, they can no longer import new versions without getting them approved.
What will happen, is that the current routers may not be able to get updates after March 1, 2027, that's the biggest issue overall that I see.
joshghz@reddit
The owner needing to replace the first dead access point: "Hey have you got a tiny CD drive I can put this tiny CD in?"
alpha417@reddit
CDs? CDs? See deez....
pdp10@reddit
Tell us exactly what you're afraid is going to happen. RCE culnerability?
Mattyj273@reddit
I would say keep your resume handy, but that means shit in this economy.
Krigen89@reddit
He told you not to step foot there and not to care about it. Why do you care about it?
Not your circus, not your monkeys.
Just keep your CV up-to-date for when it all falls apart.
FrivolousMe@reddit
You're mistaken about how the ban will work though. The already purchased equipment is fine, though yes it probably should still get upgraded.
gotmynamefromcaptcha@reddit
LOL, not laughing at you, just at the situation as a whole. Run far, far away, this will be a colossal headache for you when you inevitably have to deal with it.