Hey BOFH's

We are currently in the process of replacing our old CommVault setup and are narrowed down to either Cohesity or Veeam. I know Veeam has a massive fan base here, and I'm honestly leaning in that direction, but I want to make sure I’ve properly vetted Cohesity before we sign anything.

Has anyone run into issues with Cohesity’s long-term pricing or support costs? I’ve heard some rumors about "introductory" rates that suddenly balloon once you’re fully locked into their ecosystem and trying to renew support. I want to avoid a situation where the renewal costs end up being way higher than the initial buy-in.

I did take a quick look at Rubrik as well, but for financial reasons, we’ve pretty much crossed them off the list, even though the feature set seemed decent. Just curious if anyone else has dealt with price shenanigans during a migration like this.

Thanks for any input!

Running a Hugo blog on consumer fiber and hit 1G sustained traffic from HN. Here's how we handled the load without dedicated server: LINK AMA if you're running homelab

Looking for some unfiltered Reddit advice.

We’re currently on Cohesity for our enterprise backup, but we’ve hit some major roadblocks lately that have me questioning the setup. In my last two roles, I ran Veeam and it was rock solid, so I’ve been pushing management to make the switch.

The problem? Our current Cohesity vendor is trashing Veeam every chance they get. To make it worse, a VAR we consult with basically said ""go with anything except Veeam"" and is pointing us toward Rubrik. Management is now spooked because two different ""experts"" are telling them Veeam is a bad move, even though my hands-on experience says otherwise.

Our Environment:

90% Virtualized (VMware) with a handful of physical Win/Linux boxes.

3 Data Centers.

Full M365 stack (Mail, Teams, etc.).

Heavy SQL and Oracle workloads (mix of physical and virtual).

If you had to pick one of these three for this kind of scale, which would you trust? I need to know if I'm the one being crazy or if the vendors are just playing games

Sat through a security review last week and someone asked how many browser extensions are running across our org. Nobody could answer.

We track laptops, mdm, patch status. We monitor the network. But not the extensions, which I am starting to think is the worst attack vector yet. Each one a tiny privileged application with access to every page you visit. And now the ai ones can read your screen, click buttons, send emails on your behalf.

The claudebleed research showed a zero-permission extension can hijack a trusted AI assistant. One compromised extension becomes a c2 channel inside your browser. And most of us have zero policy, zero visibility, zero controls here.

Blocking them all isnt an option anymore, anyone got better extension governance strategy?

As someone on the manufacturing side of rugged hardware, I constantly see the same IT horror stories: swollen batteries from hot truck cabs, busted charging ports, and screens shattered from forklift drops.

We know the traditional enterprise market is dominated by the big guys like Panasonic and Getac. They make phenomenal, indestructible gear.

But we also know their $2,500+ price tags give procurement teams a heart attack, which is why Onerugged (and competitors like Winmate) focus on that mid-tier, budget-friendly enterprise space.

But I want to hear directly from you guys on the front lines: If a mid-tier rugged tablet has the same IP ratings, swappable batteries, and native barcode scanners as the big brands, what is the biggest hurdle preventing you from making the switch?

Is it MDM compatibility?

Warranty trust?

Or does procurement just flat-out refuse to look past consumer iPads?

Hey everyone,

I wanted to open a discussion on handling one of the most notorious and frustrating limitations in Google Apps Script add-on development: the multiple accounts Authuser=0 trap.

The Context: My team recently launched a Workspace management add-on. Shortly after launch, we onboarded an enterprise client who left a great review but immediately reported a frustrating "nitpick": he's logged into multiple Google Workspace accounts, while he's accessing the add-on with his second logged account, the sidebar of our add-on was selecting the default account of their browser rather than the account actually linked to the active spreadsheet.

After consulting with my lead dev, we realised we were dealing with a platform-level infrastructure issue, and not a bug in our code.

The Trap: As most of you know, when a user is juggling multiple Google accounts in one Chrome window (e.g., u/0/, u/1/), Google Apps Script's HtmlService often gets completely confused by the session cookies. If they open the sheet with a secondary account, the underlying iframe still forces the add-on to authenticate using the Default account (authuser=0).

The result is massive user confusion, as the sidebar displays data or permissions for the completely wrong account.

No Workaround Found: We searched high and low but couldn't find a native programmatic patch to force the iframe to respect the active document's user context. So we advised the client to perform their admin operations inside a dedicated Chrome Profile or an Incognito window.

My Questions for the Community: Since we want to provide the smoothest UX possible, I’m curious how other devs here are tackling this:

1. The "Holy Grail" Fix: Has anyone found a reliable native workaround, undocumented parameter, or JS hack to force HtmlService to respect the active authuser index?
2. User Experience (UX): Do you preemptively warn users about this in your UI/onboarding flow, or do you just document it in your FAQs and wait for the support tickets to roll in?
3. Google's Roadmap: Has anyone who talks to Googlers heard any whispers on whether this is ever getting patched at the infrastructure level?

Would love to hear your thoughts, workarounds, and war stories regarding this bug!

I'm curious what systems everyone is using once they start handling multiple brand partnerships.

For the longest time, I was managing everything manually. My emails were Gmail, deliverable deadlines were in my calendar, invoices were saved in Google Drive, and payment dates were mostly in my head.

It worked, but barely. I've been testing Suade recently, and I like that it combines opportunities, deliverables, invoices, and payment tracking in one place. It feels a lot more organized than trying to patch together five different tools. Would love to hear what other creators are using.

Lately I started reading way more about password security and realized most of my old passwords were honestly trash. I’ve been trying to "upgrade" my security, but tbh I keep forgetting everything and resetting accounts every other day.

I was looking at zipsec guide (I'll link the pic in comments) and it kinda blew my mind how fast stuff gets cracked now. Like, I used to think adding a "$" or a "!" at the end of an 8-character password made it "strong," but apparently a standard rig does over 100 billion guesses per second. So anything under 10 characters with numbers is basically cracked "instantly."

I tried switching to the "simpler but stronger" method, using long passphrases like correct-horse-battery-staple instead of stuff like !aB2#xP9. The math makes sense because 15+ characters takes centuries to crack vs a few days, but even with "simpler" phrases, I still have like 50+ different accounts to track.

So far I've tried the "Memory" method (it's too hard), and also a hidden spreadsheet (my tech friend told me this is a "credential stuffing" nightmare waiting to happen if the file ever gets leaked)

I also read about Zero-Knowledge Vaults and setting up MFA (which supposedly stops 99.9% of attacks), so I’m thinking I should get a manager.

Do you guys actually trust password managers (the "vaults") or do you have some other system for keeping track of these 15-character minimums? Ngl, the idea of having one "master" password for everything is a bit scary but resetting my email twice a week is getting old lol.

I have been evaluating both for a mid-to-large scale setup and want real & true opinions before committing.

The usual debate: Akamai looks like the best choice for enterprise, but Cloudflare's developer experience and pace of innovation are hard to ignore.

Curious about your take on:

• WAF quality and false positive rates
• CDN performance (especially in Asia-Pacific markets)
• Configuration complexity (Property Manager or Cloudflare dashboard)
• Whether Akamai's support actually justifies the cost

Also, has anyone worked with consultants like Evolvous Consultation Services to handle onboarding and setup for either platform? Worth it or unnecessary overhead?

Hey everyone,

I’ve been working on https://toolswalla.com, a growing collection of simple, fast and practical online tools designed to solve everyday problems (no signup, no clutter).

The goal is to make things quick, lightweight and actually useful, whether it’s small productivity tasks, conversions or handy utilities you don’t want to install apps for.

I would really appreciate if you could take a minute to visit the site, try out a few tools and share your honest feedback (good or bad both are welcome)

Your support and suggestions will genuinely help me improve and grow this into something more valuable for everyone.

Thanks a lot in advance to anyone who gives it a try. 🙏