Tuesday, March 23, 2010

Deploying Windows Firewall Settings With Group Policy

· The domain profile settings that are used by the computers when they are connected to a network that contains domain controllers for the domain of which the computer is a member.

· The standard profile settings that are used by the computers when they are connected to a network that does not contain domain controllers for the domain of which the computer is a member.

Print Friendly and PDF
Share/Bookmark

Enable Remote Assistance by GPO

Remote Assistance

Remote Assistance is disable in Domain environment by default

We need to enable it by GPO

Enable and configure Solicited Remote Assistance

Permit remote control of this computer: Allow helpers to remotely control the computer

Remark: (May be a bugs) The client’s control panel remote assistance tab will still no change, the check box will grey in color and no tick (show not enable) even the policy is running. (Need to check the policy by run rsop.msc or gpreult) and run the remote assistance wizard to test the policy is running or not.

Print Friendly and PDF
Share/Bookmark

Kerberos Authentication Tools and Settings

Applies To: Windows Server 2003, Windows Server 2003 R2, Windows Server 2003 with SP1, Windows Server 2003 with SP2

http://technet.microsoft.com/en-us/library/cc738673(WS.10).aspx#w2k3tr_kerb_tools_plmy

Print Friendly and PDF
Share/Bookmark

Kerberos for the Busy Admin

This is a very good article for you to get more understand of Kerberos:

http://blogs.technet.com/askds/archive/2008/03/06/kerberos-for-the-busy-admin.aspx

Print Friendly and PDF
Share/Bookmark

Domain user - logon hours

The logon hours will not logoff the user who is already logged in. It only can prevent user to login the machine during the period of time is restricted login.

Print Friendly and PDF
Share/Bookmark

Thursday, March 18, 2010

Runas替代方法CPAU 运行方式 不用输管理员用户名和密码

http://www.zhengda.me/index.php/archives/171

Print Friendly and PDF
Share/Bookmark

GPO troubleshooting

GPO troubleshooting

http://blogs.technet.com/grouppolicy/archive/2010/02/24/troubleshooting-group-policy.aspx

Print Friendly and PDF
Share/Bookmark

Upgrading Active Directory Domains to Windows Server 2008 and Windows Server 2008 R2 AD DS Domains

http://technet.microsoft.com/en-us/library/cc731728%28WS.10%29.aspx

http://technet.microsoft.com/en-us/library/dd464018%28WS.10%29.aspx

http://www.microsoft.com/downloads/details.aspx?displaylang=en&FamilyID=fa629de2-f4dd-47ac-8d80-3db46b2877a2

http://technet.microsoft.com/en-us/library/ee522994%28WS.10%29.aspx

Print Friendly and PDF
Share/Bookmark

Citrix NetScaler VPX Express Load Balancer for FREE

It is good for evaluate the NetScaler VPX. But it is not suitable for product environment due to the “Maximum

Throughput” limitation is 1 Mbps.

 

For more information:

http://support.citrix.com/servlet/KbServlet/download/20334-102-641392/NetScaler%20VPX%20FAQ-10-14-09.pdf

Print Friendly and PDF
Share/Bookmark

pGina - LDAP Client Login Authentication

http://www.pgina.org/

More reference:

Using pGINA to Authenticate Users in Microsoft Windows Environments

http://www.sun.com/blueprints/0604/817-7043.pdf

Print Friendly and PDF
Share/Bookmark

無法在 Windows 7 上安裝 OfficeScan 10 (solved)

http://www.wretch.cc/blog/josephphoto/16170677

Print Friendly and PDF
Share/Bookmark

MSN login URL/IP address

login.passport.com
login.passport.net
loginnet.passport.com
messenger.hotmail.com
207.46.110.0 整個網段
207.46.106.0 整個網段

Print Friendly and PDF
Share/Bookmark

SafeMSI.exe freeware starts Windows Installer in Safe Mode

http://www.windowsitpro.com/article/jsifaq/jsi-tip-9233-safemsi-exe-freeware-starts-windows-installer-in-safe-mode-.aspx

Print Friendly and PDF
Share/Bookmark

Windows Installer UnUsed Files Cleanup Tool 清除 Windows 中多餘的 Installer

http://www.kztechs.com/wicleanup/

Print Friendly and PDF
Share/Bookmark

(Solved) Outlook 2007在x64平台上無法預覽信件的PDF附件檔


http://blog.darkthread.net/blogs/darkthreadtw/archive/2010/02/23/pdf-preview-error-on-x64.aspx?utm_source=feedburner&utm_medium=feed&utm_campaign=Feed:+Darkthread+(Darkthread)

Print Friendly and PDF
Share/Bookmark

Windows XP SP3 Update Pack for Windows XP Integration (Post Windows XP SP3 patch list)

Windows XP SP3 Update Pack

A pack which slipstreams into your english xp sp3 installation disc. Bringing it up to date with all the high priority updates that appear on windows update. View a full list of updates that appear on windows update after a clean install of windows xp and see what's included in the main update pack on the contents page. Also check out the changelog and download pages.

Reference:

http://xable.net/index.html

Print Friendly and PDF
Share/Bookmark

Best Practices Analyzer for Office Communications Server 2007 and Office Communications Server 2007 R2

http://www.microsoft.com/downloads/details.aspx?FamilyID=1b90993c-072a-4c84-b385-b76d23b2f27c&displaylang=en

Print Friendly and PDF
Share/Bookmark

Office communicator history folder troubleshooting

For those user who Office communicator history did not work, please check the following option:

1. The "Save my instant message conversations in the Outlook Conversation History folder" option turned on.

2. The Office Communicator is sign-in after the outlook is connected.

3. If the user Domain account is not at the same domain of the exchange server e.g. The user account and exchange server in two different domain, the user AD account’s email address field must need to same at the exchange email account.

Print Friendly and PDF
Share/Bookmark

FAT32format 在Windows 7、Vista中將硬碟格式化成FAT32

http://www.ridgecrop.demon.co.uk/index.htm?guiformat.htm

Print Friendly and PDF
Share/Bookmark

StripMyRights is based on the idea of DropMyRights

Purpose of the utility:

If you are using a Windows computer logged on as an administrator, you are taking a risk. Especially if running Web browsers like Internet Explorer or email clients like Outlook. To lower the risk, it would be nice to be able to start Internet Explorer, Outlook and other potential risk-exposing applications in an ordinary user context. With Windows 2000 you had to use the RunAs command, which is cumbersome. With Windows XP Microsoft introduced the API calls SaferCreateLevel and SaferComputeTokenFromLevel, which allows one to create a token with reduced rights to be used when starting new processes. Michael Howard, Microsoft Security Engineering, released a utility, DropMyRights to take advantage of this new feature.

So StripMyRights is based on the idea of DropMyRights, but adds a few new features: The ability to pass command line arguments, the ability to be started from the HKLM\SOFTWARE\Microsoft\Windows NT\CurrentVersion\Image File Execution Options registry key and the abillity to be run as a replacement of the original program.

As the DropMyRights utility, one can choose to start new processes with one of three trust levels:

  • /L N - Normal user (default)
    Allows programs to execute as a user that does not have Administrator or Power User access rights. Software can access resources accessible by normal users.
  • /L C - Constrained user
    Software cannot access certain resources, such as cryptographic keys and credentials, regardless of the access rights of the user.
  • /L U - Untrusted user
    Allows programs to execute with access only to resources granted to open well-known groups, blocking access to Administrator and Power User privileges and personally granted rights.
    (This trust level will very seldom work with real applications...)

BTW: The recommended way of operating a Windows computer is to log on as an ordinary user, and then use the RunAs and log on as an administrator when running programs needing more access rights.

http://www.sysint.no/nedlasting/StripMyRights.htm

Print Friendly and PDF
Share/Bookmark

Intel VPro Free Management Software

Intel® System Defense Utility

Intel® System Defense Utility is an easy to use tool for small and medium businesses to take advantage of valuable proactive security and manageability features of Intel® vPro™ processor technology. Combined with systems built on Intel® Desktop Boards Executive Series, this tool lets you unleash the power of proactive management in your local network.

It enables you to remotely perform security and manageability functions such as setting security policies, BIOS configuration, remote reboot, asset management, event logging, and more.

Intel System Defense Utility may be used with the Intel® Desktop Boards based on:

  • Intel® Q965 Express Chipset
  • Intel® Q45 Express Chipset
  • Intel® Q35 Express Chipset

 

http://www.intel.com/design/motherbd/software/isdu/

 

Intel® IT Director

Intel® IT Director can help your small business customers:

  • Manage their network PCs
  • Strengthen security and data protection
  • Know when to place a call for help before the problem becomes critical

Find out what Intel IT Director can do for your customers and for you. Download the free utility and bundle with your systems.

 

Testimonials:

"I've been looking for something like this, but I couldn't describe it." Dan - insurance industry

"Anything that helps getting a quick picture of the PCs on the network." Nathan - digital imaging industry

 

Final version of Intel® IT Director is now available. Download here.

 

Key features of Intel® IT Director v1.7:

Feature

Benefit

USB Device Block

Prevent copying data to unauthorized devices

Intel® vPro™ Technology Detection and Provisioning

Detect and enable Intel® vPro™ Technology

Security Monitor (agent presence)

Ensure security software is present

Security Monitor (simple)

Ensure security software is running

Owner Dashboard

Increased efficiency: reports key data from networked PCs in simple window

Power-On Monitor

Increased energy savings by identifying systems left on and reporting to dashboard

Disk Space

Reports disk utilization of networked PCs to dashboard

 

http://www.intel.com/cd/channel/reseller/asmo-na/eng/420331.htm

 

More information about Intel VPro:

How to configuration the IntelAMT client without using Intel SCS

Intel Management Engine BIOS Extension (MEBx)

Dell™ Systems Management Administrator's Guide

 

http://supportapj.dell.com/support/edocs/systems/latd630/en/amt/MEBX.htm

Print Friendly and PDF
Share/Bookmark

VBS Script To Verify If A Specified Hot Fix Is Installed On A List Of Remote Machines (Ref:http://myitforum.com/cs2/blogs/dhite/archive/2007/08/05/vbs-script-to-verify-if-a-specified-hot-fix-is-installed-on-a-list-of-remote-machines.aspx)

VBS Script To Verify If A Specified Hot Fix Is Installed On A List Of Remote Machines

This VBS script will take a Hot Fix ID from an input dialog box and will determine whether or not the Hot Fix is installed on a list of machines contained in a text file called MachineList.Txt. It will then write the results to an Excel spreadsheet.

Note: To hard code the Hot Fix ID you can remove the line that reads: strHotFixId = InputBox ("Enter Hot Fix ID") and replace it with: strHotFixId = "KB931836"

VBS Script:

strHotFixId = InputBox ("Enter Hot Fix ID")

Set objExcel = CreateObject("Excel.Application")

objExcel.Visible = True

objExcel.Workbooks.Add

intRow = 2

objExcel.Cells(1, 1).Value = "Machine Name"

objExcel.Cells(1, 2).Value = strHotFixId & " Install Date"

Set Fso = CreateObject("Scripting.FileSystemObject")

Set InputFile = fso.OpenTextFile("MachineList.Txt")

Do While Not (InputFile.atEndOfStream)

strComputer = InputFile.ReadLine

Set objWMIService = GetObject("winmgmts:\\" & strComputer & "\root\cimv2")

Set colItems = objWMIService.ExecQuery("Select * from Win32_QuickFixEngineering Where HotFixID ='" & strHotFixId & "'")

If colItems.Count > 0 Then

For Each objItem In colItems

objExcel.Cells(intRow, 1).Value = UCase(strComputer)

objExcel.Cells(intRow, 2).Value = objItem.InstalledOn

Next

Else

objExcel.Cells(intRow, 1).Value = UCase(strComputer)

objExcel.Cells(intRow, 2).Value = "Not Installed"

If objExcel.Cells(intRow, 2).Value = "Not Installed" Then

objExcel.Cells(intRow, 1).Font.ColorIndex = 3

objExcel.Cells(intRow, 2).Font.ColorIndex = 3

Else

End If

End If

intRow = intRow + 1

Loop

objExcel.Range("A1:B1").Select

objExcel.Cells.HorizontalAlignment = 2

objExcel.Selection.Interior.ColorIndex = 19

objExcel.Selection.Font.ColorIndex = 11

objExcel.Selection.Font.Bold = True

objExcel.Cells.EntireColumn.AutoFit

MsgBox "Done"

 

Reference: http://myitforum.com/cs2/blogs/dhite/archive/2007/08/05/vbs-script-to-verify-if-a-specified-hot-fix-is-installed-on-a-list-of-remote-machines.aspx

Print Friendly and PDF
Share/Bookmark

Raid Recovery (Refer: http://wiki.osslab.org.tw/Hardware/Storage/Data_Recovery/Raid_Recovery)

 

作者:OSSLab thx (在修訂中)
在Raid 損壞,並且人為或其他因素損毀故障後.由於Raid 特性多顆併起.因此資料上有一定程度可以救出
Raid 軟恢復(Raw recovery)

要做救援前不要做任何寫入動作
快點把動手disk dump成 image (注意散熱跟電源), dump to file 是無損的.
之後自己搞不定的話 再找專業公司

在windows 2003下用Winhex or Diskgenius做image file 方法
http://zhangyu.blog.51cto.com/197148/36358
有了單顆 raid  image, 最重要的是 如何合併成原來 Raid disk  image file
再來慢慢恢復 分區表,文件系統,特定文件 檔案
Raid 5 架構
假設四顆HDD ,Raid 來講會有穿插一顆為P碟(校驗硬碟)

image

第一要先抓出是左循環或是右循環
假設disk 0,1,2,3  把raid disk 的分區可叫條帶 (Strip)
左循環就是  0條帶  校驗碼P區從disk 3開始 然後往左
               1條帶  校驗碼P區就會在disk 2 
                P區(校驗區) 是往左趨勢
        請參考圖
image

右則反之

image

另外一個是要判斷同步 異步
同步:是資料寫入時一定會放在校驗碼disk後
異步:則不管校驗碼換條帶時就直接照序寫入disk
所以分別會有 以下以Win image 說法,目前來講每家說法略有點不同 但是要能瞭解 上面P區走法,磁碟條帶分區狀況
左循環同步 backward parity
左循環異步 backward dynamic
右循環同步 forward partity
右循環異步 forward dynamic
判斷方法有點麻煩,因為要做一點運算..有機會下次講
這邊說個白癡傻瓜方法. 一般廠商 backward parity 最多.
如果能確認disk 0,1,2,3,4順序的話
把image file 用win hex直接做raid 5 recovery
四樣都做看看....(會有上面四個選項)
win hex 簡單來說 還原方法是
1.真正資料 0,1,3正常時 就恢復該段條帶 不管校驗碼區塊
2.當真正 其中 data 資料區塊 丟失時 以校驗塊還原
3.因為校驗碼 和資料 同時寫入錯誤丟失資料  可能會有無法還原的條帶 不過不會每個條帶都會這樣寫入
自己再慢慢研究看那個disk image file是正確的吧.做imgage file慢 請用強一點的電腦
然後再針對各種分區做file system recovery.再用disk warrior 去救吧.
嫌麻煩就用 Zar  support raid 5
http://www.z-a-recovery.com/raid-recovery-tutorial.htm
大體上是給他塞入image file就好  會自動判定raid disk 格式 才us 29
其他軟體
http://www.diskinternals.com/raid-recovery/
http://www.getwayrecovery.com/purchase.html (support raid 6)
http://www.unformat-unerase.com/Articles/RAID_Recovery_Presentation/index.shtml  (raird 5,raid6)
看損壞程度還是需要人工處理 ..
最大忌諱是.當raid 5 同時掛一顆 以上 raid 6 掛二顆以上
整組請立刻停掉 否則又寫入一堆亂七八糟校驗碼.會把整個raid disk 架構毀掉.
增加recovery難度

轉自:http://wiki.osslab.org.tw/Hardware/Storage/Data_Recovery/Raid_Recovery

Print Friendly and PDF
Share/Bookmark

Batch to add/remove IP address in hosts file

Add IP address

IF NOT EXIST C:\WINDOWS\system32\drivers\etc\hosts_o Copy C:\WINDOWS\system32\drivers\etc\hosts C:\WINDOWS\system32\drivers\etc\hosts_o

Copy C:\WINDOWS\system32\drivers\etc\hosts C:\WINDOWS\system32\drivers\etc\hosts_bk /y

echo 1.5.3.8    x.xxx.com >> C:\WINDOWS\system32\drivers\etc\hosts

 

Remove IP address

Copy C:\WINDOWS\system32\drivers\etc\hosts C:\WINDOWS\system32\drivers\etc\hosts_bk2 /y

Copy C:\WINDOWS\system32\drivers\etc\hosts_o C:\WINDOWS\system32\drivers\etc\hosts /y

Print Friendly and PDF
Share/Bookmark

Wednesday, March 17, 2010

VBScript program to create new Active Directory user accounts in bulk from the information in a Microsoft Excel spreadsheet.

http://www.rlmueller.net/CreateUsers.htm

Print Friendly and PDF
Share/Bookmark

How to detect RDS-specific application compatibility issues by using the RDS Application Compatibility Analyzer

http://blogs.msdn.com/rds/archive/2010/01/19/how-to-detect-rds-specific-application-compatibility-issues-by-using-the-rds-application-compatibility-analyzer.aspx

Print Friendly and PDF
Share/Bookmark

Setup Error: This product requires ASP.NET v2.0 or This product requires ASP.NET v2.0 to be set to 'Allow' in the list of IIS Web Server Extensions

Do the following and it should resolve the issue. For some reason installing the .NET Framework 3.x causes this to occur.

C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727>aspnet_regiis -u   (uninstall)

C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727>aspnet_regiis -i   (reinstall)

Print Friendly and PDF
Share/Bookmark

(Freeware) SQL Heartbeat


Monitor activity on your server for FREE!

SQL Heartbeat

  • Monitor server wait categories
  • Monitor IO activity
  • Check your current Cache Hits ratio
  • Analyze your I/O system performance
  • Get details about active processes
  • Display locks and deadlocks

http://www.sqlsolutions.com/products/Heartbeat/index.html

Print Friendly and PDF
Share/Bookmark

SSD Tweak Utility - Performance Tuning Tool for Solid State Drives

SSD Tweak Utility - Performance Tuning Tool for Solid State Drives

http://kurtsh.spaces.live.com/Blog/cns!DA410C7F7E038D!6603.entry

Print Friendly and PDF
Share/Bookmark

強制 Office 2007 的使用者,預設以 Office 2003 格式儲存

http://www.wretch.cc/blog/josephphoto/16145328

Print Friendly and PDF
Share/Bookmark

Subversion installation

Install Subversion on CentOS

1. Install apache
yum -y install httpd mod_ssl
service httpd start
chkconfig httpd on

2. Install MySQL
yum -y install mysql-server mysql-devel
service mysqld start
chkconfig mysqld on

3.Config MySQL's root password
/usr/bin/mysqladmin -u root password 'password'
mysql -u root -p

4. Install php
yum install -y php php-mysql

5. Install perl Module
yum install -y perl*

6. Remove the built in subversion (If it is installed before during the OS installation)
yum erase subversion

7. Install subversion

cd /tmp/
mkdir subversion
cd subversion

wget http://summersoft.fay.ar.us/pub/subversion/1.4.6/rhel5/x86_64/mod_dav_svn-1.4.6-1.rhel5.x86_64.rpm
wget http://summersoft.fay.ar.us/pub/subversion/1.4.6/rhel5/x86_64/subversion-1.4.6-1.rhel5.x86_64.rpm
wget http://summersoft.fay.ar.us/pub/subversion/1.4.6/rhel5/x86_64/subversion-debuginfo-1.4.6-1.rhel5.x86_64.rpm
wget http://summersoft.fay.ar.us/pub/subversion/1.4.6/rhel5/x86_64/subversion-devel-1.4.6-1.rhel5.x86_64.rpm
wget http://summersoft.fay.ar.us/pub/subversion/1.4.6/rhel5/x86_64/subversion-perl-1.4.6-1.rhel5.x86_64.rpm
wget http://summersoft.fay.ar.us/pub/subversion/1.4.6/rhel5/x86_64/subversion-python-1.4.6-1.rhel5.x86_64.rpm
wget http://summersoft.fay.ar.us/pub/subversion/1.4.6/rhel5/x86_64/subversion-tools-1.4.6-1.rhel5.x86_64.rpm

yum install -y db4-devel expat-devel openldap-devel libneon.so.24 neon
rpm -Uvh *.rpm

8 Change subversion configuration
cd /etc/httpd/conf.d/
vi subversion.conf
# Needed to do Subversion Apache server.
LoadModule dav_svn_module     modules/mod_dav_svn.so

# Only needed if you decide to do "per-directory" access control.
LoadModule authz_svn_module   modules/mod_authz_svn.so

9. Change apache configuration

vi /etc/httpd/conf/httpd.conf

<Location /svn>

     DAV svn   

    SVNParentPath /var/www/svn

     AuthType Basic

     AuthName "Subversion repositories"

     AuthUserFile passwd

    Require valid-user    

</Location>

/etc/init.d/httpd restart

10 Change the permission of the subversion folder

mkdir /var/www/svn
cd /var/www/svn
svnadmin create repos
chown -R apache:apache  repos
svnadmin recover repos

service httpd restart

11 Stop firewall (If it is enabled)

Next enter the following three commands to disable firewall.
# service iptables save
# service iptables stop
# chkconfig iptables off

If you are using IPv6 firewall, enter:
# service ip6tables save
# service ip6tables stop
# chkconfig ip6tables off

12 After setting up the software, start configuring the server for apache authentication and subversion. /etc/httpd/conf/passwd and /etc/httpd/conf/groups files. You make the passwd file with:

root> cd /etc/httpd/conf

root> htpasswd -cb passwd firstuser firstpasswd

root> htpasswd  -b passwd nextuser  nextpasswd

root> htpasswd  -b passwd thirduser thirdpasswd

The link of Subversion Server:

http://IP/svn/repos/

Install the Windows Client of subverison

TortoiseSVN

http://tortoisesvn.net/about

Print Friendly and PDF
Share/Bookmark

MCSA 2003 and MCSE 2003 to MCITP

image

Print Friendly and PDF
Share/Bookmark

(WM 6.1) Windows Media Player replacement

Nitrogen player

http://www.freewarepocketpc.net/ppc-download-nitrogen-player.html

It is much better than the built in WMP.

Print Friendly and PDF
Share/Bookmark

(WM 6.1) Assign the memory card as the default storage device

To change the memory card as the default location for photos and videos, take the following steps: activate the camera, open the Menu, select Options, choose General, and select Storage Card for Storage.

Print Friendly and PDF
Share/Bookmark

(WM) PocketCM ImageViewer 0.9

PocketCM ImageViewer is currently a test version, the purpose is to experiment what's possible with image on our Windows Mobile device using the PocketCM framework (if you want it to become a real product, you know what to do. You are not allowed to redistribute the binary in any form (zip, sharing site, upload on forums, ROM, ...). If you need PocketCM ImageViewer for non-personal use, please contact me (more info here).

http://www.pocketcm.com/imageviewer.php

Print Friendly and PDF
Share/Bookmark

Asus P320 WM 6.5 back to WM 6.1 (downgrade)

If you try to use the normal procedure to downgrade WM 6.5 back to official ROM 6.1, you may see the following errors:

 

I have try to update, but it show the followings message when boot up.

BTLR 3.1
Start SD init
Get MBR success
can't find galaxymini-ond.raw!
can't find 850_GAX_SD.bin!
can't find FLASH.BIN!
can't find GSM.BIN!
can't find GSM.RAW!
can't find EXT_ROM.NBO!
Init SD download fail!

 

The solution at the following:

 

Backup all your files / data / contacts because everything gets wiped clean (e.g. PPCPimBackupV2.8_wm2005).

Downgrade procedure:
1. After downloading the office rom form Asus e.g.
P320_V4_15_0_V4_10_V1_28_0_ZHH, unzip it

2. Open the folder “2577” and find the file “850_GAX_SD_Enc.bin” and rename it to “850_GAX_SD.bin”

3. Copy folder “2577” into the root directory of your micorSD card. Insert microSD card into P320 after the copy

4. Keep the battery in charge during upgrade procedure

5. Run the “AutoRun.exe” in the WM 6.5, waiting it complete.

6. Press and hold Volume Down key (on left side, shown below) and poke reset button (on bottom side), the system will boot up. Then release reset button and continue to hold Volume Down key until the screen shows writing percentage

7. The system will start installation automatically

8. It will re-start when system installation is completed

9. System will start upgrading after touch panel calibration and date/time setting

Print Friendly and PDF
Share/Bookmark

Monday, March 15, 2010

IIS Secure Parameter Filter (SPF)

SPF is an application security module designed for Microsoft IIS web servers. SPF uses cryptography to dynamically secure embedded application parameters at runtime (Query String Values, Form Inputs & Cookies).

SPF does not require any changes to the underlying application code and provides instant protection against parameter tampering, URL manipulation and replay attacks. SPF also includes the capability to define forbidden input patterns (Black-Lists) using regular expressions to block known attack signatures.

SPF can be downloaded from the SPF web page.

Print Friendly and PDF
Share/Bookmark

Creating a taskpad and delegating several admin tasks

This article provides some information on the delegation of certain tasks and on how to create a taskpad.

http://www.activedir.org/Articles/tabid/54/articleType/ArticleView/articleId/37/Default.aspx

Print Friendly and PDF
Share/Bookmark

Some BSD collection

FreeBSD

http://www.freebsd.org/

 

RelaxBSD

http://twntwn.info/blog/ajer001/archives/546

PCBSD

http://www.pcbsd.org/

FreeSBIE

http://en.wikipedia.org/wiki/FreeSBIE

GhostBSD

http://www.ghostbsd.org/

Print Friendly and PDF
Share/Bookmark

CentOS change system clock (date) and timezone - Ref: http://linuxsysadminblog.com/2008/12/howto-change-the-timezone-on-rhelcentos/ and http://www.forum.psoft.net/showthread.php?t=13307

Change timezone

Linux systems traditionally keep the definition of their timezone in /etc/localtime. This is a binary file with the timezone info, and if we want to change it we need to find the appropriate timezone file from /usr/share/zoneinfo and copy it over the one from /etc or just link to it. Once you change it, you will need to restart any daemons or applications that use the timezone as they might still use the old one.

Still on RHEL/Centos based systems this is not enough, and even if apparently all seems to work as expected, there might be some applications still using the old timezone. This is happening if they read the timezone definition from the rhel specific file: /etc/sysconfig/clock
cat /etc/sysconfig/clock
ZONE="America/Chicago"
UTC=true
ARC=false

We also need to update the ZONE field in /etc/sysconfig/clock to be sure that all occurrences of the old timezone are changed and everything on the system will use the new setting.

Note: you don’t need to restart the system to activate this change, but you will have to restart the applications using the timezone so they can read the updated information.

Reference:

http://linuxsysadminblog.com/2008/12/howto-change-the-timezone-on-rhelcentos/

 

-----------------------------------------------------------------------------------------------

To Change system date/time

To display the current date/time

$ date

To set the date/time

$ sudo date MMDDhhmmYYYY

Example:

$ sudo date 043017212008

(that is the time of my posting)

MM - Two digit month number
DD - Two digit date
hh - Two digit 24 hour system hour
mm - Two digit minute
YYYY - Four digit year code

Reference:

http://www.forum.psoft.net/showthread.php?t=13307

Print Friendly and PDF
Share/Bookmark

移除有密碼的Trend Micro OfficeScan Client

Change \HKEY_LOCAL_MACHINE\SOFTWARE\TrendMicro\PC-cillinNTCorp\CurrentVersion\Misc\
Allow Uninstall = 1

Print Friendly and PDF
Share/Bookmark

Secunia Corporate Software Inspector (CSI)

The Secunia CSI is a highly efficient vulnerability and patch scanner that:

  • Inspects multiple hosts for vulnerable programs.
  • Covers programs from both Microsoft and thousands of other vendors.
  • Gives security status (insecure/end-of-life/patched) for each program.
  • Shows the criticality rating for each insecure program.
  • Provides direct links to relevant patches for insecure programs.
http://secunia.com/vulnerability_scanning/corporate/ Print Friendly and PDF
Share/Bookmark

CactiEZ - Almost an NMS

CactiEZ is the fastest possible way to get up and running with Cacti. CactiEZ is an auto-installing CD based on CentOS 4.X. The disk is a completely remastered CD (from the 4 CD version, not the Server CD) and stripped down to the bare essentials (no GUI).

http://cactiusers.org

Print Friendly and PDF
Share/Bookmark

Silent install parameters for doPDF (Refer:http://www.dopdf.com/forum/topic/silent-install-parameters-for-dopdf)

Silent install parameters for doPDF

 

This information is included in help too. These are the parameters accepted by the doPDF installer via command line:

Install parameters for doPDF

/SILENT, /VERYSILENT
Instructs Setup to be silent or very silent. When Setup is silent the wizard and the background window are not displayed but the installation progress window is. When a setup is very silent this installation progress window is not displayed. Everything else is normal, so for example error messages during installation are displayed.
If a restart is necessary and the /NORESTART command isn't used (see below) and Setup is silent, it will display a Reboot now? message box. If it's very silent it will reboot without asking.

/SUPPRESSMSGBOXES
Instructs Setup to suppress message boxes. Only has an effect when combined with /SILENT and /VERYSILENT.

/NOCANCEL
Prevents the user from canceling during the installation process, by disabling the Cancel button and ignoring clicks on the Close button. Useful along with /SILENT or /VERYSILENT.

/NORESTART
Instructs Setup not to reboot even if it's necessary.

/RESTARTEXITCODE=exit code
Specifies the custom exit code that Setup is to return when a restart is needed. Useful along with /NORESTART'.

/DIR="x:\dirname"
Overrides the default directory name displayed on the Select Destination Location wizard page. A fully qualified pathname must be specified.

/GROUP="folder name"
Overrides the default folder name displayed on the Select Start Menu Folder wizard page.

/NOICONS
Instructs Setup to initially check the Don't create a Start Menu folder check box on the Select Start Menu Folder wizard page.

/LANG="language"
Specifies the language to use for the installation. When a valid /LANG parameter is used, the Select Language dialog will be suppressed.

/Languages="language1-language2-..."
Specifies the languages that will be installed (e.g. /Languages="en-it-ro" will install the English, Italian and Romanian language packs). Language codes available in the current version:
ar - Arabic
bg - Bulgarian
br - Portuguese Brazilian
cs - Czech
ct - Chinese Traditional
de - German
en - English
es - Spanish
fi - Finnish
fr - French
gr - Greek
hu - Hungarian
it - Italian
ja - Japanese
kr - Korean
nl - Dutch
no - Norwegian
pl - Polish
pt - Portuguese
ro - Romanian
ru - Russian
sc - Chinese Simplified
si - Slovenian
sr - Serbian
sv - Swedish
tr - Turkish
vi - Vietnamese
uk - Ukrainian

/DefaultLang="language"
Specifies the default language. Use short language codes (exactly as those listed for the /Languages parameter above) or the REGST constant for Use regional settings option.

/Default
Instructs Setup to set the printer as default printer.

/NoInstallIfExists
Instructs setup to check if the same edition of doPDF is already installed. If found it does not start the installation.

/NoInstallIfVersion="major version.minor version.build no"
Instructs setup to check if doPDF is already installed. If found it checks what version is installed. If the version installed is older then the given parameter, it proceeds with installation. If the installed version is the same or newer then the given parameter, it does not start the installation.

Uninstall doPDF
The uninstaller has also some parameters for silent uninstall (they have the same meaning as for the installer, see above for details):

/SILENT
/VERYSILENT
/SUPPRESSMSGBOXES
/NORESTART

Reference:

http://www.dopdf.com/forum/topic/silent-install-parameters-for-dopdf

 

Use the “exe to MSI converter” to convert the doPDF to become a msi able to remote deploy by GPO.

image Print Friendly and PDF
Share/Bookmark

Microsoft Security Essentials signature update hourly

We can create a Schedule job to run the following command hourly:

 

“C:\Program Files\Microsoft Security Essentials\MpCmdRun.exe –SignatureUpdate”

Print Friendly and PDF
Share/Bookmark

Open multiple instances of excel 2007

Use command

"C:\Program Files\Microsoft Office\Office12\EXCEL.EXE" /e

Print Friendly and PDF
Share/Bookmark

How to make WebSense (Websense Web Security v7) work with Windows 7/2008

 

Question: I am using Windows 2008 Active Directory. I have DC Agent and Logon Agent set up, but Web filtering is still not working as I expected. Does version 7 support Active Directory 2008?

Answer: For Websense Web Security v7.0, DC Agent is not supported in a Windows 2008 Active Directory environment. To identify users successfully, you need to employ Logon Agent and modify NTLM Security permissions. Windows 2008 AD uses NTLM-2 (version two). Websense transparent agents were designed using NTLM (version one). DC Agent is scheduled to work with Windows 2008 Directory Service in a version of Websense Web Security expected later in 2009.

http://kb.websense.com/pf/12/webfiles/Webinars/Q&A/January_Webinar_Q&A.pdf

The workaround is modify NTLM Security permissions to NTLM v1

Windows Registry Editor Version 5.00

 

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\Lsa]

"LmCompatibilityLevel"=dword:00000001

Print Friendly and PDF
Share/Bookmark