我的學習手記 A technical geek blog: July 2024

Sunday, July 21, 2024

Install Deepin 20.9 on DELL Latitude 5400 as a contingency machine (To prepare for another Crowdstrike level disaster/catastrophic)

When you lost your AD, DHCP, NAC, DNS, Hyper-V even your notebook and deskop...almost everything on your back office environment. What can you do? As a system/network administrator, first come first to fix your machine to let you able to remote your infrastructure and able to start to save the world.

If you already install Deepin or another Linux on some old laptop which is already installed some administrative tools e.g. putty, FileZilla client....., which is already have fixed IP and also MAC address whitelist on your NAC. You can respond to disaster faster.

Install Deepin on DELL Latitude 5400.

Need to enter BIOS to enable USB Configuration - Enable USB Boot Support
SATA Operation - select AHCI

Then, you should able to use USB boot to install deepin on 5400.

Thursday, July 11, 2024

Fortinet CVE-2024-26015 (FG-IR-23-446) and CVE-2024-26006 (FG-IR-23-485)

https://www.fortiguard.com/psirt/FG-IR-23-446

Upgrade to 7.4.4

https://www.fortiguard.com/psirt/FG-IR-23-485

Either disable "Web Mode" under SSL-VPN Portal or/and upgrade to 7.4.4

Wednesday, July 10, 2024

Feishu first time login error - No permissions to access

When you try to login the Feishu by using your email, you receive a "Notice". No permissions to access. Please contact your administrator for license to log in.

It is mean that your account did not being assign license or license expired.

Solution:

Feishu Admin go to admin portal:

Billing -> My Product -> Select a active license product to assign your account into it.

Cisco ASDM OpenJDK edition, ASDM-IDM Launcher and Azul Zulu JRE 8

Since Cisco ASDM 7.18(1) support Java 1.8 (Version 8) only. You need to install Azul Zulu JRE 8 on your machine.

Using JRE version 1.8.0_412 OpenJDK 64-Bit Server VM

User home directory =

----------------------------------------------------

c: clear console window

f: finalize objects on finalization queue

g: garbage collect

h: display this help message

m: print memory usage

q: hide console

s: dump system properties

----------------------------------------------------

Application Logging Started at

---------------------------------------------

Local Launcher Version = 1.9.7

Local Launcher Version Display = 1.9(7)

Tuesday, July 9, 2024

Cisco ASA and CVE-2024-6387

For the ASA:

- Releases before 9.17 (not included) are not affected.

- Releases between 9.17 (included) and 9.19 (not included) are affected if configured to use CiscoSSH (non default configuration)

- Releases 9.19 and greater are affected with the default configuration

Reference:

https://bst.cisco.com/quickview/bug/CSCwk61618

Friday, July 5, 2024

Upgrade Cisco ASA firmware to 9.12.4.67 to fix Cisco rates CVE-2024-20358 vulnerability as MEDIUM. CVE-2024-20353 and CVE-2024-20359 vulnerabilities are rated HIGH

In 26 April 2024, Cisco recommend Cisco ASA 9.12.4.65 customer to upgrade their firmware to 9.16.4.57 to fix Cisco rates CVE-2024-20358 vulnerability as MEDIUM. CVE-2024-20353 and CVE-2024-20359 vulnerabilities are rated HIGH. It found that 9.16.x have behaviour change on LDAPS certificate checking. If the SSL certificate expired, the LDAPS will failed.

Cisco have release 9.12.4.67 to fix those vulnerabilities for keep who want to stay at 9.12.x

Monday, July 1, 2024

Windows 11 Update failed - Realtek Semiconductor Corp. - Extension - 6.0.9411.1