February 27th, 2008
First the firewall or router needs to be configured. Remember when using an encrypted ftp all passive ports has to be redirected.
Â
This example are from a Cisco ASA
access-list allow_inbound extended permit tcp any interface outside eq ftp
access-list allow_inbound extended permit tcp any interface outside eq 2950
access-list allow_inbound extended permit tcp any interface outside eq 2951
access-list allow_inbound extended permit tcp any interface outside eq 2952
etc.
static (inside,outside) tcp interface ftp 192.168.1.2 ftp netmask 255.255.255.255
static (inside,outside) tcp interface 2960 192.168.1.2 2950 netmask 255.255.255.255
static (inside,outside) tcp interface 2961 192.168.1.2 2951 netmask 255.255.255.255
static (inside,outside) tcp interface 2962 192.168.1.2 2952 netmask 255.255.255.255
static (inside,outside) tcp interface 2963 192.168.1.2 2953 netmask 255.255.255.255
etc.
Configuration on the ftp server:
General tab:
Specify address for passive mode: Write your public ip
specify port range for passive mode: Write 2950 to 3000
SSL/TLS tab:
Create a certificate.
Enable secure ftp through implicit ssl/tls and write using ssl/tls, only allow secure data transfers
That’s it!
February 26th, 2008
Boot knoppix and start the root console.
Type:
grub
root (hd0,0)
setup (hd0)
quit
Reboot
———————————-
If you use Ubuntu
sudo -i -u root
grub
find /boot/grub/stage1 (remember the output)
root (hdx,x)
setup (hd0)
quit
Reboot
February 24th, 2008
PIX
hostname myPIX
domain-name mydom.dom
ca gen rsa key 1024
ssh 123.123.123.123 255.255.255.255 outside
ssh timeout 60
passwd my_code
ca save all
write mem
ASA
crypto key generate rsa
In ASDM
crypto key zeroize rsa noconfirm
crypto key generate rsa noconfirm
—–
show crypto engine
show crypto ipsec sa
February 24th, 2008
You need to remote a server with remote desktop but thats not allowed, what do you do?
It is possible to “activate” this remotely with regedit.
find this regedit patch: HKLM\System\CurrentControlSet\Control\Terminal Server
Set this DWORD to 0: fDenyTSConnections
February 15th, 2008
All the shortcuts in the control panel have an name with the .cpl extension.
Most of them can be found here: c:\windows\system32
I you for an example want to start the display properties just start the file: desk.cpl
(could be done from run)
If you want to activate through a script
rundll32.exe shell32.dll,Control_RunDLL desk.cpl
The shortcut MAIL can be found here:
C:\Program Files\Common Files\System\MSMAPI\1030\MLCFG32.CPL
More info here.
February 14th, 2008
You need the Office 2003 SP3, download it here
On your computer make 3 directories.
TempSP3
Office2003
MSOffice2003
Put the servicePack file in the folder TempSP3
Extrakt the SP into Office2003 directory with this command:
C:\TempSP3\Office2003SP3-KB923618-FullFile-DAN.exe /Q /C /T:C:\Office2003
(depending on your chosen language, the name on the SP is different)
Make a administrative install of office 2003 with this command:
d:\setup.exe /a
During the install you have to use the serial number.
Slipstream with this commands:
msiexec /p C:\Office2003\MAINSP3.msp /a C:\MSOffice2003\PRO11.msi SHORTFILENAMES=TRUE /qb
msiexec /p C:\Office2003\OWC11SP3.msp /a C:\MSOffice2003\OWC11.MSI SHORTFILENAMES=TRUE /qb
February 11th, 2008
If an error occurs on your network, the professional series of Cisco switches would probably shutdown the the network port where the error is detected.
Even if the error on the network is corrected, the network port is still down. You have to enable it manually.
The switch is able to automatically enable the port. If the root error on the network remains, the port is immediately shutdown again.
To check the configuration, use this command:
show errdisable recovery
If something is disabled, it means you manually have to activate the port if this specific error has occurred.
It can all be done automatically with this commands:
errdisable recovery cause udld
errdisable recovery cause bpduguard
errdisable recovery cause security-violation
errdisable recovery cause channel-misconfig
errdisable recovery cause pagp-flap
errdisable recovery cause dtp-flap
errdisable recovery cause link-flap
errdisable recovery cause gbic-invalid
errdisable recovery cause psecure-violation
errdisable recovery cause dhcp-rate-limit
errdisable recovery cause unicast-flood
errdisable recovery cause vmps
errdisable recovery cause storm-control
errdisable recovery cause loopback
errdisable recovery cause sfp-config-mismat
