Install printer in Windows 7 64bit

on Windows 7
Add Printer
Local Printer
Add Local Port
\\XPMACHINE\printersharename (Make the share name one word or you have to "" quote the whole thing)

Reset Windows 7 Enterprise Trial

We should also mention that it can be rearmed 5 times
"slmgr /rearm" (to reset the 100 days)
"slmgr /dlv" (to find number of rearms left)

One for the n00bs

SOURCE:http://daveshackleford.com/?p=277

We’ve all been a n00b at some point. I don’t care who you are, at some stage of the game you didn’t know much, or started a new gig, or tried something for the first time in full view of other people, or whatever the case may be – you’ve been a n00b. My friend Raf Los at HP, who I’ve known for years and has been through the security gamut just like me, posted a really interesting semi-rant the other day, check it out here. His observation? We crusty security types kind of suck at letting new people into the club. I don’t know about most of you (well, actually I do), I hated cliques in high school. The “you can’t sit at our lunch table” crowd. The “we’re having a massive party at XYZ’s house tomorrow night, and you can’t come” crowd. Yes, we all know who I’m talking about.

We’ve kind of become that crowd.

We’re not welcoming, or mentoring, or open-minded about new people coming in. Be honest – when was the last time someone arbitrarily asked you to guide them or lend some experience, where you really went out of your way to help them learn about infosec? This is, of course, for all you crusty types like me. Well, I was pretty lucky, I guess – I had a few really kick-ass people who let me ask a plethora of questions in the early days, and really bolstered my confidence and desire to keep forging ahead: Lampe, Herb, Jimmy the Slick…I’m talking to you.

So I have some advice for the n00bs. Those of you that aren’t truly n00bs anymore, you may want to check out an earlier post of mine called “Career Tips for Security Geeks.” Noobs, read this first, then read that one too. So here goes:

Please please please please PLEASE do not come out of school with a degree in “Information Assurance” or some other bullshit and tell me you are a security professional. You are not. You are either a) still my intern for another year until I have hazed you sufficiently, or b) the new anti-virus admin. Yes, I’m serious. Experience and technical skills count in security – I’ma let you finish, but first you will be starting at the bottom rung of the ladder if all you have is said IA degree and a will to learn. This leads us to…
Show me. Yep. Don’t talk theory, or concepts, or God forbid mention wretchedness like the Bell-LaPadula Model. Help me get security in order. Models don’t actually DO anything. They’re great for drunken whiteboarding sessions. And CISSP exams.

At this point, you’re thinking “Wow – Shack said he was going to help us out! He’s being one of those clique-ish types, though!”. Well…not really. That’s all the harshness I’m giving out, and there are good reasons for this advice. Well…one more, don’t get cocky. We’ve got way too many cocky folks already, and we’re trying to change the dynamic. So here’s some more practical advice for the n00bs:

Really, the best security people came from some other backgrounds. I really think you should spend a few years doing something else first. Coding, systems admin or network admin, DBA, etc. How can you secure stuff when you have no experience with it? Security isn’t all about IDS, pen testing, etc. The most important security is mitigating risk in regular old technology design and use, and you should have some hands-on time with THAT before you go saving the world.
Understand the following: TCP/IP, Cisco IOS, Windows admin (basic), Unix admin (basic). Pick a scripting language and endeavor to become a little bit proficient with it. Not a lot, that’s OK, but a little Perl-Fu or Python-Fu or Ruby-Fu or just Shell scripting-Fu can go a LONG way. These are basic skills. What about security? Re-read #1 above. Now do it again.
Allocate $500 and go visit your friend Amazon.com. Or better yet, roll Ramen noodle style and get used books by perusing titles at www.bestbookdeal.com. It rocks. What to buy? Hacking Exposed, latest edition. Counter-Hack Reloaded. Network Security Hacks (2e). Everything written by Richard Bejtlich. Malware (Skoudis and Zeltser). Security Engineering (2e). Applied Cryptography. This is a good start, look for others too – read them and keep going. Plan on spending $50-100 a month on books.
Understand how to lock down operating systems. Read the CIS benchmarks, DISA STIGs, and vendor guides from M$ and others. This is 101 stuff, and you need to know it WAY before you get to the “sexy” things like pen testing.
Become familiar with a packet sniffer of your choice. Wireshark is good. So is TCPdump. Both are free, and you can start breaking down packets and looking at them to see what the hell is going on.
Learn about Snort. Spend a month or so installing it, tweaking the configs, learning about rule creation, planning architecture and so on. Will it be your only IDS? Maybe, maybe not, but it’s the best for the $$$ and you need to learn.
Download the Backtrack security assessment toolkit from http://www.remote-exploit.org/backtrack.html. Load it up in a test network (repeat – test network. Did I mention test network?) and start running some tools to learn about scanning (nmap, hping3), vulnerability scanning (OpenVAS, maybe Nessus for local scans or if you have a license), and pen testing with Metasploit and exploits from Milw0rm and others.
Plan on going for the SANS GSEC certification. Forget about your CISSP or anything else right now, you need a solid set of fundamentals, and the SANS Security Essentials course is your best bet. I teach for SANS, full disclosure, but I endorse this with no bias whatsoever – it really is the best for newcomers to the field.

You now have the basics. Specialties, like code security, Web app security, pen testing, network security, etc all come a bit later. I won’t go into all that here, but you should be waking up every day with a fire under your ass. READ! Check out blogs and sites like darkreading.com, csoonline.com, packetstormsecurity.org, and others. Listen to Paul, Larry, John, Carlos and gang at www.pauldotcom.com to get in the spirit of things. And when you tell someone you are new to the field, and you have a legitimate question that they can help with, don’t let their lack of social skills get in the way. If they won’t help you, find some of us that aren’t worried about impressing the clique and we’ll help you. I got my OWN lunch table. And you’re invited. Unless you have, like, body odor or something. Then you’re not.

Who to Recruit for Security, How to Get Started, and Career Tracks

SOURCE:
http://securosis.com/blog/who-to-recruit-for-security-how-to-get-started-and-career-tracks

Who to Recruit for Security, How to Get Started, and Career Tracks

Today I read two very different posts on what to look for when hiring, and how to get started in the security field. Each clearly reflects the author’s experiences, and since I get asked both sides of this question a lot, I thought I’d toss my two cents in.

First we have Shrdlu’s post over at Layer 8 on Bootstrapping the Next Generation. She discusses the problem of bringing new people into a field that requires a fairly large knowledge base to be effective.

Then over at Errata Security, Marisa focuses more on how to get a job through the internship path (with a dollop of self-promotion). As one of our industry’s younger recruits, who successfully built her own internship, she comes from exactly the opposite angle.

My advice tends to walk a line slightly in the middle of the two, and varies depending on where in security you want to go.

When someone asks me how to get started in security I tend to offer two recommendations:

Start with a background as a systems and network administrator… probably starting with the lowly help desk. This is how I got started (yes, I’m thus biased), and I think these experiences build a strong foundation that spans most of the tasks you’ll later deal with. Most importantly, they build experience on how the real world works – even more so than starting as a developer. You are forced to see how systems and applications are really used, learn how users interact with technology, and understand the tradeoffs in keeping things running on a day to day basis. I think even developers should spend some time on the help desk or cleaning up systems – while I was only a mediocre developer from a programming standpoint, I became damn good at understanding user interfaces and workflows from the few years I spent teaching people how to unhide their Start menus and organize those Windows 3.1 folders.
Read a crapload of action thriller and spy novels, watch a ton of the same kinds of movies, and express your inner paranoid. This is all about building a security mindset, and it is just as important as any technical skills. It’s easy to say “never assume”, but very hard to put it into practice (and to be prepared for the social consequences). You are building a balanced portfolio of paranoia, cynicism, and skepticism. Go do some police ride-alongs, become an EMT, train in a hard martial art, join the military, or do whatever you need to build some awareness. If you were the kid who liked to break into school or plan your escape routes for when the commies (or yankees) showed up, you’re perfect for the industry. You need to love security.

The best security professionals combine their technical skills, a security mindset, and an ability to communicate (Marisa emphasized public speaking skills) with a wrapper of pragmatism and an understanding of how to balance the real world sacrifices inherent to security.

These are the kinds of people I look for when hiring (not that I do much of that anymore). I don’t care about a CISSP, but want someone who has worked with users and understands technology from actual experience rather than a library shelf, or a pile of certificates.

In terms of entry-level tracks, we are part of a complex profession and thus need to specialize. Even security generalists now need to have at least one deep focus area. I see the general tracks as:

Operational Security – The CISO track. Someone responsible for general security in the organization. Usually comes from the systems or network track, although systems integration is another option.
Secure Coder – Someone who either programs security software, or is responsible for helping secure general (non-security-specific) code. Needs a programmer’s background, but I’d also suggest some more direct user interaction if they’re used to coding in a closet with pizzas slipped under the door at irregular intervals.
Security Assessor (or Pen Tester) – Should ideally come out of the coder or operations track. I know a lot of people are jumping right into pen testing, but the best assessors I know have practical experience on the operational side of IT. That provides much better context for interpreting results and communicating with clients. The vulnerability researcher or penetration tester who speaks in absolutes has probably spent very little time on the defensive or operational side of security.

You’ll noticed I skipped a couple options – like the security architect. If you’re a security architect and you didn’t come from a programming or operational background, you likely suck at your job. I also didn’t break out security management – mostly since I hate managers who never worked for a living. To be a manager, start at the bottom and work your way up. In any case, if you’re ready for either of those roles you’re past these beginner’s steps, and if you want to get there, this is how to begin.

To wrap this up, when hiring look for someone with experience outside security and mentor them through if they have the right mindset. Yes, this means it’s hard to start directly in security, but I’m okay with that. It only takes a couple years in a foundational role to gain the experience, and if you have a security mindset you’ll be contributing to security no matter your operational role. So if you want to work in security, develop the mindset and jump on every security opportunity that pops up. As either a manager or recruit, also understand the different focus of each career track.

Finally, in terms of certifications, focus on the ‘low-level’ technical ones, often from outside security. A CISSP doesn’t teach you a security mindset, and as Shrdlu said it’s insane that something that is supposed to take 5 years of operational experience is a baseline for hiring – and we all know it’s easy to skirt the 5-year rule anyway.

I’m sure some of you have more to add to this one…

—Rich

Config Huwei E1550 on Slackware 13.37

-Install wvdial wvstreams(slackbuilds.org)
-Run wvdialconf /etc/wvdial.conf to auto generate the config file

-Open /etc/wvdial.conf to add the following lines:
[Dialer dcom]
Init3=AT+CGDCONT=1,"IP","e-connect","",0,0
Username = ''
Password = ''
-Run 'wvdial dcom' to connect
-Edit /etc/resolve.conf to reflect new DNS servers

How to get the Huawei 1550 3G (Three UK) mobile broadband dongle modem working in Slackware 13

How to get the Huawei 1550 3G (Three UK) mobile broadband dongle modem working in Slackware 13.
SOURCE: http://www.linuxquestions.org/linux/answers/networking/huawei_e_1550_3g_broadband_dongle_three_uk_slackware_13_how

This device is not currently supported directly yet by the kernel and when plugged in looks like an external drive. To get it to work as a modem the follwing steps will get it working.

Thanks to all the sources I pulled this together from

Prerequisites:
Need to belong to sudoers

Step 1.

Download usb_modeswitch from http://www.draisberghof.de/usb_modeswitch
This is a Debian package, so a couple of extra steps are needed.
Extract to a directory of your choice, the cd to that directory.

Either trash or delete the current binary file, then run the usual make and make install (as root) to install the resulting binary to /usr/sbin/usb_modeswitch, and the config file to /etc/usb_modeswitch.conf

Step 2

Plug in the 3g Mobile dongle, open a konsole or switch to cli mode and run (as root) dmesg and make a note of the dongle device id. Should see something similar to this

Code:

usb 1-6: New USB device found, idVendor=12d1, idProduct=1446
usb 1-6: New USB device strings: Mfr=2, Product=1, SerialNumber=0
usb 1-6: Product: HUAWEI Mobile
usb 1-6: Manufacturer: HUAWEI Technology
usb-storage: device found at 7
usb-storage: waiting for device to settle before scanning
usb-storage: device found at 7
usb-storage: waiting for device to settle before scanning

In this example, I am looking for the idVendor and idProduct strings. 12d1 and 1446 respectively
Unplug the dongle. (Be sure to eject safely if notified it has been detected as a usb storage device)

Step 3

Now edit and save the config file /etc/usb_modeswitch.conf using your favourite text editor and add the following line in the Huawei section: (well commented so quite easy)

Code:

########################################################

# Huawei E1550

DefaultVendor= 0x12d1
DefaultProduct= 0x1446
MessageEndPoint= "0x01"
MessageContent="55534243123456780000000000000011060000000000000000000000000000"


;DetachStorageOnly=1
;HuaweiMode=1

########################################################

Replace the DefaultVendor and DefaultProduct ids with whatever you discovered in step 2

Step 4

Now create a new udev rule for the dongle to have it automagically switch to modem mode. I called mine 45-3G.rules, but you can name yours whatever you like, and place in the /etc/udev/rules.d directory. It should look like this:

Code:

ACTION=="add" SUBSYSTEM=="usb", SYSFS{idProduct}=="1446", SYSFS{idVendor}=="12d1", RUN+="/usr/sbin/usb_modeswitch"

Above rule all on one line

Again, use your own idProduct and idVendor codes. Now either reboot, or issue (as root)

Code:

/etc/rc.d/rc.udev reload

to see your new rule.

Step 5

Plug the dongle back in and wait around 15 seconds then issue the dmesg command again and you should see this or similar:
Code:

usb 1-6: new high speed USB device using ehci_hcd and address 9
usb 1-6: configuration #1 chosen from 1 choice
scsi27 : SCSI emulation for USB Mass Storage devices
scsi28 : SCSI emulation for USB Mass Storage devices
usb 1-6: New USB device found, idVendor=12d1, idProduct=1446
usb 1-6: New USB device strings: Mfr=2, Product=1, SerialNumber=0
usb 1-6: Product: HUAWEI Mobile
usb 1-6: Manufacturer: HUAWEI Technology
usb-storage: device found at 9
usb-storage: waiting for device to settle before scanning
usb-storage: device found at 9
usb-storage: waiting for device to settle before scanning
usb 1-6: usbfs: process 24002 (usb_modeswitch) did not claim interface 0 before use
usb 1-6: USB disconnect, address 9
usb_storage: module is already loaded
usb_storage: module is already loaded
usb 1-6: new high speed USB device using ehci_hcd and address 10
usb 1-6: configuration #1 chosen from 1 choice
usb-storage: probe of 1-6:1.0 failed with error -5
option 1-6:1.0: GSM modem (1-port) converter detected
usb 1-6: GSM modem (1-port) converter now attached to ttyUSB0
usb-storage: probe of 1-6:1.1 failed with error -5
option 1-6:1.1: GSM modem (1-port) converter detected
usb 1-6: GSM modem (1-port) converter now attached to ttyUSB1
usb-storage: probe of 1-6:1.2 failed with error -5
option 1-6:1.2: GSM modem (1-port) converter detected
usb 1-6: GSM modem (1-port) converter now attached to ttyUSB2
scsi32 : SCSI emulation for USB Mass Storage devices
usb-storage: device found at 10
usb-storage: waiting for device to settle before scanning
scsi33 : SCSI emulation for USB Mass Storage devices
usb 1-6: New USB device found, idVendor=12d1, idProduct=1001
usb 1-6: New USB device strings: Mfr=2, Product=1, SerialNumber=0
usb 1-6: Product: HUAWEI Mobile
usb 1-6: Manufacturer: HUAWEI Technology
usb-storage: device found at 10
usb-storage: waiting for device to settle before scanning
scsi 32:0:0:0: CD-ROM HUAWEI Mass Storage 2.31 PQ: 0 ANSI: 2
sr0: scsi-1 drive
sr 32:0:0:0: Attached scsi CD-ROM sr0
sr 32:0:0:0: Attached scsi generic sg0 type 5
usb-storage: device scan complete
scsi 33:0:0:0: Direct-Access HUAWEI MMC Storage 2.31 PQ: 0 ANSI: 2
sd 33:0:0:0: [sda] Attached SCSI removable disk
sd 33:0:0:0: Attached scsi generic sg1 type 0
usb-storage: device scan complete

Notice that the idPrduct string has now changed to 1001. This means that the process has been successful, and as can be seen, the dongle is now identified as a GSM modem.

Step 6

Use your favourite dial up tool to connect to the 3G (Three UK) network. The parameters are:

* Device node is /dev/ttyUSB0
* Number to dial: *99#
* Login ID: Three
* Password: Three


Step 7 (optional)

Download and install UMTSmon from http://umtsmon.sourceforge.net/ for an easy GUI interface.

career change - it security

SOURCE: http://www.itworld.com/answers/topic/security/question/im-considering-slight-career-change-it-security-what-do-i-need-consi
Brent Huston 9 weeks ago
Vote Up (3)

One of the most common questions I get asked is “How can I become an information security professional?”. These days, it seems that a ton more people want to be in the “business” of information security. I get the question so often, I thought I would write this post as a quick and easy way to respond.



Are You Serious?

The first response is a “gut check”. Are you serious that you want to be an infosec person? Do you even know what you are asking? My suggestion is 2 steps. Number 1, read a basic information security guide (not Hacking Exposed or something on an aspect, but something more general like the ISO standards). Number 2, invest in your career option enough to buy a few coffees or beers and ask a couple of security folks you know of and trust to sit down, one on one with you for an hour chat. Talk about that person’s career, what day to day security work is like in their experience and what they think about your ideas for moving forward. If you can’t or won’t invest in these basic steps, then quit now and choose another career path. Security work is all about research, reading, guidance, networking and conversations with other humans. If you can’t do these toddler steps, then forget running with the big dogs and find another pack.



Get Serious, Quick!



Step 1: Knowledge boost: Start to read every single security book you can find. Listen to podcasts, read web sites, subscribe to mailing lists. Read RSS feeds.



Step 2: Find a way to contribute: Work on an open source security project. If you can’t code, then write the documentation or contribute to testing. Start a website/blog and start to aggregate or gather other security news. Wax poetic on what you think of certain topics. Think of this part as turning knowledge into wisdom. It is where the rubber meets the road and where you will encounter some pain, humiliation and grief, but it is another form of “gut check” to make sure you are ready to be in infosec.



Step 3: Build a lab & practice security skills: Build a lab. Make it out of old hardware, virtualization systems, Live CD’s, etc. Then hack stuff. Secure stuff. Apply settings, scenarios, access controls. Shop at eBay, garage sales, thrift stores or Walmart to cut the cost down. Be creative and pragmatic, both are essential security skills.



Step 4: Brand yourself: Once you have some wisdom and insight, then update your resume. Build a personal brand. Read books by Seth Godin and Guy Kawasaki to learn to do this. Learn how to separate yourself from Joe Six-Pack and how to turn your security experiences with the above projects into valuable differentiators that open doors for you to get that job you wanted. Is it work? Yes. Is it hard work? Yes. Does it take time? Heck, yes. Is it worth it? If you get what you really want, heck yeah!!!!

It’s OK to Turn Back



If, at any point during the above steps, you decide you are not interested enough to continue, then don’t. Security is tedious, hard work. Most of it is COMPLETELY NOT SEXY and has nothing to do with Swordfish, Hackers or the Matrix, no matter how much you want to be Neo, Cereal Killer or Angelina Jolie. Security is mundane, boring, full of science, analysis and research. If you want to be great at it, you also need to understand business, marketing, math, human resources, education, more marketing, sales, basic programming, public speaking, more marketing and oh, yeah, more marketing. Why so much marketing? Because, believe it or not, people need to be sold on being secure. That is the largest irony of the job. You have to not just identify how to make them secure AND teach them how to be secure, BUT you ALSO have to SELL them on the idea that security is worth their investment of time, energy and resources. It’s not that they don’t want to be secure, it’s that humans are REALLY BAD AT MAKING RISK DECISIONS. Keep this in mind as your security career progresses. It is a handy meme.



Are there Shortcuts?



Maybe, if you wanna be average. More than likely not, if you wanna be truly GREAT at what you do. Everything in life has a price. The good, the bad and the security career. Paying that price is a part of the reward, you just might not know it yet. Pay the price. This is one system you really don’t wanna “hack” to get at the “easy way”, it makes for a lot of pain down the road when you look foolish.



What About Certifications?



I am not a believer in certs. I have never made any secret about my position. I DO NOT HAVE MY CISSP NOR AM I LOOKING TO EVER HAVE ONE. Certs are NOT a good measure of experience, work ethic or intelligence. They represent all that I hate about the security industry and the idea of doing the minimum. This is not to say that you should not pursue them or that they are not valuable, it is just my belief that the IT industry puts way too much stock in certs. They believe that most every CISSP is a real “security person” and knows their stuff. I have met plenty who do not. I have met plenty who I would not let manage my security. I have met some that I would, as well. The same goes for all certs (MCSE, CSA, etc.). Certs are just a BASIC qualification mechanism, no more, no less. Experience and what you have done in the past speak volumes more to me, and anyone I would want to work for or with, than a cert. Period.



I hope this answers those basic questions about how I think you should move toward being a security professional. I hope you do choose security as a career, if you are willing to invest in being great at it. The world needs more great security people, but we also need less inadequate security professionals. The industry has its charlatans and fakes, but it also has some of the best people on the planet. This industry has been good to me for almost two decades. I have met and made friends with some of the most talented, fascinating and warm people in the world. I am very blessed and very grateful. I hope you will be too. Buy me a cup of coffee if you want to talk more about it. I promise to try and help you figure out if this is the way you want to go, if you are willing to invest in yourself first BEFORE you seek my input. More than likely, you will find the same to be true for other security experts too. They just might like cheaper coffee than I do….

Tips for getting started in information security

SOURCE:http://www.leune.org/blog/kees/2008/10/-tips-for-getting-started-1.html
I regularly get questions of students who expect to graduate soon asking what they need to do to get started in the information security field. Unfortunately, I cannot give a straight unambiguous answer to that. What I can do is start a thought process for that student. In the end, they will have to do the work.
Become experienced
Get a job that sounds like it is relevant to security. It does not actually have to be dead-on, but when a potential employer reads your resume, she must feel some sort of connect. Unfortunately, most security jobs ask for experience, so that is exactly what you need to get.

Most likely, the easiest way to do so is to find a job for a large consultancy organization and make it clear to them that you are willing to work hard, travel when necessary, and add value to their organization. At the same time, don't let your employer ever doubt that you are going to become an information security specialist.

Focus
Information security professionals are service providers and you need to figure out if you want to become a consultant that comes in to do a job, or if you want to work for the organization that uses your services. Make up your mind if you want to become a product specialist. Early in your career, consulting is not a bad way to go, since that will expose you to different industries, different problems and different working cultures.

Deciding if you want to work in a specific industry, or in a particular geographic area is also part of making the focus decisions. I know people who decided very early on that they wanted to work for a specific organization and they had their career plan centered around that goal. The same is true for geographical areas. If you decide that you want to work in the New York City, you will probably end up in the financial services industry or in fashion. If you are on Long Island, start learning about medical services. Other areas have similar industry focuses.

Specialize
Think hard about the area in which you want to specialize and work towards that. Depending on the direction in which you want to move, you will need to spend just about every waking hour doing "stuff" with security.

If you chose your direction to be penetration testing, find a pentesting job. When you come home, start doing stuff in your own lab. If you want to become an incident responder, look in that area and start dabbling with forensics-type stuff on your own time. If you want to become an information security manager, try to get some leadership experience. If you want to become an application security specialist, start coding.

Certify
There is much discussion surrounding the actual value of a security certification, but the basic fact is that employers will look for something that can distinguish you from the rest. Not having a certification is definitely a distinguishing factor, but it may not be what you want.

When choosing your certifications, keep your specialization goals in mind. It is useless (and may even work against you) to pursue vendor-specific certifications if you want to do something with a broader scope. The opposite is also true-- striving to pursue a general certification when you want to be a niche specialist is also pointless.

Branding
Make yourself visible: become a member of security organizations and go to chapter meetings. Attend as many events as you can, even if they are not in your focus area. At worst, you will spend an afternoon thinking about why the topic is not relevant to you (also valuable), and at best you meet your next employer.

If there are no chapters, start one. If you can afford it, begin visiting security conventions and conferences, reading (and comment on) blogs, maybe even start your own blog, join dedicated chat rooms and online forums, jump on twitter, linkedin, etc. Set up your own web site; don't be afraid to oversell yourself, but never lie. As an information security professional, your personal reputation and credibility is everything. The information security field is young, highly dynamic and the good people in the field form a close community. Associate with the right people.

Plan
Finally, come up with a career plan. That plan will be perfect nor complete when you make it first, but continue to update it as your expectations of the future take on more concrete form. Write down that plan on paper (not just as a file on a computer-- paper is more convincing!)

No employer expects that you spend your entire working life with them, but job-hopping every few months will come back to bite you. It creates the impression that you are not reliable, because you are not going to be around long enough to invest in. Plan to stay in a position for at least a year.

Ideal Skill Set For the Penetration Testing

SOURCE: http://resources.infosecinstitute.com/ideal-skill-set-for-the-penetration-testing/

Based on questions I’ve gotten over the years and specifically in class, I’ve decided that we need to address some basic skills that every penetration tester should have. While we can’t realistically expect everyone to have the exact same skill set, there are some commonalities.

1. Mastery of an operating system. I can’t stress how important it is. So many people want to become hackers or systems security experts, without actually knowing the systems they’re supposed to be hacking or securing. It’s common knowledge that once you’re on a target/victim, you need to somewhat put on the hat of a sysadmin. After all, having root means nothing if you don’t know what to do with root. How can you cover your tracks if you don’t even know where you’ve left tracks? If you don’t know the OS in detail, how can you possibly know everywhere things are logged?

2. Good knowledge of networking and network protocols. Being able to list the OSI model DOES NOT qualify as knowing networking and network protocols. You must know TCP in and out. Not just that it stands for Transmission Control Protocol, but actually know that structure of the packet, know what’s in it, know how it works in detail. A good place to start is TCP/IP Illustrated by W. Richard Stevens (either edition works). Know the difference between TCP and UDP. Understand routing, be able to in detail describe how a packet gets from one place to another. Know how DNS works, and know it in detail. Understand ARP, how it’s used, why it’s used. Understand DHCP. What’s the process for getting an automatic IP address? What happens when you plug in? What type of traffic does your NIC generate when it’s plugged in and tries to get an automatically assigned address? Is it layer 2 traffic? Layer 3 traffic?

3. If you don’t understand the things in item 2, then you can’t possibly understand how an ARP Spoof or a MiTM attack actually works. In short how can you violate or manipulate a process, if you don’t even know how the process works, or worse, you don’t even know the process exists! Which brings me to the next point. In general you should be curious as to how things work. I’ve evaluated some awesome products in the last 10 years, and honestly, after I see it work, the first thing that comes to my mind is “how does it work”.

4. Learn some basic scripting. Start with something simple like vbs or Bash. As a matter of fact, I’ll be posting a “Using Bash Scripts to Automate Recon” video tonight. So if you don’t have anywhere else to start, you can start there! Eventually you’ll want to graduate from scripting and start learning to actually code/program or in short write basic software (hello world DOES NOT count).

5. Get yourself a basic firewall, and learn how to configure it to block/allow only what you want. Then practice defeating it. You can find cheap used routers and firewalls on ebay, or maybe ask your company for old ones. Start with simple ACL’s on a router. Learn how to scan past them using basic IP spoofing and other simple techniques. There’s not better way to understand these concepts than to apply them. Once you’re mastered this, you can move to a PIX, or ASA and start the process over again. Start experimenting with trying to push Unicode through it, and other attacks. Spend time on this site and other places to find info on doing these things. Really the point is to learn to do them.

6. Know some forensics! This will only make you better at covering your tracks. The implications should be obvious.

7. Eventually learn a programming language, then learn a few more. Don’t go and by a “How to program in C” book or anything like that. Figure out something you want to automate, or think of something simple you’d like to create. For example, a small port scanner. Grab a few other port scanners (like nmap), look at the source code, see if you can figure any of it out. Then ask questions on forums and other places. Trust me, it’ll start off REALLY shaky, but just keep chugging away!

8. Have a desire and drive to learn new stuff. This is a must; It’s probably more important than everything else listed here. You need to be willing to put in some of your own time (time you’re not getting paid for), to really get a handle on things and stay up to date.

9. Learn a little about databases, and how they work. Go download mysql, read some of the tutorials on how to create simple sample databases. I’m not saying you need to be a DB expert, but knowing the basic constructs help.

10. Always be willing to interact and share your knowledge with like minded professionals and other smart people. Some of the most amazing hackers I know have jobs like pizza delivery, janitorial, one is a marketing exec, another is actually an MD. They do this strictly because they love to. And one thing I see in them all is their excitement and willingness to share what they’ve learned with people who actually care to listen and are interested in the same.

These things should get you started. Let me know if you have questions or comments.

Keatron.

Pentest sites

http://pentestmag.com/
http://www.pentest-labs.org
http://www.thehackeracademy.com
http://www.ivizsecurity.com/blog/security-books/

Solve Restricted User Issue in SQL Server 2005

SOURCE: http://aliparvaresh.com/archive/2009/07/18/solve-restricted-user-issue-in-sql-server-2005.aspx



Simply run the following the commands against the database which is showing as 'Restricted User':

ALTER DATABASE database SET SINGLE_USER WITH ROLLBACK IMMEDIATE
GO
ALTER DATABASE database SET MULTI_USER
GO

Favorite ebook sites

freebookspot.cc
www.ebooktienganh.com
booktraining.us
www.flazx.us/

Disable ipv6 in slackware

open file /etc/modprobe.d/blacklist and add the following line: blacklist ipv6. Then reboot.

How to reset mysql root password on slackware 13.1

Step # 1: Stop the MySQL server process.
/etc/rc.d/rc.mysqld stop

Step # 2: Start the MySQL (mysqld) server/daemon process with the --skip-grant-tables option so that it will not prompt for password.
mysqld_safe --skip-grant tables &

Step # 3: Connect to mysql server as the root user.
mysql --user=root mysql

Step # 4: Setup new mysql root account password.
UPDATE user SET password=PASSWORD("newpwd") WHERE user="root";
FLUSH PRIVILEGES;
QUIT;

Step # 5: Restart the MySQL server.
/etc/rc.d/rc.mysqld restart

Step # 6: Log on mysql with the new password
mysql --user=root --password=newpwd

There's not enough disk space

If u see this error message when changing the owner of files and folders, check Quota. (Windows 2003)

vmware tools in slackware 13.1 guests

-install linux pam package or create the folder /etc/pam.d to "satisfy" vmware :)

It seems that 2.6.33 places certain files to a different location than the previous kernel versions. A new directory called include/generated contains some header files (utsrelease.h, autoconf.h among others) which vmware tries to locate from a different location (include/linux).
So for a quick fix I created a couple of symlinks to include/generated to satisfy vmware.

> Cd / usr / src / linux / include / linux /
> #ln -sf ../generated/autoconf.h
> #ln-sf .. /generated/utsrelease.h

vmware server 2.0.2 and slackware 13.1 (kernel 2.6.33.4)

vmware server + linux 2.6.33.x: here is the "poor man" solution:

First, You should use the 2.6.32.xx instructions at http://risesecurity.org/2010/04/02/vmware-server-2-0-2-update-patch-2/

Then instead of patching all the linux/autoconf.h, you should simply create some missing symbolic links on you src. tree:

For example, if you have the src put in /usr/src/Linux/Kernel/linux-2.6.33.2, cd in subdir include/linux

cd /usr/src/Linux/Kernel/linux-2.6.33.2/include/linux;

Make the necessary sybolic links

ln -s ../generated/utsrelease.h; ln -s ../generated/autoconf.h

That's all: reinstall as the usual the vmware server

sudo vmware-config.pl

If you have some problems with the console firefox plugin, there are 2 solutions:

solution1: you should add the entry

export GDK_NATIVE_WINDOWS=1

to the script http://codebin.cotescu.com/vmware/start-VMware-console.sh, like the sample patch

{noformat} #diff -Naur start-VMware-console.sh start-VMware-console.sh.new
--- start-VMware-console.sh 2009-12-22 17:17:25.000000000 +0100
+ start-VMware-console.sh.new 2010-03-31 15:34:00.082889804 +0200
@@ -6,8 +6,8 @@
################################################################################

# Clean GTK setup for VMWare
-export VMWARE_USE_SHIPPED_GTK=yes
-
+#export VMWARE_USE_SHIPPED_GTK=yes
+export GDK_NATIVE_WINDOWS=1
# Find console executable in Firefox plugins.
vmrc="{color:#007800}$(find "$HOME/.mozilla/firefox" -name vmware-vmrc -type f -perm -111 | tail -1)"
{color:#7a0874} -x "{color:#007800}$vmrc" {color:#7a0874} || exit 1{noformat}{noformat}

solution2: add {noformat}{noformat} export GDK_NATIVE_WINDOWS=1
{noformat}{noformat}in the second line of the file $HOME/.mozilla/firefox/yourprofile/.extensions/VMwareVMRC@vmware.com/plugins/lib/wrapper-gtk24.sh
{noformat}

Cannot install sql server 2003 sp3

Please go through this link

http://support.microsoft.com/kb/925976

------

As mentioned in the above link..

1) Download the Pstools from the below link
http://technet.microsoft.com/en-us/sysinternals/bb897417.aspx

2) Copy it to the server and from command prompt( go to the path where u saved the Pstools)
type -- psgetsid \\servername

SID value will be displayed.

Ex: SID for \\servername:
S-1-x-xx-xxxxxxxxxxxx-xxxxxxxxxx

Copy the above SID value..

3) go to command prompt.. type regedit

go to

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Microsoft SQL Server\MSSQL.1\Setup

replace SID value for below groups with the above SID value by right clicking the particular group -> click modify -> paste the new SID value -> click OK

SQLGroup
AGTGroup
FTSGroup

modify the existing SID value with the above SID value
--->
To modify SID value of ASGroup

go to

HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Microsoft SQL Server\MSSQL.X\Setup

Where MSSQL.X may be MSSQL.2 / MSSQL.3

modify the existing SID value with the above SID value

and start the installation.. it will work

Rich info on M$ license

http://ladylicensing.spaces.live.com/blog/

"An error occurred either in Outlook or SharePoint. Contact the SharePoint site administrator. HTTP 400."

Fix - "An error occurred either in Outlook or SharePoint. Contact the SharePoint site administrator. HTTP 400." when Synching MOSS 2007 with Outlook
Today I chose the option to Synch with Outlook 2007 (on a Microsoft Virtual PC 2007 image) from one of my SharePoint calendars in the same Virtual PC). However, the calendar items were not appearing in the Outlook version of the calendar. When I clicked Send/Receive, I kept getting this error:

Task 'SharePoint' reported error (0x8000FFFF) : 'An error occurred either in Outlook or SharePoint. Contact the SharePoint site administrator. HTTP 400.'

The fix which worked for me is to stop the System Event Notification Service and Start it again

1.At a command prompt, type "net stop sens" and Enter
2.Then to restart it, type "net start sens".

Sharepoint 2007 - UNC access - "You were not connected because a Duplicate Name exists on the Network"

Alright figured it out - you have to enable Webclient service on the server and restart the server.

I guess "You were not connected because a Duplicate Name exists on the Network"  is one of those Microsoft errors that doesn't help much.

 

 

VMware Workstation 7 and Slackware 13 (kernel 2.6.32)

Download the bundle file from VMware.com and install it.
When you got error message when compiling, go to http://communities.vmware.com/message/1401588#1401588 and download the two attached files.
Run the file patch-modules.sh

xvnkb and slackware 13

Get xvnkb from here:
http://xvnkb.sourceforge.net/xvnkb-0.2.9a.tar.gz

compile as instructed:
# ./configure
# make && make install

Download unicode font from here:http://fontchu.com/unicode.htm

Change slackware default settings to support unicode (/etc/profile.d/lang.sh):
export LANG=en-US.UTF-8

mount.ntfs consumes 100% CPU

have high cpu usage problem for your vmware application which runs on linux and the virtual machine files in NTFS partition,

you have to add:


mainMem.useNamedFile= FALSE"

to your .vmx file of you virtual machine.

this will solve the high cpu usage of mount.ntfs-3g.

install vmware server 2.0.2 on slackware 13 (kernel 2.6.32)

SOURCE:
http://risesecurity.org/2010/01/10/vmware-server-2-0-2-update-patch/

------------------------------

The following are instructions on how to apply the patch:

Download the VMware Server:

Download the VMware Server update patch:

$ wget -N http://risesecurity.org/~rcvalle/VMware-server-2.0.2-203138-update.patch

Extract VMware Server:

$ tar -xzf VMware-server-2.0.2-203138.i386.tar.gz

Extract VMware Server modules:

Change working directory to vmware-server-distrib/lib/modules/source/
$ tar -xf vmci.tar
$ tar -xf vmmon.tar
$ tar -xf vmnet.tar
$ tar -xf vsock.tar

Apply the patch:

Change working directory to vmware-server-distrib/
patch -p1 < ../VMware-server-2.0.2-203138-update.patch


Change working directory to vmware-server-distrib/lib/modules/source/
$ rm -f vmci.tar
$ rm -f vmmon.tar
$ rm -f vmnet.tar
$ rm -f vsock.tar

* cd vmnet-only
* vim vnetUserListener.c
* go to the last include line
* add this line #include “compat_sched.h”


Archive VMware Server modules again:
$ tar -cf vmci.tar vmci-only/
$ tar -cf vmmon.tar vmmon-only/
$ tar -cf vmnet.tar vmnet-only/
$ tar -cf vsock.tar vsock-only/

Run installer script as root:

Change working directory to vmware-server-distrib/
$ sudo ./vmware-install.pl


Note about VMware Remote Console Plug-in:

The VMware Remote Console Plug-in does not work properly on Ubuntu 9.10, Fedora 12 and other newer distributions. A workaround for this is to set the environment variable VMWARE_USE_SHIPPED_GTK before running the VMware Remote Console Plug-in. To set this environment variable at login time, add the following line to your ~/.profile:

export VMWARE_USE_SHIPPED_GTK=yes


install package linux-pam
rename the file /etc/pam.d/vmware-authd.slack to "other"
open the file and change the link to your lib folder where containing pam lib files (lib/security)

How to umount when the device is busy

It happens all the time doesn’t it? You need to unmount a CD or you want to pack away the external drive but when you try to umount it you get the dreaded “device is busy” message. Wouldn’t it be great if Linux actually told you what was keeping the drive busy? Here we are in 2008, I’m using Ubuntu Gutsy, and that message hasn’t changed in all the years I’ve used Linux.

# umount /media/disk/
umount: /media/disk: device is busy
umount: /media/disk: device is busy

First thing you’ll do will probably be to close down all your terminals and xterms but here’s a better way. You can use the fuser command to find out which process was keeping the device busy:

# fuser -m /dev/sdc1
/dev/sdc1: 538
# ps auxw|grep 538
donncha 538 0.4 2.7 219212 56792 ? SLl Feb11 11:25 rhythmbox

Rhythmbox is the culprit! Close that down and umount the drive. Problem solved!

---------
SOURCE: http://ocaoimh.ie/how-to-umount-when-the-device-is-busy/

Compile TrueCrypt 6.3a in Slackware 13 (kernel 2.6.32)

1. Download truecrypt source (6.3a) from www.truecrypt.org and expand it in a temporary folder. (/tmp)

2. Ftp the files below from ftp.rsasecurity.com/pub/pkcs/pkcs-11/v2-20 and copy them into the truecrypt source directory (/tmp/truecrypt-6.3a-source in my case)

cryptoki.h
ct-kip.h
opt-pkcs11.h
pkcs-11v2-20a3.h
pkcs-11v2-20a3d3.h
pkcs11.h
pkcs11f.h
pkcs11t-consolidated-d1.h
pkcs11t.h
pkcs11t.h.org

3. Download wxWidgets from: http://www.wxwidgets.org/downloads/ wxAll is what you want.

4. Unpack wxWidgets in the truecrypt source directory.

5. Run the following command from the truecrypt source directory
# make WX_ROOT=/tmp/truecrypt-6.3a-source/wxWidgets-2.8.10 wxbuild

Note: change directories to match your installation

6. Run the following command: make WXSTATIC=1
7. After the compiling is completed, copy the truecrypt file in the Main folder to /usr/bin

2.6.32 kernel & vmware

For those who choose to try using the 2.6.32 kernel, there are two fixes to get the modules to compile. In each of

vmet-only/vnetUserListener.c
vmci-only/linux/vmciKernelIf.c



add an #include for compat_sched.h. Repackage the .tar files, and VMware will happily compile the modules.

http://www.notebookrepairguide.com/laptop-notebook-repair-service-manuals/

http://www.notebookrepairguide.com/laptop-notebook-repair-service-manuals/

 

 

 

Bypassing Windows Unknown Publisher Verification For Web Downloaded Executables

SOURCE:
http://www.efblog.net/2009/12/bypassing-windows-unknown-publisher.html
I was in another day of jumping from a client to a client, securing another bank in Israel when my girlfriend called and said "Honey, I am at the office, I have absolutely nothing to do and I can't connect from here to our computer at home to continue my project". I said, O.K, let's see what we can do on a 5 minute phone call. Now just want to make it clear, my girlfriend is an Information System Instructor, she is no developer or hacker.

Me: "Honey, go to http://www.teamviewer.com, can you download it?"
Her: "yes, but when I run the setup.exe it says something weired like 'windows has blocked this software because it can't verify the publisher' and it won't let me install"












Me: "O.K, Open Start-Run, type notepad and space, now click on setup.exe and drag it to the text box at Start->Run. Now add ':Zone.Identifier' just before the last quotes. What do you see?"
Her: "I see something like ZoneId=3, now what?"
Me: "I can't talk, going into a meeting, try to change it to 1 or delete everything, bye bye bye"

After 10 minutes I get an SMS "thanks honey it worked!!!".
Well we found a bug, I wouldn't really call it a "Privilege Escalation" but I guess you don't have to be a hacker to bypass windows security restrictions :)

Intel 5100 wifi - Kismet source settings

Just letting you know I have a wifi 5100 intel using the iwlagn driver.
I went into the kismet.conf file and changed the source to:

source=iwl4965,wlan0,wifiKis #instead of iwlagn,wlan,wifiKis

 

 

 

connect wireless with slackware 13

WPA
- scan for wireless network and note for the wireless name
- edit rc.inet1.conf
- run: wpa_passphase "wireless name" "passphrase" and copy the result to /etc/wpa_supplicant.conf
- dhclient wlan0

Slackware root password reset

SOURCE:

http://linuxinw.blogspot.com/2009/11/slackware-root-password-reset.html

- boot from Live cd look like new installation.

- mount to root partition "/" if not sure try what device.
#fdisk -l
#mount /dev/sda1 /mnt

- Now edit /etc/shadow it the best way to backup this file first.
#vi /mnt/etc/shadow

root:[set to blank]:14550:0:99999:7:::

and save by :wq

- take off you cd and reboot
- when login prompt type username as root and blank password.
- change root password with
#passwd

 

 

OWA Updating view... or Loading...

If placeholder images appear where your toolbar buttons and icons typically appear, this behavior may be cause by either of the following scenarios:

• The permissions for the Exchsrvr\Exchweb folder are incorrect.
• The Exchweb virtual directory in Internet Services Manager is not configured correctly or is missing virtual directories such as the Img virtual directory and the Views virtual directory.
• The Require secure channel (SSL) check box is selected on the Exchweb virtual directory in Microsoft Internet Information Services (IIS) on the back-end Exchange computer.

 

Akonadi server is not starting on new slackware 13 installation

#mysql_install_db
#chown -R mysql:mysql /var/lib/mysql

This gives mysql rights to use it’s own folder and files.

Now you can start mysql
/etc/rc.d/rc.mysqld start
# mysqladmin create akonadi -p

add "user=root" in the Akonadi local mysql configuration file (on my computer, it is /root/.local/share/akonadi//mysql.conf), and Akonadi server can be started successfully.
So root user can use KDE too.

Mobilefone - SMS Locator

Giới thiệu dịch vụ SMS Locator

Dịch vụ SMS Locator là gì?
SMS Locator của MobiFone là dịch vụ đầu tiên tại Việt Nam cung cấp địa chỉ (ngân hàng, cơ sở y tế, ẩm thực, giải trí, mua sắm,...) gần với vị trí của bạn nhất thông qua tin nhắn. SMS Locator giúp bạn nhanh chóng và dễ dàng tìm kiếm các địa chỉ bất cứ lúc nào.

Phạm vi cung cấp và tính năng dịch vụ:
Trong thời gian đầu, dịch vụ SMS Locator đựoc cung cấp trong phạm vi 06 thành phố lớn nhất toàn quốc bao gồm: Hà Nội, Hồ Chí Minh, Đà Nẵng, Cần Thơ, Hải Phòng, Quảng Ninh.
Bạn có thể tìm kiếm địa chỉ của các dịch vụ sau:

• Địa chỉ đặt máy ATM gần nhất
• Địa chỉ các NGÂN HÀNG gần nhất
• Địa chỉ các cơ sở Y TẾ gần nhất
• Địa chỉ các quán CAFE gần nhất
• Địa chỉ các NHÀ HÀNG gần nhất
• Địa chỉ các KHÁCH SẠN gần nhất
• Địa chỉ các RẠP CHIẾU PHIM gần nhất
• Địa chỉ các SIÊU THỊ gần nhất
• Địa chỉ các trạm XĂNG gần nhất

Dịch vụ sẽ nhanh chóng được mở rộng trên phạm vi toàn quốc và cung cấp thêm ngày càng nhiều các thông tin phong phú và đa dạng để phục vụ bạn tốt nhất.

Lý do để bạn lựa chọn dịch vụ
Bạn không thể nhớ hoặc không biết hết được danh sách các địa điểm đặt ATM, ngân hàng, cây xăng, nhà hàng…. bởi nó quá dài và nhất là khi bạn đi đến 1 địa điểm hoàn toàn không quen thuộc. Dịch vụ SMS Locator xác định được vị trí của bạn, và sẽ cung cấp cho bạn những địa chỉ hữu ích gần bạn nhất để giúp bạn tiết kiệm thời gian và thật chủ động trong mọi tình huống. Chỉ cần soạn tin nhắn và gửi đến 9249.

Hướng dẫn sử dụng dịch vụ
Để biết các địa chỉ dịch vụ bạn cần, soạn tin nhắn: < Tên dịch vụ > gửi 9249. Tên dịch vụ được qui định như sau:

STT Địa điểm cần tìm Tên dịch vụ 1 Máy ATM của ngân hàng bất kì gần nhất ATM 2 Máy ATM của ngân hàng cụ thể gần nhất ATM [mã Ngân hàng] 3 Ngân hàng bất kì gần nhất NGANHANG 4 Ngân hàng cụ thể gần nhất NGANHANG [mã Ngân hàng] 5 Cơ sở y tế gần nhất BENHVIEN 6 Quán café gần nhất CAFE 7 Nhà hàng, quán ăn gần nhất NHAHANG 8 Khách sạn gần nhất KHACHSAN 9 Rạp chiếu phim gần nhất RAP 10 Siêu thị gần nhất SIEUTHI 11 Trạm xăng gần nhất XANG 12 Trợ giúp TROGIUP

Mã Ngân hàng được quy định như sau:

STT Tên ngân hàng Mã ngân hàng 1 Ngân hàng Ngoại thương (Vietcombank) VCB 2 Ngân hàng Nông nghiệp và Phát triển Nông thôn (Agribank) AGB 3 Ngân hàng Kỹ thương (Techcombank) TCB 4 Ngân hàng Á Châu ACB 5 Ngân hàng HSBC HSBC 6 Ngân hàng ANZ ANZ 7 Ngân hàng Đông Á DAB 8 Ngân hàng Quốc tế (VIB Bank) VIB 9 Ngân hàng Đầu tư và Phát triển BIDV 10 Ngân hàng Công thương VIETIN

 

• Với mỗi bản tin yêu cầu bạn sẽ nhận được tối đa 02 bản tin trả về là thông tin địa chỉ của các dịch vụ gần nhất bạn cần.
• Để nhận thêm các địa chỉ dịch vụ bạn cần, soạn tin nhắn: < Tên dịch vụ > 1 gửi 9249.

Ví dụ:

• Bạn đang ở phố Lý Nam Đế và muốn tìm quán CAFE gần nhất, soạn tin CAFE gửi 9249. Dịch vụ SMS Locator sẽ gửi về cho bạn 02 bản tin:
• Bản tin 1: Cafe TRUNG NGUYEN: 8 Cua Dong, (04)39230988; Cafe HIEU: 23 Cua Dong; Cafe HUYEN: 33 Cua Dong, (04)38287768
• Bản tin 2: Cafe QUEN: 54 Hang Gai, (04)037831359; Cua hang giai khat BAO LAM: 42 Bat Dan,(0438251800; Cafe internet SONGSINH: 49B Bat Dan, (04)39231329

 

• Bạn muốn tìm thêm các quán CAFE gần nhất khác, soạn tin CAFE 1 gửi 9249 Dịch vụ SMS Locator gửi về cho bạn 2 bản tin với nội dung như sau:
• Bản tin 1: Cafe Internet 71: 71 Hang Dieu, (04)38289172; Cafe THAI: 24 Duong Thanh, (04)39288084
• Bản tin 2: DARLING Cafe: 33 Hang Quat; Cafe NUOI: 34 Luong Van Can. (04)37716275

Mức cước sử dụng dịch vụ: 2.000 đồng/tin nhắn (đã bao gồm thuế GTGT)

How to improve disk I/O performances with VMware Workstation

SOURCE: http://www.virtualization.info/2005/11/how-to-improve-disk-io-performances.html

--------------------------------

Even on a 2 GB RAM workstation (as mine) VMware virtual machines can run slowly. Too slowly sometimes.

This can depend on a large amount of factors but we can reduce the number to 4 critical issues:

1. Antivirus real-time protection
   You probably run VMware Workstation on your everyday working computer, and you probably want to stay secure running an antivirus software.
   
   The most useful feature of any AV is the real-time protection, catching and monitoring I/O accesses of every process for suspicious activities. This feature can greatly impact on your VMs performances and should be fine-tuned for virtualization.
   
   So be sure to create an exclusion filter on your real-time protection settings for .vmdk (VMware virtual disk) and .vmem (VMware virtual memory) files. In this way countinous I/O operations on your virtual machines will not be hit by antivirus checking.
   
   Note: if you plan to run liveCD operating systems (like Knoppix) inside your VMs or simply often use CD images for installing new software, I highly recommend to exclude .iso files too from AV checking.
2. HostOS disk fragmentation
   A really performance hitter for virtual machines is a fragmented host OS disk.
   
   VMs virtual disks are very large (4 GBs at minimum on the average) and are created by default as non preallocated. In other words your virtual disk grow as you install more software on the guest OS till reaching your defined disk limit.
   If you use only one physical disk for everyday work and VMs storing, you probably will use space around a growing virtual disk, obliging your host OS to fragment virtual machines more and more.
   
   So be sure to:
• Create a dedicated partition for virtual machines only
• Create guest OSes virtual disks with Allocate all disk space now option
• Schedule a daily defragmentation for your virtual machines directories (maybe at launch time or during the night)
3. Memory trimming
   Workstation checks which part of the guest OS virtual memory is not used and allocates it back to the host OS. This permits to have more concurrent virtual machines running but everytime the guest OS asks back for its memory it suffers a performance degradation.
   
   So, if you have enough free RAM for all planned concurrent VMs, be sure to disable memory trimming for guest OSes adding the following line to the virtual machine configuration (.vmx) file:
   
   MemTrimRate=0
   
   Note: Memory trimming can be disabled through GUI since Workstation 6.0.
4. Page sharing (quoted from VMware documentation)
   VMware uses a page sharing technique to allow guest memory pages with identical contents to be stored as a single copy-on-write page. Page sharing decreases host memory usage, but consumes system resources, potentially including I/O bandwidth.
   
   You may want to avoid this overhead for guests for which host memory is plentiful and I/O latency is important. To disable page sharing, add the following line to the virtual machine configuration (.vmx) file:
   
   sched.mem.pshare.enable=FALSE option

These suggestions will work well for every VMware Workstation 5.x and Player 1.x since both share same engine.

 

How To: Hide/Remove the View All Site Content link in SharePoint

How To: Hide/Remove the View All Site Content link in SharePoint

by Mark Wagner
SOURCE: Article: http://www.crsw.com/mark/Lists/Posts/Post.aspx?ID=36

Summary
This article covers how to hide (remove) the View All Site Content link and/or the Recycle Bin link from the quick launch navigation without having to customize the master page.  Additionally, I cover how I accomplished along with other options, all using the standard functionality provided in Windows SharePoint Services 3.0.

Important:  This solution is not an answer for security.  The user will still have access to the View All Site Content page.  The View All Site Content link is simply removed or hidden from the page.

Applies To

- Windows SharePoint Services 3.0
- Microsoft Office SharePoint Server 2007

Licensing

• There is no license required to use the Hide View All Site Content feature.
• This is available to the public (business or personal) for free.
• There is no support.
• There is no implied or explicit warranty.
• Use at your own risk.

Downloads

Hide View All Site Content - Solution Package
Hide View All Site Content - Solution Package and Source Code

Installation and Activation
(Very easy, no coding required)

For those interested in how to install this solution, it is very easy and does not require any coding, compiling, or editing.

Basic Install Steps:

Note: This command must be executed on the (only one) SharePoint web server, and you must be a local administrator.

1. Add the solution using the STSADM command: stsadm -o addsolution -filename [path]\VASCSiteAction.wsp
2. Deploy the solution using the STSADM command: stsadm -o deploysolution -name VASCSiteAction.wsp -allowgacdeployment -immediate -allcontenturls
3. Optional - to restart IIS: iisreset /noforce

Using (Activating) the new feature:

1. Navigate to the site you want to hide the View All Site Content link.
2. Go to the Site Settings for that site (Site Actions > Site Settings).
3. Click the Site Features (not the Site Collection Features) link under the Site Administration section.
4. Activate the new feature named "Hide the View All Site Content link".

Your View All Site Content link should now be hidden and the View All Site Content link should now appear in the Site Actions menu.

For those only interested in using this solution, you do not need to read any further.  However, for those who are interested in how this is accomplished, the rest of this article discusses just that

 

Trying to put repository onto network drive for Visual SVN server

Source: http://www.experts-exchange.com/Software/Development/Management_Debug/Version_Control_CVS/Subversion/Q_23494919.html

----------------

In case anyone is still interested,  here's how I made it work:

 

How is it useful to someone.

 

Ray in Wisconsin

 

Question:

Can I install the VisualSVN Server software on a local server but have the repositories on a network share?

 

Answer:

Yes.

 

Heres how to do it:

During the installation of VisualSVN Server, simply type in the URL of the network share that you want to house the repositories on.

 

Or after the install, right click on "VisualSVN Server", choose properties and then change the value od the "Repositories Root" .

 

IE:

I wanted to house the Repository on a netwrok server named "FileServerOne".

There was a share created on that server named "ShareData"

And I was able to create a folder named "Firmwide" inside of "ShareData".

So, I entered the following, into the Repositories Root dialog box during the installation of VisualSVN Server.

\\FileServerOne\ShareData\Firmwide\Repositories\

 

Thats it.

 

Things of note:

At the end of the VisualSVN Server installation process, the installation will attempt to start the VisualSVN Server service.

Depending on what permissions you may have, you may receive a message from the installation process that it was unable to start the VisualSVN Server service.

 

Heres why that is:

The VisualSVN Server installation process installs a service named VisualSVN Server.

By default, the Local System Account is chosen on the Log On tab.

 

Heres what I did to remedy that issue:

I left the dialog message that said the VisualSVN Server installation process was unable to start the VisualSVN Server service, on my desktop unanswered.

 

I opened the VisualSVN Server service to edit it. (see below.)

It was necessary for me to unselect the Local System Account and Select This Account instead.

Then I entered MY, Domain User ID and Password into the dialog boxes and  clicked on OK to save the newly edited service.

 

Then, I returned to the dialog message on my desktop and clicked on Retry.

 

At that point the VisualSVN Server installation process was able to start the VisualSVN Server service and all was well.

Accepted Solution