I was going to make one, but this guys is much better: http://blog.mpecsinc.ca/2009/05/sbs-2008-setup-checklist-v111.html
I am working on a checklist for a migration from standard server or sbs 2003/2000. Look for it soon.
SBS new install checklist
Apr 30
This list assumes a Dell PowerEdge R710 with no SAN. Similar steps would be required for any VMware host. After unboxing server and setting it up on the bench boot it up.
- Hit f10 to configure your RAID, if needed. Reboot.
- Download and install firmware updates for RAID controllers and backplanes. Reboot.
- Enter bios and turn on virtualization support on the processor. Reboot.
- Configure iDrac IP settings and password (Ctrl-e at the prompt). Reboot and test access via the web console. Default username/password is root/calvin
- Boot to ESX 4.0 installer disc, go through installation prompts with defaults. Remove disc and reboot.
- After reboot, log in to the console, set IP information and password.
- On a machine on the same network, go to https://<server IP> and download the appropriate vsphere client for the version of VMWare ESXi you are running, if needed. Install the host update utility.
- Log in to the server via the vsphere client and enter your serial number. Select the host IP in the left hand panel, choose the configuration tab on the right hand panel, then select “licensed features” on the left and then choose edit in the top right corner. Enter your key. If you don’t have one, get it from VMware.
- Configure your NTP server. Exit vSphere.
- Open the host update utility, connect to your new host, scan for patches and install them. Run through this process until you can do it twice and find no new patches.
- If needed, open vSphere and configure networking (vlans)
- Create an ISO directory on your data store, copy needed ISO files to that folder using either the store browser or the Veeam SCP utility.
- Build your VM. Configure startup options for the vm if needed.
- Install the vmware tools for the server in question.
Normally, I assume that if I am running the most current version of a product, my chances of getting hacked are pretty low. I don’t know what happened, but a few days ago, I noticed that the admin side of my site was rendering really funny, regardless of the computer or browser I was using. I noticed that the other sites I run on the same shared host (hostgator) had the same issue. I did the following steps in order until I found one that fixed it:
- Changes theme back to default
- Deactivated all the plugins (I really only use two, so this was not a big deal)
- Renamed the plugin directory to plugin.old via FTP
- Replaced the http.php file in wp-includes with a fresh copy from a newly downloaded zip file
- Replaced entire wp-includes directory with new copy
The last thing fixed it. Unfortunately, in my haste, I did not get a close look at the files to see if they had been modified. If I was in a situation where I only updated my site from one IP, I would definitely be modifying my .htaccess file to lock this down.
Below is a screencap of what the site looked like:
Everything worked fine, but it looked way off.
interesting idea
Feb 16
prompt for anonymous questions….
Postman’s 4th idea
Feb 15
I am 30 now, which means that I can still remember using BBS’s and installing a pre-5.0 version of netscape. In short, I am old.
My job caters well to the fact that I am old. I don’t really bother memorizing anything any more. In an age when I can type in a few words to a song into google and immediately pull up the lyrics, a link to buy it, 37 mashups using it and a video of a cat playing a keyboard to it, most things simply do not register as important enough to dedicate the attention required to memorize them. As a consequence, I believe that my memory is getting weaker. If it were up to my retention abilities, both the good and bad would be forgotten quickly. Thanks to gmail, archive.org and google web cache, however, I am free the from the responsibility of ever remembering anything that is said to me or that i said to anyone else. A little over 10 years ago, Neil Postman wrote a talk called 5 Things We Need to Know About Technological Change, in which he explains in the most distilled way I can imagine a sort of “heads up” to the leadership of the world about what is coming in the next 10-20 years. The 4th point in his wholly amazing work is summarized below:
Here is the fourth idea: Technological change is not additive; it is ecological. I can explain this best by an analogy. What happens if we place a drop of red dye into a beaker of clear water? Do we have clear water plus a spot of red dye? Obviously not. We have a new coloration to every molecule of water. That is what I mean by ecological change. A new medium does not add something; it changes everything. In the year 1500, after the printing press was invented, you did not have old Europe plus the printing press. You had a different Europe. After television, America was not America plus television. Television gave a new coloration to every political campaign, to every home, to every school, to every church, to every industry, and so on.
The addition of an automatic stenographer for every thought I bang out to my wife or father, or friends has many benefits. I can easily refer back to see if I said something incorrectly, or missed an important detail. I can pull up emails that were sent 5 years ago (I was on the early curve of the gmail thing) and get exact quotes from people I have not seen in years. The issue is that my changed ecology allows me to easily re-kindle old grudges. Before Christmas, I was sent an email response to a note I had sent to a relative. The email I got was, in a word, inflammatory. Possibly more so than the author had intended. In the 2 months since, my anger had moved from foaming-at-the-mouth seething rage, to a much more restrained irritation. Last week, a conversation with my brother caused me to search for the message in question and the second I re-read it, I was immediately filled with the same emotions once again. This automatic record has the capacity to turn every little offense into a Hatfield Vs McCoy level feud.
I have been convicted recently about my treatment of another family member, again fueled by a perfect record of the wrongs I have ‘suffered.’ Even if I am justified and wholly ‘right’ (or as much as so as a human can be), am I allowing this shift in my spiritual ecology, the environment in which my faith exists, to be a less-Christ-like forgiver of wrongs done to me? A friend of mine recently wrote in an article for Collide magazine on this subject. He said:
Theologian Miroslav Volf, author of The End of Memory: Remembering Rightly in a Violent World, says that when we try to deal with the past, we often make one of two mistakes. Sometimes we downplay what happened, saying, “Aw, it wasn’t that big of a deal. I only lost, like, six followers over it.” This way, we don’t have to forgive the event as it actually happened. Other times, when we hold resentment against someone, we inflate an event in order to make the offender look worse. “She posted that over the entire Internet.” But Volf, who underwent a months-long interrogation during the Yugoslavian conflict, suggests that a major part of forgiveness is not forgetting, but remembering rightly so we can forgive what really happened.
For Christians, this means that the Internet’s ability to help us remember rightly is a chance to practice a theologically-informed, true kind of forgiveness. Rather than downplay an incident or cut people off every time they annoy us, we have the chance to look at the past with Google-like accuracy and choose to stop holding those wrongs against those who harmed us.
Wow. For me, this is about the hardest thing in the world. I like to pretend that I never play the victim and that I will just take all kinds of abuse without saying a word. The truth is, though, that I act worse than my kids when I am wronged. The hardest parts of the Christian life are the things that fly most in the face of our instincts with no payout in return. When we give financially, we feel good about it. When we serve in a ministry, we get kudos from other believers. When we forgive someone who has wronged us without throwing it back in their face, we a) open ourselves up to getting hurt again and b) walk away from our right to be right, to be the blameless one. The hardest part for me is that second one, the one where I have to treat the other person like they are as forgiven as God says they are. I don’t get to be a martyr any more. I hope that someday I will be as able to forgive and treat another believer as blameless as gracefully as our savior and some of his more sanctified children have show me in the past.
References:
http://www.mat.upm.es/~jcm/neil-postman–five-things.html
http://www.collidemagazine.com/article/print/291/i-will-remember-your-tweets-no-more
Client called last night with the above error when trying to connect to any of 6 workstations in an office in Virginia from any other machine with any browser. Quick check on google returned no results, so I called LogMeIn support. Apparently, an update released yesterday for AVG misidentifies a component of LogMeIn as Vundo.J and blocks it from accessing the internet. It will also block new installations of LogMeIn, causing the “starting services” step to fail over and over again.
The band-aid is easy, just exclude c:\program files\logmein from your resident shield. The folks at LogMeIn also urged me to contact AVG support about the issue, as they want to get it fixed as quickly as possible and they figure that more voices will make the fix happen more quickly.
Users were getting a “HTTP/1.1 503 Service Unavailable” on both https://<servername>/Exchange , https://<servername>/Public and on https://<servername>/microsoft-server-activesync, they get a login prompt and then a “HTTP 501/HTTP 505″
The below tool should be run from the command prompt. It should identify and remove registry keys over the 259 character limit. It will kick back any errors. If you have null keys (keys that are faulty but unremovable), you can use RootKitRevealer from sysinternals and get rid of them. I understand that regdelnull can do something similar, but in this case, it was a corrupt key, not a key with null characters.
In my case, the affected key was relating to the driver for the Intel storage controller (VEN_8086&DEV_24D3&SUBSYS_458015D9&REV_02). Not cool. I could not delete or rename the key and could not set/view permissions on it. Ran RootKitRevealer, which caused a stop error/reboot (crap) but successfully removed the key. IN OTHER WORDS, DO NOT DO THIS IF YOU DO NOT HAVE A TESTED BACKUP.
“To help troubleshoot this issue, run the HKCRScan tool (HKCRScan.exe). The HKCRScan tool enumerates the HKEY_CLASSES_ROOT registry hive to locate subkeys that contain more than 259 characters. Additionally, HKCRScan helps determine if there is an invalid discretionary access control list by returning error code 0×5. This error code means “Access denied” when it enumerates a registry key. The HKCRScan tool is an internal tool developed by Microsoft.”
This is a very good overview of the public DNS system. Kinda gives you a feel for the fragile nature of the beast. Also, it gives some great information on the role that crap DNS plays in hidden performance problems.
Of course, I love using OpenDNS for testing, as most ISP’s DNS servers just plain suck.
To anyone who has ever created anything of value, and had it cheapened by the culture of entitlement so pervasive in the US and the rest of the internet-connected world, Rupert Murdoch has declared that Google is mortal and, together, we can kill it.
Texas Honors Student Charged In Plot To Kill Dad
http://www.kwtx.com/home/headlines/72568237.html
I mean, unless the guy was a real jerk or something. ๏̯͡๏﴿