This model has really found his niche. One of the key elements of the Hedgehog principle is finding the things that ignites your passions, utilizes your strengths and drives your economic engine. This guy has truly embraced that, and serves as an inspiration to all of us.
Bonus points for noticing how he subtly mixes it up in some of the later pictures…
Second Bonus- great comment in the source:
<!–cf THE CODE APPEARS TO START HERE. NOT SURE HOW THIS WORKS –>
While there is no substitute for a full working lab, there are several tools that can help to make troubleshooting various elements of your Exchange environment easier.
MX ToolBox – Great for all-in-one checking of reverse pointers, blacklists, open relays and general diagnostics. If I was stuck on a desert island, this would be the troubleshooting website I would take.
TestExchangeConnectivity.com – Runs a test connection to your Exchange server the same way your Wi-Mo phone or iPhone would. Great for testing an environment when you are not really sure the phone should work (unsupported OS or patch level)
Hexillion.com – Good for looking up public records for DNS and such. The have a lot of options for how much data you want to see.
Telnet client – The fact that this has to be manually installed on Vista is a crime
Steps to send email via telnet – If you need to interact on the most basic level, without fear of spamfiltering or email clients muddying the water, this is a good place to start.
MPack is a software kit written and marketed by Russian code writers. It is unusual because it is a) written in php and b) sold and updated as if it was a regular legitimate software product. People run it on their websites as a means to install keystroke loggers on vulnerable computers. It will work with Firefox and IE and will test the visiting browser to see which vulnerabilities are available for it to exploit. This thing gets updated monthly and there are even plugin modules you can buy and add on to it for a more effective attack. Most of the time, most people know enough to not go to the sites that end in .ru:8080 or other strange domain names. Unfortunately, the attack has adjusted its tactics to make itself more effective. If you have weak ftp passwords on your site or if they can get a keystroke logger on your computer to get your ftp password, they will write scripts that will automatically inject an invisible iframe onto every one of your html pages (php pages are less vulnerable, since they are frequently broken out into several php_includes.
This is scary stuff, and Google and other search sites will punish you in search rankings and with popups when people clickthrough to your site if they find out you have been compromised.
The software is constantly being updated, so this goes back to the lesson every server or site admin has to learn. Get updates out as quickly as possible on public facing sites. There is no such thing as a low-maintenance site.
Oct 15
Posted by admin in Hyper-V, VMWare, Windows 2008 | No Comments
Microsoft has made their licensing much more friendly to virtualization with the release of the 2008 server product. It is still confusing, especially with the differences between Hyper-V and VMWare/VirtualBox/EverythingElse.
Basically, if you are running the Hyper-V role on Server 2008 standard, you get two installations of Windows 2008 for the price of one. One acts as host (and that is it. it only acts as a hyper-v host) plus you get one free Virtualized OSE (operating system environment). If you are running Enterprise, you get 1 free host (running just hyper-v and nothing else) and up to 4 free virtual OSE’s. With datacenter, you get unlimited free VM’s.
Since products like ESXi are free as well, it has been asked what advantage this really gives you. Well , if you are running a Core install of server 2008 as your hyper-visor, you can monitor the services, automatically patch, and apply security policies to your hosts, just like you can with regular windows servers, but you don’t give up the low resource usage and reduced attack surface of a more stripped down OS like the Linux that serves as the basis for ESXi. Plus, if it breaks, you call Microsoft and they fix it for $250, rather than having a whole separate licensing scheme and updating process for ESXi. There is nothing worse than building your environement on two vendors and having them point their fingers at each other.
If you are running a different product, you are similarly limited. The wording is complicated, but basically they say you get one VM per license. If you are running Standard server on VMWare ESXi, you burn that license on the first one and have no extras.
“If a server is running ESX as the virtualization technology, then Windows Server is not deployed as a host operating system in the physical OSE. However, a license is required for every instance running in a virtual OSE.
If you have assigned a single license for Windows Server 2008 Standard to a server running ESX, then you may run one instance of Windows Server 2008 Standard at a time. The right to run an instance of Windows Server 2008 in the physical OSE cannot be used in this case since ESX runs on the physical OSE (and as a result, Windows Server 2008 cannot be deployed as the operating system on the physical OSE.
If you have assigned a single license of Windows Server 2008 Enterprise to the server running ESX, then you may run up to four instances at a time of Windows Server 2008 Enterprise. You may not run a fifth instance under the same license since that right requires that the fifth instance be running hardware virtualization software and software managing and servicing the OSEs on the server.”
From the horse’s mouth (Word 2007 required):
Earlier today, a co-worker forwarded a file he felt was suspicious to me and another tech. It was a zip file, which is an old trick for getting around the restrictions that most companies have for sending or receiving EXE files.
A quick scan on VirusTotal showed that it was indeed malware and that as of 10-15, only about 32% of virus scanners were currently catching it, a percentage that did not include McAfee or AVG, but did include Symantec.
Click here for the specs on the virus in question. Here is a list of the engines that voluntarily participate in this helpful service. No guarantees of course, but with the way these things spread, it is best to be safe.
IMF is gone, long live the Exchange 2007 Anti-Spam Agents.
Since Exchange 2007 is much more modular than previous versions, it assumes that you are going to have basically every role on one or more individual servers. You can put them all on one, but you will have to turn some things on to make sure that everything works. If you are trying to turn of NDR’s and it isn’t working, you need to do it here too.
Note: To revert to Exchange 2007 default settings, use “uninstall-AntispamAgents.ps1″
script and restart the “Microsoft Exchange Transport” service.
Before you can remove an Exchange server from your org, you need to get all the mailboxes off of it. I was working on a Exchange 2007 CCR migration and found that there was still a long dead Exchange 2000 server in the org. The admin had tried to delete it, but it reported that there was still a mailbox on the server. He had checked every AD account for it to no avail. If you want to find out what AD accounts still have resources on a specific server:
You can then open that user account and clear out the Exchange settings that are holding you back.
Slow web pages under Vista are nothing new. Heck, slow anything on Vista is something you sort of come to expect. But sometimes, you will have just a single machine suddenly get slower, regardless of the browser you are using. This is unusual. If you are running Vista, you may be having a problem with a new security setting.
A recent Microsoft Knowledge base article describes one potential cause of the problem: RFC 1323 compliance. Though the text suggests that it just affects the Enterprise version, the Applies To section lists all versions of Vista. In a nutshell, websites that don’t fully support RFC 1323 or the default Windows Scaling factor of 8 will be very slow or even inaccessible.
There is an easy workaround:
Press the Windows and type cmd, then press CTRL+SHIFT+ENTER to open a command prompt as an administrator. At the command prompt, type:
netsh interface tcp set global autotuninglevel=highlyrestrictedThis will set the autotuninglevel to a somewhat more permissive setting. If you want to put it back to the default setting, type:
netsh interface tcp set global autotuninglevel=normalYou can disable autotuning altogether with this command, but do so at your own risk (note that the date on the RFC spec above is 1992. If this was going to get exploited, it would have been done already):
netsh int tcp set global autotuninglevel=disable
It has been asked if this requires a reboot. In my experience, no it hasn’t, but YMMV.
that your website is down, you can go here: www.thewebsiteisdown.com
This site will actually tell you if a site is really down or just down for you…
Arclite theme by digitalnature | powered by WordPress