Port Security
as far as i review your configuration, you are using a cisco switch right? so for example, your switch has 24 ports all configured as you said was sticky, just issue the following commands: int fa0/1 no switchport port-security mac-address sticky no switchport port-security mac-address sticky 000a * this commands will disable your sticky config [...]
View Answer
| October 21, 2009 8:29 AM
MAC address, Network security, Port Security
as far as i review your configuration, you are using a cisco switch right? so for example, your switch has 24 ports all configured as you said was sticky, just issue the following commands: int fa0/1 no switchport port-security mac-address sticky no switchport port-security mac-address sticky 000a * this commands will disable your sticky config [...]
View Answer
| October 21, 2009 8:29 AM
MAC address, Network security, Port Security
Upload IOS in cisco router without TFTP
Using X-Modem command from the Hyperterminal you can uploas the IOS, but to this you have to boot the router in ROMmonmode. Check this<a href=”http://www.cisco.com/en/US/products/hw/routers/ps259/products_tech_note09186a008015bfac.shtml”> article from Cisco for </a>further details.
View Answer
| October 21, 2009 6:34 AM
Cisco 3640, Cisco Routers, IOS, TFTP
Using X-Modem command from the Hyperterminal you can uploas the IOS, but to this you have to boot the router in ROMmonmode. Check this<a href=”http://www.cisco.com/en/US/products/hw/routers/ps259/products_tech_note09186a008015bfac.shtml”> article from Cisco for </a>further details.
View Answer
| October 21, 2009 6:34 AM
Cisco 3640, Cisco Routers, IOS, TFTP
How can i remove a password from windows 2000?
Change your password to nothing. So you just have to press enter to get to the desktop. There is a change password button when you press CTRL+ALT+DELETE. ******** Of course you have to KNOW the current password in order to change it to something else… ~technochic There’s a software application called ERD commander, it’ll help [...]
View Answer
| October 20, 2009 1:27 PM
Microsoft Windows 2000, Windows 2000, Windows administration, Windows Security
Change your password to nothing. So you just have to press enter to get to the desktop. There is a change password button when you press CTRL+ALT+DELETE. ******** Of course you have to KNOW the current password in order to change it to something else… ~technochic There’s a software application called ERD commander, it’ll help [...]
View Answer
| October 20, 2009 1:27 PM
Microsoft Windows 2000, Windows 2000, Windows administration, Windows Security
Adopted Authority
After you compile the program with run as *OWNER authority, change the owner to a profile with SECOFR. ================================================================ Place this into a CLLE source member: <pre> PGM CHGUSRPRF ??USRPRF() PASSWORD(exppwd) PWDEXP(*YES) STATUS(*ENABLED) RETURN ENDPGM </pre> Compile with: <pre> CRTBNDCL PGM( mylib/mypgm ) SRCFILE( mylib/QCLLESRC ) SRCMBR( mypgm ) USRPRF(*OWNER) </pre> Grant *PUBLIC *EXCLUDE authority. [...]
View Answer
| October 20, 2009 6:41 AM
RPG, Security
After you compile the program with run as *OWNER authority, change the owner to a profile with SECOFR. ================================================================ Place this into a CLLE source member: <pre> PGM CHGUSRPRF ??USRPRF() PASSWORD(exppwd) PWDEXP(*YES) STATUS(*ENABLED) RETURN ENDPGM </pre> Compile with: <pre> CRTBNDCL PGM( mylib/mypgm ) SRCFILE( mylib/QCLLESRC ) SRCMBR( mypgm ) USRPRF(*OWNER) </pre> Grant *PUBLIC *EXCLUDE authority. [...]
View Answer
| October 20, 2009 6:41 AM
RPG, Security
iseries Client Access does not allow third parties applications to open the login screen to change password when it’s expired.
If you just got a new machine, then you should have purchased IBM software mtce. That includes supporline. Take advantage of this product and give IBM a call. While they probably won’t give you a workaround, they should be able to explain the differences and point you in the proper direction. Most likely, the solution [...]
View Answer
| October 20, 2009 4:45 AM
AS/400, Compliance, CRM, Disaster Recovery, Policies, Risk management, Security Program Management
If you just got a new machine, then you should have purchased IBM software mtce. That includes supporline. Take advantage of this product and give IBM a call. While they probably won’t give you a workaround, they should be able to explain the differences and point you in the proper direction. Most likely, the solution [...]
View Answer
| October 20, 2009 4:45 AM
AS/400, Compliance, CRM, Disaster Recovery, Policies, Risk management, Security Program Management
Five t-shirts to give away: Upload those profile pictures!
Jenny – Couldn’t load my profile picture. I’m new today and have tried several times. May try again later tonight. Scot
View Answer
| October 19, 2009 8:34 PM
AS/400, CIO, CRM, DataCenter, Development, Exchange, Giveaways, ITKE, Linux, Lotus Domino, Microsoft Windows, Mobile, Networking, Oracle, Profile Pictures, SAP, Security, SQL Server, Storage, Virtualization, VoIP
Jenny – Couldn’t load my profile picture. I’m new today and have tried several times. May try again later tonight. Scot
View Answer
| October 19, 2009 8:34 PM
AS/400, CIO, CRM, DataCenter, Development, Exchange, Giveaways, ITKE, Linux, Lotus Domino, Microsoft Windows, Mobile, Networking, Oracle, Profile Pictures, SAP, Security, SQL Server, Storage, Virtualization, VoIP
DOS Attact Message or Just a Simple Query”?
Is the 172.10.2.45 client a machine you have access to or ownership? If it is a Windows machine or a machine where you can run the netstat command, I would run that (in Windows) using the <b>-ano</b> switches. The -a says display all connections; -n means use numbers for addresses rather than names; -o displays [...]
View Answer
| October 19, 2009 3:00 PM
DNS queries, DOS, DOS Attack
Is the 172.10.2.45 client a machine you have access to or ownership? If it is a Windows machine or a machine where you can run the netstat command, I would run that (in Windows) using the <b>-ano</b> switches. The -a says display all connections; -n means use numbers for addresses rather than names; -o displays [...]
View Answer
| October 19, 2009 3:00 PM
DNS queries, DOS, DOS Attack
Can’t browse the internet via the PIX
PIX’s are usually configured in deny-all configuration when first installed. You will need to determine what needs to be permitted and then build the appropriate configuration based on your requirements. Here’s a tutorial that might help you out. <a href=”http://www.secmanager.com/how_to_configure_pix_firewall_part1″>How to Configure Cisco PIX Firewall Part I</a> <a href=”http://www.secmanager.com/how_to_configure_pix_firewall_part2″>How to Configure Cisco PIX Firewall Part [...]
View Answer
| October 19, 2009 2:17 PM
Cisco 3700, Cisco 3750, Cisco PIX, Cisco Routers, Cisco switches, PIX 525, PIX 525 firewall
PIX’s are usually configured in deny-all configuration when first installed. You will need to determine what needs to be permitted and then build the appropriate configuration based on your requirements. Here’s a tutorial that might help you out. <a href=”http://www.secmanager.com/how_to_configure_pix_firewall_part1″>How to Configure Cisco PIX Firewall Part I</a> <a href=”http://www.secmanager.com/how_to_configure_pix_firewall_part2″>How to Configure Cisco PIX Firewall Part [...]
View Answer
| October 19, 2009 2:17 PM
Cisco 3700, Cisco 3750, Cisco PIX, Cisco Routers, Cisco switches, PIX 525, PIX 525 firewall
Is it possible to block MAC addresses with ISA Server 2005?
Quick research shows that it ISA server doesn’t natively support MAC address filtering. There are some tutorials out there about using other products to enhance ISA server to provide this feature. <a href=”http://www.isaserver.org/articles/blockbymac.html”>A Method to Block Users via MAC Address Using the Sygate Personal Firewall to Complement ISA Firewall Security</a>. In the IT trenches? So [...]
View Answer
| October 19, 2009 2:10 PM
ISA Server, MAC address
Quick research shows that it ISA server doesn’t natively support MAC address filtering. There are some tutorials out there about using other products to enhance ISA server to provide this feature. <a href=”http://www.isaserver.org/articles/blockbymac.html”>A Method to Block Users via MAC Address Using the Sygate Personal Firewall to Complement ISA Firewall Security</a>. In the IT trenches? So [...]
View Answer
| October 19, 2009 2:10 PM
ISA Server, MAC address
Packet Sniffer
Check out some of my <a href=”http://itknowledgeexchange.techtarget.com/itanswers?s=wireshark+it-trenches&searchtype=IT+Blogs&x=0&y=0″>blog postings about Wireshark</a>. In the IT trenches? So am I – read my <a href=”http://itknowledgeexchange.techtarget.com/it-trenches”>IT-Trenches blog</a>
View Answer
| October 19, 2009 1:49 PM
Packet sniffers, TCP, UDP
Check out some of my <a href=”http://itknowledgeexchange.techtarget.com/itanswers?s=wireshark+it-trenches&searchtype=IT+Blogs&x=0&y=0″>blog postings about Wireshark</a>. In the IT trenches? So am I – read my <a href=”http://itknowledgeexchange.techtarget.com/it-trenches”>IT-Trenches blog</a>
View Answer
| October 19, 2009 1:49 PM
Packet sniffers, TCP, UDP
VPN creation between ISA Server and Cisco ASA 5510
I personally never tried establishing a site to site VPN between a Cisco ASA/ Pixfirewall and an ISA server, but you can find a <a href=”http://blog.vistanetworks.ca/2008/12/29/isa-2006-site-to-site-vpn-with-cisco/”>good article on cinfiguring the VPN connectivty between Cisco ASA and ISA Server.</a>
View Answer
| October 19, 2009 11:30 AM
Cisco ASA, Cisco ASA 5510, ISA Server, VPN
I personally never tried establishing a site to site VPN between a Cisco ASA/ Pixfirewall and an ISA server, but you can find a <a href=”http://blog.vistanetworks.ca/2008/12/29/isa-2006-site-to-site-vpn-with-cisco/”>good article on cinfiguring the VPN connectivty between Cisco ASA and ISA Server.</a>
View Answer
| October 19, 2009 11:30 AM
Cisco ASA, Cisco ASA 5510, ISA Server, VPN
Exchange server 2007 certification error
There is a <a href=”http://technet.microsoft.com/en-us/library/bb851505.aspx”>very good article from Microsoft about certificates </a>in Exchange Server 2007. Do check it may give you some insight.
View Answer
| October 19, 2009 10:48 AM
Exchange 2007, Exchange Certificates, Exchange error messages, SSL Certificates, SSL Exchange
There is a <a href=”http://technet.microsoft.com/en-us/library/bb851505.aspx”>very good article from Microsoft about certificates </a>in Exchange Server 2007. Do check it may give you some insight.
View Answer
| October 19, 2009 10:48 AM
Exchange 2007, Exchange Certificates, Exchange error messages, SSL Certificates, SSL Exchange
AS400 Clutter
Check to see who is creating ODBC data sources from Windows to the iSeries for one thing. There is a tab named ‘Packages’ on the setup of an ODBC data source that asks what library you want to place package files in. Of course, unless you are using dynamic package support, you can uncheck this [...]
View Answer
| October 18, 2009 9:38 PM
AS/400, DataCenter, ERP, Security, Tech support, Wireless standards
Check to see who is creating ODBC data sources from Windows to the iSeries for one thing. There is a tab named ‘Packages’ on the setup of an ODBC data source that asks what library you want to place package files in. Of course, unless you are using dynamic package support, you can uncheck this [...]
View Answer
| October 18, 2009 9:38 PM
AS/400, DataCenter, ERP, Security, Tech support, Wireless standards
How to trace unauthroized users trying someone’s user id on AS/400 system.
Since there are so many possible servers a profile could be used to access, (DDM, SQL, FTP, SIGNON, etc) you really need the entire suite of exit programs that allow you to log all network access attempts. I use NetIQ but there are others out there, or if you have the time and patience, IBM [...]
View Answer
| October 17, 2009 9:20 AM
AS/400 security, Unauthorized users protection, User tracking
Since there are so many possible servers a profile could be used to access, (DDM, SQL, FTP, SIGNON, etc) you really need the entire suite of exit programs that allow you to log all network access attempts. I use NetIQ but there are others out there, or if you have the time and patience, IBM [...]
View Answer
| October 17, 2009 9:20 AM
AS/400 security, Unauthorized users protection, User tracking
How to pop up login when using STRPCCMD
Here is a subprocedure that I wrote that will allow you to map a drive through green screen. You send it the drive letter, ifspath, profile and password and it will map the drive. Let me know if you have any questions. <pre> 100 ********************************************************************** 200 * SET COMPILER OPTIONS 300 ********************************************************************** 400 HNOMAIN 07/30/08 [...]
View Answer
| October 15, 2009 9:15 PM
AS/400, Login, STRPCCMD
Here is a subprocedure that I wrote that will allow you to map a drive through green screen. You send it the drive letter, ifspath, profile and password and it will map the drive. Let me know if you have any questions. <pre> 100 ********************************************************************** 200 * SET COMPILER OPTIONS 300 ********************************************************************** 400 HNOMAIN 07/30/08 [...]
View Answer
| October 15, 2009 9:15 PM
AS/400, Login, STRPCCMD
problems to install SDM in a 2620XM router
Do check to following things 1) Make sure the cable is ok, check if there are no packet loss. 2) Also check the available memory in your router, does it have enough memory to intall SDM. Hi, the console cable is ok. I can configure the router using the CLI and I have enough memory [...]
View Answer
| October 15, 2009 8:46 PM
Cisco 2620, Cisco Router 2620 XM, Cisco Routers, Cisco SDM
Do check to following things 1) Make sure the cable is ok, check if there are no packet loss. 2) Also check the available memory in your router, does it have enough memory to intall SDM. Hi, the console cable is ok. I can configure the router using the CLI and I have enough memory [...]
View Answer
| October 15, 2009 8:46 PM
Cisco 2620, Cisco Router 2620 XM, Cisco Routers, Cisco SDM
cisco pix 525
You can try <a href=”http://www.manageengine.com/products/firewall/”>ManageEngine® Firewall Analyzer</a> , first try to download the trial version and make sure it fulfills your requirement.But its a great firewall management software I came across so far.
View Answer
| October 15, 2009 1:23 PM
Bandwidth monitoring, Cisco PIX, Cisco PIX 525, IPsec VPN, PIX 525, VPN
You can try <a href=”http://www.manageengine.com/products/firewall/”>ManageEngine® Firewall Analyzer</a> , first try to download the trial version and make sure it fulfills your requirement.But its a great firewall management software I came across so far.
View Answer
| October 15, 2009 1:23 PM
Bandwidth monitoring, Cisco PIX, Cisco PIX 525, IPsec VPN, PIX 525, VPN
encryption and decryption WIN XP PRO SP2 PRE-INSTALL FROM DELL
That encrypted data is now history you should have saved the recovery certificate to another drive as suggested by microsoft.
View Answer
| October 15, 2009 12:50 AM
Decryption, Encryption, Windows Security, Windows XP Professional, Windows XP Professional SP2
That encrypted data is now history you should have saved the recovery certificate to another drive as suggested by microsoft.
View Answer
| October 15, 2009 12:50 AM
Decryption, Encryption, Windows Security, Windows XP Professional, Windows XP Professional SP2
auditing
Auditing in ALL areas if the iSeries. That would take quite a bit to do on this list. Can you be more specific as to what you want to audit? Who signed on? and when? What objects were used by whom and what program? What data records where modified? What System values were changed? When [...]
View Answer
| October 14, 2009 11:42 PM
AS/400 audit, Auditing, iSeries command line
Auditing in ALL areas if the iSeries. That would take quite a bit to do on this list. Can you be more specific as to what you want to audit? Who signed on? and when? What objects were used by whom and what program? What data records where modified? What System values were changed? When [...]
View Answer
| October 14, 2009 11:42 PM
AS/400 audit, Auditing, iSeries command line
Secured TELNET
The first thing I would do would be to set Public authority to *EXCLUDE. You can also look into exit programs. You can write you own or look into a commercial application. This thread may help: http://archive.midrange.com/midrange-l/200811/msg00380.html Also you can check : http://publib.boulder.ibm.com/html/as400/v5r1/ic2989/index.htm?info/rzaiw/rzaiwprogramtypes.htm http://www.google.com/search?hl=en&source=hp&q=QIBM_QTG_DEVINIT+&btnG=Google+Search&aq=f&oq=&aqi= ——————————————————————————————————————————————— We control access from our interactive subsystems. In QINTER, for [...]
View Answer
| October 14, 2009 6:43 PM
iSeries Telnet, Secured TELNET, Telnet, V5R3MO, V5R4M0
The first thing I would do would be to set Public authority to *EXCLUDE. You can also look into exit programs. You can write you own or look into a commercial application. This thread may help: http://archive.midrange.com/midrange-l/200811/msg00380.html Also you can check : http://publib.boulder.ibm.com/html/as400/v5r1/ic2989/index.htm?info/rzaiw/rzaiwprogramtypes.htm http://www.google.com/search?hl=en&source=hp&q=QIBM_QTG_DEVINIT+&btnG=Google+Search&aq=f&oq=&aqi= ——————————————————————————————————————————————— We control access from our interactive subsystems. In QINTER, for [...]
View Answer
| October 14, 2009 6:43 PM
iSeries Telnet, Secured TELNET, Telnet, V5R3MO, V5R4M0
