Jump to content

All Activity

This stream auto-updates     

  1. Earlier
  2. dennis


    Version 1.0.0

    1 download

    Example Usage nmap -sV --script ssl-enum-ciphers -p 443 <host> About This script repeatedly initiates SSLv3/TLS connections, each time trying a new cipher or compressor while recording whether a host accepts or rejects it. The end result is a list of all the ciphersuites and compressors that a server accepts. Each ciphersuite is shown with a letter grade (A through F) indicating the strength of the connection. The grade is based on the cryptographic strength of the key exchange and of the stream cipher. The message integrity (hash) algorithm choice is not a factor. The output line beginning withLeast strength shows the strength of the weakest cipher offered. The scoring is based on the Qualys SSL Labs SSL Server Rating Guide, but does not take protocol support (TLS version) into account, which makes up 30% of the SSL Labs rating. SSLv3/TLSv1 requires more effort to determine which ciphers and compression methods a server supports than SSLv2. A client lists the ciphers and compressors that it is capable of supporting, and the server will respond with a single cipher and compressor chosen, or a rejection notice. Some servers use the client's ciphersuite ordering: they choose the first of the client's offered suites that they also support. Other servers prefer their own ordering: they choose their most preferred suite from among those the client offers. In the case of server ordering, the script makes extra probes to discover the server's sorted preference list. Otherwise, the list is sorted alphabetically. The script will warn about certain SSL misconfigurations such as MD5-signed certificates, low-quality ephemeral DH parameters, and the POODLE vulnerability. This script is intrusive since it must initiate many connections to a server, and therefore is quite noisy. It is recommended to use this script in conjunction with version detection (-sV) in order to discover SSL/TLS services running on unexpected ports. For the most common SSL ports like 443, 25 (with STARTTLS), 3389, etc. the script is smart enough to run on its own.
  3. DJ (4 hours)


  4. dennis

    Automation Products going in depth

    Today I have been tasked with reviewing and possibly learning and comparing the following four automation products (in no particular order). Ansible CloudForms Openshift (i.e. Docker) Confluence So let's start at the top with Ansible Ansible was purchased by RedHat and everything else in the list below Ansible mentions how it works with Ansible (can I type Ansible anymore.. whoops just did) Great Article mainly about Ansible that you should check out: https://medium.com/@anthonypjshaw/ansible-v-s-salt-saltstack-v-s-stackstorm-3d8f57149368
  5. dennis

    Webmin RPM

    Version 1.881


    Webmin is a web-based interface for system administration for Unix. Using any modern web browser, you can setup user accounts, Apache, DNS, file sharing and much more. Webmin removes the need to manually edit Unix configuration files like /etc/passwd, and lets you manage a system from the console or remotely.
  6. wildweaselmi

    How can I tell what interface is active in Linux?

    First run ls /sys/class/net ens160 ens192 lo Now you see what interfaces you have. Let's find out which one has a link light. cat /sys/class/net/ens160/carrier 1 cat /sys/class/net/ens192/carrier 0 So ens160 has a link light and ens192 doesn't
  7. running Linux in a VM and not sure which of the installed interfaces are active. Does anyone know how to check?
  8. shadowmac

    How do I implement NTP in my infrastructure?

    Set current time zone to <timezone>. Use "-listtimezones" to list time zones. systemsetup -settimezone <timezone> List time zones supported by this machine. systemsetup -listtimezones Display whether network time is on or off. systemsetup -getusingnetworktime Set using network time to either <on> or <off>. systemsetup -setusingnetworktime <on off> Display network time server. systemsetup -getnetworktimeserver Set network time server to <timeserver>. systemsetup -setnetworktimeserver <timeserver> These commands don't actually SYNC the time like the traditional UNIX commands do. Examples: "systemsetup -setnetworktimeserver" = Simply *sets the ntp server IP/name* in the /etc/ntp.conf file. This is the ntp server that shows up in the Date/Time system pref pane GUI. This command doesn't force the Mac to sync with the ntp server at all - it just tell Mac OS X *which ntp server* to use. "systemsetup -setusingnetworktime" = Simply *enables* or *disables* the ntp client in favor of a stand-alone manual time configuration. This is the equivalent of the "Set time/date automatically" check box in the Date/Time system pref pane GUI. Im not sure if disabling and then immediately enabling this would "tickle" the client to to go sync with the ntp server or not. Perhaps it does? If so this seems rather clunky that it must be ran twice to get it to poll the server and sync the time. Assuming the Mac has already been configured to use a ntp server (and its enabled) but for some reason the Mac's time has drifted, the Apple commands do not appear to have a single command to tell the Mac to "sync now". At least its not clearly defined in the man page to me. ALTERNATIVES use ntpq by typing ntpq and pressing enter at the command line and your prompt will change to ntpq> pe or peers - To display a billboard showing the status of configured peers and possibly other clients poking the daemon. ntpq> pe remote refid st t when poll reach delay offset jitter ============================================================================== *mifnt1swic01- 2 u 268 256 377 119.761 7.829 20.961 as or - To display additional details for each peer separately that can be determined by the use the as command to display an index of association identifiers ntpq> as ind assid status conf reach auth condition last_event cnt =========================================================== 1 41942 96f4 yes yes none sys.peer reachable 15 Each line in this billboard is associated with the corresponding line in the pe billboard above. The assID shows the unique identifier for each mobilized association, while the status column shows the peer status word in hex, as defined in the NTP specification. Next, use the rv command and the respective assID identifier to display a detailed synopsis for the selected peer ntpq> rv 41942 associd=41942 status=96f4 conf, reach, sel_sys.peer, 15 events, reachable, srcadr=mifnt1swic01-core.eventguyz.com, srcport=123, dstadr=, dstport=123, leap=00, stratum=2, precision=-20, rootdelay=1.816, rootdisp=0.656, refid=, reftime=de3035e9.f6aba7f3 Thu, Feb 15 2018 11:38:01.963, rec=de3035ee.749f3054 Thu, Feb 15 2018 11:38:06.455, reach=377, unreach=0, hmode=3, pmode=4, hpoll=8, ppoll=8, headway=0, flash=00 ok, keyid=0, offset=7.829, delay=119.761, dispersion=17.144, jitter=20.961, xleave=0.146, filtdelay= 121.44 172.00 138.41 149.10 165.60 153.74 132.59 119.76, filtoffset= 19.72 49.29 22.77 6.08 28.96 28.53 18.49 7.83, filtdisp= 0.00 4.04 8.03 11.99 15.98 19.83 23.73 25.70 Query NTP using (the -q stands for query only) sudo ntpdate -q time.eventguyz.com Set date time using ntp server (the -u stands for update) sudo ntpdate -u time.eventguyz.com You can debug ntpdate by running (the -d stands for debug) sudo ntpdate -d time.eventguyz.com If you are worried about security or need to use TCP instead of UDP you can look at using tlsdate You may also try and use the following to check sntp -d time.eventguyz.com
  9. wildweaselmi

    How do I implement NTP in my infrastructure?

    Your best approach Implement a Stratum 1 device like a Symmetricom device (which has an external antenna pulling down from satellite) and you can use your core switch and point to those devices so they could be Stratum 2 device which means all your clients, servers, etc could point to the core switches (the stratum 2). Note: you don't need to use Symmetricom devices. Here is a link that provides multiple manufactures that provide this capability Also note that DHCP, option 42 is what is used to define ntp servers Display NTP Servers Windows w32tm /query /peers Mac systemsetup -getnetworktimeserver or ntpd -q
  10. I would like to implement NTP in our environment and would like some advice.
  11. wildweaselmi

    Infoblox Reporting Server - Error in 'litsearch' command

    The reporting license has 5GB limit and it exceeds the usage more than five times and this is the reason why you see "litsearch" warning. Access to Infoblox Reports and Searches will cease to be operational if there are 5 or more license violations in a rolling period of 30 days. As explained in the Administrator Guide: NIOS continues to index data; however, you will not be able to use the Reporting service. You can use the reporting search when the number of violations in the previous 30 days is within the limit. If there are 5 consecutive violations in 5 consecutive days, then the reporting feature is disabled for the next 25 days. License violation occurs when the reporting appliance exceeds its maximum allowed daily indexing volume. The maximum allowed, per day indexing volume, is determined by the reporting appliance model and the reporting license installed on that appliance. The specifications can be found in the Administrator Guide section: "Supported Reporting Appliances and Storage Space" (for the new releases) "Supported Platforms for Reporting" (for the old releases) Identification & Preventive measures: Review the data usage from the Member Status widget in the Status Dashboard. The "Home Dashboard" as well as the "Dashboards" inside Reporting, contains "License Usage Trend Per Member" which customers can make use of, to understand volume usage on a per member basis. "Reports" contains "Reporting Volume Usage Trend per Category" as well as "Reporting Volume Usage Trend per Member" which customers can make use of, to understand volume usage per category and member respectively. When a license violation occurs the GUI would start displaying a banner at the top stating that the "Reporting Server has reached its maximum licensed data consumption volume". The banner would also display the "Total volume violation count" and the "Maximum allowed violation count" (where the maximum allowed is always 4). * NIOS would write these warnings into syslogs and can also trigger SNMP traps and Email alerts, if configured to do so. Take one or more of the below steps to contain the situation. Purchase a bigger license to index and accommodate the incoming data. Disable reporting on specific members on the grid, from which they do not wish to index any information. Disable specific report categories, for which they do not wish to index data. Here are my Report Categories (in short, I unchecked DNS Query and DHCP Lease History) To regain access to reporting service and reports and reset license is required. Once this is applied the reporting would work in normal state. Please keep in mind that unless the above preventive measures are followed, the reporting license violation would happen again. Once you have access to reports please follow the steps to contain the data which are sent to reporting server. How to reset reporting license in Infoblox Login to the reporting appliance and execute the command "set reporting_reset_license" to enter the above license string. When prompted for confirmation (y or n), confirm by hitting "y". Upon successful installation, you should receive the message "Reporting reset license is installed.".
  12. Currently when I click on the Reporting tab in the GUI for Infoblox I am receiving an odd error message
  13. wildweaselmi

    How do I confirm my Mac can resolve a domain?

    I'm sure there are a bunch of ways to do this on your Mac since its Linux based. One method (which is probably the most popular) is using the dig command dig eventguyz.com a very popular tool that can provide lots of helpful output. Another method is to use the dsutil command, something like this dscacheutil -q host -a name eventguyz.com This will test DNS resolution and takes into account all configured DNS servers as well as their priority order but output is very short and sweet
  14. In windows I was able to run nslookup eventguyz.com to identify if I could resolve the domain using my assigned DNS Servers. Any suggestions on how to do the same thing on my Mac?
  15. I ran into this issue myself and found the best solution for myself is run scutil --dns It provides a wealth of information. Here is more information for the scutil on the Mac scutil [options] [arguments] Computer Name ComputerName is the so-called “user-friendly” name for the Mac, it’s what will show up on the Mac itself and what will be visible to others when connecting to it over a local network. Change sudo scutil --set ComputerName "My New ComputerName" View scutil --get ComputerName HostName HostName is the name assigned to the computer as visible from the command line, and it’s also used by local and remote networks when connecting through SSH and Remote Login. Change scutil --set HostName "newhostname" View scutil --get HostName LocalHostName LocalHostName is the name identifier used by Bonjour and visible through file sharing services like AirDrop Change scutil --set LocalHostName "MacBookPro" View scutil --get LocalHostName NOTE: Of course there’s nothing wrong with using the same name for each (Computer Name, Host Name, Local Host Name) as well, which is actually the default behavior of OS X Check if another host is reachable scutil -r eventguyz.com View technical DNS information scutil --dns
  16. So in windows world you can run an ipconfig /all and see what your DNS Servers are but how do you get the currently assigned DNS servers on a mac?
  17. This section is concerned with helping you to understand a few important facets of the music presentation that will make your wedding reception a success. Music comes in all styles. Casual or sophisticated; classical or rock; reggae or jazz; polka or pop. It is played loud or soft and fast or slow. It appeals to young and old. It can make you feel lively or lethargic. Music subtly augments a cocktail party and enhances dinner guests conversations.Then it energizes the dance floor continuously for hours. Music is a common element of everyday life, but for your wedding celebration, the music should be extraordinary. This section covers several points you should review prior to consulting potential candidates for your entertainment. Some insight will help insure your music will be extraordinary.
  18. djzah

    What are Intelligent Lights?

    Intelligent Lights are what you find at Clubs and Concerts. They are also sometimes called Smart Lights because they move together with the beat of the music. This does add atmosphere to an event that focuses on dancing. Of course we utilize different lighting for slow dancing. We utilize Martin MX4 Intelligent Lights because they are durable, dependable and what you find when you go to a club or concert.
  19. BY FRANK WHYTE He's a little bit country, she's a little bit rock 'n roll. Mom's big on Sinatra, but she married the original doo-wop daddy. The aunts and uncles prefer polkas, chicken dances and similarly embarrassing spectacles. And then there are the friends from college... How do you select reception music that fits everybody? It's an intimidating question, since the entertainment plays no small role in the success of a wedding reception. Years from now, your wedding reception guests will remember few details of your reception, but they'll certainly recall whether they danced, laughed and enjoyed themselves. The entertainment is the make-or-break factor in producing a memorable special occasion. After twenty years of producing wedding receptions, I've found that there are very few rules that apply to all wedding receptions. Each assembly of guests takes on a distinct personality. Forecasting a group's hot buttons is more art than science, but we can offer some time-tested guidelines. The Art of The Slow Transition Is it possible to satisfy the disparate audience we described at the beginning of this article? Sure. In fact, we do it at least a few times each weekend, using a simple and effective technique we call the "slow transition." After dinner music (good choices: soft rock, jazz or classical), we'll begin the dancing portion of the reception with a mix of more romantic songs, leaning more toward the big band and 50's crooners. As the evening progresses and people get more enthusiastic, we build toward a more uptempo, contemporary mix. That's not to say that there's no variety of fast/slow, old/new during the transition, but to say that the mood of the music matches that of the crowd; subtly evolving from mellow to more exciting. With a smooth transition, you'll be surprised at how well "the old folks" adapt to the new stuff (I once saw an 85-year-old man doin' Da Butt in his walker). Artfully staged, nobody really notices the evolution in progress. Each guest, however, will recall that they "played my type of music." The Special Songs in the Mix There are some song titles that you'll specify by name to your entertainment provider. These "special songs" include your bride & groom first dance, father/bride dance, mother/groom dance, bridal party dance, cake cutting, departure dance, and others, depending upon which traditional agenda items you include in your reception. We've posted a list of the most popular special songs on the internet for your review. While these songs are popular, no such list is all-inclusive. Often, what makes a song special is the memory associated with it. A great first-dance song might be the one playing on the car radio during the couple's first date. The father/bride dance could be performed to the song dad sang when he tucked in a five-year-old future bride. Even if the meaning is lost on the rest of the group, a special moment forms on the dancefloor. And that is apparent to the guests. For true sentimentality, there are several songs intended specifically for such events as father/bride and mother/groom dance songs. Currently, Bob Carlisle's Butterfly Kisses holds the popular lead among father/bride selections, but specialty artists Mikki and Renee Nalbandian have both composed wonderfully sentimental ballads for such occasions. One caution that can be offered regarding special songs is to consider the true lyrical content of the song before committing to it. For years, Olivia Newton John's I Honestly Love You was a favorite choice, despite the fact that its subject matter involves the conclusion of an extramarital affair. Whitney Houston's I Will Always Love You is also a break-up song, as is Garth Brooks' The Dance. They're all heart-touching ballads, but just don't offer themselves to the true spirit of a first dance as husband and wife. How Much Music Do I Need to Select? Aside from your special songs, it's important for you to work with your entertainment provider to set a tone for the event. There are likely to be songs that you definitely do or don't want to have included in your reception. A reputable DJ or band leader will work with you to produce a music program that reflects your preferences, rather than working off of a standard playlist that works most of the time. Obviously, planning is essential. You should work closely with an entertainment provider whose insights you trust. Together, you can produce an entertainment program that balances your taste and the desires of your audience. Some flexibility is essential in the planning process. Let's take an extreme (but true) example to illustrate the point. Maggie was a 24-year-old bride-to-be with a strong musical interest. Her tastes ran toward alternative rock, and she was considered an expert on the format. Her wedding reception, she decided, would be pre-planned, song-by-song, to reflect her tastes. We worked with Maggie to gently soften her intractable position regarding the music list, but Maggie was the customer, and she invariably rejected each of our suggestions. Only while setting-up for the reception did we realize something truly bothersome: The reception was being staged far from Maggie's home and friends, and was attended almost exclusively by the groom's family. It was a large gathering of a conservative, old-world family, none of whom was vaguely familiar with alternative rock. Our DJ was almost continuously verbally assaulted by members of the audience for (his) poor musical selections. Guests began filtering out of the reception a few minutes after dessert was served. Even Maggie recognized that the Fugees' Killing Me Softly with This Song would've been more appropriately named Killing My Party with This Song. With a scant few close family members left in attendance, Maggie reluctantly allowed our DJ to take requests. A few people finally brushed the top layer of dust from the dancefloor, just as the clean-up crew began removing tablecloths. Agreed, the above is an extreme example of how a wedding reception can be "over-produced." But in lesser forms, it's a common challenge for us as we work with brides to consider both their own preferences and their guests' desires in the entertainment program. Let's go back to the original question: How much music do I need to select? From a purely logistical standpoint, somewhere between 50 and 60 songs will fit into a four-hour wedding reception. But that pragmatic answer fails to consider the most important issue you face as a special event planner: How much of the reception belongs to you, and how much belongs to your guests? Frequently... very frequently, in fact... we're told not to play The Electric Slide, The Macarena, or the Chicken Dance. That exclusion is quite understandable, since those songs are so overplayed that they audibly illustrate the word "trite." It's also understandable that many guests will want to dance to those songs. They expect them. And you can prohibit them. It's important for you to decide how much of the reception you're willing to trust in the hands of your guests. An associated issue is how much you trust your entertainment provider to gauge the crowd reaction and adapt the program to their tastes. A skilled DJ will be able to select music that motivates the crowd without turning a classy affair into a truck pull. For that reason, you need to work closely with your entertainment provider to share a common vision... building upon your preferences, your guests' expectations and your entertainment provider's insights to produce an entertainment program that makes your reception a memorable event. Choose wisely, and best wishes.
  20. djzah

    Should you pick a Band or a DJ?

    Before you ever hear one song at your ceremony or reception, there are decisions and choices that must be made regarding entertainment. Should you have a band or DJ? Guitarist or pianist during cocktails? What's your entertainment budget? How do you pay the entertainer? Knowing the right questions to ask when interviewing potential entertainment sources will give you the information you need to make the correct entertainment choices and decisions. By having a contract you will have peace of mind when that one key element of your big day has been finalized. You'll rest assured knowing that your reception music is in good hands. Here are some general topics that should be given consideration before you sign an entertainment contract.
  21. No. My policy is to NOT allow viewing of my services at wedding receptions or other private functions. It would be unfair and unethical of me to allow a stranger to "pop-in" and watch even a few minutes of their big day. It would give the impression that I care more about the "next sale" rather than the party in front of me. I would much rather lose a booking than allow my services to be compromised at ANY private function.
  22. djzah

    Is your music downloaded?

    Our desire to provide you top quality reliable service doesn't stop at the hardware. All of our music is imported from actual CD's that we purchased either through a subscription service like Promo Only , ERG Music ,Jones TM , or purchased from a store with a few exceptions of purchased music from iTunes. We import all of our songs at 192kb which is the highest default setting for importing music in effort to maintain the highest digital quality for a clear amplified sound. Of course we bring a very large selection of our CD's with us as one of our backup methods in the event of a hardware failure we still have music for you and your guests to enjoy.
  23. djzah

    Event Indoors or Outdoors?

    Usually wedding ceremonies and receptions are held indoors. Many are now being held at outdoor gardens and other out-of-doors locations. If you plan to have an outdoor ceremony, cocktail hour or reception, be sure to tell any entertainer who may be performing during that particular outdoor segment. Make arrangements to have suitable cover over the stage or DJ area in case of inclement weather. Make sure an adequate number of electrical outlets are available for the band, DJ, or any other performer. Check with your entertainer to establish how many outlets are needed.
  1. Load more activity