tag:blogger.com,1999:blog-11126021860767657572024-03-05T13:54:37.267-08:00Phil's NewsPhlashA new home for things TechnoGeekyAnonymoushttp://www.blogger.com/profile/18277549727629573410noreply@blogger.comBlogger1236125tag:blogger.com,1999:blog-1112602186076765757.post-85748824108955546112015-03-25T14:13:00.001-07:002015-03-25T14:13:20.385-07:00OSSIM WIDS howtoSo, it took me a while to find this, and low and behold, it's on github. Props to the maintainer, linked below. That said: I am reposting the how to page because you never know when things get deleted...<br /><br />
<a href="https://github.com/jpalanco/alienvault-ossim/blob/master/os-sim/www/wireless/HOWTO">alienvault-ossim/HOWTO at master · jpalanco/alienvault-ossim</a>:<br /><br />
If you want to talk about what this looks like in a fully functional environment, give me a shout. You would be surprised to know what people are trying to do to your wifi.<br /><br />
<br /><br />
<br /><br />
<br /><br />
CONFIGURATION PROCEDURE<br /><br />
<br /><br />
WIDS<br /><br />
----<br /><br />
<br /><br />
* Introduction<br /><br />
<br /><br />
Organizations that require Payment Card Industry's Data Security Standard (PCI DSS) compliance need to follow a set of procedures when deploying 802.11 Wireless Local Area Networks (WLAN).<br /><br />
AlienVault includes a Wireless Compliance module that helps organizations that require PCI DSS compliance.<br /><br />
This module was developed using the information provided by Kismet, an Open Source wireless network detector, sniffer, and intrusion detection system.<br /><br />
The PCI DSS module includes reports and statistics needed to perform a PCI DSS audit successfully.<br /><br />
To run this module you must have kismet installed in your wireless sensors that feed the system with information about wireless networks in the environment that it is being monitored.<br /><br />
<br /><br />
- Kismet:<br /><br />
<br /><br />
Kismet is an 802.11 wireless network detector, sniffer, and intrusion detection system.<br /><br />
Kismet will work with any wireless card which supports raw monitoring mode, and can sniff 802.11b, 802.11a, 802.11g, and 802.11n traffic (devices and drivers permitting).<br /><br />
Kismet also sports a plugin architecture allowing for additional non-802.11 protocols to be decoded.<br /><br />
Kismet identifies networks by passively collecting packets and detecting networks, which allows it to detect (and given time, expose the names of) hidden networks and the presence of non-beaconing networks via data traffic.<br /><br />
Kismet will work with any distribution of Linux. Currently, Linux is the recommended platform for running Kismet because it has the largest selection of rfmon capable drivers.<br /><br />
Kismet is distributed under the GNU General Public License.<br /><br />
<br /><br />
<br /><br />
* Requirements<br /><br />
<br /><br />
In order to install Kismet in your Sensors you will need a wireless card which supports raw monitoring mode.<br /><br />
Kismet Documentation includes a list of known supported wireless cards:<br /><br />
<br /><br />
Atmel_USB, ACX100, ADMTek, Atheros, Cisco, Prism2, Orinoco, WSP100, Drone, wtapfile, pcapfile, wrt54g, ipw2100,<br /><br />
rt2400, rt2500, rt73, rt8180, ipw2200, ipw2915, ipw3945, iwl3945, iwl4965, iwl5000, iwlagn, iwl5100, iwl5300, Broadcom 43xx<br /><br />
<br /><br />
This tutorial was written using a Wireless Card with the RT8718 chipset. Internet connection is required when installing Kismet in the AlienVault Sensor.<br /><br />
This tutorial explains how to setup a remote host running Kismet (REMOTE_WIDS).<br /><br />
An AlienVault Sensor will collect the WIDS events from the remote Wireless Sensor.<br /><br />
<br /><br />
- Location of the wireless Sensor:<br /><br />
<br /><br />
<span class="Apple-tab-span" style="white-space: pre;"> </span>When installing the wireless card you need to make sure that the Wireless Sensor will be deployed in a location in which wireless networks can be monitored.<br /><br />
<span class="Apple-tab-span" style="white-space: pre;"> </span>It doesn't make sense monitoring the wireless networks in a basement, parking or from a closed rack cabinet.<br /><br />
<br /><br />
<br /><br />
* Installation<br /><br />
<br /><br />
To install Kismet execute the following commands in the Linux Terminal:<br /><br />
<br /><br />
# apt-get update<br /><br />
# apt-get install kismet firmware-*<br /><br />
<br /><br />
Kismet will be installed as well as some other libraries required to run Kismet.<br /><br />
<br /><br />
av-wireless-sensor# apt-get install kismet<br /><br />
Reading package lists... Done<br /><br />
Building dependency tree <br /><br />
Reading state information... Done<br /><br />
The following extra packages will be installed:<br /><br />
libc-ares2 libcap2-bin libsmi2ldbl wireshark wireshark-common<br /><br />
Suggested packages:<br /><br />
sox festival gpsd libcap-dev snmp-mibs-downloader<br /><br />
The following NEW packages will be installed:<br /><br />
kismet libc-ares2 libcap2-bin libsmi2ldbl wireshark wireshark-common<br /><br />
0 upgraded, 6 newly installed, 0 to remove and 316 not upgraded.<br /><br />
Need to get 15.9MB of archives.<br /><br />
After this operation, 64.0MB of additional disk space will be used.<br /><br />
Do you want to continue [Y/n]? y<br /><br />
<br /><br />
<br /><br />
* Configuration<br /><br />
<br /><br />
Once Kismet has been installed you will need to set the Kismet configuration based on the Chipset of the Wireless Network card being used.<br /><br />
You will also need to enable the Kismet plugin in the AlienVault Sensor so that AlienVault can start collecting events generated by Kismet.<br /><br />
<br /><br />
- Kismet Configuration<br /><br />
<br /><br />
Kismet configuration is stored in the following file:<br /><br />
<br /><br />
/etc/kismet/kismet.conf<br /><br />
<br /><br />
To start configuring Kismet you will need to find out which is the network interface that is being used by Kismet. To do that execute the following command:<br /><br />
<br /><br />
# iwconfig<br /><br />
<br /><br />
The output of the command shows all the network cards indicating wether it has been recognized as a wireless card or not. In this case our wireless card can be identified by the tag "wlan0"<br /><br />
<br /><br />
av-wireless-sensor# iwconfig<br /><br />
lo no wireless extensions.<br /><br />
<br /><br />
eth0 no wireless extensions.<br /><br />
<br /><br />
wlan0 IEEE 802.11bg ESSID:off/any <br /><br />
Mode:Managed Access Point: Not-Associated Tx-Power=20 dBm <br /><br />
Retry long limit:7 RTS thr:off Fragment thr:off<br /><br />
Encryption key:off<br /><br />
Power Management:off<br /><br />
<br /><br />
To configure your wireless card in the Kismet main configuration file (/etc/kismet/kismet/conf) find the following line:<br /><br />
<br /><br />
source=none,none,addme<br /><br />
<br /><br />
and replace it based on the chipset your wireless card runs and the tag that the system has assigned to your wireless card:<br /><br />
<br /><br />
source=rt8180,wlan0,wlan0-av1<br /><br />
<br /><br />
Sources are defined as:<br /><br />
<br /><br />
source=sourcetype,interface,name<br /><br />
<br /><br />
1. sourcetype: Source types that can be used to se this configuration can be found in a README file at /usr/share/doc/kismet/README.gz (Capture Sources section).<br /><br />
2. interface: This is the name given by the operating system to the Wireles card (In the example wlan0)<br /><br />
3. name: Descriptive name to identify this source<br /><br />
<br /><br />
In this case the Wireless card with the chipset RT8717 uses the source type rt8180.<br /><br />
Now it is time to configure the Kismet logging template. To do this find this line in /etc/kismet/kismet.conf:<br /><br />
<br /><br />
logdefault=Kismet<br /><br />
<br /><br />
and replace Kismet by the IP address of your Wireless Sensor (E.g: 192.168.1.133). This IP address will be used later when inserting the Wireless Sensor in the AlienVault Asset inventory:<br /><br />
<br /><br />
logdefault=192.168.1.133<br /><br />
<br /><br />
To configure the name of the files that Kismet will be creating find the following line in /etc/kismet/kismet.conf:<br /><br />
<br /><br />
logtemplate=/var/log/kismet/%n-%d-%i.%l<br /><br />
<br /><br />
and replace it using the following line:<br /><br />
<br /><br />
logtemplate=/var/log/kismet/%n_%D-%i.%l<br /><br />
<br /><br />
Make sure the following parameters have this values:<br /><br />
<br /><br />
configdir=/var/lib/kismet/<br /><br />
logexpiry=3600<br /><br />
<br /><br />
Make sure that the new configuration does not break Kismet, start Kismet by executing the following command in a linux terminal:<br /><br />
<br /><br />
# kismet<br /><br />
<br /><br />
If the configuration loads successfully Kismet will start and display a Welcome message.<br /><br />
Configure Rsyslog in the remote host running the WIDS to forward the events to the AlienVault Sensor:<br /><br />
Create the following file under /etc/rsyslog.d/<br /><br />
<br /><br />
/etc/rsyslog.d/wids_alienvault.conf<br /><br />
<br /><br />
with the following content:<br /><br />
<br /><br />
*.* @ALIENVAULT_SENSOR_IP<br /><br />
<br /><br />
and reload Rsyslog configuration in the remote host using the following command:<br /><br />
<br /><br />
/etc/init.d/rsyslog reload<br /><br />
<br /><br />
Finally, start Kismet in the remote host running the WIDS using the following command:<br /><br />
<br /><br />
# /usr/bin/kismet_server -l xml -t REMOTE_WIDS_IP -f /etc/kismet/kismet.conf 2>&1 | logger -t REMOTE_WIDS_IP -p local7.1<br /><br />
<br /><br />
<br /><br />
- AlienVault Configuration<br /><br />
<br /><br />
In the AlienVault host create a file under /etc/cron.hourly/ called kismet:<br /><br />
<br /><br />
/etc/cron.hourly/kismet<br /><br />
<br /><br />
with the following content:<br /><br />
<br /><br />
#!/bin/bash<br /><br />
/usr/bin/perl /usr/share/ossim/www/wireless/fetch_kismet.pl<br /><br />
<br /><br />
Copy kismet_sites.pl to a new location:<br /><br />
<br /><br />
cp /usr/share/ossim/www/wireless/kismet_sites.pl /var/ossim/kismet<br /><br />
<br /><br />
Edit /var/ossim/kismet/kismet_sites.pl and edit %site hash to include the Remote WIDS sensor:<br /><br />
<br /><br />
$sites{'REMOTE_WIDS_IP'}='/var/log/kismet';<br /><br />
<br /><br />
where you will have to replace REMOTE_IP by the IP Address of your remote WIDS Sensor. In case you are running multiple WIDS sensor just copy and paste that line as many times as required.<br /><br />
<br /><br />
<br /><br />
The AlienVault Sensor will need to have SSH access to retrieve the XML files generated by Kismet. You will need to exchange the SSH public keys between the AlienVault Sensor and the remote host running the WIDS Sensor.<br /><br />
<br /><br />
To do this execute the following command in the AlienVault Sensor:<br /><br />
<br /><br />
# ssh-copy-id root@REMOTE_WIDS_IP<br /><br />
<br /><br />
<br /><br />
To finish this configuration, you will need to setup your Wireless Sensors in the AlienVault Web Interface. Please refer to the User guide to learn how to setup your Wireless Sensors and locations.<br /><br />
<br /><br />
<br /><br />
Done.<br /><br />
<br /><br />
<br />Anonymoushttp://www.blogger.com/profile/06974639070903005796noreply@blogger.com0tag:blogger.com,1999:blog-1112602186076765757.post-66446268156307091312014-08-04T17:30:00.000-07:002014-08-04T17:30:33.341-07:00Über Operations earns Consulting Partner status for Amazon Web Services(AWS)<div dir="ltr" style="text-align: left;" trbidi="on">
<div style="background-color: white; color: #444444; font-family: Arial, Helvetica, sans-serif; font-size: 15px; line-height: 23.4375px;">
Congratulations to all my colleagues, we worked hard to achieve this goal in a short amount of time! Kudo's to all!</div>
<div style="background-color: white; color: #444444; font-family: Arial, Helvetica, sans-serif; font-size: 15px; line-height: 23.4375px;">
To quote our <a href="https://www.uberops.com/uber-operations-earns-consulting-partner-status-for-amazon-web-servicesaws/">press release</a>: </div>
<div style="background-color: white; color: #444444; font-family: Arial, Helvetica, sans-serif; font-size: 15px; line-height: 23.4375px;">
Über Operations is proud to announce that we have earned Consulting Partner status for Amazon Web Services(AWS)! AWS is a collection of remote computing services that make up a cloud computing platform. Offering these services much faster and cheaper than traditional server computing, Amazon is the Cloud Computing <a href="http://www.gartner.com/technology/reprints.do?id=1-1WWKTQ3&ct=140709&st=sb">leader</a> in the industry.</div>
<div style="background-color: white; color: #444444; font-family: Arial, Helvetica, sans-serif; font-size: 15px; line-height: 23.4375px;">
We at Über Operations started out as customers; our engineers spent time developing and testing small amounts of data housing and data transfer, and as we grew comfortable with the functionality, we were very impressed by the speeds and cost efficiency of the services. We are ecstatic to announce, that after 9 months of trials, implementations, and experimentation, Über Operations is now a fully functional and operational Consulting Partner of AWS. We have 9 accredited team members, including our full time integration engineers, managing partners, operations support staff, contractors, and even our technical interns. Each accredited member is a hard-working individual making up the team that is Über Operations, who has been the healthcare data integration service provider for the state of Florida for the past ten years.</div>
<div class="separator" style="clear: both; text-align: center;">
<a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEjsQuQ1qVL3jVHBB_kjog4-2bnfB4O8-pitvZ9z3QowbYWu6rvBW9stkb0TFpWUwAmGdySK1ZkSlExwZGBT94p8793AMEvWRLpyt4P4r68Qjdqi4wuw769ubRzpKIhi26jat6t-c875I8c/s1600/amazon-web-services-consulting-partner.png" imageanchor="1" style="clear: left; float: left; margin-bottom: 1em; margin-right: 1em;"><img border="0" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEjsQuQ1qVL3jVHBB_kjog4-2bnfB4O8-pitvZ9z3QowbYWu6rvBW9stkb0TFpWUwAmGdySK1ZkSlExwZGBT94p8793AMEvWRLpyt4P4r68Qjdqi4wuw769ubRzpKIhi26jat6t-c875I8c/s1600/amazon-web-services-consulting-partner.png" height="276" width="640" /></a></div>
<div style="background-color: white; color: #444444; font-family: Arial, Helvetica, sans-serif; font-size: 15px; line-height: 23.4375px;">
<br /></div>
<div style="background-color: white; color: #444444; font-family: Arial, Helvetica, sans-serif; font-size: 15px; line-height: 23.4375px;">
This November, 4 of our team members, <a href="https://twitter.com/gonzalezloumiet" style="color: #003399;" target="_blank">@eddie</a>, <a href="https://twitter.com/fransdw" style="color: #003399;" target="_blank">@frans</a>, <a href="https://plus.google.com/u/0/+PhilipMorrison/posts" style="color: #003399;" target="_blank">@phil</a>, and <a href="https://twitter.com/jeffcouch" style="color: #003399;" target="_blank">@jeff</a> will be attending the <a href="https://reinvent.awsevents.com/" style="color: #003399;" target="_blank">AWS re:Invent 2014 conference</a> in Las Vegas, NV to collaborate ideas and sit in on presentations about cloud computing and bootcamps on various topics like coding and Exam Preparation. The guys are excited to represent us in Sin City and rub elbows with other big shots in the business of healthcare data.</div>
<div style="background-color: white; color: #444444; font-family: Arial, Helvetica, sans-serif; font-size: 15px; line-height: 23.4375px;">
Since we earned our Consulting Partner status with AWS, we would love everyone to check out our page in the Amazon Web Services Partner Network <a href="http://www.aws-partner-directory.com/PartnerDirectory/PartnerDetail?Name=Uber+Operations%2C+LLC" style="color: #003399;" target="_blank">here</a>. There you will find the extensive list of clients, certifications, and tools that we use and have to our name. Our data exchange platform, uberXchange, runs on the AWS cloud, and clients of Über Operations and users of the uberXchange platform include the Texas Department of State Health Services (TDSHS) and the Association of Public Health Laboratories (APHL).</div>
<div style="background-color: white; color: #444444; font-family: Arial, Helvetica, sans-serif; font-size: 15px; line-height: 23.4375px;">
This is a very exciting time for us with growth in such a key area for the future of cloud computing and data exchange. We'll keep you posted as we continue to add services on AWS.</div>
</div>
Anonymoushttp://www.blogger.com/profile/06974639070903005796noreply@blogger.com0tag:blogger.com,1999:blog-1112602186076765757.post-78084828062992284652014-08-01T08:40:00.000-07:002014-08-01T08:40:41.139-07:00New Crypto-Ransomware Emerge in the Wild<div dir="ltr" style="text-align: left;" trbidi="on">
More proof that you should always have anti-virus/malware software not only installed, but active and with updated definitions. I use <a href="http://www.sophos.com/en-us/products/unified-threat-management.aspx">Sophos UTM</a> as the first tier as well as keeping my windows machines as well as keeping Sophos Endpoint Protection installed and Up2Date.<br />
<br />
From the story in LinkedIn: <span class="post_h2_a" style="background-color: #f9f7f8; color: black; font-family: Arial, Helvetica, sans-serif; font-size: 22px; letter-spacing: -1px; line-height: 25px; padding-bottom: 2px; text-decoration: none;"><a href="http://blog.trendmicro.com/trendlabs-security-intelligence/new-crypto-ransomware-emerge-in-the-wild/" rel="bookmark" style="background-color: #f9f7f8; color: #666666; font-family: Arial, Helvetica, sans-serif; font-size: 12px; letter-spacing: -1px; line-height: 25px; text-decoration: none;" title="Permanent Link: New Crypto-Ransomware Emerge in the Wild">New Crypto-Ransomware Emerge in the Wild</a></span> </div>
Anonymoushttp://www.blogger.com/profile/06974639070903005796noreply@blogger.com0tag:blogger.com,1999:blog-1112602186076765757.post-58673267609871466932014-07-29T04:32:00.001-07:002014-07-29T04:32:58.515-07:00Now that I know who my phone is trying to talk to, what do I do about it?<div dir="ltr" style="text-align: left;" trbidi="on">
As a follow up to my previous post <a href="http://www.intrasection.com/2014/06/do-you-know-who-your-phone-is-talking.html#gpluscomments">Do you know who your phone is talking to when you're not looking?</a> Discovering who my phone was trying to talk to turned out to be who all the phones in my house, along with every machine with Chrome as a web browser, were trying to talk to. The great and mysterious <a href="https://support.google.com/faqs/answer/174717?hl=en">1e100.net</a>. Seeing the massive volume of dropped packets on my new <a href="http://www.sophos.com/en-us/products/free-tools.aspx">Sophos UTM Home Edition</a> firewall, intrusion prevention, antivirus virtual (now physical) appliance led me to a few other discoveries. Since the replacement of my Airport Extreme as my only barrier between my devices and the chaotic cesspool of infection that is "The Internet" I, along with my wife and daughter discovered that our Android (read Google) phones suddenly had less than half the battery life they did before.<br />
<br />
Being the curious fellow I am I followed that path until I discovered that our phones were experiencing something called <a href="http://forum.xda-developers.com/galaxy-nexus/help/wlanrxwake-wakelock-preventing-gnex-t1915859">wlan_rx_wake</a> and the general consensus is that it is a DHCP or 5GHz issue, or router issue. No one has yet been able to track the root cause 100%.<br />
<br />
If you factor in all of the above, and consider that I am using Chrome on all of my devices, which are all logged into the same google account so that I can open tabs on my phone that I left open on my laptop, etc. And the fact that all of this information is collected and used by Google in order to make happen, it makes perfect sense, to me at least, that this is the root cause of my problem.<br />
<br />
I have tried turning off DHCP and going with sttic IP and switching off 5GHz which made no difference so i am left with either not using Chrome (something i don't think I can do) or figuring out how to allow all of 1e100.net into my network<br />
<br />
So far, using Sophos UTM 9.2 I have been unable to get the firewall/NAT/Application pools correct so that these two underlying domain networks are allowed in, while sitll properly NATing my network.<br />
<br />
This is another thing. Within Sophos, I am masquerading my internal IP addresses into the External IP. How then is is possible for these inbound, net new, connections from the 1e100.net network not only gettingi dropped when I have atempted to allow it, They still show up as attempting to communicate directly to my internal iP enstead of connecting to The externlal IP where i hae routes defined just wating to pass the informatin aloon.<br />
<br />
Maybe my few follower can help me out. My new level of CDO is such that now that I know the problem is there, it must be fixed.<br />
<br />
More to follow my friends, as I figure this thing out.</div>
Anonymoushttp://www.blogger.com/profile/06974639070903005796noreply@blogger.com0tag:blogger.com,1999:blog-1112602186076765757.post-77615181984068587222014-06-21T05:40:00.000-07:002014-06-21T05:40:24.544-07:00Do you know who your phone is talking to when you're not looking?<div dir="ltr" style="text-align: left;" trbidi="on">
Anyone who knows me knows that I love my gadgets. It's not enough to have a gadget. I must know how it works from the inside out, every hidden easter egg from the developers, every possible menu item. I have had phones that I have rooted, installed custom ROMs, I have left some completely stock. The same goes for applications for my phone. I tend to gravitate to android based phones, sorry Apple, no offense, I love your products too. Over the years I have beta tested many an android app. some good, some.. well..<br />
<br />
All of that to prep for this.<br />
<br />
I recently jumped on the #Sophos bandwagon due to work and my general curiosity of learning something new. What does this mean? Well for me, its downloading everything I can get my hands on, and Sophos offers loads of free stuff for folks to test their wares.<br />
<br />
I installed Sophos UTM 9.2 (the free for home use virtual appliance) on my wifes mac mini since it was the closest to the router and had an extra thunderbolt connection... <She is/was not amused with this but that is a different story><br />
<br />
After the initial setup, turning every setting on, having fun with the kids (captured wifi portals are cool), I finally have the setup in what I would call a stable run condition.<br />
<br />
Now we come to the title of this post.<br />
<br />
It became quite clear very quickly that there are WAY too many applications, networks, protocols trying to talk to devices within my network. Come on Apple, do you *have* to have that many UDP ports to make things happen? I remember when it was easy enough to put a rule in that said, if my laptop started the conversation, NAT the return requests and allow them through. Well that works. What doesn't work is when you have an app that registers you on a service, then who knows what network or port will attempt to send you a push update, or poll your device to see if you are still there.<br />
<br />
When it comes to my android phone, I have many apps that I have grown to depend on, these apps pretty much go dormant when I am connected to my Wifi now, then wake up when I turn wifi off or go outside. I have been going through the logs and making rules to allow the applications and protocols through that I deem worthy but then I came across a few networks that were blacklisted, based out of country, and not so savory. Taking inventory of my phone I do not see any obvious contenders. In fact, I recently received a new tablet from my employer and have taken great care to only install corporate-ish type apps that I would use for work purposes only. But yet, there it is in my firewall log file, unsolicited inbound connection attempts to this device as well.<br />
<br />
I will follow up with another post when I find out the culprit, but to all my friends, make sure you are using some kind firewall at home. Use antivirus/antispyware on EVERY device, yes even your phone.<br />
<br /></div>
Anonymoushttp://www.blogger.com/profile/06974639070903005796noreply@blogger.com0tag:blogger.com,1999:blog-1112602186076765757.post-87416947436710890582014-03-27T17:50:00.001-07:002014-03-27T17:50:37.564-07:00Obtained a new domain name<div dir="ltr" style="text-align: left;" trbidi="on">
Went out today and obtained philipjmorrison.com for the sole purpose of posting my up-to-date résumé.<br />
So if you are so inclined, take a peek.<br />
<br />
<a href="http://www.philipjmorrison.com/" target="_blank">Phil's Résumé</a></div>
Anonymoushttp://www.blogger.com/profile/06974639070903005796noreply@blogger.com0tag:blogger.com,1999:blog-1112602186076765757.post-27073435135980427922013-11-08T12:18:00.000-08:002013-11-08T12:18:06.459-08:00Hosting your domain on Google services<div dir="ltr" style="text-align: left;" trbidi="on">
OK, so some of you may have known this but Intrasection.com has been around for a loooooong time. My buddy Bill and I came up with the name and over the years it has lived in many locations.... (even a gigantor server in my bedroom that sounded like a plane.<br />
<br />
Well, as soon as Google started letting other domains host their email services through them I have had Intrasection hosted there. Better spam protection and better kid protection. Boy did Joshua Morrison LOOOOOVE to flip that big old red switch.<br />
<br />
Well speed up to a few weeks ago, Intrasetion got Google "+" ified. And all kind of bells and whistles started going off.<br />
<br />
Now, from my phone, I can put into my Intrasection.com calendar (Pick Phil up from Airport). I can put in a 30 min warning notification, I can even put an estimated travel time when I invite my lovely wife to the meeting invitation...<br />
<br />
Then in a few seconds (since my account is the admin of the domain) I see (in a different color) my wife's calendar entry. Tap on it, click "Accept" and poof, her phone will remind her to do something that I might forget to ask when I am physically close enough to ask her about it.<br />
<br />
Kind of cool I must say....</div>
Anonymoushttp://www.blogger.com/profile/06974639070903005796noreply@blogger.com0tag:blogger.com,1999:blog-1112602186076765757.post-56225809585850305582013-10-30T07:43:00.002-07:002013-10-30T07:43:17.254-07:00Plex Cloud Sync<div dir="ltr" style="text-align: left;" trbidi="on">
All the Plexy goodness in the cloud!!!!! No more dealing with the fact that my home upstream limit buffers too much. Now I just need to get more cloud space.. Or start the cloud shuffle.<br />
<br />
<a href="http://elan.plexapp.com/2013/10/24/introducing-cloud-sync-beta/" target="_blank">http://elan.plexapp.com/2013/10/24/introducing-cloud-sync-beta/</a></div>
Anonymoushttp://www.blogger.com/profile/06974639070903005796noreply@blogger.com0tag:blogger.com,1999:blog-1112602186076765757.post-73845889105182651492013-10-21T14:04:00.001-07:002013-10-21T14:04:41.675-07:00I wonder if it will block the new video adds...<p dir="ltr"><a href="http://feeds.gawker.com/~r/lifehacker/vip/~3/hHKT3hrQxfk/adblock-plus-now-blocks-facebooks-biggest-annoyances-1449271656">http://feeds.gawker.com/~r/lifehacker/vip/~3/hHKT3hrQxfk/adblock-plus-now-blocks-facebooks-biggest-annoyances-1449271656</a></p>
Anonymoushttp://www.blogger.com/profile/06974639070903005796noreply@blogger.com1tag:blogger.com,1999:blog-1112602186076765757.post-76875983566971957542013-10-21T14:00:00.001-07:002013-10-21T14:00:46.677-07:00One more reason, and step, closer to qiit Facebook all together.<p dir="ltr">New and improved dancing bologna. .. ugh!<br>
<a href="http://feedproxy.google.com/~r/Techcrunch/~3/jW7mmr4ier8/">http://feedproxy.google.com/~r/Techcrunch/~3/jW7mmr4ier8/</a></p>
Anonymoushttp://www.blogger.com/profile/06974639070903005796noreply@blogger.com0tag:blogger.com,1999:blog-1112602186076765757.post-17857740615903614212013-10-15T21:43:00.001-07:002013-10-15T21:46:59.733-07:00Smart Bus<p dir="ltr">"Finland's Algorithm-Driven Public Bus" <a href="http://feedly.com/k/18kjTGU">http://feedly.com/k/18kjTGU</a> </p>
<p dir="ltr">Reminds me of the phone a ride at Thule...</p>
Anonymoushttp://www.blogger.com/profile/06974639070903005796noreply@blogger.com0tag:blogger.com,1999:blog-1112602186076765757.post-29783003459292566862013-10-10T07:35:00.004-07:002013-10-10T07:35:48.672-07:00Hard resetting a Galaxy S4<div dir="ltr" style="text-align: left;" trbidi="on">
Just what you want to do on the morning of a day of travel. <b>NOT</b><br />
I installed the wrong combination of apps aparently and my phone was NOT happy. So, this morning I pulled out the battery and did the Vol up + Home + Power trick (after putting the battery back in of course). And did a factory wipe. Now we shall see how good this whole cloud thing is...<br />
<br />
I had just gotten everything where it was working the way I liked it too... What does that mean?<br />
<br />
Oh and if you need a video, here is one.<br />
<br />
<div class="separator" style="clear: both; text-align: left;">
<iframe allowfullscreen='allowfullscreen' webkitallowfullscreen='webkitallowfullscreen' mozallowfullscreen='mozallowfullscreen' width='320' height='266' src='https://www.youtube.com/embed/G77QEe-0Wfw?feature=player_embedded' frameborder='0'></iframe></div>
</div>
Anonymoushttp://www.blogger.com/profile/06974639070903005796noreply@blogger.com0tag:blogger.com,1999:blog-1112602186076765757.post-2593209296679608172013-10-04T10:43:00.000-07:002013-10-04T10:43:12.374-07:00Testing Code<div dir="ltr" style="text-align: left;" trbidi="on">
I just had to share this because it is funny on so many levels. If you like, please follow the link and give props to the original post.<br />
<br />
<div class="separator" style="clear: both; text-align: center;">
<a href="http://1.bp.blogspot.com/-sHnsB-QHZeQ/Uk7P07V8qJI/AAAAAAABJPU/TejpqfCOO8s/s600-no/f141_coder.jpg" imageanchor="1" style="margin-left: 1em; margin-right: 1em;"><img border="0" src="http://1.bp.blogspot.com/-sHnsB-QHZeQ/Uk7P07V8qJI/AAAAAAABJPU/TejpqfCOO8s/s600-no/f141_coder.jpg" /></a></div>
<div class="separator" style="clear: both; text-align: center;">
<br /></div>
<div class="separator" style="clear: both; text-align: left;">
Kudos to the original sharer below:</div>
<a href="https://plus.google.com/117250051594591754800/posts/HNrByToRhmw" target="_blank">https://plus.google.com/117250051594591754800/posts/HNrByToRhmw</a></div>
Anonymoushttp://www.blogger.com/profile/06974639070903005796noreply@blogger.com0tag:blogger.com,1999:blog-1112602186076765757.post-58748752051459308542013-10-01T18:14:00.000-07:002013-10-01T18:14:00.227-07:00Computer History Symposium<div dir="ltr" style="text-align: left;" trbidi="on">
So, I moved back into my home office today. Along the way I found a few things I thought I would share.<br />
<br />
The first is a modified Atari 800 keyboard (complete with rubout key) that was used to hardwire into my <a href="http://en.wikipedia.org/wiki/Timex_Sinclair_1000" target="_blank">Timex Sinclair 1000</a><br />
<div class="separator" style="clear: both; text-align: center;">
<a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEi4kziKU7VEXqPZFhuH5CeCujytzlT3JpykLaNd3Tr7JRe9qunGqtrn4lcs5zwH-pWXYwsI223afzPP_YhdvVYsyjqSevANHw0CZCxlhdiLcBACvK3dZ31uVCa6Z93m41cmINFy-FKIzFE/s1600/20131001_142256_Hampton+Bay+Blvd.jpg" imageanchor="1" style="clear: left; float: left; margin-bottom: 1em; margin-right: 1em;"><img border="0" height="240" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEi4kziKU7VEXqPZFhuH5CeCujytzlT3JpykLaNd3Tr7JRe9qunGqtrn4lcs5zwH-pWXYwsI223afzPP_YhdvVYsyjqSevANHw0CZCxlhdiLcBACvK3dZ31uVCa6Z93m41cmINFy-FKIzFE/s320/20131001_142256_Hampton+Bay+Blvd.jpg" width="320" /></a></div>
My grandfather took the labels off of the Timex and put them on the keys we used. As you can see, time has not been a friend to this guy. I have it in a safe place now.<br />
<br />
<br />
<br />
<br />
<br />
<br />
<br />
<br />
<br />
<br />
<br />
Then, while unboxing old CDs of Office and such... I found this complete set of WIndows 95 floppies...<br />
<div class="separator" style="clear: both; text-align: center;">
<a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEjN6YQ8SQPLqZ2D_0KO8BmkQHvW2yJlGFWOfRqEF9S_EN-sFLY5cX46DtMLOF8wKTvYr4YRTHBd0G6bVmi8mwmtEhY8sIRk__yPJ5D_XMbLvKM6jU8G4ZHDsSutKmU6UMB6wEwvPaVGymI/s1600/20131001_142348_Hampton+Bay+Blvd.jpg" imageanchor="1" style="clear: left; float: left; margin-bottom: 1em; margin-right: 1em;"><img border="0" height="240" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEjN6YQ8SQPLqZ2D_0KO8BmkQHvW2yJlGFWOfRqEF9S_EN-sFLY5cX46DtMLOF8wKTvYr4YRTHBd0G6bVmi8mwmtEhY8sIRk__yPJ5D_XMbLvKM6jU8G4ZHDsSutKmU6UMB6wEwvPaVGymI/s320/20131001_142348_Hampton+Bay+Blvd.jpg" width="320" /></a></div>
I used to keep this kit in my traveling bag of computer stuff. Complete with Tech-tool, duct tape and somewhere around here should be a complete 3 disk set of MS-DOS 6.22. If I find it, I will add it to this post.<br />
<br />
<br /></div>
Anonymoushttp://www.blogger.com/profile/06974639070903005796noreply@blogger.com0tag:blogger.com,1999:blog-1112602186076765757.post-27191440783455628592013-09-28T07:05:00.004-07:002013-09-28T07:05:36.123-07:00High Mifi usage when using virtual machinesA co-worker got me curious about this topic when our group began noticing unusually high bandwidth usage on everyones MiFi devices. Since these connections are metered we began noticing rather quickly that <b>something </b>was consuming massive amounts of data causing the bill at the end of the month to be unbearable. Of course we blamed each other for too much Youtube or other such things but as we looked into it, the common thread was that we all used some form of Virtual Machine.<br />
<br />
It all started with this post:<br />
<br />
<h1 style="background-color: white; border: 0px none; color: #4d4e53; font-family: proxima-nova, Arial, sans-serif; font-size: 30px; line-height: 1.2em; margin: 0px 0px 18px; outline: 0px; padding: 0px; vertical-align: baseline;">
<a href="https://communities.vmware.com/thread/390421?start=15&tstart=0" target="_blank">Constant NetBIOS Name Service query/refresh for Windows 7 VM</a></h1>
<div>
<br /></div>
<div>
After looking at this thread I did ask around and just about everyone in our group had some form of virtual machine running in the background OR had the app open with their virtual machines paused.</div>
<div>
<br /></div>
<div>
I ran my own tests and discovered that if I went to:</div>
<div>
<div class="p1">
<i>/Applications/VMware Fusion.app/Contents/Library</i></div>
<div class="p1">
and ran:</div>
<div class="p1">
</div>
<div class="p1">
<i>sudo ./vmnet-sniffer -e vmnet4</i></div>
<div class="p1">
<i><br /></i></div>
<div class="p1">
vmnet4 is the internal network that I am using for all my virtual machines in order for them to talk to one another. This network was a private network with no connectivity to the internet so I never even considered it a culprit to the increase in bandwidth consumed on my MiFi device.</div>
<div class="p1">
<br /></div>
<div class="p1">
As it turns out. Up until VMware Fusion 6, even having all your virtual machines paused, there was still unusually high levels of chatter going out through my MiFi device.</div>
<div class="p1">
<br />
The problem seems to have gone away with Fusion 6 (when the VMs are off) but <b>when the virtual machines are on the issue is still there</b>.</div>
<div class="p1">
<br /></div>
<div class="p1">
<b>SO</b></div>
<div class="p1">
<b><br /></b></div>
<div class="p1">
If you have no need for WINS, or NETBIOS over TCP/IP..... Turn it <b>OFF</b>.</div>
<div class="separator" style="clear: both; text-align: center;">
<a href="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEgYho5jFdQZV9g7Pn3GtSWhqweSJB_XuOMuUKGi1ySLbs319RtJ6MKqwypm8CW4zS2ZnEybYIVlTiQKTqglZ_qKz3UnS9mel0M-X8TlmTUYxBChYqT-RLKIfQoakgVxsti0Oyw1iDNCc0w/s1600/Turn-OFF-NetBIOS+over+TCIP.png" imageanchor="1" style="clear: left; float: left; margin-bottom: 1em; margin-right: 1em;"><img border="0" height="320" src="https://blogger.googleusercontent.com/img/b/R29vZ2xl/AVvXsEgYho5jFdQZV9g7Pn3GtSWhqweSJB_XuOMuUKGi1ySLbs319RtJ6MKqwypm8CW4zS2ZnEybYIVlTiQKTqglZ_qKz3UnS9mel0M-X8TlmTUYxBChYqT-RLKIfQoakgVxsti0Oyw1iDNCc0w/s320/Turn-OFF-NetBIOS+over+TCIP.png" width="278" /></a></div>
<div class="p1">
Unless you are testing some application that still uses it all it is doing is causing constant chatter on the network. Which, if your main connection to the internet happens to be your cell phone or a MiFi device..... Get ready for a big bill.<br />
<br /></div>
</div>
Anonymoushttp://www.blogger.com/profile/18277549727629573410noreply@blogger.com0tag:blogger.com,1999:blog-1112602186076765757.post-82148120895212140212013-09-24T15:04:00.001-07:002013-09-24T15:08:43.816-07:00Android users beware! iMessage app looks phishyiMessage makes the jump to Android in the form of an unofficial app <a href="http://drippler.com/updates/share/imessage-makes-jump-android-form-unofficial-app%20Via%20j.mp/drippler_app" target="_blank">http://drippler.com/updates/share/imessage-makes-jump-android-form-unofficial-app Via j.mp/drippler_app</a>Anonymoushttp://www.blogger.com/profile/18277549727629573410noreply@blogger.com0tag:blogger.com,1999:blog-1112602186076765757.post-80927127787063699112013-09-24T06:10:00.000-07:002013-09-24T06:10:27.872-07:00This just inApple must have fixed something because my living room Apple TV is now upgrading to iOS 6.....<br />
<br />
Now lets just see if PlexConnect still works.Anonymoushttp://www.blogger.com/profile/18277549727629573410noreply@blogger.com0tag:blogger.com,1999:blog-1112602186076765757.post-19613864285558734742013-09-23T06:20:00.001-07:002013-09-23T09:23:33.955-07:00mxHero<div dir="ltr">
Im qctually going to start using this... as an oldschool email admin inlike just about every feature. Now to get it to work ilas an addon to mac mail...</div>
<div dir="ltr">
This Week's Top Downloads - <a href="http://pulse.me/s/qyzc0">http://pulse.me/s/qyzc0</a></div>
Anonymoushttp://www.blogger.com/profile/18277549727629573410noreply@blogger.com0tag:blogger.com,1999:blog-1112602186076765757.post-74555995804279573562013-09-23T06:07:00.001-07:002013-09-23T06:12:24.183-07:00Apple TV 6 pulled?<p dir="ltr">Worked fine on the one I travel with ao imagine my surprise when I cant get rhe one at home to update..  at least now I know why <u>now</u></p>
<p dir="ltr">Apple TV 6.0 quietly pulled following bricked updates, connectivity issues - <a href="http://pulse.me/s/qz0ny">http://pulse.me/s/qz0ny</a></p>
Anonymoushttp://www.blogger.com/profile/18277549727629573410noreply@blogger.com0tag:blogger.com,1999:blog-1112602186076765757.post-76535056359316057652013-09-22T17:52:00.001-07:002013-09-22T21:22:02.302-07:00FIPS error in .Net<div dir="ltr">
This link came in handy when I ran into a domain that had FIPS turned on by default via GPO. It doesn't matter if it is not a sharepoint app. If you are using any .Net app in an environment like this, you may get the errors described in the link below.</div>
<div dir="ltr">
<br /></div>
<div dir="ltr">
The key is to edit the machine.config file (probably found in <span style="background-color: white; font-family: ArialMT; font-size: 10pt;">C:\WINDOWS\Microsoft.NET\Framework\v2.0.50727\CONFIG)</span></div>
<div dir="ltr">
<span style="background-color: white; font-family: ArialMT; font-size: 10pt;">and make sure there is a section like this. <b>*I had to add this section*</b></span></div>
<div dir="ltr">
</div>
<div class="page" title="Page 1">
<div class="section" style="background-color: rgb(100.000000%, 100.000000%, 100.000000%);">
<div class="layoutArea">
<div class="column">
<span style="color: rgb(0.000000%, 0.000000%, 100.000000%); font-family: 'Courier'; font-size: 11.000000pt;"><</span><span style="color: rgb(63.920000%, 8.240000%, 8.240000%); font-family: 'Courier'; font-size: 11.000000pt;">configuration</span><span style="color: rgb(0.000000%, 0.000000%, 100.000000%); font-family: 'Courier'; font-size: 11.000000pt;">></span><br />
<span style="color: rgb(0.000000%, 0.000000%, 100.000000%); font-family: 'Courier'; font-size: 11.000000pt;"> <</span><span style="color: rgb(63.920000%, 8.240000%, 8.240000%); font-family: 'Courier'; font-size: 11.000000pt;">runtime</span><span style="color: rgb(0.000000%, 0.000000%, 100.000000%); font-family: 'Courier'; font-size: 11.000000pt;">>
</span><br />
<span style="color: rgb(0.000000%, 0.000000%, 100.000000%); font-family: 'Courier'; font-size: 11.000000pt;"> <</span><span style="color: rgb(63.920000%, 8.240000%, 8.240000%); font-family: 'Courier'; font-size: 11.000000pt;">enforceFIPSPolicy </span><span style="color: rgb(100.000000%, 0.000000%, 0.000000%); font-family: 'Courier'; font-size: 11.000000pt;">enabled</span><span style="color: rgb(0.000000%, 0.000000%, 100.000000%); font-family: 'Courier'; font-size: 11.000000pt;">=</span><span style="font-family: 'Courier'; font-size: 11.000000pt;">"</span><span style="color: rgb(0.000000%, 0.000000%, 100.000000%); font-family: 'Courier'; font-size: 11.000000pt;">false</span><span style="font-family: 'Courier'; font-size: 11.000000pt;">"</span><span style="color: rgb(0.000000%, 0.000000%, 100.000000%); font-family: 'Courier'; font-size: 11.000000pt;">/></span><br />
<span style="color: rgb(0.000000%, 0.000000%, 100.000000%); font-family: 'Courier'; font-size: 11.000000pt;"> </</span><span style="color: rgb(63.920000%, 8.240000%, 8.240000%); font-family: 'Courier'; font-size: 11.000000pt;">runtime</span><span style="color: rgb(0.000000%, 0.000000%, 100.000000%); font-family: 'Courier'; font-size: 11.000000pt;">>
</span><br />
<span style="font-family: Courier; font-size: 11pt;"><span style="color: blue;"></</span></span><span style="color: rgb(63.920000%, 8.240000%, 8.240000%); font-family: 'Courier'; font-size: 11.000000pt;">configuration</span><span style="color: rgb(0.000000%, 0.000000%, 100.000000%); font-family: 'Courier'; font-size: 11.000000pt;">><br />
</span></div>
</div>
</div>
</div>
<div dir="ltr">
<br /></div>
<div dir="ltr">
Props to the poster of the link below</div>
<div dir="ltr">
<i><a href="http://sharepoint4ever.blogspot.com/2011/09/fips-problem-in-sharepoint-2010.html?m=1">http://sharepoint4ever.blogspot.com/2011/09/fips-problem-in-sharepoint-2010.html?m=1</a></i></div>
<div dir="ltr">
<br /></div>
<div dir="ltr">
Also found this information helpfull</div>
<div dir="ltr">
<a href="http://support.microsoft.com/kb/811833">http://support.microsoft.com/kb/811833</a></div>
<div dir="ltr">
<br /></div>
<div dir="ltr">
I found that even if the global registry key was not set, if you are getting an error like this:</div>
<div dir="ltr">
<br /></div>
<div dir="ltr">
</div>
<div class="p1">
<span class="s1"><b><i>This implementation is not part of the Windows Platform FIPS validated cryptographic algorithms.</i> </b></span></div>
<div class="p1">
<span class="s1"><b><br /></b></span></div>
<div class="p1">
<span class="s1">Then just try adding that section above to the machine file. I don't remember if a reboot was necessary but like all things Microsoft, it couldn't hurt...</span></div>
Anonymoushttp://www.blogger.com/profile/18277549727629573410noreply@blogger.com0tag:blogger.com,1999:blog-1112602186076765757.post-62857852512084362692013-09-21T08:58:00.001-07:002013-09-21T09:03:22.955-07:00Quick office = more google drive space<p dir="ltr">Download, install, register with tour gmail for extra 10gig gdrive space...  even if you think you wont use it, we can all use more cloud storage...</p>
<p dir="ltr"><a href="https://play.google.com/store/apps/details?id=com.quickoffice.android">https://play.google.com/store/apps/details?id=com.quickoffice.android</a></p>
Anonymoushttp://www.blogger.com/profile/18277549727629573410noreply@blogger.com0tag:blogger.com,1999:blog-1112602186076765757.post-44562274752254721172013-09-21T06:58:00.001-07:002013-09-21T06:58:17.312-07:00Maybe it was because the NSA didnt get enough detail?Apple releases iOS 7.0.1 update to fix fingerprint scanner - http://pulse.me/s/qvEKKAnonymoushttp://www.blogger.com/profile/18277549727629573410noreply@blogger.com0tag:blogger.com,1999:blog-1112602186076765757.post-6082795682458431522013-09-21T06:54:00.001-07:002013-09-21T06:59:59.468-07:00Does it break PlexConnect?Apple TV Just Got Support For iTunes Radio and More - http://pulse.me/s/qw764Anonymoushttp://www.blogger.com/profile/18277549727629573410noreply@blogger.com0tag:blogger.com,1999:blog-1112602186076765757.post-17089803629317284732013-09-21T06:46:00.001-07:002013-09-21T06:46:46.735-07:00Now this is phunny.This Week's Top Comedy Video: Everything Is Samuel L. Jackson's Fault - http://pulse.me/s/qwzIeAnonymoushttp://www.blogger.com/profile/18277549727629573410noreply@blogger.com0tag:blogger.com,1999:blog-1112602186076765757.post-35867593217185101162013-09-21T06:39:00.001-07:002013-09-21T06:39:04.807-07:00Always act like your being recorded<p dir="ltr">You are anyway...</p>
<p dir="ltr">Act Like You're Being Recorded When in the Heat of an Argument - http://pulse.me/s/qwNU2</p>
Anonymoushttp://www.blogger.com/profile/18277549727629573410noreply@blogger.com0