In my cases I wanted to filter outbould traffic from my servers. especially http traffic. But they do need access to the microsoft server. Below is the IP spans i have found being used by Microsoft.com and windowsupdate.com
207.46.0.0/16
213.0.0.0/8
65.52.0.0/14
94.245.64.0/18
Scenario: You want to determine which ports are listening on an Microsoft server and the belonging process
Run the command netstat -ano |find /i "listening"
The last column shows the PID (ProcessID) the port belongs to. Use Process Explorer (http://technet.microsoft.com/en-us/sysinternals/bb896653) to find out the name of the executable that belongs to the PID .
Scenario: The Sharepoint Products and Technologies Configuration Wizard hangs at step 5.
Nothing really happens, step 5 just won’t finish. I managed to get the wizard to at least crash by starting and stopping the Windows Sharepoint Search Service. This way, i also got an link to the log file. The last log entry before the wizard crashed was:
Calling SPServiceInstance.Provision for instance Microsoft.SharePoint.Search.Administration.SPSearchServiceInstance, service Microsoft.SharePoint.Search.Administration.SPSearchService
My solution was to simply delete all registry keys under
HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Shared Tools\Web Server Extensions\12.0\WSS\Services\
that had the term “search” in the key name, such as:
Microsoft.SharePoint.Search.Administration.SPSearchService
When i ran the wizard again it ran like a charm.
Tired of having to logon at least twice when opening a document from a Sharepoint document library?
This solution will significally reduce that number:
WLAN is in many ways an insecure way to communicate. However, here is a few things to think about when surfing on WLAN to avoid connecting to a rouge hot-spots (main article, see http://www.esecurityplanet.com/features/article.php/3908596/article.htm).
1. Make sure the name of the WLAN is expected.
2. When connecting, make sure that the WLAN is not marked as “Ad Hoc”, this means that the hotspot i actually a computer with a network card in “infrastructure” mode. This is a common man in the middle attack.
3. If you suddenly gets disconnect when having a good signal, be careful when reconnecting – it might be an attack that caused the disconnect, and when you reconnect you connect to a rouge hotspot with the same name.
4. Commersial hotspot suppliers almost always make you pay in some way. If you suddenly can surf without paying, something is probably wrong.
5. If the websites you visit looks unfamiliar in any way, small unexpected changes etc, be careful, it might not be the real website.
6. If websites with certificates that is usually marked as “green” suddenly is marked as “red”, be careful.
7. If you plan to login to a webpage such as Facebook, go to https://www.facebook.com instead of http://www.facebook.com to prevent eavesdropping. When on an public WLAN, avoid using sites that don’t support https.
Scenario: The ordinary document library description does not offer any graphical customization. As a result, it is often overlooked by most users.
Solution: Add some html code with a simple border
Step by step:
<TABLE BORDER=1 RULES=NONE FRAME=BOX BORDERCOLOR=RED>
<TR> <TD><b>Instructions</b></TD> </TR>
<TR> <TD>Choose suitable template under the New menu</TD> </TR>
</TABLE>
Scenario: You want to import an Word table to Access without loosing line break within the table.
Scenario: You have an Excel sheet with one column containing text that also has line breaks with the cell, for example bullet lists. You want to import this table to Access and keep the line breaks untouched.
Solution
Scenario: You have a table in Word that you want to paste to Excel. However the Word table contains line or paragraph breaks, for example bullet lists within the cells. These cause the Word table rows to be slit over several rows in Excel.
Solution
I did have som trouble with the search and replace in Exel. It did not insert a new, it inserted like three new lines for each ; . Changing to a different computer did help, so really don’t know what the problem was.
Scnario: You want to dual boot a Samsung NC10 running Windows 7 with Jolicloud OS.
1. Download the Jolicloud installer (.exe)
2. Run it and follow the instructions. I chose to install om the same Partition that were Systemdisk for Windows 7 (C:\).
3. Everything went fine, but were not able to register with Jolicloud using Facebook (got ‘Server is Down’, reported it several times and waited for weeks without any change)
4. Created a ordnary account (without using facebook), went well.
5. Used the Jolicloud ‘app store’ to install my favorite apps, such as Spotify, Dropbox, Chrome etc.
6. For those applications that I use but weren’t available on the app store (Pwd Safe, Jungledisk, I used Wine to run them on the Linux Ubuntu system. For a simple guide for how to use Wine, see http://frankscorner.org/index.php?p=quickstart
Scenario: You want to change the explorer background of a folder on an Windows XP computer.
Step 1.
Open a command prompt and run the command attrib +s c:\test
Where C:\test should be replaced with the path to folder of your choice.
Step 2.
Browse to the folder, open the Tools menu, choose Folder options. Pick the tab View. Make sure Show hidden files are checked and Hide protected operating system files are unchecked.
Step 3.
You should now see a file called system.ini (otherwise, just create it using notepad).
Add the following lines to it.
[ExtShellFolderViews]
{BE098140-A513-11D0-A3A4-00C04FD706EC} = {BE098140-A513-11D0-A3A4-00C04FD706EC}[{BE098140-A513-11D0-A3A4-00C04FD706EC}]
Attributes=1
IconArea_Image=path_of_the_wallpaper
IconArea_Text=0x00000000
Save and close notepad. Close the folder and open it. The background should now have changed.
Scenario: You recieve a large amount of Event ID 675 on a DC where client Adress is 127.0.0.1. It is usally from the administrator account.
This can be a result of a number of issues, first check that no service or process is using the particular account.
In my case it was problem with the DHCP DNS registration that were set to use the Administrator account. So, go look at:
Manage Your Server –> Manage this DHCP server –> In the DHCP dialog; right click the server and choose Properties –> Advanced tab –> Credentials. Make sure the account entered there have necessary rights and that the password is correctly entered (see http://support.microsoft.com/kb/816592 for details).
Scenario: You want to remotely administrate client computers but can’t connect because they have went to sleep.
Step 1. Enable WOL.
Open the properties for the network card, choose Power Management, make sure Allow this device to bring the computer out of standby and Only allow management stations to bring the computer out of standby are both checked. In Windows 7 the latter refers to a “magic packet”.
Note that only enabling WOL in windows will not make it possible to wake a turned off computer or computer hibernating, only wake a computer in “sleep mode”. To be able to wake a turned off computer you need BIOS support. Enter BIOS and look for WOL / Wake on LAN, it is usually under “Power options”.
Step 2. Send a magic packet
This can be carried out in a number of ways. Here is an easy to use tool: http://www.gammadyne.com/cmdline.htm#wol
This article aims to investigate the possibilities, limitations and differences between the old NT command “net send” and the newer msg.exe utility.
net send (usage: net send [computername] [message]
Conditions:
msg.exe
Conditions
Note: If you have trouble with “Access denied” problems, try this registry hack: Locate the DWORD key “AllowRemotePRC” in HKLM/System/CurrentControlSet/Control/Terminal Server. it should be set to “1”.
If none of these meet your requirements, the following third party softwares are available:
How word documents and word templates relates to each other.
When a word document is created, it is created from an template, normally the normal template.
It inherits three things:
These three parts are now copied to the document and the relation between the template and the document is lost.
How to change the template:
Styles:
Update the document with it’s template’s styles. Tools –> Tempaltes and Add-ins. Tick the Automatically Update Document AStyles. Apply and then untick the box.
Content:
No other way den manually copy and paste
Page Settings
As with content.
Scenario: You have a trust between two domain and wants the domain admins of the remote domain to have local administrator privileges on the computers in the local domain.
Use GPO: Computer Settings –> Windows Settings –> Security Settings –> Restricted Groups. Add a group named “Administrators” (referring to each computers local group). Under “Members”; add the following accounts and groups:
Important notice: The member you add are exactly the ones that will be member on each computer; existing local exceptions will be overridden.
Scenario: Several IPsec policy filters matches a packet, which filter takes precedence?
Scenario: User accounts are continuosly being locked out as a result of numerous failed password attempts.
Microsoft tool “Account Lockout and Management Tools” (http://www.microsoft.com/downloads/details.aspx?FamilyId=7AF2E69C-91F3-4E63-8629-B999ADDE0B9E&displaylang=en) kan användas.
Documentation: http://technet.microsoft.com/en-us/library/cc738772(WS.10).aspx
Check functions that be configured to use specific user accounts to run under, for example:
Mapped shares/drives
Services
Scheduled tasks
Software that uses cashed credentials.
Requires at least Windows Vista
http://msdn.microsoft.com/en-us/library/aa390433(VS.85).aspx
Scenario: You want to move your outlook datafiles to another location for some reason, in my case, store them on an encrypted drive. Another reason would be to keep them on a file share for the sake of backup.
Locate the files, usually in C:\Documents and Settings\User\Local Settings\Application Data\Microsoft\Outlook. Move all the files to the new preferred location.
If you have an IMAP account like GMAIL, go to Control Panel –> E-amil –> Data files. Double click the one associated with the Gmail account. It says it can’t find, press OK and navigate to the new location. Click OK.
Now you can open Outlook. If you use any other data files you will now be prompted for their new location.
Scenario: Some or all of the items in a Listbox are invisible:
Cause: The properties from the field in the original table from which the data are pulled have format setting in it’s properties.
Solution: Track from which table data are pulled in the SQL statement that populates the listbox. Open the table in design view and check the properties for the current field and make sure that the format propery are empty.
Enabling anonymous access to a sharepoint site requires to separate activities.
1. Enable in Central Administration: Application management --> authentication providers --> Default --> Enable anonymous access
Note: DO NOT CHANGE ANYTHING IN IIS
Navigate to the site where you want to enable anonymous access: Site actions --> Site settings --> Advanced permissions --> Settings --> Here you should see an option for Anonymous access.
Reliable process for security policy development
“We focus in this paper on the problem of configuring and managing network security devices, such as Firewalls, Virtual Private Network (VPN) tunnels, and Intrusion Detection Systems (IDSs). Our proposal is the following. First, we formally specify the security requirements of a given system by using an expressive access control model. As a result, we obtain an abstract security policy, which is free of ambiguities, redundancies or unnecessary details. Second, we deploy such an abstract policy through a set of automatic compilations into the security devices of the system. This proposed deployment process not only simplifies the security administrator's job, but also guarantees a resulting configuration free of anomalies and/or inconsistencies.”
http://www.mydigitallife.info/2008/01/01/schedule-synctoy-to-run-and-automatically-and-repetitively/
Schedule SyncToy Sync Task in Windows Vista
Note: there is a space before the hyphen but not one after the R. If the folder pair name contains a space, surround it with quotation marks, as the example above shows. For another example, assume that SyncToy is in the folder named C:\Program Files\SyncToy 2.0\ and that you want to run a folder pair named “My folder pair.” Enter the command line as follows, including the quotation marks: “C:\Program Files\SyncToy 2.0\SyncToyCmd.exe” -R”My folder pair.” Note that there are two sets of quotation marks in this case: one is around the path to the SyncToy program file and the other surrounds the folder pair name.
Schedule a SyncToy Task in Windows XP
Note: there is a space before the hyphen but not one after the R. If the folder pair name contains a space, surround it with quotation marks, as the example above shows. For another example, assume that SyncToy is in the folder named C:\My Folder and that you want to run a folder pair named “My folder pair.” Enter the command line as follows, including the quotation marks: “C:\Program Files\SyncToy 2.0\SyncToyCmd.exe” -R”My folder pair.” Note that there are two sets of quotation marks in this case: one is around the path to the SyncToy program file and the other surrounds the folder pair name.
Scenario: You want to install Eventsentry on a 64 bit server hosting sharepoint. The problem is that the web reports in Eventsentry, in the case of 64 bit, require IIS to run in 32 bit mode, which is not an option an an 64 bit SP install. The approach was to put the web reports on a different server.
Scenario: A Sharepoint stand-alone (Basic Install with SQL Express) environment needs to be moved from a 32 bit server to a 64 bit server. The orignal installation is done from a Swedish installer while the new installation is done from a english installation.
This is what worked for me: