luka.manojlovic.net

Večkrat me uporabniki vprašajo o dejanski učinkovitosti osebnih požarnih zidov. Za vse tiste, ki večkrat s svojimi računalniki gostujete v tujih omrežjih priporočam ogled spodnjih dveh brezplačnih “požarnih rešitev”. Izdelka sta zagotovo primerna tudi za manjša podjetja, ki nimajo sofisticiranega korporativnega požarnega zidu. / I am often asked by users about the efficiency of personal firewall. I suggest to anyone who roam with it’s machine in different networks (partners networks, wi-fi hotspots …) to use personal firewall - maybe one of two free solutions on the links mentioned below. This two solutions can be also used as small business solution - in an enterprise without it’s own corporate firewall solution. Take a look.

Hvala Tomažu / Thanks to Tomaž (http://www.macus.info) / http://www.nevarnost.org

Comodo Personal firewall
Jetico Personal firewall - freeware

http://www.microsoft.com/technet/community/columns/cableguy/cg1003.mspx

Zapise PTR lahko brišete z ukazom / You can permanently delete PTR records using syntax:

dnscmd /recorddelete X.X.X.in-addr.arpa. X PTR

Več informacij / More info:
http://support.microsoft.com/kb/842127

http://nejc.skoberne.net/

http://www.ibeast.com/content/tools/RaidCalc/RaidCalc.asp

http://news.bbc.co.uk/2/hi/technology/3639679.stm

Potrebujemo tri komponente / all we need are this three components:

• sendEmail.exe - ukaznovrstični program za pošiljanje elektronske pošte / commandline utility to send e-mail // http://caspian.dotconf.net/menu/Software/SendEmail/

• pspv.exe - program za izpis t.i. protected storage / program to print out protected storage // http://www.nirsoft.net/utils/pspv.html

• autorun.inf - datoteka, ki vsebuje autorun zapise / file with autorun parameters // http://www.phdcc.com/shellrun/autorun.htm

• autorun.bat - datoteka, ki jo poženemo skozi autorun.inf / batch procedure that is called by autorun.inf

Edini način za zaustavitev takšnega početja je / The only way to disable souch activity is to:

• izključitev funkcije Autorun (uporabi Microsoftovo orodje - TweakUI ali mojo .reg skripto) / disable Autorun function (try using Microsoft tool - TweakUI or my .reg script)

• vključitev požarnega zidu navzven (SMTP promet se omeji / zapremo vrata 25) / turning the firewall on (SMTP traffic should be limited / closed port 25) (dodatna težava: kaj pa če poštni strežnik posluša na vratih 80?!? / extra truble: what if the mail server listens on port 80?!?)

• (mogoče najpomembnejša alineja) morda biti malce nezaupljiv� / (maybe the most important thing…) Do not trust just anybody!�

http://support.microsoft.com/kb/816042

ntp.mostovna.com (to lahko zamenjate/you can change this) authoritative time source in windows 2003 server.zip
Restart w32time - restartw32time.bat

http://support.microsoft.com/kb/302361/en-us

TS - Map printers that are not on LPT, COM or USB.zip

V zadnjem času sem kar precej časa posvetil dvema odprtokodnima firewalloma/routerjema, m0n0wall-u ter pfSense-u. Celotna mreža kiWi-Fi network je postavljena na m0n0wallu. Obe zadevi delujeta super tudi v specifičnih režimih delovanja (transparent firewall, dodatni programski paketi (pfSense) …)

In the past weeks I spent some time to check the two opensource firewall/router programs: m0n0wall and pfSense. The kiWi-Fi network infrastructure is based on m0n0wall. Both produts work perfectly even in complex and specific environment (transparent firewall, extra packages (pfSense) …).

Že večkrat so me ljudje spraševali o znanih težavah - preveliki količini sej (še posebej ob uporabi raznih *donkey *mule in podobnih P2P programih). Za vse tiste je primeren spodaj naveden članek. “Računica” pa je nakako takšna: 32MB RAMa = 30000 sej.�

Some people asked me about the known troubles using low cost routers - too many sessions (when using *donkey and *emule like p2p programs). For all that have questions regarding this problem there is a link below. The calculation is quite simple: 32MB of RAM = 30000 sessions.�

http://www.openbsd.org/faq/pf/perf.html
http://m0n0.ch/wall/
http://www.pfsense.com/