Želite več od vašega osebnega požarnega zidu? / Do you want to get more from your personal firewall?

Leave a reply

Večkrat me uporabniki vprašajo o dejanski učinkovitosti osebnih požarnih zidov. Za vse tiste, ki večkrat s svojimi računalniki gostujete v tujih omrežjih priporočam ogled spodnjih dveh brezplačnih “požarnih rešitev”. Izdelka sta zagotovo primerna tudi za manjša podjetja, ki nimajo sofisticiranega korporativnega požarnega zidu. / I am often asked by users about the efficiency of personal firewall. I suggest to anyone who roam with it’s machine in different networks (partners networks, wi-fi hotspots …) to use personal firewall – maybe one of two free solutions on the links mentioned below. This two solutions can be also used as small business solution – in an enterprise without it’s own corporate firewall solution. Take a look.

Hvala Tomažu / Thanks to Tomaž (http://www.macus.info) / http://www.nevarnost.org

Comodo Personal firewall
Jetico Personal firewall – freeware

Razlaga kljukice – “Use default gateway on remote network” pri uporabi VPN povezav. / Explanation of the checkbox – “Use default gateway on remote network” when using VPN connections.

Leave a reply

http://www.microsoft.com/technet/community/columns/cableguy/cg1003.mspx

Problem pri brisanju PTR zapisov, ce smo jih dodali skozi CNAME ali A zapis z velikimi črkami… / Problem with PTR records that were added with CNAME or A record using upercase.

Leave a reply

Zapise PTR lahko brišete z ukazom / You can permanently delete PTR records using syntax:

dnscmd /recorddelete X.X.X.in-addr.arpa. X PTR

Več informacij / More info:
http://support.microsoft.com/kb/842127

Nejc Skoberne – Nejko’s randomness

Leave a reply

http://nejc.skoberne.net/

Včasih rabiš zračunat koliko diskov potrebuješ za sestavit RAID0,1,3,4,5… / Sometimes you need to calculate the number of disks and the size of the RAID1,3,4,5…

Leave a reply

http://www.ibeast.com/content/tools/RaidCalc/RaidCalc.asp

Geslo za čokolado. :) / Password for a chocolate. :)

Leave a reply

http://news.bbc.co.uk/2/hi/technology/3639679.stm

Kako lahko preprost predstavitveni CD pošlje vaša gesla po elektronski pošti nepridipravu… / How can a simple presentation CD send your password stored in your protected storage to the hacker…

Leave a reply

Potrebujemo tri komponente / all we need are this three components:

sendEmail.exe – ukaznovrstični program za pošiljanje elektronske pošte / commandline utility to send e-mail // http://caspian.dotconf.net/menu/Software/SendEmail/

pspv.exe – program za izpis t.i. protected storage / program to print out protected storage // http://www.nirsoft.net/utils/pspv.html

autorun.inf – datoteka, ki vsebuje autorun zapise / file with autorun parameters // http://www.phdcc.com/shellrun/autorun.htm

autorun.bat – datoteka, ki jo poženemo skozi autorun.inf / batch procedure that is called by autorun.inf

Edini način za zaustavitev takšnega početja je / The only way to disable souch activity is to:

izključitev funkcije Autorun (uporabi Microsoftovo orodje – TweakUI ali mojo .reg skripto) / disable Autorun function (try using Microsoft tool – TweakUI or my .reg script)

vključitev požarnega zidu navzven (SMTP promet se omeji / zapremo vrata 25) / turning the firewall on (SMTP traffic should be limited / closed port 25) (dodatna težava: kaj pa če poštni strežnik posluša na vratih 80?!? / extra truble: what if the mail server listens on port 80?!?)

(mogoče najpomembnejša alineja) morda biti malce nezaupljiv 🙂 / (maybe the most important thing…) Do not trust just anybody! 🙂

Kako nastaviti avtoritativen zunanji vir točnega časa v sistemu MS Windows server 2003 / How to configure an authoritative time server in Windows Server 2003

Leave a reply

http://support.microsoft.com/kb/816042

ntp.mostovna.com (to lahko zamenjate/you can change this) authoritative time source in windows 2003 server.zip
Restart w32time – restartw32time.bat

Tiskalniki, ki uporabljajo vrata, ki se ne začnejo z COM, LPT ali USB, niso preusmerjeni v seji oddaljenega namizja ali terminalskih storitev. / Printers That Use Ports That Do Not Begin With COM, LPT, or USB Are Not Redirected in a Remote Desktop or Terminal Services Session

Leave a reply

http://support.microsoft.com/kb/302361/en-us

TS – Map printers that are not on LPT, COM or USB.zip

Ko se sprašuješ o firewallu in usmerjevalniku… / When you are asking about what kind of firewall and router to use…

Leave a reply

V zadnjem času sem kar precej časa posvetil dvema odprtokodnima firewalloma/routerjema, m0n0wall-u ter pfSense-u. Celotna mreža kiWi-Fi network je postavljena na m0n0wallu. Obe zadevi delujeta super tudi v specifičnih režimih delovanja (transparent firewall, dodatni programski paketi (pfSense) …)

In the past weeks I spent some time to check the two opensource firewall/router programs: m0n0wall and pfSense. The kiWi-Fi network infrastructure is based on m0n0wall. Both produts work perfectly even in complex and specific environment (transparent firewall, extra packages (pfSense) …).

Že večkrat so me ljudje spraševali o znanih težavah – preveliki količini sej (še posebej ob uporabi raznih *donkey *mule in podobnih P2P programih). Za vse tiste je primeren spodaj naveden članek. “Računica” pa je nakako takšna: 32MB RAMa = 30000 sej. 🙂

Some people asked me about the known troubles using low cost routers – too many sessions (when using *donkey and *emule like p2p programs). For all that have questions regarding this problem there is a link below. The calculation is quite simple: 32MB of RAM = 30000 sessions. 🙂

http://www.openbsd.org/faq/pf/perf.html
http://m0n0.ch/wall/
http://www.pfsense.com/

Luka Manojlovic

Luka's technical blog

Želite več od vašega osebnega požarnega zidu? / Do you want to get more from your personal firewall?

Razlaga kljukice – “Use default gateway on remote network” pri uporabi VPN povezav. / Explanation of the checkbox – “Use default gateway on remote network” when using VPN connections.

Problem pri brisanju PTR zapisov, ce smo jih dodali skozi CNAME ali A zapis z velikimi črkami… / Problem with PTR records that were added with CNAME or A record using upercase.

Nejc Skoberne – Nejko’s randomness

Včasih rabiš zračunat koliko diskov potrebuješ za sestavit RAID0,1,3,4,5… / Sometimes you need to calculate the number of disks and the size of the RAID1,3,4,5…

Geslo za čokolado. :) / Password for a chocolate. :)

Kako lahko preprost predstavitveni CD pošlje vaša gesla po elektronski pošti nepridipravu… / How can a simple presentation CD send your password stored in your protected storage to the hacker…

Kako nastaviti avtoritativen zunanji vir točnega časa v sistemu MS Windows server 2003 / How to configure an authoritative time server in Windows Server 2003

Tiskalniki, ki uporabljajo vrata, ki se ne začnejo z COM, LPT ali USB, niso preusmerjeni v seji oddaljenega namizja ali terminalskih storitev. / Printers That Use Ports That Do Not Begin With COM, LPT, or USB Are Not Redirected in a Remote Desktop or Terminal Services Session

Ko se sprašuješ o firewallu in usmerjevalniku… / When you are asking about what kind of firewall and router to use…