WSFU - Windows services for Unix - SECURITY

TheMSsForum.com: The Microsoft Software Forum

The MSS Forum ‹ Security
- Archive
  - Biz
  - MCSE
  - CRM
  - Drivers
  - Framework
  - ADO
  - ASP
  - Compact
  - Forms
  - Dotnet
  - C#
  - VB
  - FontpageGen
  - Excel
  - WorkSheet
  - Exchange
  - Setup
  - Fox
  - Fontpage
  - ASP
  - IIS
  - Entourage
  - Money
  - Messanger
  - PocketPC
  - Powerpoint
  - Project
  - Publisher
  - Excel
  - VB
  - Security
  - Portal
  - Services
  - SQLServerDev
  - SVCS
  - SQLServer
  - VB
  - VC
  - MFC
  - ExcelGen

- Previous
 - 1
 - KerberosToken constructor gives error - Kerberos credential handle could not be returned Hi, I am tryin to work with Web Service Enhancement 2.0 to use Kerberos token. I have Windows XP SP2 installed on my m/c which is connected in an Active Directory Domain. When I try to execute the following code : KerberosToken kerbToken = new KerberosToken( "host/" + "ps4442" + "@" + "PERSISTENT"); I get this error - "An unhandled exception of type 'System.Security.SecurityException' occurred in microsoft.web.services2.dll Additional information: The Kerberos credential handle could not be acquired. The AcquireCredentialsHandle call returned the following error code: The parameter is incorrect." What can I do to avoid getting this error? I am not understanding at all. I also tried investigating AcquireCredentialsHandle, but couldn't understand what is going wrong. What should I do? Can anybody help? Regards, Shruti Tag: WSFU - Windows services for Unix - SECURITY Tag: 93330
 - 2
 - IIS 6 strange file - site hacked Hi, There is some strange file that are on the root of different website. Some of my friend told me that it is a IIS6 security hole. Does anybody have a solution ??? It's just html file. Like those : default.html tromnk.htm The content of those file was : Ir4Dex Back By Zakix your DATA H4Xored =) core-project <html> <head> <meta http-equiv="Content-Language" content="tr"> <meta name="GENERATOR" content="Microsoft FrontPage 5.0"> <meta name="ProgId" content="FrontPage.Editor.Document"> <meta http-equiv="Content-Type" content="text/html; charset=windows-1254"> <title>Hacked Mr.Trojan Trojan wWw.StarHack.Org wWw.Trojan-Tr.Org</title> </head> <body text="#800000" bgcolor="#000000">     <a href="http://www.trojan-tr.org"> <img border="0" src="http://www.trojan-tr.org/erterterte.jpg" width="400" height="400"></a>   Mr.Trojan Was Here <a href="http://wWw.StarHack.Org" style="text-decoration: none"> wWw.StarHack.Org</a> " <a href="http://wWw.Trojan-Tr.Org" style="text-decoration: none"> wWw.Trojan-Tr.Org</a>   </body> </html> Tag: WSFU - Windows services for Unix - SECURITY Tag: 93315
 - 3
 - Anti-spy wear Hi, just a couple of things. First, I'm NOT good at computers so if you have a suggestion how to fix it, please make it simple. Ok, when I try to sign onto MSN, I keep getting a "we can't find your anti-spy wear protection"....I haven't changed anything...why is that there and 2nd, for about a month I've had a Norton Antivirus alert that tells me it has detected a virus and is unable to repair this file....I can't X it out....I just drag it to the bottom out of my way. What do I do? Tag: WSFU - Windows services for Unix - SECURITY Tag: 93312
 - 4
 - SCForum.info - Security CENTRAL Forum Share your knowledge & discuss all aspects of Computer & Internet Security via a worldwide community. SCForum.info - Security CENTRAL Forum http://www.scforum.info Tag: WSFU - Windows services for Unix - SECURITY Tag: 93311
 - 5
 - EventCombMT Command Line Options I am trying to use EventCombMT to dump a daily copy of the event log for all of my servers. I have scheduled a batch job through the Scheduler on a Windows 2003 Server. The batch file command is as follows: %windir%\eventcombmt.exe /file:server.txt /et:all /log:all /outdir:"d:\logs" /t:25 /after:05302007000000 /before:05302007235959 /start If I run this in a command prompt interactively I get "No Event Type Specified", even though I have "/et:all". I have tried every Event type specified in the .chm file and even some that don't exist (lol). I'm running EventComMT version 5.0 from the ALTools.exe file. Any help will be greatly appreciated. Thanks, Steve Tag: WSFU - Windows services for Unix - SECURITY Tag: 93309
 - 6
 - Question about 529 errors I have done a little searching on this and what i'm seeing is to look for services on the local machine using an account name and password. In my instance, i have checked for this and is not the case. the computer that the event is stating is the culprit is actually a computer that we use to test software on. My account was never used to login to this computer, so i'm kinda stumped right now. the following is the entire event ------------------------------------------------------------------------------ Event Type: Failure Audit Event Source: Security Event Category: Logon/Logoff Event ID: 529 Date: 5/31/2007 Time: 10:13:56 AM User: NT AUTHORITY\SYSTEM Computer: <MYDNSSERVER> Description: Logon Failure: Reason: Unknown user name or bad password User Name: <my username> Domain: <MYDOMAIN> Logon Type: 3 Logon Process: NtLmSsp Authentication Package: NTLM Workstation Name: <WORKSTATIONNAME> For more information, see Help and Support Center at http://go.microsoft.com/fwlink/events.asp. ----------------------------------------------------------------------- any help would be appreciated. Tag: WSFU - Windows services for Unix - SECURITY Tag: 93308
 - 7
 - "Security Toolbar 7.1" Hi.. I have an irritating toolbar entitled "Security 7.1" with security level at 4 and two tabs that says block adware/popups and remove spyware.. (links to website of "anti spyware Specialists" that i can't seem to get rid off... seem to be linked to the system tray where an icon alternating a yellow triangle with a exclamation mark.. and a blue circle with a yellow cross.. This pops up a system alert informing of spyware which links to "Spylocked"... Have tried Windows defender and malicious software removal and they report nothing found... Any suggestions? Thank You Tag: WSFU - Windows services for Unix - SECURITY Tag: 93304
 - 8
 - Grant users access rigts to their OUTLOOK.HOL file Hi I wrote a simple batch file to rename OUTLOOK.HOL and and then copy a new OUTLOOK.HOL, so that my users could add next years holidays and add some internal dates (as suggested in the Outlook help pages). Worked fine for me, but not my users, because they get access denied when they try to rename C:\Program Files\Microsoft Office\OFFICE11\1033\OUTLOOK.HOL They don't have local admin rights, is there anyway I can use GPO (or any other technique) to grant access to this file? Tag: WSFU - Windows services for Unix - SECURITY Tag: 93302
 - 9
 - Windows Vista Upgrade UAC issue Ok short and sweet on this. I did the Express Upgrade. 98% Unattended installation. Only options I was presented with was with certain drivers being updated. Which according to the instructions provided I was told not to as it would be updated upon completion of the upgrade. When all was said and done with, the only administrative account (disabled by default now) is no longer able to log on even in safe mode. I was under the impression it would keep it enabled if it was the only one and not connected to a domain. But this isnt the case for some reason. Since I was never presented with the option of creating a reset disk/disc, I dont have a way that I am aware of to get in with Administrative rights to create another admin account for creating new accounts. When I try to create an account with the standard user account that I can log on with, I get an error about using special characters as a user name even though I am not using special characters. Alpha and numeric are interpreted as special characters even though it displays exactly as I typed it. Any ideas on this one? Any and all help would be appreciated. Tag: WSFU - Windows services for Unix - SECURITY Tag: 93299
 - 10
 - Event ID Errors 537 on Member Server Hello, Can someone help me resolve 537 event errors in my logs that show up every two minutes. This happens on a Windows Server 2003 SP1 with ISA 2006. The Event says An error has occurred during logon, username is my domain controller with a dollar sign ex. DC1$, logon type 3 logon process kerberos, with status code 0xC00002EE The server domain member. I have noticed that the errors show up ever two minutes with failed logon attempts. Please help. Thank you -- Life is a zoo in a jungle! Tag: WSFU - Windows services for Unix - SECURITY Tag: 93298
 - 11
 - ipsec policy in winxp SP2 I have a question about ipsec policy. here's what I did: 1) ran secpol.msc to open the Local security settings snap-in 2) created a policy called "block_subnet" that blocks all traffic from the specified subnet (why I did this is not relevant) 3) assigned the policy, and tested it by trying to ping, connect to, etc. other PCs on the subnet. I was unable to, so I know my policy works. 4) unassigned the policy. My question is this: Is there a way I can assign or unassign a policy via the command prompt, or script? It's tedious if I always have to open the snap-in, right click the policy, select enable, etc. Thanks, Al Tag: WSFU - Windows services for Unix - SECURITY Tag: 93295
 - 12
 - Undo: Always run install programs as (Windows XP Media Centre Edition) The â??Install program as other userâ?? window pops up when you try to install a program using an account that does not have install privileges (limited/user). If you check the â??Always run install program asâ?? and continue, how do you later reverse (undo) this setting on the relevant user account? Could not find the user interface to deselect this. Is there one in XP Media Centre Edition? Or, what is the registry entry that needs to be changed? (What are the values?) Thanks, Tag: WSFU - Windows services for Unix - SECURITY Tag: 93294
 - 13
 - Permissions issues I'm a newbie to W2003. I want to stop ALL users (except me the Administrator) from even looking at the contents of a folder. I set the 'Users' group permissions to Deny/Full Control. This ticks ALL the deny boxes. Fine. BUT as the admin guy I also cannot look at the folder. I look at the folder's permissions for Administrators and the ALLOW column has all the boxes ticked but in grey. What am I doing wrong? -- Regards Tom Tag: WSFU - Windows services for Unix - SECURITY Tag: 93292
 - 14
 - Anti-spyware Got a friend I'm trying to help with his computer (he has visual problems). He says he (accidentally?) downloaded some sort of anti-spyware and now his whole computer is running slow. I hope to get to his house tomorrow to look at it, but any suggestions what it might be, and more importantly, how to get rid of it? Sorry I can't (at this point) give any more information. He has WinXP. Tag: WSFU - Windows services for Unix - SECURITY Tag: 93281
 - 15
 - net-worm win 32 theals.b anyone know to ge this out of a xp home system? Tag: WSFU - Windows services for Unix - SECURITY Tag: 93275
 - 16
 - MUDE DE VIDA TRANSFORME R$6,00 EM MUITO DINHEIRO "DINHEIRO F=C1CIL E R=C1PIDO PELA INTERNET" 26 de Maio de 2007 TRANSFORME R$6,00 EM MUITO DINHEIRO M=E9todo aprovado pela revista exame!! Leia o texto com aten=E7=E3o; ele realmente funciona! =C9 s=F3 seguir as instru=E7=F5es abaixo. Eu n=E3o acreditava, e j=E1 estou recebendo.Sabe porque vale a pena? O investimento =E9 irris=F3rio,R$ 6,00 (seis reais) , n=E3o custa tentar! Pessoal, eu sei que =E9 dif=EDcil acreditar porque at=E9 eu come=E7ar a gan= har tamb=E9m n=E3o acreditava, j=E1 tinha recebido alguns e-mails sobre esse assunto, mas os tinha ignorado, at=E9 que li o texto disposto em um site e resolvi tentar, afinal, como o pr=F3prio autor do texto fala, s=E3o s=F3 6,00 reais, al=E9m do mais, eu n=E3o estaria perdendo meu tempo aqui se n=E3o estivesse ganhando, j=E1 ganhei em um m=EAs cerca de 2 mil reais, sigam direitinho o texto abaixo (ele n=E3o =E9 de minha autoria) e sejam honestos, por favor!!!! assim todos poderemos crescer com essa cooperativa!!!!!!!!!!! Acredite se voc=EA quizer...Voc=EA pode fazer 6,00 reais virar 6.000,00 reais aviso que o texto =E9 um pouco longo, mas ele poder=E1 mudar sua vida! Este programa permanece pr=F3spero por causa da honestidade, obedi=EAncia e integridade dos participantes. Aqui est=E3o os quatro passos f=E1ceis para sucesso: Transforme R$ 6,00 EM MUITO DINHEIRO N=E3o custa Nada! Nem precisa envelopar nada! Nem Visitar nenhum site comercial! "DINHEIRO F=C1CIL E R=C1PIDO PELA INTERNET" Veja o relato de uma pessoa que acreditou no programa: * Pedro Silveira - SP / 2005 Eu usava muito pouco a internet at=E9 descobrir isso. Estava com uma d=EDvida d. R$3.000 reais e estava desesperado. Recebi mais uma daquelas mensagens que ningu=E9m gosta d. receber no e-mail. Dei uma chance ao e- mail onde tinha escrito: 'dinheiro r=E1pido pela internet'. Com toda essa d=EDvida, R$ 6,00 reais n=E3o iria fazer falta, pois sempre gastava em besteiras, bebidas o. loteria. Mas se desse certo poderia liquidar minha d=EDvida. Na 1=AA semana: mais d. R$300 reais. No meu 1=BA m=EAs ganh= ei cerca d. R$ 1.400 - 4 meses d. neg=F3cio e no ultimo m=EAs ganhei mais d. R $5.200 - J=E1 paguei minhas d=EDvidas e ainda estou com dinheiro extra! Fiquei mais motivado e atualmente estou empregado, gra=E7as a deus. * Renata Lemos - MG / 2004 N=E3o acreditava, mas como sou curiosa pensei: n=E3o custa nada tentar, s=E3o s=F3 apenas R$ 6,00 reais e isso eu sempre gastava em shopping. Sem acreditar muito arrisquei, e na 1=AA semana ganhei mais d. R$ 20,00 reais. Pensei que n=E3o chegaria mais, mas na 2=AA semana Depois disso me empolguei e no final do mes: mais d. R$100,00 REAIS! =C9 o meu 2=BA m=EAs e cada m=EAs vem aumentando e no =FAltimo m=EAs ganhei mais d. R$ 600,00 reais. E qual foi meu trabalho? Nenhum! Descubra abaixo o porque. Esta =E9 uma grande oportunidade, com pouqu=EDssimo custo ou risco. Siga o texto: Por favor, siga estas diretrizes EXATAMENTE como descritas e voc=EA poder=E1 ganhar muito dinheiro num espa=E7o de 15 a 30 dias. Este programa permanece pr=F3spero por causa da honestidade, obedi=EAncia e integridade dos participantes.Aqui est=E3o os quatro passos f=E1ceis para sucesso: 1=BA Passo - Envie 1 real a todos da lista: Embrulhe a nota de um real de modo que n=E3o fique aparecendo,ponha uma folha de papel em volta do dinheiro, coloque num envelope e mande pelo correio; ou se preferir deposite na conta banc=E1ria. 1)H. A. R. - CAIXA AGENCIA: 1521 / CONTA POUPAN=C7A (OP 013) 650685-0 2) R.C.P. - BRADESCO CONTA CORRENTE 685-8 AGENCIA : 0335-9 3) M.C.C. - BANCO BRADESCO CONTA: 40055-6 AGENCIA: 1235-1 4) S.B.N.S. - BANCO DO BRASIL A.G.3603-X - CONTA CORRENTE: 9508-7 5)L.E.A.Q..- BANCO DO BRASIL - C/C 7582-5 - AG. 2731-6 6)F.P.T. -BANCO DO BRASIL - CONTA POUPAN=C7A: 3777-X - AGENCIA:14.842-3 LEMBRE-SE: Seu "=DAnico Investimento" s=E3o apenas "R$ 6,00" =E9 um valor muito pequeno para a "GRANDE POSSIBILIDADE" de "Voc=EA GANHAR MUITO DINHEIRO!!!" 2=BA Passo - Agora tire o nome do 1=BA participante da lista e eleve uma posi=E7=E3o acima, O 2=BA vai para o primeiro da lista, o terceiro vai para o 2=BA e assim sucessivamente, e coloque seu nome, seu banco, sua agencia e conta corrente no 6=BA da lista. 3=BA Passo - Mude o que voc=EA quiser, mas tente manter a sua mensagem o mais parecido poss=EDvel com essa. Agora, poste seu artigo modificado (ou esse meu mesmo, n=E3o esquecendo a ordem de mudar a ordem dos nomes e acrescentar o seu) para pelo menos 200 f=F3runs ou newsgroups diferentes (A UOL diz em sua homepage que existem mais de 20,000 newsgroups, informe-se l=E1 na parte de f=F3rum se voc=EA n=E3o souber)(Voc= =EA pode usar tamb=E9m os f=F3runs da Google, Bol, Ubbi, Hotmail, Terra,etc...) ou mande emails para seus amigos, divulgue em uma homepage,divulgue no orkut....Tudo que voc=EA necessita =E9 200, mas lembre-se, quanto mais voc=EA mandar, mais DINHEIRO voc=EA ganhar=E1! IMPORTANTE: Voc=EA n=E3o adquirir=E1 muito a menos que voc=EA poste como louco!!!! A melhor maneira de postar =E9 colocar um t=EDtulo chamativo que fique vis=EDvel para todos, como:"GANHE DINHEIRO F=C1CIL" ou "COMO TRANSFORMAR R$ 6,00 EM R$ 6.000,00", "R$ 6,00 FAZ FALTA PARA VOC=CA? + ELE PODER=C1 MUDAR SUA VIDA!!!" N=C3O PARE DE LER ESTE ARTIGO, NO FINAL VC QUEM DECIDE Para copiar esta mensagem: Selecione o texto (Ctrl + T) e ap=F3s selecionar, copiar o texto (Ctrl + C). Abra o word ou bloco de notas ou wordpad e colar o texto (Ctrl + V) altere os dados na rela=E7=E3o de dep=F3sitos (tirando o 1=BA da lista e subindo os de baixo e colocando o seu NOME, BANCO, AGENCIA E CONTA na 6=BA lugar da lista.) para finalizar salve este arquivo. Para colocar o texto deste arquivo no FORUM e NEWGROUPS =E9 s=F3 copiar (Ctrl + C) e colar (Ctrl + V) na mensagem a ser enviada para os FORUM e NEWGROUPS. (Simples e F=E1cil n=E9!!!). Lembre-se que este programa funciona sempre, quando voc=EA precisar de dinheiro, voc=EA pode usar ele novamente. A BASE DESTE PROGRAMA: Compromisso, Responsabilidade, Honestidade, Integridade e Rapidez, estes s=E3o os fundamentos principais para "Nosso Sucesso". Agora voc=EA pode se perguntar de onde =E9 que sa=ED o dinheiro que receberei!!! Pois bem, entenda o seguinte: Milhares e milhares de pessoas est=E3o plugadas diariamente na internet e receber=E3o direta e indiretamente esta mesma proposta. Elas desejar=E3o como voc=EA ganhar esta dinheirama toda. Atender=E3o aos requisitos e depositar=E3o os R$6,00. Este sistema de cooperativismo acumulativo lucra com os novos integrantes que aceitam participar do esquema. Ap=F3s ter enviado os R$6,00 voc=EA manteve aqueles que come=E7aram antes de voc=EA em lucratividade e passa a fazer parte do ciclo. =C9 algo que se baseia na intelig=EAncia, bom senso e honestidade. Olhe isto deste modo: Se voc=EA for HONESTO, o programa sempre continuar=E1 e o dinheiro que tantos outros j=E1 receberam vir=E1 tamb=E9m para voc=EA, devido =E0 sua contribui=E7=E3o de R$6.00. NOTA: Seu nome subir=E1 na lista a cada remessa de forma que quando seu nome alcan=E7ar o "1=BA LUGAR NA RELA=C7=C3O" voc=EA j=E1 ter=E1 recebido m= ilhares de reais em DINHEIRO VIVO!!! Lembre-se que voc=EA s=F3 investiu R$6.00. (R $1.00 para cada uma das seis pessoas listadas acima). LEMBRE-SE, QUANTO MAIS MENSAGENS VOC=CA ENVIAR AOS NEWSGROUPS DIFERENTES, MAIS DINHEIRO VOC=CA GANHAR=C1. Voc=EA come=E7ar=E1 a receber dinheiro dentro de dias! Agora o PORQU=CA de voc=EA receber esse dinheiro: Vou explicar numericamente agora, preste aten=E7=E3o: CLARO AGORA VOU EXPLICAR COMO VOC=CA VAI GANHAR TANTO DINHEIRO E EU SEI QUE VOC=CA VAI ENTENDER VAMOS CALCULAR: Vamos dizer que das 200 mensagens que eu enviei eu receba s=F3 5 respostas (um exemplo muito ruim e baixo, quase imposs=EDvel). Ent=E3o receberei R$5,00 com meu nome na 6=AA posi=E7=E3o da lista. Agora, cada uma das 5 pessoas que h=E1 pouco me enviaram R$1.00 enviam mais 200 mensagens para outros lugares diferentes, cada com o meu nome agora na 5=AA posi=E7=E3o da lista, 5 pessoas multiplicado por 5 = =E9 igual a 25 pessoas, vezes R$ 1,00 =E9 igual a R$25.00 de ganho. Agora, cada uma dessas 25 pessoas envia mais 200 mensagens para outros lugares diferentes, com meu nome na posi=E7=E3o 4=AA posi=E7=E3o da lista. = E, vamos supor, que novamente somente 5 indiv=EDduos respondam para cada um dos 25 remetentes, totalizar=E1 125 pessoas e eu receberei ent=E3o mais R $125.00! Agora, essas 125 pessoas postam mais 200 mensagens para outros lugares diferentes, com meu nome na posi=E7=E3o 3=AA posi=E7=E3o da lista. E, vamos supor, que novamente somente 5 indiv=EDduos respondam, totalizar=E1 625 pessoas e eu ganharei mais R$625.00! OK! Agora aqui =E9 a parte divertida, cada dessas 625 pessoas postam mais 200 mensagens para outros lugares diferentes, com meu nome na posi=E7=E3o 2=AA posi=E7=E3o da lista. E, cada um obt=E9m somente 5 retornos. Teremos um total de 3.125 retornos de R$ 1,00. Isso me rende mais R$ 3,125.00!!! Finalmente, essas 3.125 pessoas tamb=E9m postem mais 200 mensagens para outros lugares diferentes, com meu nome na posi=E7=E3o 1=AA posi=E7=E3o da lista. E, se ainda apenas 5 pessoas retornem teremos um total de 15.625 pessoas, que me dar=E1 um ganho de R$15,625,00! Inacredit=E1vel, com o pequeno Investimento de "Apenas R$ 6,00" eu ganhei a bagatela de R$ 19.530,00. O mais incr=EDvel ainda, com apenas o retorno de 2,5% (05 retorno por cada das 200 mensagens enviadas) que eu e meus parceiros mandamos. Portanto esta =E9 a sua oportunidade de mudar de vida! Deposite agora e envie suas mensagens nos f=F3runs e newsgroups diferentes, quanto mais, melhor!!! . . . E feliz vida nova!!! O mundo seria bem melhor se todas as pessoas pudessem contar umas com as outras, fa=E7a a diferen=E7a nesse pa=EDs e al=E9m de estar ajudando voc= =EA mesmo voc=EA tamb=E9m estar=E1 ajudando outro, o sistema funciona, s=F3 depende de voc=EA. Tag: WSFU - Windows services for Unix - SECURITY Tag: 93272
 - 17
 - Security Alert I am unable to access a Website when I enter that website I keep getting "this page contains secure & Non secure items" When I Ccick yes or No I am unable to Access it? I have contact MSN support by phone. We tried everything possible. They Said It may be an Internet explorer security problem & should Call Them ? Should I Call or is there a software to download to repair it The website is membershiprewards.com So far thats the only Site I am having security Access to. Can you help? Tag: WSFU - Windows services for Unix - SECURITY Tag: 93268
 - 18
 - Skype and security Hello, I expect to install Skype on my laptop (Win XP) to communicate while I'm traveling. I would like to know is there are some security settings that we have to set when working with Skype. Thanks for your advices. Gérard Tag: WSFU - Windows services for Unix - SECURITY Tag: 93267
 - 19
 - WSUS 3.0 console fail After start WSUS 3.0 mmc console i get error (translate from russian): Uncaught exception in equipment of an operated code: FX: {8b6499ed-0241-e032-6508-da4b1c879d7e} It is impossible to result COM-object of type " System. __ ComObject " in the interface type "System.Runtime.InteropServices.ComTypes.IStream". Operation has come to the end with failure as call QueryInterface of a COM-component for the interface with IID " {0000000C-0000-0000-C000-000000000046} " has returned a following mistake: the Interface is not supported (Exception from HRESULT: 0x80004002 (E_NOINTERFACE)). Stack: In System.Runtime.InteropServices.ComTypes.IStream.Stat (STATSTG& pstatstg, Int32 grfStatFlag) In Microsoft.ManagementConsole.Executive.LoadSnapInDataRequestOperation.CreateRequestInfo () In Microsoft.ManagementConsole.Executive.SnapInRequestOperation.ProcessRequest () In Microsoft.ManagementConsole.Executive.Operation.OnThreadTransfer (SimpleOperationCallback callback) I remove WSUS 3.0 console and install it again but it has not solved a problem PS: Original error message (russian): Ð?ÐµÐ¾Ð±Ñ?Ð°Ð±Ð°Ñ?Ñ?Ð²Ð°ÐµÐ¼Ð¾Ðµ Ð¸Ñ?ÐºÐ»Ñ?Ñ?ÐµÐ½Ð¸Ðµ Ð² Ð¾Ñ?Ð½Ð°Ñ?Ñ?ÐºÐµ Ñ?Ð¿Ñ?Ð°Ð²Ð»Ñ?ÐµÐ¼Ð¾Ð³Ð¾ ÐºÐ¾Ð´Ð°: FX:{8b6499ed-0241-e032-6508-da4b1c879d7e} Ð?ÐµÐ²Ð¾Ð·Ð¼Ð¾Ð¶Ð½Ð¾ Ð¿Ñ?Ð¸Ð²ÐµÑ?Ñ?Ð¸ COM-Ð¾Ð±Ñ?ÐµÐºÑ? Ñ?Ð¸Ð¿Ð° "System.__ComObject" Ðº Ð¸Ð½Ñ?ÐµÑ?Ñ?ÐµÐ¹Ñ?Ð½Ð¾Ð¼Ñ? Ñ?Ð¸Ð¿Ñ? "System.Runtime.InteropServices.ComTypes.IStream". Ð?Ð¿ÐµÑ?Ð°Ñ?Ð¸Ñ? Ð·Ð°Ð²ÐµÑ?Ñ?Ð¸Ð»Ð°Ñ?Ñ? Ñ?Ð¾ Ñ?Ð±Ð¾ÐµÐ¼, Ð¿Ð¾Ñ?ÐºÐ¾Ð»Ñ?ÐºÑ? Ð²Ñ?Ð·Ð¾Ð² QueryInterface COM-ÐºÐ¾Ð¼Ð¿Ð¾Ð½ÐµÐ½Ñ?Ð° Ð´Ð»Ñ? Ð¸Ð½Ñ?ÐµÑ?Ñ?ÐµÐ¹Ñ?Ð° Ñ? IID "{0000000C-0000-0000-C000-000000000046}" Ð²Ð¾Ð·Ð²Ñ?Ð°Ñ?Ð¸Ð» Ñ?Ð»ÐµÐ´Ñ?Ñ?Ñ?Ñ?Ñ? Ð¾Ñ?Ð¸Ð±ÐºÑ?: Ð?Ð½Ñ?ÐµÑ?Ñ?ÐµÐ¹Ñ? Ð½Ðµ Ð¿Ð¾Ð´Ð´ÐµÑ?Ð¶Ð¸Ð²Ð°ÐµÑ?Ñ?Ñ? (Ð?Ñ?ÐºÐ»Ñ?Ñ?ÐµÐ½Ð¸Ðµ Ð¸Ð· HRESULT: 0x80004002 (E_NOINTERFACE)). Ð¡Ñ?ÐµÐº: Ð² System.Runtime.InteropServices.ComTypes.IStream.Stat(STATSTG& pstatstg, Int32 grfStatFlag) Ð² Microsoft.ManagementConsole.Executive.LoadSnapInDataRequestOperation.CreateRequestInfo() Ð² Microsoft.ManagementConsole.Executive.SnapInRequestOperation.ProcessRequest() Ð² Microsoft.ManagementConsole.Executive.Operation.OnThreadTransfer(SimpleOperationCallback callback) Tag: WSFU - Windows services for Unix - SECURITY Tag: 93258
 - 20
 - WSUS 3.0 Localization group problem? I set group name for clients by GPO. The group name is russian language name. The same group name i create in WSUS 3.0. All clients report well but dont bind to my russian group! All of them are in "Unassign Coomputers" group. When i create english group name, its work well. Is it bug? Tag: WSFU - Windows services for Unix - SECURITY Tag: 93255
 - 21
 - WSUS 3.0 How to localize the interface? How I can change language of the WSUS 3.0 interface? Tag: WSFU - Windows services for Unix - SECURITY Tag: 93254
 - 22
 - Problems with Automatic Updates Hi, Not sure if this is the right place to post this question but.... I have a Windows XP SP2 workstation and whenever AU kicks in to check its update status it takes over the machine. 100% CPU for 5 to 10 minutes. New programs will not start, everything dead slow. If I get Process Explorer running and syspend the WUACTL process then everything works fine. If I resume it 100% CPU for the time and then the workstation is usable again. Any way to de-install/re-install it? Reset it some way? Other than disabling the service (not what I want to do) any thoughts? Thanks Tag: WSFU - Windows services for Unix - SECURITY Tag: 93248
 - 23
 - Increasing security from student PCs We are currently reviewing security on our college IT Network. We operate a single Active Directory domain and give access to various resources on the network using AD groups. Being a college we have both student and staff users with appropriate rights to fileshares, databases etc We are particularly concerned with a scenario where a student gets hold of a staff username and password. As students only have access to the network from student PCs in classrooms we would like to be able to limit the network resources 'visible' from student classrooms. Any information on this would be helpful Thanks Dave Tag: WSFU - Windows services for Unix - SECURITY Tag: 93246
 - 24
 - Are Microsoft developing their own smart cards? Hi Everyone While testing the new beta of Windows 2008 server, I noticed that when installing the CA, the following CSPs are listed: RSA#Microsoft Smart Card Key Storage Provider ECDSA_P256#Microsoft Smart Card Key Storage Provider ECDSA_P384#Microsoft Smart Card Key Storage Provider ECDSA_P521#Microsoft Smart Card Key Storage Provider Does anyone know if that is true, and if so, where can those smart card be purchased? Thanks Moshe Tag: WSFU - Windows services for Unix - SECURITY Tag: 93244
 - 25
 - Unknown Process/Service: eventm (Event Manager) Hi, We had a security breach on a server yesterday. Looking through the processes, the following process caught my eye: c:\windows\system32\eventm.exe It's properties call it the "Services and Controller app" and it runs as a Service called "Event Manager". The Service is a dependency for Event Log. It all looks ok, but the following things concern me: - I cannot find any information from Google or the Microsoft site on the service or the process. - I have never seen Event Log being dependent on another Service, especially not this service. As I can't find any relevant info, I was wondering if anyone knwos anything about this process/service and whether it is genuine. Many Thanks in advance, Ali Tag: WSFU - Windows services for Unix - SECURITY Tag: 93241
- Next
 - 1
 - ibm.com stays online, even when locked-out Internet Explorer 6 has a setting in Internet-Options, Content, Internet-Restrictions. In this tab I can setup IE in such a way, that I can browse to ONLY the domains that I have entered in the list for approved websites. (Kiosk-mode) This works fine, I enter eg. www.microsoft.com and I can only browse to microsoft. Now, here's the catch; When I enter the URL www.ibm.com in the address-bar of IE6, I can ALWAYS go to that site! No matter what I enter in the approved-sites-list. Is there a reason for this behaviour? Info: OS is MS Windows XP SP2, with all updates. (except IE 7) Internet Explorer 6 SP2 Tag: WSFU - Windows services for Unix - SECURITY Tag: 93227
 - 2
 - Does anyone know what net_save.dna is? I recently noticed a file named "net_save.dna" in the root of my C: drive. The file 990 bytes (4.00 KB on disk) and was created and last modified yesterday. I've done researched the file all over the web and can't find any answers as to what it is. Others have seen the same file, but no knows its purpose. I thought all the smart people in this group might have some knowledge to shed on this file. Any help and/or ideas will be greatly appreciated. Thanks in advance, Mithrill Tag: WSFU - Windows services for Unix - SECURITY Tag: 93220
 - 3
 - help with virus Hi, My computer keeps crashing. The processor goes to 100% usage and it doesn't let me do anything else. I can't update my antivirus (mcafee) it says : Failed to Initialize Updater subsystem. Make sure the mcAfee Framework Service is running. McAfee Common Framework returned error fffff95b @ 2. I went to services and tried to initialize it but it says: McAfee Framework service was started but then stopped. Some services stop if they don't have any tasks to perform, form example, alerts services and performance registry. I translated i have winxp in spanish. I would really appreciate some help. Please let me know how can i send u more information. carocal Tag: WSFU - Windows services for Unix - SECURITY Tag: 93217
 - 4
 - help with virus Hi, My computer keeps crashing. The processor goes to 100% usage and it doesn't let me do anything else. I can't update my antivirus (mcafee) it says : Failed to Initialize Updater subsystem. Make sure the mcAfee Framework Service is running. McAfee Common Framework returned error fffff95b @ 2. I went to services and tried to initialize it but it says: McAfee Framework service was started but then stopped. Some services stop if they don't have any tasks to perform, form example, alerts services and performance registry. I translated i have winxp in spanish. I would really appreciate some help. Please let me know how can i send u more information. carocal Tag: WSFU - Windows services for Unix - SECURITY Tag: 93216
 - 5
 - Certificate Authority Settings What is the typical naming convention when setting up the name field within Certificate Authority? I have read a couple articles that inticate the name should be the same as the company's web site name. ??? I am not sure if that is what I want to do. Is it a logical call that CA uses? HELP!!! Tag: WSFU - Windows services for Unix - SECURITY Tag: 93215
 - 6
 - security logs Hello everyone, I need logs for simulation purpose to detect the attacks. Where can I find web repositories for logs. Can any one help me regarding this issue. Thanks, kanthi. Tag: WSFU - Windows services for Unix - SECURITY Tag: 93213
 - 7
 - security logs Hello everyone, I need logs for simulation purpose to detect the attacks. Where can I find web repositories for logs. Can any one help me regarding this issue. Thanks, kanthi. Tag: WSFU - Windows services for Unix - SECURITY Tag: 93212
 - 8
 - security logs I need logs for simulation purpose to detect the attacks. Where can I find web repositories for logs. Thanks, kanthi. Tag: WSFU - Windows services for Unix - SECURITY Tag: 93211
 - 9
 - Remote Desktop to a machine that is 802.1x authenticated (wired ca When I do a remote desktop to machine that is 802.1x authenticated by an user, machine authentication begins leading to logout of earlier logged in user. Due to some reason the machine is not able to logged in leading to blocking of port . I am using IAS on Widows 2000 server as Radius server. I have a Windows XP machine as my endhost which is to be authenticated and the configured authentication type for 802.1x authentication on my machine is PEAP-MS-CHAP v2. And Nevis Switch acts as authenticator. I could find such an issue reported on Microsoft's site but it is for wireless case. Check the same at :- http://www.microsoft.com/technet/network/wifi/wififaq.mspx In Microsoft's words:- Q. Do Remote Desktop connections work to Windows wireless clients that use 802.1X authentication? A. Not at this time. All 802.1X-based wireless connections are affected, including those using EAP-TLS or PEAP-MS-CHAP v2. Connections using a static WEP key or WPA-PSK are not affected. Microsoft has addressed this issue in Windows Vista and Windows Server â??Longhorn.â?? So is the issue valid for wired networks as well (I feel wired/wireless should not be an issue as supplicant behavior would be the same)? If the issue if known, is there or will there be any hotfix to avoid this behavior for Windows-XP ? If so, I would like to know to what all Windows OS it affects. Tag: WSFU - Windows services for Unix - SECURITY Tag: 93210
 - 10
 - User's Effective Permissions on Domain? Is it possible to inventory a user's effective permissions on network resources (servers & folders & websites) in the user's domain?. For example, Server A and Server B have multiple shares. Person 1 may have read access to a share on A and is a local admin on B. Person 2 may have read access for only 1 of the shares on Server B, etc. Persons 1 and 2 also have read access to folders X and Y on ReportServer R through IIS/windows authentication. These permissions can accumulate through any number of groups or individual permission settings, with increasing complexity. At some point, managers ask: Can you tell me what Joe User has access to? Are there third party security tools that do this? Microsoft analyzers? Not a chance? Any help appreciated. Thanks. Tag: WSFU - Windows services for Unix - SECURITY Tag: 93198
 - 11
 - IEEE 802.1x for Domain user accounts only Hi all, I've just started working with the 802.1x authentication and it's brilliant. The scenario I'm looking into implementing is to enable the 802.1x authentication for specific domain accounts on a number of mobile computers. The laptop computers contain a number of accounts, some being domain and local accounts. I'd like the 802.1x authentication to be enabled only when the user logs into his domain account (which obviously will be locally cached). If the user logs into the local user account, 802.1x should be disabled. Can this be done using group policies or any other 3rd party tool ? Any feedback/suggestions are highly appreciated. Thank you. Tag: WSFU - Windows services for Unix - SECURITY Tag: 93190
 - 12
 - Network security Here's my situation. In normal operation, my windows network resides behind a reasnably robust firewall. I use static IP addresses throughout my organization for an extra layer of security (no DHCP clients). In addition, I have employed standard windows best practices for security throughout my organization. Because of a special event being held on Tuesday and Wednesday of this week I have been forced to activate a DHCP server and allow people to use my network for Internet connectivity. Is there any way that I can authorize the DHCP server to distribute DHCP addresses and then block those addresses from being able to access any of my network resources (outside of the firewall/router)? I'm sure it goes without saying that the information on my network is highly confidential. Basically, here's what I need: Maintain the current network topography (no time to implement new routers/etc...) Assign addresses through DHCP to random computers attaching directly to my network. Block those Addresses from access to all network resources except the internet/router. Any help you can provide will be greatly appreciated. By the way, I do have a reasonable understanding of technical items (MCSE NT4), but I'm relatively new to the Windows 2000/AD world. Chris Guynn Tag: WSFU - Windows services for Unix - SECURITY Tag: 93188
 - 13
 - Duplicate Administrator accounts I have accidentally created an "administrator" account which doesn't have administrator privileges. When i try to log on as administrator I end up logged onto the wrong one and i can't find any way of really logging on as administrator. No other account belongs to the administrator group so I'm in trouble Tag: WSFU - Windows services for Unix - SECURITY Tag: 93184
 - 14
 - mcrdsvc.exe is running at 50%+ at all times now... What to do? I have a problem that has only started over the last week or so and I can't seem to find a way to stop it. I have Media Center and the mcrdsvc.exe is showing up in taskmanager running at 50% cpu and higher at all times. I have turned off all other media center services and tried turning it off but it always comes back on and immediately starts running at 50%+. I also noticed it is running as a Local Service and not as a system service. I ran virus scanners, trojan scanners and even searched fo rte file thinking there might be a hidden one calling itself the same name in disguise, but haven't hit anything. Has anyone had this issue or know what could be causing it? I can't run any programs because it is taking all my resources. My system is a Pentium D 3.Ghz, 4Gb Ram a Radeon X1600 Pro Win Media center 2005. I scan downloads when I get them and have not that I can find gotten infected but anything is possible. I also did searches for anything related to this file and nothing comes up suspicious. Thank You, Jim C. Tag: WSFU - Windows services for Unix - SECURITY Tag: 93182
 - 15
 - Latest Matrox PowerDesk SE distributes vulnerable DLLs Hi @ll, if you happen to have a Matrox video card and are going to install their just released latest and greatest, WHQL-certified, unified PowerDesk SE driver "xp2k_204_00_179_se_u_whql.exe": this will install the two outdated and long replaced since MSXML4.DLL and MSXML4R.DLL, at least if you dont have MSXML4 already installed. See MSKB 927978/925627 a.k.a MS06-071. To quote the XML team from <http://blogs.msdn.com/xmlteam/archive/2006/10/23/using-the-right-version-of-msxml-in-internet-explorer.aspx> | MSXML 4.0 was released to the web about 5 years ago, but at this | point has been superseded by MSXML 6.0 and is only intended to | support legacy applications See also: <http://blogs.msdn.com/xmlteam/archive/2007/03/12/msxml4-is-going-to-be-kill-bit-ed.aspx> How can such $%*@§# pass the WHQL tests? Stefan Tag: WSFU - Windows services for Unix - SECURITY Tag: 93181
 - 16
 - sending spam I have started receiving lots of undeliverable or blocked mail to variouse email addresses, which I know is some kind of spam or virus. as this is a company email account, I need to get rid of it quick, before any combacks. Please help. Thank you Tag: WSFU - Windows services for Unix - SECURITY Tag: 93179
 - 17
 - Where to download a free network commands package ? Hi everybody, I just come from the DNS Stuff Web site (www.dnsstuff.com) and I would like to have the same functionnalities installed on my computer : if DNS Stuff is not joignable or if one day they stop their service or for any other reason, I want the commands on my computer. Here are the DNS Stuff functionnalities : DNS Report DNS Timing WHOIS Lookup Spam Database Lookup Reverse DNS lookup IPWHOIS Lookup IP Information DNS Lookup Traceroute (already in Windows) Ping (already in Windows) ISP Cached DNS Lookup Abuse Lookup URL DEOBFUSCATOR Free E-mail Lookup Decimal IPs CIDR/Netmask E-mail Test CSE HTML Validator I am interested in a package of invidual command line commands or better, a graphical application which do all of these. I just want it to be free. If such a package exist, I will save a lot of time searching separately for all the commands. Thanks in advance. Tag: WSFU - Windows services for Unix - SECURITY Tag: 93173
 - 18
 - Forcing users to log into Domain account when in workplace Hi all, I've got network with Windows 2003 servers and Active Directory installed. Workstations are mostly mobile users who take their laptops home during the night, and return the next day to work at the office. All laptops have two general accounts created, one local and one domain account. The local account is for the users to work on when at home, while the domain account is for them to use when in the office. I'm now looking into a solution that will 'force' the user to log into the domain account when in the office, not allowing him to access the local account for security reasons. I've been searching for a clear answer, but there seems to be some type of confusion on the topic. If anyone can provide any suggestions or point me toward sources which contain information that allow me to perform the above, it would be highly appreciated! Thanks again, Tag: WSFU - Windows services for Unix - SECURITY Tag: 93168
 - 19
 - Windows 2003 Standard Server- Enterprise CA - EFS Hey all, I'm trying to get EFS set up for all of our client laptops and have run into a road block. I have configured one of our domain controllers as an Enterprise CA so I could autoenroll computers for EFS. I set the default domain policy to add the Root Enterprise certificate to the "Trusted Root Certification Authorities", but when I attempt to add a new Automatic Certificate Request--> Computer, my enterprise (root) CA is not in the list. >From what I've read, a Win2003 Std Svr set as an Enterprise CA should be able to issue computer autoenrollment certificates. What am I missing? If I do get this working, will this allow me to use EFS on our clients, or do I need User certs for that (and Enterprise Edition)? Thanks in advance, Sean Tag: WSFU - Windows services for Unix - SECURITY Tag: 93155
 - 20
 - Giving access to a share folder in domain A to users in Domain B Hello everyone, I'm not sure if I'm in the right forum or not but I will try anyway. I will explain a bit the context of the problem. We are about to migrate our NT4 domain to a new 2003 domain (new domain name on a new server). There is currently a dual domain trust between the 2 domains to ease the migration process. Everything works fine until I try to share a folder in NT4 domain. Let's say I have a local group "sales" in NT4 and a global security group "sales" in AD. The group "Sales" in NT4 has access to a share folder named "CLIENTS". The thing I did was to add the AD's "Sales" group into the NT4's "sales" group (member of it) thinking the AD "sales" group would have the same access as the NT4's "sales" group. Unfortunately it didn't work. I'm probably missing something there because if I add a user or a group from AD's domain directly in the "CLIENTS" folder sharing permission it works. Basically I want both "sales" groups in both domains to have the same access on a file server member of the NT4 domain. Is it possible to do so without changing each folders permissions? Anyone has an idea? I hope I explained it correctly. Tag: WSFU - Windows services for Unix - SECURITY Tag: 93144
 - 21
 - IIS Metabase Events Hello. I'm looking for some help on deciphering IIS Metabase Event messages 4500 thru 4512. I was hoping to get some detailed definitions for each of these. The info I got from the Microsoft site is very generalized. We are trying to find out what event triggers these messages so we can know who and what caused these events. Any help will be greatly appreciated. Thanx, Tony Tag: WSFU - Windows services for Unix - SECURITY Tag: 93143
 - 22
 - Email from Microsoft (?) Hi all, I've recently signed up to receive the MS newsletters and alerts so that I can start to learn more about security issues in depth. Once I'm past my SBS exam I intend to take courses in the security side, but for now I'm no expert and relatively new to the "MS way" ... I received an email this morning claiming to be from Microsoft with the subject "Microsoft Security Bulletin Minor Revisions". It doesn't look professional, beginning with text ... -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 ******************************************************************** Title: Microsoft Security Bulletin Minor Revisions Issued: May 16, 2007 ******************************************************************** Summary ======= The following bulletins have undergone a minor revision increment. Please see the appropriate bulletin for more details. * MS07-027 * MS07-025 * MS07-023 Bulletin Information: ===================== * MS07-027 - http://www.microsoft.com/technet/security/bulletin/ms07-027.mspx - Reason for Revision: Bulletin revised due to an incorrect file name in Arbitrary File Rewrite Vulnerability - CVE-2007-2221 killbit table; A new issue discovered with the security update: 937409 The "File Download - Security Warning" dialog box opens when you try to open Internet Explorer 7; Updated file names for Internet Explorer 7 - Originally posted: May 8, 2007 - Updated: May 16, 2007 - Bulletin Severity Rating: Critical - Version: 1.2 Anyway - I wondered 2 things ... 1. How do I check that it's actually from Microsoft and not a spoofed send address (I have SBS2003 R2 SP2 installed but I haven't yet configured the IMF to check the Sender ID - how do I check that manually ?) 2. How do I check that the links in the email actually point to where they say they point to (ok I have IE7 which SHOULD prevent phishing attacks right? but again I'm interested to know how to assure myself manually) Thanks all. Sorry if these are dumb questions or posted in the wrong place. Tag: WSFU - Windows services for Unix - SECURITY Tag: 93136
 - 23
 - Infected w-svhost / worm_rbot.ffx I did an online scan using TrendMicro. It found "worm_rbot.ffx" in the system32 folder. I let it clean. I have not rebooted yet. I googled and most entries say svhost.exe is a bogus file with a worm in it. Some posts said it was a valid process that causes problems after an MS update. I'm confused. I found the file svhost.exe and checked properties -- no version or manufacturer. Its creation date was 2/15/2006 and modification date was 8/10/2004. My computer software was first loaded on 2/15/2006. I use MCE 2005 / XP SP2 with updates. Questions: 1. Is it a worm or a valid MS component? 2. Am I safe to reboot? 3. What other security measures should I take? Thank you for your assistance. -- *rain*drops* Tag: WSFU - Windows services for Unix - SECURITY Tag: 93130
 - 24
 - AD 2003 Password Complexity and French Keyboard drivers Hello, figured I'd throw this around here before buying an answer. I've got an international client who are having trouble with password complexity, particularly in non-english countries (France, Italy) using their countries Windows kb drivers and keyboards. AD Default Domain Policy has the password complexity set to Disabled. The servers are using Microsoft's passflt.dll to enforce complexity. Passwords be 6 in length, 1 day in age. HD personnel sets a French user's password to "Monde7" with password change required. The user logs in and is prompted for a change, but won't accept any passwords that match the standard complexity rules (tried many things like Friends1, !Friends^, ILtheBA!!, but all to no avail). 1. Just what really are the hard, true password rules from Microsoft on complexity - their published information is incorrect. 2. Is anyone having problems with password complexity simply because of different national keyboard drivers and layouts? The two unusual things here are that I'm not experienced with using complexity, except for on my NT4 or older servers, being controlled by anything except AD policy, and I've not had any great depth supporting world wide users with Microsoft products. Thanks in advance for your input! Tag: WSFU - Windows services for Unix - SECURITY Tag: 93125
 - 25
 - SSL Encryption What happens if I 1. Encrypt a message with SSL 2. Send it over the internet 3. A couple of bytes get corrupted. Would that prevent me from decrypting the entire message? -- Arne Garvander Certified .Net Geek Professional Data Dude Tag: WSFU - Windows services for Unix - SECURITY Tag: 93121

Hi,
We got a mixed system enviroment here at my location, where we have had a
AFS filesystem for users homedirectorys. This we have started to move to
Windows using NFS export with WSFU and username mapping.

Now i got a big dilemma; A unix UID is mapped to a windows user. A Security
breach i noticed is if i would to setup a standalone unix box add the
usernamed from passwd file with correct UID. I could then login as root and
SU a certain user and then acceess the windows shared NFS mount.

I am hoping i have done something wrong for this to be possible, but yet i
am afraid this is a security hole that cannot be helped. But if so its a
terrible breach since anyone could hook up a Linux system and access private
files.

Plaese give som feedback on this...

Top