Archive

Archive for the ‘Uncategorized’ Category

Enable FULL mailbox auditing in Office365

September 29, 2017 Leave a comment

If you have followed the steps found at https://support.office.com/en-us/article/Enable-mailbox-auditing-in-Office-365-aaca8987-5b62-458b-9882-c28476a66918, you would have realized that not every action is recorded

image

In the event you want to turn on all of the auditing capabilities, you will need to run the following PS script instead

Get-Mailbox -ResultSize Unlimited -Filter {RecipientTypeDetails -eq "UserMailbox"} | Set-Mailbox -AuditOwner  Create,SoftDelete,HardDelete,Update,Move,MoveToDeletedItems,MailboxLogin

Get-Mailbox -ResultSize Unlimited -Filter {RecipientTypeDetails -eq "UserMailbox"} | Set-Mailbox -AuditDelegate Create, FolderBind, SendAs,SendOnBehalf, SoftDelete, HardDelete, Update, Move,MoveToDeletedItems

Get-Mailbox -ResultSize Unlimited -Filter {RecipientTypeDetails -eq "UserMailbox"} | Set-Mailbox -AuditAdmin Create, FolderBind, MessageBind, SendAs, SendOnBehalf,SoftDelete, HardDelete, Update, Move, Copy,MoveToDeletedItems

Which will give you the following result when you run Get-Mailbox "[userid]"| FL Audit*

image

Advertisements
Categories: Uncategorized

ASP.NET Core–IIS gives 502.5

October 7, 2016 Leave a comment

Running .net core apps on IIS can be a tricky if not done correctly.

image

In order to be sure you will need to wait up to 6 minutes for IIS to time out to get the true error message.

Here are some quick tips

  1. Make sure the IIS user has access to the folder where the published files are
  2. The application pool serving the asp.net core website should have CLR = no managed code
    image
  3. In your code, ensure that UseUrls comes BEFORE UseIISIntegration 
    While running it in development is straightforward using the UseUrls function, if it appear after UseIISIntegration, it will override the IIS setup and your website will not work, what is worse is that you will have to wait a full 6 minutes before you see the actual error
    image
Categories: Uncategorized

Adobe Photoshop CS2

August 23, 2016 Leave a comment

For those that can no longer find the link to the free download of Adobe Photoshop CS2, the URL to download it is

http://download.adobe.com/pub/adobe/magic/creativesuite/CS2_EOL/PHSP/PhSp_CS2_English.exe

 

The free license codes are

Windows Serial number: 1045-1412-5685-1654-6343-1431
Mac OS X Serial number: 1045-0410-5403-3188-5429-0639

Categories: Uncategorized

Seafile end to end encryption for encrypted libraries (v3)

May 11, 2014 2 comments

Rephrased from https://seacloud.cc/group/3/wiki/faq-for-security-features/ and https://github.com/haiwen/seafile/wiki/Seafile-server-components-overview

FYI, encryption used are all symmetric

Master Key
When you create an encrypted library, a random file key (master key) is generated. This master key is the main key that is used to encrypt and decrypt the files and this key has NOTHING to do with your password, and is not stored anywhere in the system. As long as you can get this key, your access to the data is confirmed! There is also no known way to change this easily.

Enc Master Key
The password you entered is used to encrypt the master key (enc master key) , this data is stored in the server to send out to the clients in order to derive the actual file key by decrypting with the password.
I.e master key enc master key

Web Browsers (8000, 8082)
For browsers and all access thru http protocols (inc mobile devices) the enc master key and encrypted data is sent to the client/server and the client/server will do the neccessary decryption to get the file key which is then used to decrypt the encrypted data to get the actual file. For mobile apps, it seems the file key is also stored in the app data.

cc net (10001) and seaf daemon (12001)
A magic token is generated from the library id and password and stored on the server. This is used to confirm the password is correct. Once it is confirmed, the master key is stored on the client.

summary
Although no passwords are stored anywhere, this does not really matter since all it does is to decrypt the encrypted master key, what really matters is the file key, which unfortunately seems to be stored on both the client as well as mobile app, quite possibly in an unencrypted format.

So while the sys admin is not able to your files. Should your devices be compromised, the hackers potentially have access to your file key which will unlock the files when they request it from 8082 which does not need any form of authentication.

Categories: Uncategorized

HP C7000 Blade Chassis–Remotely unplug and plug in a blade

January 6, 2014 Leave a comment

Sometimes there is a need to remotely unplug and plug in a blade

To do so, ssh into the HP OA ip address then run the following command

reset server <bay>

 

You will then be presented with a prompt similar to below

image

 

And if you enter yes, you should see a message similar to

image

and the bay should disappear from HP Onbard Administrator and reappear again later

Categories: Uncategorized

Android: Unable to install Titanium Backup

September 28, 2012 Leave a comment

You might get some weird errors when installing or upgrading Titanium Backup.

 

To fix this, delete the file data/app/com.keramidas.titaniumbackup-1.odex

Categories: Uncategorized

Dealextreme Affliate

December 9, 2011 Leave a comment

if you are shopping at dealextreme, click this link and help me get some commission, thanks.

http://www.dealextreme.com/default.dx/r.43428218

Categories: Uncategorized