____________________________PLAY ANTI-RN AD____________________________
____________________________PLAY OPENING MUSIC____________________________
[Keith] Welcome to the Mind Of Root. I'm Keith Albright
[Rich] and I'm Rich Niemeier.
[Steve] and I'm Steve Murawski.
[Keith] This is Episode 73 recorded on October 29th, 2008.
Chit-Chat - What's going on with you?
[Steve]
[Rich]
[Keith]
- I hate it when I'm stupid. Out yesterday and come in today to find out RightFax server unable to send outbound faxes. Check error log, no dial tone on channel 1. Check console and card, all label channels as zero and one. Check line on Channel 1, no Dial tone. Trace to demarc, no dial tone. Call Verizon. 8 hours later.....this is a DID line, should not have a dial tone. It was the other one. Why didn't I verify the line before calling.
____________________________READ IDERA AD COPY____________________________
This show is sponsored by Idera; automate your admin tasks FAST with
PowerShellPlus? - THE Power Tool for PowerShell. Download a free
14-day trial at http://www.idera.com/PowerShellPlus
Housekeeping Items
[Rich]
[Steve]
[Keith]
- Resume Peer Review reminder. Looking for more submissions.
____________________________PLAY TPN PROMO____________________________
____________________________PLAY ANTI-SM AD PROMO____________________________
- Host Intrusion Detection and File Integrity Monitoring [STEVE]
-Osiris
-When I think of file integrity monitoring, the first thing I think of is Tripwire. There is an open source Tripwire, but it is primarily a commercial product now. The open source version only suppports Linux, and as you know, I'm mainly a Windows shop.
-I started looking for alternatives and Osiris is an open source option that does have a windows installer.
-
-OSSEC
-As I was exploring options for a Tripwire-like solution, I came across OSSEC. OSSEC is a complete HIDS, and includes file and (for windows systems) registry monitoring, monitors log files and can monitor syslog messages.
-
-Samhain
-Samhain provides file integrity checking, as well as rootkit detection, port monitoring, detection of rogue SUID executables, and hidden processes.
-The big difference between Samhain and OSSEC appears to be that Samhain does port monitoring and for Windows installs it requires Cygwin or other POSIX emulation, and OSSEC does log file monitoring and event log and registry monitoring on Windows. They both do file integrity checking and rootkit detection.
- Triple J TV - The Hack Half Hour [RICH]
- Not Tech realated but talks about life.
-
- Microsoft Releases Out-Of-Cycle Critical Patch [KEITH]
-I know this is a week old, but if you didn't catch it. Patch now.
-Last time they did an out-of-cycle patch was April 2007.
- Vista SP2? Beta rumored to be released this week [KEITH]
-Is this average for the release cycle of Service Packs? Or, is it accelerated.
- PowerShell installed by default on Server 2008 R2 and greater [STEVE]
-More great stuff being announced at PDC.
CORE POWERSHELL
'Total: 216' A basic install of V1 has 129
ADDITIONAL
ADRMS.PS.Admin 15 Cmdlets
activedirectory 76 Cmdlets
'Total: 358'
Net Total 574
- Exchange 2007 Message limits problem [KEITH]
-Outlook 2003 & Exchange 2007. User tries to send 18MB worth of pictures. Gets message that "The message being sent exceeds he message size established for this user".
-This is business related, so I up that user to 30MB. (NOTE: Many users had raised limits, but they did not carry over from Exchange 2000).
-Still can't send. I check the hub transport message limits, they are already 30MB.
-Log out/in - Nothing. Restart - Nothing. I confirm these are the only places that limit the message size.
-I found one article that indicated to restart the hub transport service. No success.
-Found another article indicating it takes overnight for policy to take effect. I reboot server and user's mail goes through.
-Why does something like this require a restart?
- OpenID? - Many Providers, Few Consumers [STEVE]
-Google and Windows Live are now both committing to being
OpenID? Providers.
-What's needed is for these services to accept
OpenID? logins.. I have an
OpenID?, but to use Google or MS's services, I have to have separate logins for each service, rather than being able to use my
OpenID? across Google, MS, and others.
- Hacking With Orca [KEITH]
-My colleague is going to a training conference for a software package we run and she wanted to be able to play with a prod DB to create Crystal Reports. Nothing sensitive in the DB, so no problem with putting it on a mobile device. I also wanted to give her access back to office while away.
-DB is too large to run MSDE, so I went with full SQL, which required Server 2003.
-Went to load Sprint connection software, found it is only for XP and Vista. Knowing it SHOULD be able to run on Server 2k3, I grabbed the MSI when it uncompressed it and took a look with ORCA.
-Since all versions of Server 2003 are version 502, it failed the test.
-I could have modified the condition, but instead just removed it. Software installed and works beautifully.
-[STEVE] Just a quick note on DB size limits, MSDE has a limit of a 2GB per database, and SQL 2005/8 has a limit of 4GB per database.
- Monday 13 October , 2008
- How has technology changed the way we use porn?
- Just took away from this a scary story about how teenagers and maybe younger children can be effected by these changes.
- Childern recording sex asks by children
- "Adults" Having "Child Porn" on cell phone
- --If your 18 and have pictures or video of a 16 year old, could you be prosecuted?
- People saving Porn to cell phones so they can share ??
- -- Is this type of sharing going on wiht our children?
- Re-enforcing age old stereo types, promiscuous female bad, promiscuous male good
- -- In trading porn of peers they have irrefutible proof of the act.
- -- Once something like this gets published on the Internet can it ever be purged? I think not.
- Remember this is Australia
- What is happening here in US - Steve, Have you seen like this come through your purview?
-[STEVE]Regarding the stereotypes, this is reversed when looking at adults taking advantage of minors. When an adult female is accused of taking advantage of a minor male, it is perceived and treated as a lesser offense than if the adult was a male and the minor is male or female.
-[STEVE]In Wisconsin, the statute against Possession of child pornography is 948.12.
948.12 Possession of child pornography
(1m) Whoever possesses any undeveloped film, photographic negative, photograph, motion picture, videotape, or other recording of a child engaged in sexually explicit conduct under all of the following circumstances may be penalized under sub. (3):
(a) The person knows that he or she possesses the material.
(b) The person knows the character and content of the sexually explicit conduct in the material.
(c) The person knows or reasonably should know that the child engaged in sexually explicit conduct has not attained the age of 18 years.
(2m) Whoever exhibits or plays a recording of a child engaged in sexually explicit conduct, if all of the following apply, may be penalized under sub. (3):
(a) The person knows that he or she has exhibited or played the recording.
(b) Before the person exhibited or played the recording, he or she knew the character and content of the sexually explicit conduct.
(c) Before the person exhibited or played the recording, he or she knew or reasonably should have known that the child engaged in sexually explicit conduct had not attained the age of 18 years.
(3)
(a) Except as provided in par. (b), a person who violates sub. (1m) or (2m) is guilty of a Class D felony.
(b) A person who violates sub. (1m) or (2m) is guilty of a Class I felony if the person is under 18 years of age when the offense occurs.
____________________________PLAY ANTI-KA AD____________________________
Listener Feedback
From listener....Jeff Culbertson
Since I listen to the pod cast while on my daily commute, in most instances the tiny URL or shrinkster URL is not easily remembered.
I usually end up just making a mental note to go hit the show notes to get the links
From listener....Brian who posted a comment on the blog
I wanted to add some suggestions to the questions you asked on this weeks podcast.
First, the tinyurl (and shrinkster) URLs? really do nothing for me. I listen to the show in a number of places and even if I am sitting in front of a PC, I don’t use the tinyurl mainly because I can never remember them. I just use the blog.
As far as service accounts, I agree with Steve. I use domain accounts for my services mainly because I have had problems in the past with local accounts.
Finally, as far as a forum, I agree that it would not be something that I would look at regularly because I don’t usually browse forums. However, if there was something on them different and unique from other tech forums, then that would make the difference. For instance if you could maybe have listeners post their problems and the SOLUTIONS to what fixed then in a forum thread, I think that would make a forum a valuable commodity. SO many forums have the “Help me” posts but not the “This fixed it” posts.
[KEITH]I dunno Steve, sounds like the URL shortcuts are not as useful as we had hoped.
[STEVE]I agree.. No URL Shortcuts for you.... Next!
From Listener....Terri who posted a comment on the blog regarding Episode 39!
Dear Doug - (anonymous) over all thought(s) about your posting - bit me!
I concur w/the rest of the posting(s)...
1. I dont think you need to move the comedy to a separate place, keep it in the podcast
2. I like the name of the show, its truly geek roots.
I like your style of post cast and will recommend this to all my students.
[KEITH] At first I thought this was SPAM, but it sounded real enough, so I did some further checking. Source email is legit and matches the name. Source IP is in the same subnet as the domain for the website. So, thanks for supporting us Terri.
Website Picks
Rich - http://www.wepc.com/ ASUS and Intel want Enduser ideas on what features to at to new PC's
Steve - http://
Keith - http://www.appdeploy.com/index.asp
Last Call
Anyone....Anyone....Buehler.....Buehler....
Closing
All right, well that is it for the show. For listener feedback; you can email us at Feedback [at] mindofroot.com or post a comment on the main site at mindofroot.com. If you use iTunes, you could write a review. If you just want to show us your listening, drop a pin on the Frappr map...there's a link on the show site.
Lastly, you can drop any show ideas or topic requests on the wiki. There is a link to the wiki on the main show site. If you would like to participate in the show; either through an interview, a segment contribution, or any other way, please let us know. We are also a member of the Techpodcast network. Check out some other great shows by going to Techpodcast.com.
Thanks everyone.
