October 2004 - Posts
I told myself that this blog would not really have too much personal in it. Well Now I have to pull out the dusty soap box and jump on. I think that ballons on Windows XP are fine for some people but for others I am having flashbacks to my MAC days. Yes I owned one way back when before it was cool to have one. Now my parents and other out there that dont want to know how something happens behind the scenes like to know that the USB mouse that they plugged in is working and that they there are new updates to install among other things. I do not need this, for one I go like clock work to Windowsupdate.microsoft.com weekly like clock work and when I plug in a new device I know how to look in Device manager to see if it is working again.
Which brings me back to the point that I was trying to make all along and that was I need a needle to pop the ballons or something and then I came across a KB article at MS finally.
Here is the website if you want to read yourself http://support.microsoft.com/default.aspx?scid=kb;en-us;307729 I have also cut the most important parts out for you other than the statement that you should always be careful when you edit the registry. I wonder how many people periodically back up their registry. If you answered yes you are in serious need of some help.
| 1. | Click Start, click Run, type regedit, and then press ENTER. |
| 2. | Navigate to the following subkey: HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Explorer\Advanced |
| 3. | Right-click the right pane, create a new DWORD value, and then name it EnableBalloonTips. |
| 4. | Double-click this new entry, and then give it a hexadecimal value of 0. |
| 5. | Quit Registry Editor. Log off Windows, and then log back on. |
These steps disable all Notification Area balloon tips for this user. There is no way to disable balloon tips for specific programs only.
Ok, soap box is now put away and I have finished ranting for the night.
USMT 2.6 includes two command-line tools named Scanstate and Loadstate. Scanstate captures an intermediate store with the user files and settings from the source computer. Loadstate restores these files and settings to the destination computer.
USMT 2.6 also has five default migration rule (.inf) files named Migapp.inf, Migsys.inf, Miguser.inf, Sysfiles.inf, and ArchiveApp.inf. You can alter the default .inf files and you can create customized .inf files. Depending on what you want to migrate, you can specify all or none of the default .inf files on the command line.
http://www.microsoft.com/downloads/details.aspx?familyid=4af2d2c9-f16c-4c52-a203-8daf944dd555&displaylang=en
The Top 20 list on the Internet today. As it has always been, the Top 20 list is a set of guidelines to tell you what to look for and how to lock down once you have identified a problem.
Top 10 Windows vulnerabilities http://www.sans.org/top20/#w1
Top 10 UNIX vulnerabilities http://www.sans.org/top20/#u1
Ports to be aware of when adding services to your environment
| Name | Port | Protocol | Description |
| Small services | <20 | tcp/udp | small services |
| FTP | 21 | tcp | file transfer |
| SSH | 22 | tcp | login service |
| TELNET | 23 | tcp | login service |
| SMTP | 25 | tcp | mail |
| TIME | 37 | tcp/udp | time synchronization |
| WINS | 42 | tcp/udp | WINS replication |
| DNS | 53 | udp | naming services |
| DNS zone transfers | 53 | tcp | naming services |
| DHCP server | 67 | tcp/udp | host configuration |
| DHCP client | 68 | tcp/udp | host configuration |
| TFTP | 69 | udp | miscellaneous |
| GOPHER | 70 | tcp | old WWW-like service |
| FINGER | 79 | tcp | miscellaneous |
| HTTP | 80 | tcp | web |
| alternate HTTP port | 81 | tcp | web |
| alternate HTTP port | 88 | tcp | web (sometimes Kerberos) |
| LINUXCONF | 98 | tcp | host configuration |
| POP2 | 109 | tcp | mail |
| POP3 | 110 | tcp | mail |
| PORTMAP/RPCBIND | 111 | tcp/udp | RPC portmapper |
| NNTP | 119 | tcp | network news service |
| NTP | 123 | udp | time synchronization |
| NetBIOS | 135 | tcp/udp | DCE-RPC endpoint mapper |
| NetBIOS | 137 | udp | NetBIOS name service |
| NetBIOS | 138 | udp | NetBIOS datagram service |
| NetBIOS/SAMBA | 139 | tcp | file sharing & login service |
| IMAP | 143 | tcp | mail |
| SNMP | 161 | tcp/udp | miscellaneous |
| SNMP | 162 | tcp/udp | miscellaneous |
| XDMCP | 177 | udp | X display manager protocol |
| BGP | 179 | tcp | miscellaneous |
| FW1-secureremote | 256 | tcp | CheckPoint FireWall-1 mgmt |
| FW1-secureremote | 264 | tcp | CheckPoint FireWall-1 mgmt |
| LDAP | 389 | tcp/udp | naming services |
| HTTPS | 443 | tcp | web |
| Windows 2000 NetBIOS | 445 | tcp/udp | SMB over IP (Microsoft-DS) |
| ISAKMP | 500 | udp | IPSEC Internet Key Exchange |
| REXEC | 512 | tcp | } the three |
| RLOGIN | 513 | tcp | } Berkeley r-services |
| RSHELL | 514 | tcp | } (used for remote login) |
| RWHO | 513 | udp | miscellaneous |
| SYSLOG | 514 | udp | miscellaneous |
| LPD | 515 | tcp | remote printing |
| TALK | 517 | udp | miscellaneous |
| RIP | 520 | udp | routing protocol |
| UUCP | 540 | tcp/udp | file transfer |
| HTTP RPC-EPMAP | 593 | tcp | HTTP DCE-RPC endpoint mapper |
| IPP | 631 | tcp | remote printing |
| LDAP over SSL | 636 | tcp | LDAP over SSL |
| Sun Mgmt Console | 898 | tcp | remote administration |
| SAMBA-SWAT | 901 | tcp | remote administration |
| Windows RPC programs | 1025 | tcp/udp | } often allocated |
| Windows RPC programs | to |
| } by DCE-RPC portmapper |
| Windows RPC programs | 1039 | tcp/udp | } on Windows hosts |
| SOCKS | 1080 | tcp | miscellaneous |
| LotusNotes | 1352 | tcp | database/groupware |
| MS-SQL-S | 1433 | tcp | database |
| MS-SQL-M | 1434 | udp | database |
| CITRIX | 1494 | tcp | remote graphical display |
| WINS replication | 1512 | tcp/udp | WINS replication |
| ORACLE | 1521 | tcp | database |
| NFS | 2049 | tcp/udp | NFS file sharing |
| COMPAQDIAG | 2301 | tcp | Compaq remote administration |
| COMPAQDIAG | 2381 | tcp | Compaq remote administration |
| CVS | 2401 | tcp | collaborative file sharing |
| SQUID | 3128 | tcp | web cache |
| Global catalog LDAP | 3268 | tcp | Global catalog LDAP |
| Global catalog LDAP SSL 3269 | 3269 | tcp | Global catalog LDAP SSL |
| MYSQL | 3306 | tcp | database |
| Microsoft Term. Svc. | 3389 | tcp | remote graphical display |
| LOCKD | 4045 | tcp/udp | NFS file sharing |
| Sun Mgmt Console | 5987 | tcp | remote administration |
| PCANYWHERE | 5631 | tcp | remote administration |
| PCANYWHERE | 5632 | tcp/udp | remote administration |
| VNC | 5800 | tcp | remote administration |
| VNC | 5900 | tcp | remote administration |
| X11 | 6000 | tcp | X Windows server |
| X11 | to | tcp | X Windows server |
| X11 | 6255 | tcp | X Windows server |
| FONT-SERVICE | 7100 | tcp | X Windows font service |
| alternate HTTP port | 8000 | tcp | web |
| alternate HTTP port | 8001 | tcp | web |
| alternate HTTP port | 8002 | tcp | web |
| alternate HTTP port | 8080 | tcp | web |
| alternate HTTP port | 8081 | tcp | web |
| alternate HTTP port | 8888 | tcp | web |
| Unix RPC programs | 32770 | tcp/udp | } often allocated |
| Unix RPC programs | to |
| } by RPC portmapper |
| Unix RPC programs | 32899 | tcp/udp | } on Solaris hosts |
| COMPAQDIAG | 49400 | tcp | Compaq remote administration |
| COMPAQDIAG | 49401 | tcp | Compaq remote administration |
| COMPAQDIAG | 49401 | tcp | Compaq remote administration |
| PCANYWHERE | 65301 | tcp | remote administration |
As with anything around certificates there are usually 4 letter expletives involved in setting up at first. Microsoft came up with a tool that will allow you more flexibility in checking if you have set up SSL correctly. This tool allows users to look at the configuration information in a view mode. You can as well run the tool from the command line and send all responses to a log file. You have the ability to simulate SSL handshakes to locate errors.
System Requirements
Supported Operating Systems: Windows NT, Windows 2000 Service Pack 2, Windows 2000 Service Pack 3, Windows XP, Windows Server 2003
SSL Diagnostics works on:
- Windows NT with IIS 4.0
- Windows 2000 with IIS 5.0
- Windows XP with IIS 5.1
- Windows 2003 with IIS 6.0
Download here
http://download.microsoft.com/download/5/9/1/59166dbb-0a2c-467f-bcab-1e103b16015f/SSLDiag.msi
More Posts