Wednesday, December 3, 2014

Setting up KVM in Centos 6.5 with Bridged Networking

NOTE:  This is all assuming your computer supports virtualization.  If you aren't sure run this command as root -> more /proc/cpuinfo | grep vmx  If it returns anything, it should work assuming it is turned on in the bios.

The first thing you need to do is install the KVM Packages

sudo yum install @Virt*
sudo yum install kvm*
sudo yum install libvirt* 

Next you will want to restart the libvertd

sudo service libvertd restart

Now check to make sure its set to start on boot

sudo chkconfig --list | grep libvirtd

if it is not run the following

sudo chkconfig libvrtd on

At this point the KVM should be installed and working.

To run the GUI manager type:

sudo virt-manager

If you are having trouble with connecting to the qemu then run the following:

lsmod | grep kvm

If this doesn't return a value there is an issue.  Double check that your bios has VT enabled.

Now if you want each VM to act as if they are their own entity on the network with their own IP we need to change some things.  I will say this.... I was on a machine with NIS configured and was doing all these changes while my user and once the network is broken, you as the user become unknown when the NIS server can't be reached.  Do all the following as root.

Locate your ethernet config file in /etc/sysconfig/network-scripts/

Lets back it up first

cp /etc/sysconfig/network-scripts/ifcfg-eth0 /etc/sysconfig/network-scripts/ifcfg-eth0.bak

Open up the ifcfg file and this is all I have in mine.

DEVICE="eth0"
HWADDR=XX:XX:XX:XX:XX:XX
ONBOOT=yes
BRIDGE=br0
NM_CONTROLLED=no

The hwaddr is probably already there so don't change the value.  Also the bridge name is what I called the next file so it can be whatever as long as the two match.

Lets create a new file

vim /etc/sysconfig/network-scripts/ifcfg-br0

DEVICE="br0"
TYPE=Bridge
DELAY=0
ONBOOT="yes"
BOOTPROTO=static
IPADDR=X.X.X.X
NETWMASK=X.X.X.X
GATEWAY=X.X.X.X
DNS1=X.X.X.X
DNS2=X.X.X.X
DOMAIN=test.local
PEERNDS="yes"
NM_CONTROLLED="no"

Like I mentioned the DEVICE name must match the BRIDGE name above.

Now run:

service network restart

To show if the bridge is up and working run

brctl show

If you are running iptables we need to add some new rules to it

iptables -I FORWARD -m physdev --physdev-is-bridged -j ACCEPT
service iptables save
service iptables restart

Next we need to add some kernel settings.  Open /etc/sysctl.conf

Add the following:

net.bridge.bridge-nf-call-ip6tables = 0
net.bridge.bridge-nf-call-iptables = 0
net.bridge.bridge-nf-call-arptables = 0

Close and save. Run the following to verify they were added.

sysctl -p /etc/sysctl.conf
service libvirtd reload

I had issues with NetworkManager so I turned it off

chkconfig NetworkManager off

Now reboot and run virt-manager to start building your VM.

SourceLink Link Link

Thursday, November 27, 2014

Hackintosh Asus Rampage Formula (UPDATED: 10.10.1 Yosemite)

Asus Rampage Formula

Nvidia 6800GT

Audio: SupremeFX II (Chipset:AD1988B)
Source:  Link  Link  Link

http://lifehacker.com/5841604/the-always-up+to+date-guide-to-building-a-hackintosh

Go to http://www.tonymacx86.com/. It is the place for everything.

Network Driver I found here

Download driver and put in /Extra/Extensions

Reboot and go into Network Preferences and it will say it found a new network device.

10.8
boot with flags:  PCIRootUID=0

How to install:  Link

10.9
boot with flags:  GraphicsEnabler=Yes -v

Took a couple of minutes but eventually booted.

How to install:  Link

After install was complete rebooted off USB selected the Mavericks Install Drive and booted with the flags again GraphicsEnabler=Yes -v

To get the network drivers to work was a little bit more tricky.  I first needed to download this utility.  It's called KW.zipI downloaded it to a USB drive and copied it over.  Unzipped the file and ran Kext Wizard.  Then click Installation -> Browse and then select the drive you downloaded from the above link.  The destination is important because it seems like the only way this will work is if you put it in System/Library/Extensions.  If you don't do it correctly, it will keep popping up with error messages.  This utility does it the right way.  Reboot and open Network Preferences.  It will say it found two interfaces.  For what ever reason it was saying that neither was connected.  I removed both by hitting the minus sign and readded en1.  I have the cable plugged into port 2 on the pack which is the top ethernet port.

10.10
So getting Yosemite has been tricky.  The previous versions seemed to go easier.  I finally got this working.  I couldn't get Unibeast to work perfectly so I tried Clover and that was even a bigger disaster.  Multibeast and Unibeast must have been updated since the first time I tried it.
Here is what I did:

Boot Flags: GraphicsEnabler=Yes

Multibeast Selected:
  • EasyBeast
  • Bootloaders
    • Chimera v4.0.1
  • Customize
    • Basic Boot Options
    • GraphicsEnabler=Yes
    • Hibernate Mode - Desktop
    • Kext Dev Mode
    • Use KernelCache
    • Verbose Boot
Everything worked except Audio and network.  I got 1/2 working.

Networking:
  • Found this thread (Link) and it lists this driver kext (Link)
  • I had trouble with previous kexts but I got it to work using this utility (Link)
NOTE: I installed 10.10.1 and I lost networking so it looks like every time there is an upgrade, you'll have to reload networking.




Thursday, November 6, 2014

How to fix "Can't verify who created this file error." when using redirecting folders

I've looked in to how to apply this with Group Policy but for some reason it just ignores the setting.  It seems to have to be done using a registry key.  Here is how I did it.  If there is a better way, please comment in the section below.

First open internet explorer and go in to the internet settings -> security -> local intranet -> sites.  From there enter the server name that you are trying to access that the data is stored on.  Click Ok until your back to the internet explorer window.

Now Open Group Policy Management, create or open a GPO and navigate to User Configuration -> Preferences -> Windows Settings -> Registry

Right click in the space to the right.  Select New Registry Item.  It should be set to update and HKEY_CURRENT_USER.

Now select the ... and your going to navigate to the spot to select what you just entered in to Internet Settings.

It should be like: HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\EscDomains\xxxxxx

xxxx will be what ever you entered. Check the value in the bottom window and your window should now say:

Value Name = 1
Value Type = REG_SZ
Value data = (hostname or value you entered)

Save and close.  On host, open a command prompt and do gpupdate /force, log out login and it should be fixed.

Wednesday, August 27, 2014

Microsoft Office 2013 - Excel "Not Responding" Windows 8/8.1

I was having an issue with excel locking up when it was looking up data in another worksheet.  Worked fine in the older version of excel, but recently just upgraded to Windows 8/Office 2013.

Here is what I did to fix it:

Close everything you have open.

Open Windows Explorer, Navigate to C:\Program Files\Microsoft Office 15\root\office15\

Locate a file named osf.dll.  Right click it and select Rename.  Just add .old to the end so it says osf.dll.old.

Opened office and tried the files that were giving me problems.  The problem was fixed!

OS: Windows 8.1
Office: 2013

Source:  Link

**This did not fix the issue.  I ran CCLeaner and it looks like there were over 3GB of files in temp folders.  Will report back if this fixed it.

Thursday, August 21, 2014

Follow My New Business

Normally I don't post anything like this, but I'll make an exception this time.  Anyone that reads/finds this site, I would ask that you go like my new business that I have started.  Things I post won't be as technical here but will still be IT/Security related.  Thanks in advance.

Twitter:  http://www.twitter.com/cybersecureinn
Facebook: http://www.facebook.com/cybersecureinnovations
LinkedIn:  http://www.linkedin.com/company/cyber-secure-innovations

Thursday, August 14, 2014

Internet Explorer https loads Page cannot be displayed on certain pages.

I had an issue where internet explorer wouldn't load certain https sites.  Some worked and some didn't.  I even checked the Local Security Policy for System cryptography: Use FIPS compliant algorithms for encryption, hashing, and signing setting.  It was set to disabled.  It was suggested that I check the registry key to see if it was still set.  It was set to 1 and not 0 meaning it was active.  Here is what you can do to fix this.

Type regedit -> Navigate to HKLM\System\CurrentControlSet\Control\Lsa\ -> Locate the setting called FIPSAlgorithmPolicy and see if the value in the () is a 0 or a 1

If it is a (1) double click it and change it to 0.  Click ok and now reboot.  Once back into Windows, if it is still not working reset the zones settings to default and also do a full reset on internet explorer. It is under the advance settings.  You will need to reboot one more time.  At this point IE was back working as it should.

OS: Windows 7

Source:  Link Link

Sunday, August 10, 2014

When Generating Certs for Plex Connect you get WARNING: can’t open config file: /usr/local/ssl/openssl.cnf

You need to enter this:

Type at prompt: set OPENSSL_CONF=c:\openssl-win32\bin\openssl.cfg  (if you don't run this line you will get the following error: WARNING: can’t open config file: /usr/local/ssl/openssl.cnf

You won't get the error message any more when creating the certs.

 Source:  Link

Sunday, June 22, 2014

Windows 8/Windows 8.1 Showing up as Windows 6.3 in WSUS on Windows Server 2008 R2 Standard

I upgraded two computers and they came with Windows 8 on them.  I updated them to Windows 8.1, but I noticed something odd in Windows WSUS.  It was showing up as Windows 6.3.  I followed all the Microsoft Steps:

Step 1:
An update for Windows Server Update Services 3.0 Service Pack 2 is available (KB2734608)

Step 1a:
Additional note on KB2734608 regarding WSUS, Windows 8 and Windows Server 2012 (Link)

Even after all that, still not showing patches, but also still reporting at Windows 6.3.

Here is how to change the Windows 6.3

Log on to the WSUS server and open notepad.  Paste in the following text:

UPDATE SUSDB.dbo.tbComputerTargetDetail
SET OSDescription = 'Windows 8.1 Pro'
WHERE OSMajorVersion = 6 AND OSMinorVersion = 3 AND OSBuildNumber = 9600

Do file save as Add-W81-to-WSUS.sql and save it to C:\temp

Now run this in an elevated windows command prompt:

sqlcmd -I -i"C:\temp\Add-W81-to-WSUS.sql" -S \\.\pipe\MSSQL$MICROSOFT##SSEE\sql\query

It will say X number of rows affected.  The X should match how many Windows 6.3 machines are showing up in WSUS.

Now just as aheads up... if you aren't getting any Windows 8/8.1 patches double check that you are synchronizing them haha!

Source: Link

UPDATE:  I just noticed that it reverted back.  Will look more in to this.  From past experience you might have to commit the update.

Friday, June 13, 2014

Send to Mail Recipient not showing up when right clicking a file

It worked just fine but was not associated with anything.  After trying to set defaults, this is where things went bad.  I did figure out at least how to bring it back to a working.

Other posts I've read talked about grabbing it from the default profile and copying it over but it still never changed.  To get to the sendto folder click start and in the search box type shell:sendto.

Other posts talked about deleting it and creating your own through note pad by type Mail and saving it as Mail Recipient.MAPIMail.  I tried that also and that didn't work.  No matter what, it looked like something wasn't linked.

I then found this page -> Link which has all the default reg keys.  I downloaded and installed the mapimail reg key.  My icon though still was white file that didn't look right.  I then deleted the extension .MAPIMail. Nothing happened.  I then typed mapimail all lower case and hit enter and the icon switched back to an email looking icon.

Now to set this program to use this feature, go to Start -> type in the search box: Default Programs -> Click it.  Now select Set your default programs.  Select your email program and look for the MAPI section and make sure it is checked.  Click Save and now it should be working again.

I did find one problem.  If you are using AOL Desktop 9.7 there isn't a MAPI box to check.  AOL support on their site says their should be but there still isn't.  I found this page here -> Link that tells you to do the following:
  1. Click the "Settings" button on the toolbar
  2. Click the "A-Z" tab
  3. Click the "AOL as Default" link
  4. Click OK
After doing that, clicking the Mail Recipient context menu would open in AOL.

Tuesday, June 10, 2014

Toshiba Satellite S855-S5378 won't boot from CD/DVD or USB

This is actually because of a BIOS setting.  Start the computer and press F2.

Navigate to Advanced

Go down to System Configuration and press enter

You will see something called Boot Mode.  It is probably set to UEFI Boot.  Select and Press Enter.

Choose CSM Boot.

Press ESC and then Exit with saving changes. You computer should now boot again from the Disc/USB.

When done you must set it back to UEFI or Windows 8 will not boot.

Source: Link

ShareThis