Monday, April 13, 2015

How to Build a Yum Repository in CentOS

First we need to run:

yum install createrepo (if installing from the cd, you might get a gpg error, type y and hit enter)

Next,

yum install vsftpd

service vsftpd start

*If running iptables, you will have to allow it through the firewall

Create the directory: /var/ftp/pub/yum/*OSName*/*RELEASE*/*PATCH*/base/*ARCH*

examples:

/var/ftp/pub/yum/centos/6/6/base/i386
/var/ftp/pub/yum/centos/6/6/base/x86_64
/var/ftp/pub/yum/RHEL/7/1/base/x86_64

mkdir -p /var/ftp/pub/yum/centos/6/6/base/x86_64

cp -ar /*CDMOUNTPOINT*/Packages/* /var/ftp/pub/yum/centos/6/6/base/x86_64
cp /*CDMOUNTPOINT*/repodata/*comps*.xml /opt/yum/rhel6.3/repodata/comps.xml

cd /var/ftp/pub/yum/centos/6/6/base/x86_64
createrepo -v .

vim /etc/yum.reposb.d/custom.repo
[name]
name=Centos $releasever Base Updates 6.6
baseurl=ftp://*ip-of-the-computer*/pub/centos/6/6/base/x86_64
yum clean all
yum repolist

Your repo should now be listed

Couple of Notes:
SELinux and the firewall was turned off while doing this

Note:  Some systems may require you to run yum-arch /var/ftp/pub/yum/centos

Tested In: CentOS 4.3, CentOS 6.6 (just change version numbers above to match your version of the OS)

Saturday, February 21, 2015

How do I see who I have registered to my Google Apps Reseller account

First go to admin.google.com

Next login with your resellers account which should be like username@reseller.domain.com

Once you are logged in, on the right side you will see a link that says reseller tools.  Click that.

At this point it takes you to the customer enrollment page.  To see what you have already registered clicked at the top Customer Registration.

Friday, February 6, 2015

Can't Delete Printer

I couldn't delete a printer and when I tried it would give me this message:  "This operation has been cancelled due to restrictions in effect on this computer. Please contact your system administrator."

I checked security settings, tried opening print queue, etc and when trying to open these it would tell me: "This printer has been deleted or removed".

Wait WHAT?

I ended up finding something about showing hidden devices in device manager.  I ended up not having to show hidden devices.  I just went to Device Manager -> Print Queues.  I just right clicked it and deleted it.  It finally worked.

Source: Link

OS: Windows 8.1 Pro

Wednesday, December 3, 2014

Setting up KVM in Centos 6.5 with Bridged Networking

NOTE:  This is all assuming your computer supports virtualization.  If you aren't sure run this command as root -> more /proc/cpuinfo | grep vmx  If it returns anything, it should work assuming it is turned on in the bios.

The first thing you need to do is install the KVM Packages

sudo yum install @Virt*
sudo yum install kvm*
sudo yum install libvirt* 

Next you will want to restart the libvertd

sudo service libvertd restart

Now check to make sure its set to start on boot

sudo chkconfig --list | grep libvirtd

if it is not run the following

sudo chkconfig libvrtd on

At this point the KVM should be installed and working.

To run the GUI manager type:

sudo virt-manager

If you are having trouble with connecting to the qemu then run the following:

lsmod | grep kvm

If this doesn't return a value there is an issue.  Double check that your bios has VT enabled.

Now if you want each VM to act as if they are their own entity on the network with their own IP we need to change some things.  I will say this.... I was on a machine with NIS configured and was doing all these changes while my user and once the network is broken, you as the user become unknown when the NIS server can't be reached.  Do all the following as root.

Locate your ethernet config file in /etc/sysconfig/network-scripts/

Lets back it up first

cp /etc/sysconfig/network-scripts/ifcfg-eth0 /etc/sysconfig/network-scripts/ifcfg-eth0.bak

Open up the ifcfg file and this is all I have in mine.

DEVICE="eth0"
HWADDR=XX:XX:XX:XX:XX:XX
ONBOOT=yes
BRIDGE=br0
NM_CONTROLLED=no

The hwaddr is probably already there so don't change the value.  Also the bridge name is what I called the next file so it can be whatever as long as the two match.

Lets create a new file

vim /etc/sysconfig/network-scripts/ifcfg-br0

DEVICE="br0"
TYPE=Bridge
DELAY=0
ONBOOT="yes"
BOOTPROTO=static
IPADDR=X.X.X.X
NETWMASK=X.X.X.X
GATEWAY=X.X.X.X
DNS1=X.X.X.X
DNS2=X.X.X.X
DOMAIN=test.local
PEERNDS="yes"
NM_CONTROLLED="no"

Like I mentioned the DEVICE name must match the BRIDGE name above.

Now run:

service network restart

To show if the bridge is up and working run

brctl show

If you are running iptables we need to add some new rules to it

iptables -I FORWARD -m physdev --physdev-is-bridged -j ACCEPT
service iptables save
service iptables restart

Next we need to add some kernel settings.  Open /etc/sysctl.conf

Add the following:

net.bridge.bridge-nf-call-ip6tables = 0
net.bridge.bridge-nf-call-iptables = 0
net.bridge.bridge-nf-call-arptables = 0

Close and save. Run the following to verify they were added.

sysctl -p /etc/sysctl.conf
service libvirtd reload

I had issues with NetworkManager so I turned it off

chkconfig NetworkManager off

Now reboot and run virt-manager to start building your VM.

SourceLink Link Link

Thursday, November 27, 2014

Hackintosh Asus Rampage Formula (UPDATED: 10.10.1 Yosemite)

Asus Rampage Formula

Nvidia 6800GT

Audio: SupremeFX II (Chipset:AD1988B)
Source:  Link  Link  Link

http://lifehacker.com/5841604/the-always-up+to+date-guide-to-building-a-hackintosh

Go to http://www.tonymacx86.com/. It is the place for everything.

Network Driver I found here

Download driver and put in /Extra/Extensions

Reboot and go into Network Preferences and it will say it found a new network device.

10.8
boot with flags:  PCIRootUID=0

How to install:  Link

10.9
boot with flags:  GraphicsEnabler=Yes -v

Took a couple of minutes but eventually booted.

How to install:  Link

After install was complete rebooted off USB selected the Mavericks Install Drive and booted with the flags again GraphicsEnabler=Yes -v

To get the network drivers to work was a little bit more tricky.  I first needed to download this utility.  It's called KW.zipI downloaded it to a USB drive and copied it over.  Unzipped the file and ran Kext Wizard.  Then click Installation -> Browse and then select the drive you downloaded from the above link.  The destination is important because it seems like the only way this will work is if you put it in System/Library/Extensions.  If you don't do it correctly, it will keep popping up with error messages.  This utility does it the right way.  Reboot and open Network Preferences.  It will say it found two interfaces.  For what ever reason it was saying that neither was connected.  I removed both by hitting the minus sign and readded en1.  I have the cable plugged into port 2 on the pack which is the top ethernet port.

10.10
So getting Yosemite has been tricky.  The previous versions seemed to go easier.  I finally got this working.  I couldn't get Unibeast to work perfectly so I tried Clover and that was even a bigger disaster.  Multibeast and Unibeast must have been updated since the first time I tried it.
Here is what I did:

Boot Flags: GraphicsEnabler=Yes

Multibeast Selected:
  • EasyBeast
  • Bootloaders
    • Chimera v4.0.1
  • Customize
    • Basic Boot Options
    • GraphicsEnabler=Yes
    • Hibernate Mode - Desktop
    • Kext Dev Mode
    • Use KernelCache
    • Verbose Boot
Everything worked except Audio and network.  I got 1/2 working.

Networking:
  • Found this thread (Link) and it lists this driver kext (Link)
  • I had trouble with previous kexts but I got it to work using this utility (Link)
NOTE: I installed 10.10.1 and I lost networking so it looks like every time there is an upgrade, you'll have to reload networking.




Thursday, November 6, 2014

How to fix "Can't verify who created this file error." when using redirecting folders

I've looked in to how to apply this with Group Policy but for some reason it just ignores the setting.  It seems to have to be done using a registry key.  Here is how I did it.  If there is a better way, please comment in the section below.

First open internet explorer and go in to the internet settings -> security -> local intranet -> sites.  From there enter the server name that you are trying to access that the data is stored on.  Click Ok until your back to the internet explorer window.

Now Open Group Policy Management, create or open a GPO and navigate to User Configuration -> Preferences -> Windows Settings -> Registry

Right click in the space to the right.  Select New Registry Item.  It should be set to update and HKEY_CURRENT_USER.

Now select the ... and your going to navigate to the spot to select what you just entered in to Internet Settings.

It should be like: HKEY_CURRENT_USER\Software\Microsoft\Windows\CurrentVersion\Internet Settings\ZoneMap\EscDomains\xxxxxx

xxxx will be what ever you entered. Check the value in the bottom window and your window should now say:

Value Name = 1
Value Type = REG_SZ
Value data = (hostname or value you entered)

Save and close.  On host, open a command prompt and do gpupdate /force, log out login and it should be fixed.

Wednesday, August 27, 2014

Microsoft Office 2013 - Excel "Not Responding" Windows 8/8.1

I was having an issue with excel locking up when it was looking up data in another worksheet.  Worked fine in the older version of excel, but recently just upgraded to Windows 8/Office 2013.

Here is what I did to fix it:

Close everything you have open.

Open Windows Explorer, Navigate to C:\Program Files\Microsoft Office 15\root\office15\

Locate a file named osf.dll.  Right click it and select Rename.  Just add .old to the end so it says osf.dll.old.

Opened office and tried the files that were giving me problems.  The problem was fixed!

OS: Windows 8.1
Office: 2013

Source:  Link

**This did not fix the issue.  I ran CCLeaner and it looks like there were over 3GB of files in temp folders.  Will report back if this fixed it.

Thursday, August 21, 2014

Follow My New Business

Normally I don't post anything like this, but I'll make an exception this time.  Anyone that reads/finds this site, I would ask that you go like my new business that I have started.  Things I post won't be as technical here but will still be IT/Security related.  Thanks in advance.

Twitter:  http://www.twitter.com/cybersecureinn
Facebook: http://www.facebook.com/cybersecureinnovations
LinkedIn:  http://www.linkedin.com/company/cyber-secure-innovations

Thursday, August 14, 2014

Internet Explorer https loads Page cannot be displayed on certain pages.

I had an issue where internet explorer wouldn't load certain https sites.  Some worked and some didn't.  I even checked the Local Security Policy for System cryptography: Use FIPS compliant algorithms for encryption, hashing, and signing setting.  It was set to disabled.  It was suggested that I check the registry key to see if it was still set.  It was set to 1 and not 0 meaning it was active.  Here is what you can do to fix this.

Type regedit -> Navigate to HKLM\System\CurrentControlSet\Control\Lsa\ -> Locate the setting called FIPSAlgorithmPolicy and see if the value in the () is a 0 or a 1

If it is a (1) double click it and change it to 0.  Click ok and now reboot.  Once back into Windows, if it is still not working reset the zones settings to default and also do a full reset on internet explorer. It is under the advance settings.  You will need to reboot one more time.  At this point IE was back working as it should.

OS: Windows 7

Source:  Link Link

Sunday, August 10, 2014

When Generating Certs for Plex Connect you get WARNING: can’t open config file: /usr/local/ssl/openssl.cnf

You need to enter this:

Type at prompt: set OPENSSL_CONF=c:\openssl-win32\bin\openssl.cfg  (if you don't run this line you will get the following error: WARNING: can’t open config file: /usr/local/ssl/openssl.cnf

You won't get the error message any more when creating the certs.

 Source:  Link

ShareThis